From AlphaBook
Jump to: navigation, search

Firepower Initial Configuration

  • Configure PC (no internet) as below:
    • IP address:
    • Netmask:
    • Gateway:
  • Connect to management port
  • Access appliance's default IP address:
    • Username: admin
    • Password: Admin123
  • Setup Outside Interface / Management Interface / Time Zone / NTP Time Server
  • Firepower 2100 default port
    • Outside Interface: Ethernet1/1
    • Inside Interface: Ethernet1/2


  • After initial configuration, there are inside_zone and outside_zone
  • Each interface must belong to a zone, because you configure policies based on security zones, not interfaces
  • Create interface, then create zone, and add the interface

Configure AD Identity Realms

  • Objects -> Identity Realm
  • Identity—The realm provides user identity and group membership information, which you can then use in access control rules
  • Remote access VPN—The realm provides authentication services, which determine whether a connection is allowed

Configure VLAN Subinterfaces and 802.1Q Trunking