Table of Contents
Advertisement
Threat Defense Deployment with CDO
• You can only enable manager access on a physical, data interface. You cannot use a subinterface or
• This interface cannot be management-only.
• Routed firewall mode only, using a routed interface.
• PPPoE is not supported. If your ISP requires PPPoE, you will have to put a router with PPPoE support
• The interface must be in the global VRF only.
• SSH is not enabled by default for data interfaces, so you will have to enable SSH later using the
End-to-End Procedure: Low-Touch Provisioning
See the following tasks to deploy the threat defense with CDO using low-touch provisioning.
EtherChannel. You can also enable manager access on a single secondary interface in the management
center for redundancy.
between the threat defense and the WAN modem.
management center. Because the Management interface gateway will be changed to be the data interfaces,
you also cannot SSH to the Management interface from a remote network unless you add a static route
for the Management interface using the configure network static-routes command.
End-to-End Procedure: Low-Touch Provisioning
Cisco Firepower 1010 Getting Started Guide
119
Advertisement
Chapters
Table of Contents
