CISCO Yayamba Ndi Kukhazikitsa Koyamba Kwa Mphamvu Yoyaka Moto

Zofotokozera

• Dzina lazogulitsa: Cisco Firepower
• Mtundu wa malonda: Network Security ndi Traffic Management
• Zosankha Zotumizira: Mapulatifomu opangidwa ndi cholinga kapena njira yothetsera mapulogalamu
• Chiyankhulo Choyang'anira: Mawonekedwe Ogwiritsa Ntchito

Malangizo Ogwiritsira Ntchito Zogulitsa

 Kuyika ndi Kuchita Kukhazikitsa Koyamba pa Zida Zakuthupi:
Tsatirani izi kuti mukhazikitse Firepower Management Center pazida zamagetsi:

1. Onani pa Start Guide kuti mudziwe zambiri za kukhazikitsa.

Kugwiritsa Ntchito Virtual Appliances
Ngati mukugwiritsa ntchito zida zamagetsi, tsatirani izi:

1. Dziwani nsanja zothandizidwa za Management Center ndi zida.
2. Ikani ma Virtual Firepower Management Centers pamtambo wa Public ndi Private.
3. Perekani zida zenizeni za chipangizo chanu pamtambo wothandizidwa.

Kulowa Kwa Nthawi Yoyamba:
M'masitepe olowera a Firepower Management Center:

1. Lowani ndi zidziwitso zosasinthika (admin/Admin123).
2. Sinthani mawu achinsinsi ndikukhazikitsa zone ya nthawi.
3. Onjezani ziphaso ndi kulembetsa zida zoyendetsedwa.

Kukhazikitsa Mfundo Zoyambira ndi Zosintha:
Ku view data mu dashboard, konzani mfundo zofunika:

1. Konzani mfundo zofunika zachitetezo cha netiweki.
2. Zosintha zapamwamba, onani buku lathunthu la ogwiritsa ntchito.

FAQ:
Q: Kodi ndimapeza bwanji Firepower Management Center web mawonekedwe?
A: Mutha kulumikiza web mawonekedwe polowetsa adilesi ya IP ya Management Center mu web msakatuli.

Chiyambi ndi Firepower

Cisco Firepower ndi gulu lophatikizika lachitetezo chamaneti ndi zinthu zowongolera magalimoto, zomwe zimayikidwa pamapulatifomu opangidwa ndi cholinga kapena ngati njira yothetsera mapulogalamu. Dongosololi lapangidwa kuti likuthandizireni kuthana ndi kuchuluka kwa magalimoto pamanetiweki m'njira yomwe ikugwirizana ndi mfundo zachitetezo cha bungwe lanu - malangizo anu oteteza maukonde anu.
Munthawi yotumizidwa, zida zingapo zoyang'anira kuchuluka kwa magalimoto pamsewu zomwe zimayikidwa pagawo la netiweki zimawunika kuchuluka kwa anthu kuti ziwunikidwe ndikuwonetsa kwa manejala:

• Firepower Management Center
• Woyang'anira Chipangizo cha Firepower
  Adaptive Security Device Manager (ASDM)

Oyang'anira amapereka centralized management console yokhala ndi mawonekedwe ogwiritsa ntchito omwe mungagwiritse ntchito poyang'anira, kasamalidwe, kusanthula, ndi kupereka malipoti.
Bukuli likuyang'ana kwambiri pa Firepower Management Center yoyang'anira zida zamagetsi. Kuti mudziwe zambiri za Firepower Device Manager kapena ASA yokhala ndi FirePOWER Services yoyendetsedwa kudzera pa ASDM, onani maupangiri a njira zowongolera zimenezo.

