Cisco Cisco Firepower Management Center 4000 Installationsanleitung
4-3
Cisco NGIPS for Blue Coat X-Series Installation and Configuration Guide
Chapter 4 Setting Up the Defense Center
Configuring Security Zones and Inline Sets
The device is added to the Defense Center. Note that it may take up to two minutes for the Defense
Center to verify the device’s heartbeat and establish communication. You can track the progress of the
registration in the task status page (
Center to verify the device’s heartbeat and establish communication. You can track the progress of the
registration in the task status page (
System > Task Status
). You must add each VAP group member (VAPs)
as a device separately. Check the Task Status page to make sure each device is completely installed on
the Defense Center before adding the next device.
the Defense Center before adding the next device.
Cisco NGIPS for Blue Coat X-Series is added to the Defense Center. It can take up to two minutes for
the Defense Center to establish communication. You can view the status of Cisco NGIPS for Blue Coat
X-Series on the Device Management page (
the Defense Center to establish communication. You can view the status of Cisco NGIPS for Blue Coat
X-Series on the Device Management page (
Devices > Device Management
).
Step 11
Configuring Security Zones and Inline Sets
Use the web interface of the Defense Center to configure security zones on passive and inline interfaces,
and the inline set for inline interfaces.
and the inline set for inline interfaces.
You create passive and inline sensing interfaces when you install Cisco NGIPS for Blue Coat X-Series,
or from the X-Series command line interface (CLI). These interfaces are prepopulated when you add
Cisco NGIPS for Blue Coat X-Series to the Defense Center.
or from the X-Series command line interface (CLI). These interfaces are prepopulated when you add
Cisco NGIPS for Blue Coat X-Series to the Defense Center.
You cannot reconfigure any interfaces using the Defense Center. To reconfigure passive or inline
interfaces, you must delete and recreate the interface using the X-Series CLI. For more information, see
interfaces, you must delete and recreate the interface using the X-Series CLI. For more information, see
. To reconfigure the management interface, see
. For more information on interfaces, see the FireSIGHT System User
Guide.
To configure the Security Zone or Inline Set on an interface:
Step 1
Log into the Defense Center’s web interface using a user account with Administrator access, and select
Devices > Device Management
.
The Device Management page appears.
Step 2
Next to the Cisco NGIPS for Blue Coat X-Series installation that contains the interfaces you want to
configure, click the edit icon (
configure, click the edit icon (
).
The Interfaces page appears. The inline and passive interfaces you created when you installed Cisco
NGIPS for Blue Coat X-Series are prepopulated in the list of interfaces.
NGIPS for Blue Coat X-Series are prepopulated in the list of interfaces.
Note that for Cisco NGIPS for Blue Coat X-Series, Link always appears up (
).
Step 3
On the
Interfaces tab, next to the sensing interface (Inline or Passive) that you want to configure, click
the edit icon (
).
The inline or passive pop-up window appears.
Note
You cannot edit the management interface using the Defense Center. To edit the management
interface, see
interface, see
.
Step 4
From the
Security Zone
drop-down list, select a existing security zone or select
New
to add a new security
zone. For more information on security zones, see the FireSIGHT System User Guide.
Step 5
For an inline interface only, from the
Inline Set
drop-down list, select an existing inline set or select
New
to add a new inline set.