However, if the sensor and the Firepower Management Center are separated by a
NAT device, you must enter a unique NAT ID, along with the unique registration
key.
'configure manager add DONTRESOLVE [registration key ] [ NAT ID ]'
Later, using the web interface on the Firepower Management Center, you must
use the same registration key and, if necessary, the same NAT ID when you add
this sensor to the Firepower Management Center.
>
Step 5 Identify the FMC that will manage this FTD.
configure manager add {hostname | IPv4_address | IPv6_address | DONTRESOLVE} reg_key [nat_id]
• {hostname | IPv4_address | IPv6_address | DONTRESOLVE}—Specifies either the FQDN or IP address
of the FMC. If the FMC is not directly addressable, use DONTRESOLVE and also specify the nat_id.
At least one of the devices, either the FMC or the FTD, must have a reachable IP address to establish
the two-way, SSL-encrypted communication channel between the two devices. If you specify
DONTRESOLVE in this command, then the FTD must have a reachable IP address or hostname.
• reg_key—Specifies a one-time registration key of your choice that you will also specify on the FMC
when you register the FTD. The registration key must not exceed 37 characters. Valid characters include
alphanumerical characters (A–Z, a–z, 0–9) and the hyphen (-).
• nat_id—Specifies a unique, one-time string of your choice that you will also specify on the FMC when
you register the FTD when one side does not specify a reachable IP address or hostname. It is required
if you set the FMC to DONTRESOLVE. The NAT ID must not exceed 37 characters. Valid characters
include alphanumerical characters (A–Z, a–z, 0–9) and the hyphen (-). This ID cannot be used for any
other devices registering to the FMC.
Example:
> configure manager add MC.example.com 123456
Manager successfully configured.
If the FMC is behind a NAT device, enter a unique NAT ID along with the registration key, and specify
DONTRESOLVE instead of the hostname, for example:
Example:
> configure manager add DONTRESOLVE regk3y78 natid90
Manager successfully configured.
If the FTD is behind a NAT device, enter a unique NAT ID along with the FMC IP address or hostname, for
example:
Example:
> configure manager add 10.70.45.5 regk3y78 natid56
Manager successfully configured.
What to do next
Register your device to a FMC.
Cisco Firepower 1010 Getting Started Guide
98
Firepower Threat Defense Deployment with FMC
Complete the FTD Initial Configuration
To Next Page
Loading...
Need help?
General