• Cisco Firepower Threat Defense Configuration Guide for Firepower Device Manager
• ASA yokhala ndi FirePOWER Services Local Management Configuration Guide
• Kuyamba Mwamsanga: Kukhazikitsa Kwambiri, patsamba 2
• Zida Zamagetsi, patsamba 5
• Mawonekedwe a Firepower, patsamba 6
• Kusintha Ma Domain pa Firepower Management Center, patsamba 10
• The Context Menu, patsamba 11
• Kugawana Zambiri ndi Cisco, patsamba 13
• Thandizo Lapaintaneti la Firepower, Momwe Mungachitire, ndi Zolemba, patsamba 13
• Misonkhano Yamadilesi Ya IP ya Firepower System, patsamba 16
• Zowonjezera, patsamba 16

Kuyamba Mwamsanga: Kukhazikitsa Kwambiri

Mawonekedwe a Firepower ndi amphamvu komanso osinthika mokwanira kuti athandizire masinthidwe oyambira komanso apamwamba. Gwiritsani ntchito magawo otsatirawa kuti mukhazikitse mwachangu Firepower Management Center ndi zida zake zoyendetsedwa kuti muyambe kuyang'anira ndikuwunika kuchuluka kwa magalimoto.

Kukhazikitsa ndi Kuchita Kukhazikitsa Koyamba pa Zida Zakuthupi

Ndondomeko

Ikani ndi kukhazikitsa koyambirira pazida zonse zakuthupi pogwiritsa ntchito zolemba za chipangizo chanu:

• Firepower Management Center
  Cisco Firepower Management Center Poyambira Chitsogozo cha mtundu wanu wa Hardware, wopezeka kuchokera http://www.cisco.com/go/firepower-mc-install
• Zida zoyendetsedwa ndi Firepower Threat Defense

Zofunika Ignore Firepower Device Manager pamasamba awa.

• Cisco Firepower 2100 Series Poyambira Guide
• Cisco Firepower 4100 Chitsogozo Choyambira
• Cisco Firepower 9300 Chitsogozo Choyambira
• Cisco Firepower Threat Defense kwa ASA 5508-X ndi ASA 5516-X Kugwiritsa Ntchito Firepower Management Center Quick Start Guide
• Cisco Firepower Threat Defense for ASA 5512-X, ASA 5515-X, ASA 5525-X, ASA 5545-X, ndi ASA 5555-X Pogwiritsa Ntchito Firepower Management Center Quick Start Guide
• Cisco Firepower Threat Defense kwa ISA 3000 Pogwiritsa Ntchito Firepower Management Center Quick Start Guide

Zida zoyendetsedwa ndi Classic

• Cisco ASA FirePOWER Module Quick Start Guide
• Cisco Firepower 8000 Series Poyambira Guide
• Cisco Firepower 7000 Series Poyambira Guide

Kugwiritsa Ntchito Virtual Appliances
Tsatirani izi ngati kutumiza kwanu kuli ndi zida zenizeni. Gwiritsani ntchito mapu amsewu kuti mupeze
zolembedwa pansipa: http://www.cisco.com/c/en/us/td/docs/security/firepower/roadmap/ firepower-roadmap.html.

Ndondomeko

1. Gawo 1 Dziwani nsanja zomwe mungagwiritse ntchito pa Management Center ndi zida (izi sizingakhale zofanana). Onani Cisco Firepower Compatibility Guide.
2. Khwerero 2 Ikani Maofesi Oyang'anira Mphamvu Yoyatsira Moto pamalo omwe amathandizidwa ndi Public ndi Private mtambo. Onani, Cisco Secure Firewall Management Center Virtual Poyambira Guide.
3. Khwerero 3 Ikani zida zenizeni za chipangizo chanu pamtambo wa Public ndi Wachinsinsi. Kuti mudziwe zambiri, onani zolembedwa zotsatirazi.
   • NGIPSv ikuyenda pa VMware: Cisco Firepower NGIPSv Quick Start Guide ya VMware
   • Cisco Firepower Threat Defense kwa ASA 5508-X ndi ASA 5516-X Pogwiritsa Ntchito Firepower Management

Center Quick Start Guide

• Firepower Threat Defense Pafupifupi yomwe ikuyenda pamtambo wapagulu komanso wachinsinsi, onani Cisco Secure Firewall Threat Defense Guide Yoyambira Yoyambira, Version 7.3.

