Cisco ASA 5506-X Quick Start Manual Download | Manualshive

Page: 1 / 14

background image

Cisco Systems, Inc.

www.cisco.com

1

Cisco Firepower Threat Defense for the
ASA 5506-X Series Using Firepower
Device Manager Quick Start Guide

First Published:

August 10, 2016

Last Updated:

June 28, 2017

1. Is This Guide for You?

This guide explains how to complete the initial configuration of your Firepower Threat Defense device using the
Firepower Device Manager web-based device setup wizard included on Firepower Threat Defense devices.

Firepower Device Manager lets you configure the basic features of the software that are most commonly used for
small networks. It is especially designed for networks that include a single device or just a few, where you do not
want to use a high-powered multiple-device manager to control a large network containing many Firepower
Threat Defense devices.

If you are managing large numbers of devices, or if you want to use the more complex features and configurations
that Firepower Threat Defense allows, use the Firepower Management Center to configure your devices instead
of the integrated Firepower Device Manager.

Use the CLI setup wizard to configure your Firepower Threat Defense device for network connectivity and to
register the device to a Firepower Management Center as described in

http://www.cisco.com/go/ftd-asa-quick

.

2. Package Contents

This section lists the package contents of the chassis. Note that contents are subject to change, and your exact
contents might contain additional or fewer items.

Figure 1

ASA 5506-X and 5506W-X

353663

1

3

2

4

1
2
3
...
»

Summary of Contents for ASA 5506-X

Page 1: ...where you do not want to use a high powered multiple device manager to control a large network containing many Firepower Threat Defense devices If you are managing large numbers of devices or if you want to use the more complex features and configurations that Firepower Threat Defense allows use the Firepower Management Center to configure your devices instead of the integrated Firepower Device Ma...

Page 2: ...der approval When you purchase one or more Smart Licenses for Firepower features you manage them in the Cisco Smart Software Manager http www cisco com web ordering smart software manager index html The Smart Software Manager lets you create a master account for your organization For more information about the Cisco Smart Software Manager see the Cisco Smart Software Manager User Guide Your purcha...

Page 3: ...figuration enables the above network deployment with the following behavior inside outside traffic flow outside IP address from DHCP ASA 5506W X wifi inside wifi outside traffic flow DHCP for clients on inside and wifi There is a DHCP server on the inside bridge group You can plug endpoints or switches directly into one of the bridged interfaces and get addresses on the 192 168 1 0 24 network Ther...

Page 4: ...d network deployment for Firepower Threat Defense on the ASA 5506 X series of appliances including the ASA 5506W X with the built in wireless access point Figure 4 Suggested Network Deployment Version 6 1 Note You must use a separate inside switch in your deployment The example configuration enables the above network deployment with the following behavior inside outside traffic flow outside IP add...

Page 5: ...pologies can be used and your deployment will vary depending on your basic logical network connectivity ports addressing and configuration requirements Version 6 2 Figure 5 ASA 5506W X with Wi Fi 5506 X without Wi Fi for Version 6 2 Figure 6 ASA 5506H X for Version 6 2 USB RESET GE MGMT L S S L S L S L S L S L S L S L S L Status Power Active Power 12VDC 5A 1 2 3 4 5 6 7 8 wLAN CONSOLE GigabitEther...

Page 6: ...t it to the Management port The workstation gets an address through DHCP on the 192 168 45 0 24 network Another option is to leave your workstation attached to a switch and attach that switch to one of the inside ports such as GigabitEthernet1 2 However you must ensure that no other device on the switch s network is running a DHCP server because it will conflict with the one running on the inside ...

Page 7: ...ower on the Firepower Threat Defense Device Procedure 1 Attach the power cable to the Firepower Threat Defense device and connect it to an electrical outlet The power turns on automatically when you plug in the power cable There is no power button 2 Check the Power LED on the back of the Firepower Threat Defense device if it is solid green the device is powered on 3 Check the Status LED on the bac...

Page 8: ...t the End User License Agreement and change the admin password You must complete these steps to continue 4 Configure the following options for the outside and management interfaces and click Next Note Your settings are deployed to the device when you click Next The interface will be named outside and it will be added to the outside_zone security zone Ensure that your settings are correct a Outside...

Page 9: ... includes a Cisco Aironet 702i wireless access point integrated into the device The wireless access point is disabled by default Connect to the access point web interface so that you can enable the wireless radios and configure the SSID and security settings The access point connects internally over the GigabitEthernet1 9 interface All Wi Fi clients belong to the GigabitEthernet1 9 network Your se...

Page 10: ...raffic so you must create a rule to enable traffic between the interfaces in the inside_zone security zone a Click Policies in the menu b Click above the Access Control table to add a rule c Configure at least the following options in the rule Title Enter a name for the rule For example Inside_Inside Action Either Allow or Trust Source Destination Source Zones Select inside_zone Source Destination...

Page 11: ... see this name when selecting a wireless network for their Wi Fi connection Broadcast SSID in Beacon Select this option Universal Admin Mode Disable Security Select whichever security option you want to use 7 While in the wireless access point web interface enable the radios a On the left click Summary and then on the main page under Network Interfaces click the link for the 2 4 GHz radio b Click ...

Page 12: ...from the Firepower Threat Defense CLI connect to the console port or configure Telnet or SSH access Procedure 1 From the Firepower Threat Defense CLI navigate to the system support CLI menu system support diagnostic cli Example system support diagnostic cli Attaching to ASA console Press Ctrl a then d to detach Type help or for a list of available commands firepower 2 Enter the enable command to t...

Page 13: ...or Firepower Device Manager or the Firepower Device Manager online help Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and or its affiliates in the U S and other countries To view a list of Cisco trademarks go to this URL www cisco com go trademarks Third party trademarks mentioned are the property of their respective owners The use of the word partner does not imply a p...

Page 14: ...Cisco Firepower Threat Defense for the ASA 5506 X Series Using Firepower Device Manager Quick Start Guide 8 Where to Go Next 14 ...

Reviews:

No comments

Related manuals for ASA 5506-X

NetDefend DFL-1600

Brand: D-Link Pages: 9

Brand: Watchguard Pages: 12

Brand: IBM Pages: 40

Vigor2850 Series

Brand: Draytek Pages: 387

TECHDOCS ION 9000

Brand: PaloAlto Networks Pages: 32

Brand: Watchguard Pages: 24

Brand: Hillstone Pages: 6

Brand: Hillstone Pages: 27

Brand: Hillstone Pages: 57

Brand: Hillstone Pages: 64

SG-6000 E Series

Brand: Hillstone Pages: 68

SG-6000 X Series

Brand: Hillstone Pages: 173

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands