[cisco]Cisco Firepower lab setup

For this lab I am using Firepower Threat Defence version 6.3 (FTD) and Firepower Management Center 6.3 (FMC). The FTD is a next generation firewall that does IPS/IDS, URL filtering and traditional firewall, the FTD itself can be managed individually with its own FTD manager, however it can also be managed with FMC. The IPS/IDS engine uses SNORT engine with the same syntax as snort.

My firewall experience with Cisco stopped at ASA, this is my first time setting up a firepower lab, hence this post is a documentation for future reference if I have forgotten how to set the lab up again.

Default credential
This is for both FMC and FTD, you can choose to change the password, however not for my lab, as it will be destroyed once finished.
Username: admin
Password: Admin123

Topology
diagram

Setting up
d2.PNGFor the first time setup, the OVF will need to take a few minutes to fully install the FMC and FTD.

d3The FTD finishes installation earlier than FMC, and first we need to press enter to read EULA.

d4Then agree on the EULA.

d5This one sets up the password and the ipv4 address.

d6FTD address is configured to 192.168.1.45 manually.

d7This finishes the network setup of FTD.

d8To let FMC manages FTD, first we need to add manager from the FTD and assign a register key of your choice. The command configure manager add 192.168.1.34 the_key_your_like, where 192.168.1.34 is the ip address of the FMC, you need to use the same registration key in FMC when adding this FTD as a managed device.

Screenshot 2019-09-03 at 7.18.21 PMLogon to the FMC and change your password. I leave all the rest as defaults.

Screenshot 2019-09-03 at 7.19.49 PMI changed the time zone for this section.

Screenshot 2019-09-03 at 7.20.28 PMLeave all as default then agree on EULA and apply.

Screenshot 2019-09-03 at 7.30.13 PMSelect Smart License, this is to activate the 90 days evaluation to try out the product.

Screenshot 2019-09-03 at 7.31.38 PMClick on the evaluation mode button.

Screenshot 2019-09-03 at 7.32.18 PMYou will see this once evaluation mode is successful.

Screenshot 2019-09-03 at 7.33.07 PMThen select the Device Management to add FTD.

Screenshot 2019-09-03 at 7.33.51 PMAdd the device.

Screenshot 2019-09-03 at 7.35.06 PMScreenshot 2019-09-03 at 7.35.14 PMScreenshot 2019-09-03 at 7.35.33 PMScreenshot 2019-09-03 at 7.35.46 PMSo this is where the registration key which was configured in FTD is important, put in the same registration key as configured in FTD then create an access policy. Once finished click Register button.

This is a sign of successful addition of device.
Screenshot 2019-09-03 at 7.41.25 PMYou will see more features activated.

So once this is setup the lab is ready for use.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s