Kulowetsamo Kwa Nthawi Yoyamba

Musanayambe

• Konzekerani zida zanu monga momwe zafotokozedwera mu Kukhazikitsa ndi Kuchita Kukhazikitsa Koyamba pa Zida Zakuthupi, patsamba 2 kapena Kutumiza Zida Zamagetsi, patsamba 3.

Ndondomeko

1. Gawo 1 Lowani ku Firepower Management Center web kulumikizana ndi admin monga dzina lolowera ndi Admin123 ngati mawu achinsinsi. Sinthani mawu achinsinsi a akauntiyi monga momwe tafotokozera mu Quick Start Guide ya chipangizo chanu.
2. Gawo 2 Khazikitsani zone ya nthawi ya akauntiyi monga momwe yafotokozedwera mu Kukhazikitsa Nthawi Yanu Yofikira Nthawi.
3. Khwerero 3 Onjezani ziphaso monga zafotokozedwera mu Licensing the Firepower System.
4. Khwerero 4 Lembetsani zida zoyendetsedwa monga zafotokozedwera mu Onjezani Chipangizo ku FMC.
5. Khwerero 5 Konzani zida zomwe mumayang'anira monga zafotokozedwera mu:
   • Chiyambi cha IPS Deployment and Configuration, kukonza zolumikizirana kapena zolumikizirana pazida za 7000 Series kapena 8000 Series.
   • Chiyankhulo Pamwambaview kwa Firepower Threat Defense, kukonza zowonekera kapena zowongolera pazida za Firepower Threat Defense

• Chiyankhulo Pamwambaview kwa Firepower Threat Defense, kukonza zolumikizirana ndi Firepower Threat Defense

Zoyenera kuchita kenako

• Yambani kuyang'anira ndi kusanthula kuchuluka kwa magalimoto pokonza mfundo zofunika monga momwe zafotokozedwera mu Kukhazikitsa Ndondomeko Zoyambira ndi Zosintha, patsamba 4.

Kukhazikitsa Ndondomeko Zoyambira ndi Zosintha
Muyenera kukonza ndikugwiritsa ntchito mfundo zofunika kuti muwone zambiri mu dashboard, Context Explorer, ndi matebulo a zochitika.
Uku sikukambitsirana kwathunthu za mfundo kapena luso. Kuti mupeze chitsogozo pazinthu zina komanso masinthidwe apamwamba kwambiri, onani bukhuli.

Zindikirani
Musanayambe

• Lowani mu web mawonekedwe, khazikitsani nthawi yanu, onjezani malaisensi, lembani zida, ndi kukonza zida monga momwe zafotokozedwera mu Logging In Koyamba, patsamba 3.

