Cisco Firepower Management Center 3500 Podręcznik dla początkujących - Strona 10
Przeglądaj online lub pobierz pdf Podręcznik dla początkujących dla Serwer Cisco Firepower Management Center 3500. Cisco Firepower Management Center 3500 42 stron. Firepower management center
The FMC automatically schedules a weekly task to perform a locally-stored configuration-only backup at 2
AM UTC on Monday mornings; depending on the date and your specific location this can occur anywhere from
Saturday afternoon to Sunday afternoon local time. You can observe the status of this task using the web
interface Message Center. If the task scheduling fails, we recommend you schedule a recurring task to
perform backups as described in the Firepower Management Center Configuration Guide for your version.
Vulnerability Database Update
In Versions 6.6+, the FMC downloads and installs the latest vulnerability database (VDB) update from the Cisco
support site. This is a one-time operation. You can observe the status of this update using the web interface
Message Center. To keep your system up to date, if your FMC has internet access, we recommend you
schedule tasks to perform automatic recurring VDB update downloads and installations as described in the
Firepower Management Center Configuration Guide for your version.
Daily Intrusion Rule Update
In Versions 6.6+, the FMC configures a daily automatic intrusion rule update from the Cisco support site. The
FMC deploys automatic intrusion rule updates to affected managed devices when it next deploys affected
policies. You can observe the status of this update using the web interface Message Center. You can see the
configuration for this task in the web interface under
fails and your FMC has internet access, we recommend you configure regular intrusion rule updates as
described in the Firepower Management Center Configuration Guide for your version.
Installation and Initial Setup for Versions 5.4 - 6.4.x
Firepower Versions 5.4 - 6.4.x are supported on all FMC models addressed in this document: 750, 1500, 2000,
3500 and 4000.
When you install an appliance, make sure that you can access the appliance's console for initial setup. You can
access the console for initial setup using a keyboard and monitor with KVM, or using an Ethernet connection to
the management interface.
The first time you log into the FMC web interface, the initial administration page provides you with the ability to
configure the new appliance to communicate on your trusted management network. You must also perform initial
administrative-level tasks such as changing the administrator password, accepting the end user license
agreement (EULA), setting the time, and scheduling updates. The options you choose during setup and
registration determine the default interfaces, inline sets, zones, and policies that the system creates and applies
to managed devices.
You can perform this initial setup process accessing the FMC either using a laptop directly connected to the
appliance, or using an Ethernet connection through your trusted local management network. The following
diagram illustrates the choices you can make when setting up FMC's running Firepower Versions 5.4 - 6.4.x:
Note:
If you are deploying multiple appliances, set up your devices first, then their managing Firepower
Management Center. The initial setup process for a device allows you to preregister it to a Management Center;
the setup process for a Management Center allows you to add and license preregistered managed devices.
Cisco Firepower Management Center Getting Started Guide
Installation and Initial Setup for Versions 5.4 - 6.4.x
System > Updates > Rule Updates.
If configuring the update
10