Cisco Firepower 2100 User Manual

Cisco Firepower 2100

232 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Page #213 background image

Loading...

Page #213 background image

For IPv4:

enter ip-block ip_address prefix [http | snmp | ssh]

For IPv6:

enter ipv6-block ipv6_address prefix [https | snmp | ssh]

For IPv4, enter 0.0.0.0 and a prefix of 0 to allow all networks. For IPv6, enter :: and a prefix of 0 to allow

all networks. You can also add access lists in the chassis manager at Platform Settings > Access List.

Example:

firepower-2110 /system/services # enter ip-block 192.168.4.0 24 https

firepower-2110 /system/services/ip-block* # exit

firepower-2110 /system/services* # enter ip-block 192.168.4.0 24 ssh

firepower-2110 /system/services/ip-block* # exit

firepower-2110 /system/services* # enter ip-block 192.168.4.0 24 snmp

firepower-2110 /system/services/ip-block* # exit

firepower-2110 /system/services* # enter ipv6-block 2001:DB8:: 64 https

firepower-2110 /system/services/ip-block* # exit

firepower-2110 /system/services* # enter ipv6-block 2001:DB8:: 64 ssh

firepower-2110 /system/services/ip-block* # exit

firepower-2110 /system/services* # enter ipv6-block 2001:DB8:: 64 snmp

firepower-2110 /system/services/ip-block* # exit

firepower-2110 /system/services* #

a) Delete the old access lists.

For IPv4:

delete ip-block ip_address prefix [http | snmp | ssh]

For IPv6:

delete ipv6-block ipv6_address prefix [https | snmp | ssh]

Example:

firepower-2110 /system/services # delete ip-block 192.168.45.0 24 https

firepower-2110 /system/services* # delete ip-block 192.168.45.0 24 ssh

firepower-2110 /system/services* #

Step 6 (Optional) Reenable the IPv4 DHCP server.

scope system

scope services

enable dhcp-server start_ip_address end_ip_address

You can also enable and disable the DHCP server in the chassis manager at Platform Settings > DHCP.

Example:

firepower-2110# scope system

firepower-2110 /system # scope services

firepower-2110 /system/services # enable dhcp-server 192.168.4.10 192.168.4.20

Step 7 Save the configuration.

Cisco Firepower 2100 Getting Started Guide

211

ASA Deployment with ASDM

(Optional) Change the FXOS and ASA Management IP Addresses or Gateway

Table of Contents

Questions and Answers:

Need help?

Do you have a question about the Cisco Firepower 2100 and is the answer not in the manual?

Cisco Firepower 2100 Specifications

General

Brand	Cisco
Model	Firepower 2100
Category	Gateway
Language	English

Related product manuals

Preview: Cisco Firepower 2100 Series

Cisco Firepower 2100 Series

Preview: Cisco VG450

Preview: Cisco VG310

Preview: Cisco DPC3825

Preview: Cisco DPQ3925

Preview: Cisco DPC3941T

Preview: Cisco VG400 series

Cisco VG400 series

Preview: Cisco DPC2320 DOCSIS

Cisco DPC2320 DOCSIS

Preview: Cisco Expressway Series

Cisco Expressway Series

Preview: Cisco EPC2425 EuroDOCSIS 2.0

Cisco EPC2425 EuroDOCSIS 2.0

Preview: VG224 - Analog Phone Gateway

VG224 - Analog Phone Gateway