Ndondomeko

1. Khwerero 1 Konzani ndondomeko yoyendetsera mwayi wofikira monga momwe yafotokozedwera mu Kupanga Mfundo Yoyendetsera Kufikira Kwambiri.
   • Nthawi zambiri, Cisco imalimbikitsa kukhazikitsa Balanced Security and Connectivity intrusion policy ngati zochita zanu zosasintha. Kuti mudziwe zambiri, onani Access Control Policy Default Action ndi System-Provided Network Analysis and Intrusion Policies.
   • Nthawi zambiri, Cisco imalimbikitsa kulowetsa mitengo yolumikizira kuti ikwaniritse zofunikira zachitetezo ndi kutsata za bungwe lanu. Ganizirani za kuchuluka kwa magalimoto pa netiweki yanu posankha maulaliki oti mulowe kuti musasokoneze zowonetsa zanu kapena kukulitsa makina anu. Kuti mumve zambiri, onani About Connection Logging.
2. Gawo 2 Tsatirani ndondomeko yazaumoyo yomwe yaperekedwa ndi dongosolo monga momwe yafotokozedwera mu Kugwiritsa Ntchito Ndondomeko Zaumoyo.
3. Gawo 3 Sinthani makonda anu ochepa:
   • Ngati mukufuna kulola malumikizano olowera kuti mugwiritse ntchito (mwachitsanzoample, SNMP kapena syslog), sinthani madoko omwe ali pamndandanda wofikira monga momwe tafotokozera mu Konzani Mndandanda Wofikira.
   • Mvetsetsani ndikulingalira zosintha malire anu a database monga momwe akufotokozedwera mu Configuring Database Event Limits.
   •  Ngati mukufuna kusintha chinenero chowonetsera, sinthani chinenero monga momwe tafotokozera mu Set the Languagefor the Web Chiyankhulo.
   • Ngati bungwe lanu likuletsa mwayi wopezeka pa netiweki pogwiritsa ntchito seva yolongera ndipo simunakhazikitse zochunira zolongera panthawi yosinthira koyamba, sinthani zochunira zolongera zanu monga zafotokozedwera mu Modify FMC Management Interfaces.
4. Khwerero 4 Sinthani mwamakonda anu mfundo zopezera maukonde monga momwe zafotokozedwera mu Kukonza Network Discovery Policy. Mwachikhazikitso, mfundo zopezera netiweki zimasanthula kuchuluka kwa magalimoto pa netiweki yanu. Nthawi zambiri, Cisco ikuwonetsa kuletsa kupezeka kwa ma adilesi a RFC 1918.
5. Khwerero 5 Ganizirani zosintha makonda awa omwe amapezeka:
   • Ngati simukufuna kuwonetsa ma pop-ups apakati pa mauthenga, zimitsani zidziwitso monga zafotokozedwera mu Configuring Notification Behavior.
   • Ngati mukufuna kusintha makonda osasinthika amitundu yosiyanasiyana, mvetsetsani kugwiritsa ntchito kwawo monga momwe akufotokozedwera mu Variable Sets.
   • Ngati mukufuna kusintha Database ya Geolocation, sinthani pamanja kapena mwadongosolo monga tafotokozera mu Update Database ya Geolocation.
   • Ngati mukufuna kupanga maakaunti owonjezera ovomerezeka kwanuko kuti mupeze FMC, onani Onjezani Wogwiritsa Ntchito Pakatikati pa Web Chiyankhulo.
   • Ngati mukufuna kugwiritsa ntchito LDAP kapena RADIUS kutsimikizira kwakunja kuti mulole mwayi wofikira ku FMC, onani Konzani External Kutsimikizika.
6. Khwerero 6 Ikani kusintha kosintha; onani Deploy Configuration Changes.

Zoyenera kuchita kenako

• Review ndikuganizira zokonza zina zomwe zafotokozedwa mu Firepower Features, patsamba 6 ndi bukhuli lonse.

Zida Zowombera Moto
Pakutumizidwa kwanthawi zonse, zida zingapo zoyendetsera magalimoto zimapita ku Firepower Management Center imodzi, yomwe mumagwiritsa ntchito poyang'anira, kuyang'anira, kusanthula, ndi kupereka malipoti.

Zida Zachikale
Zipangizo zamakono zimakhala ndi pulogalamu ya IPS (NGIPS) ya m'badwo wotsatira. Zikuphatikizapo:

• Firepower 7000 mndandanda ndi Firepower 8000 mndandanda zida zakuthupi.
• NGIPSv, yochitidwa pa VMware.
• ASA yokhala ndi FirePOWER Services, yopezeka pazida zosankhidwa za ASA 5500-X (imaphatikizaponso ISA 3000). ASA imapereka ndondomeko ya mzere woyamba, kenako imadutsa magalimoto ku ASA FirePOWER module kuti apeze ndi kuwongolera.

Zindikirani kuti muyenera kugwiritsa ntchito ASA CLI kapena ASDM kukonza mawonekedwe a ASA pa chipangizo cha ASA FirePOWER. Izi zikuphatikizapo kupezeka kwakukulu kwa chipangizo, kusintha, mayendedwe, VPN, NAT, ndi zina zotero.
Simungagwiritse ntchito FMC kuti mukonze mawonekedwe a ASA FirePOWER, ndipo FMC GUI sichiwonetsa mawonekedwe a ASA pamene ASA FirePOWER ikugwiritsidwa ntchito mu SPAN port mode. Komanso, simungagwiritse ntchito FMC kutseka, kuyambitsanso, kapena kuyang'anira njira za ASA FirePOWER.

