Rockwell Automation Publication 1783-UM010C-EN-P - June 2019 37
Chapter 3
Configure the Security Appliance
This scenario describes the basic out-of-the-box configuration, which is based
on the following versions of Cisco software.
• ASA: 9.12.0
• ASDM: 7.12.1
• ASA FirePOWER: 6.4.0-97
IMPORTANT Every step that is described in this chapter must be followed for the security
appliance to work as expected. If the steps are not followed as described, the
appliance can appear to be working properly when it is not.
Deviation from the prescribed steps can cause the appliance not to behave as
expected. Make sure to test your system configuration before using it. Do not
assume it works as expected.
Rockwell Automation does not assume any responsibility for incorrect
operation of the appliance due to misconfigured settings or applications. All
IP addresses are fictional and for reference only. They are not related to your
network configuration.
Topic Page
Prerequisites 38
Ethernet Devices 38
Device Setup 39
Startup Wizard 41
Configure FirePOWER Administrative Settings 49
Configure the HTTPS Certificate Information 51
Configure a Test Policy to Block CIP Administrative Traffic 53
Add a Rule 60
Update Real Time Eventing View 64
Change the Device from Monitor Mode to a Full Blocking
Configuration (Inline Mode Only)
65
Configure SPAN Port Monitoring Settings 67
Change the IP Address of the Communication Module 68
Configure Precision Time Protocol (PTP) 71
To Next Page
Loading...