Cisco Cisco Firepower Management Center 4000
1-17
FireSIGHT System User Guide
Chapter 1 Introduction
IP Address Conventions
Users with custom roles may have permission sets that differ from those of the predefined roles. When
a predefined role is used to indicate access requirements for a procedure, a custom role with similar
permissions also has access. For more information on custom user roles, see
a predefined role is used to indicate access requirements for a procedure, a custom role with similar
permissions also has access. For more information on custom user roles, see
IP Address Conventions
You can use IPv4 Classless Inter-Domain Routing (CIDR) notation and the similar IPv6 prefix length
notation to define address blocks in many places in the FireSIGHT System.
notation to define address blocks in many places in the FireSIGHT System.
CIDR notation uses a network IP address combined with a bit mask to define the IP addresses in the
specified block of addresses. For example, the following table lists the private IPv4 address spaces in
CIDR notation.
specified block of addresses. For example, the following table lists the private IPv4 address spaces in
CIDR notation.
Similarly, IPv6 uses a network IP address combined with a prefix length to define the IP addresses in a
specified block. For example, 2001:db8::/32 specifies the IPv6 addresses in the 2001:db8:: network with
a prefix length of 32 bits, that is, 2001:db8:: through 2001:db8:ffff:ffff:ffff:ffff:ffff:ffff.
specified block. For example, 2001:db8::/32 specifies the IPv6 addresses in the 2001:db8:: network with
a prefix length of 32 bits, that is, 2001:db8:: through 2001:db8:ffff:ffff:ffff:ffff:ffff:ffff.
When you use CIDR or prefix length notation to specify a block of IP addresses, the FireSIGHT System
uses only the portion of the network IP address specified by the mask or prefix length. For example, if
you type 10.1.2.3/8, the FireSIGHT System uses 10.0.0.0/8.
uses only the portion of the network IP address specified by the mask or prefix length. For example, if
you type 10.1.2.3/8, the FireSIGHT System uses 10.0.0.0/8.
In other words, although Cisco recommends the standard method of using a network IP address on the
bit boundary when using CIDR or prefix length notation, the FireSIGHT System does not require it.
bit boundary when using CIDR or prefix length notation, the FireSIGHT System does not require it.
Any Security Analyst
User can have either the Security Analyst or Security Analyst (Read
Only) role
Only) role
Database
User must have the External Database role
Discovery Admin
User must have the Discovery Admin role
Intrusion Admin
User must have the Intrusion Admin role
Maint
User must have the Maintenance User role
Network Admin
User must have the Network Admin role
Security Analyst
User must have the Security Analyst role
Security Approver
User must have the Security Approver role
Table 1-4
Access Conventions (continued)
Access Term
Indicates
Table 1-5
CIDR Notation Syntax Examples
CIDR Block
IP Addresses in
CIDR Block
Subnet Mask
Number of
IP Addresses
10.0.0.0/8
10.0.0.0 -
10.255.255.255
255.0.0.0
16,777,216
172.16.0.0/12
172.16.0.0 -
172.31.255.255
255.240.0.0
1,048,576
192.168.0.0/16
192.168.0.0 -
192.168.255.255
255.255.0.0
65,536