Cisco Cisco FirePOWER Appliance 7020
51-10
FireSIGHT System User Guide
Chapter 51 Configuring Appliance Settings
Editing Management Interface Configurations
Step 1
Select
System > Local > Configuration
to display the Information page, then click
Network
.
The Network page appears.
Step 2
Specify your management network protocol, as well as basic network settings for each protocol. Under
IPv4 and IPv6, select one of:
IPv4 and IPv6, select one of:
•
Disabled—
disables the protocol. Do not disable both IPv4 and IPv6.
•
DHCP
(IPv4 and IPv6)
—
retrieves network settings from a DHCP server.
•
Router assigned
(IPv6 only)
—
retrieves network settings from a local IPv6 router.
•
Manual—
allows you to manually specify network settings. For IPv4, you must set the management
IP address and netmask in dotted decimal form (for example: a netmask of 255.255.0.0). For IPv6,
you must set the address in colon-separated hexadecimal form and the number of bits in the prefix
(for example: a prefix length of 112).
you must set the address in colon-separated hexadecimal form and the number of bits in the prefix
(for example: a prefix length of 112).
Step 3
Under
Shared Settings
, specify network settings that do not depend on the management network protocol.
You can specify up to three DNS servers, as well as the host name and domain for the appliance. Note
that if you selected
that if you selected
DHCP
in the previous step, you cannot manually specify these shared settings. You
can also change the management interface MTU and the management port. For more information, see
Step 4
Optionally, under
Configure Proxies to Access the Internet
, configure the appliance to access the Internet
using a proxy. Select
Manual proxy configuration
, then:
•
Enter the IP address or fully qualified domain name of your proxy server in the
HTTP Proxy
field.
Enter the port in the
Port
field.
•
Optionally, supply authentication credentials by selecting
Use Proxy Authentication
then providing a
User Name
and
Password
.
Step 5
Optionally, on Series 3 devices, under
LCD Panel
, select the
Allow reconfiguration of network settings
check
box to enable changing network settings using the device’s LCD panel.
Caution
Allowing reconfiguration using the LCD panel can present a security risk. You need only physical
access, not authentication, to configure network settings using the LCD panel. The web interface warns
you that enabling this option is a potential security issue.
access, not authentication, to configure network settings using the LCD panel. The web interface warns
you that enabling this option is a potential security issue.
Step 6
When you are finished configuring the appliance’s network settings, click
Save
.
The network settings are changed. If you changed the appliance’s hostname, the new name is not
reflected in the syslog until after you reboot the appliance.
reflected in the syslog until after you reboot the appliance.
Editing Management Interface Configurations
License:
Any
You can use the Management Interface page to modify the default settings for each management
interface on your Defense Center. Any changes you make to the Auto Negotiate value are ignored for
Gigabit interfaces. Note that you can also configure management interfaces for a managed device from
the managing device; see
interface on your Defense Center. Any changes you make to the Auto Negotiate value are ignored for
Gigabit interfaces. Note that you can also configure management interfaces for a managed device from
the managing device; see
.