Figure 22: Edit Interface
Step 5 If you configured new interfaces, choose Management > Objects.
Edit or create a new Security Zone as appropriate. Each interface must belong to a zone, because you configure
policies based on security zones, not interfaces. You cannot put the interfaces in zones when configuring
them, so you must always edit the zone objects after creating new interfaces or changing the purpose of existing
interfaces.
The following example shows how to create a new dmz-zone for the dmz interface.
Figure 23: Security Zone Object
Step 6 If you want internal clients to use DHCP to obtain an IP address from the device, choose Management >
Settings > DHCP Server, then review the DHCP Servers section.
There is already a DHCP server configured for the inside interface, but you can edit the address pool or even
delete it. If you configured other inside interfaces, it is very typical to set up a DHCP server on those interfaces.
Click + to configure the server and address pool for each inside interface.
Cisco Firepower 1010 Getting Started Guide
54
Firepower Threat Defense Deployment with CDO
Configure the Device in CDO
To Next Page
Loading...
Need help?
General