Zida Zachitetezo Zowopsa za Firepower
Chida cha Firepower Threat Defense (FTD) ndi chowotcha moto cham'badwo wotsatira (NGFW) chomwe chilinso ndi luso la NGIPS. NGFW ndi mawonekedwe a pulatifomu amaphatikiza malo ndi malo komanso mwayi wofikira kutali ndi VPN, mayendedwe olimba, NAT, kuphatikiza, ndi kukhathamiritsa kwina pakuwunika ntchito ndi kuwongolera mwayi.
FTD imapezeka pamapulatifomu osiyanasiyana akuthupi komanso pafupifupi.

Kugwirizana
Kuti mumve zambiri za kugwirizana kwa ma manejala ndi chipangizo, kuphatikiza mapulogalamu omwe amagwirizana ndi mitundu yazida zinazake, malo okhala, makina opangira, ndi zina zotero, onani Cisco Firepower Release Notes ndi Cisco Firepower Compatibility Guide.

Mawonekedwe a Firepower

Matebulowa amatchula zina zomwe zimagwiritsidwa ntchito kwambiri ndi Firepower.

Zida Zamagetsi ndi System Management Features

Kuti mupeze zolemba zachilendo, onani: http://www.cisco.com/c/en/us/td/docs/security/firepower/roadmap/firepower-roadmap.html

Ngati mukufuna…	Konzani...	Monga tafotokozera mu…
Konzani maakaunti a ogwiritsa ntchito kuti mulowe muzipangizo zanu za Firepower	Kutsimikizika kwamphamvu yamoto	Za Maakaunti Ogwiritsa
Yang'anirani thanzi la hardware ndi mapulogalamu a pulogalamu	Ndondomeko yowunikira zaumoyo	Za Zaumoyo Kuwunika
Sungani zosunga zobwezeretsera pa chipangizo chanu	Sungani ndi kubwezeretsa	Kusunga ndi Bwezerani
Sinthani kukhala mtundu watsopano wa Firepower	Zosintha zadongosolo	Cisco Firepower Management Center Upgrade Guide, Version 6.0-7.0 Zolemba Zotulutsa Firepower
Sinthani chida chanu chakuthupi	Bwezeretsani ku zosasintha zafakitale (kujambulanso)	The Cisco Firepower Kusintha kwa Management Center Guide, Version 6.0–7.0, pamndandanda wamaulalo amalangizo okhazikitsa mwatsopano.
Sinthani VDB, zosintha za malamulo olowera, kapena GeoDB pachida chanu	Zosintha za Vulnerability Database (VDB), zosintha za malamulo olowera, kapena zosintha za Geolocation Database (GeoDB)	Zosintha Zadongosolo

 

Ngati mukufuna…	Konzani...	Monga tafotokozera mu…
Ikani ziphaso kuti mutenge advantage ya magwiridwe antchito oyendetsedwa ndi chilolezo	Classic kapena Smart licensing	About Firepower Licenses
Onetsetsani kupitiliza kwa ntchito za chipangizocho	Kupezeka kwakukulu kwa chipangizocho ndi/kapena Firepower Management Center kupezeka kwambiri	About 7000 ndi 8000 Series Chipangizo High kupezeka About Firepower Threat Defense Kupezeka Kwambiri About Firepower Management Center High Kupezeka
Phatikizani chuma processing angapo 8000 Series zipangizo	Chipangizo stacking	Za Device Stacks
Konzani chipangizo chothandizira kuchuluka kwa magalimoto pakati pa zolumikizira ziwiri kapena zingapo	Njira	Ma Virtual Routers Routing Overview kwa Firepower Threat Defense
Konzani paketi yosintha pakati pa maukonde awiri kapena kupitilira apo	Kusintha kwa chipangizo	Kusintha kwa Virtual Konzani ma Interfaces a Bridge Group
Masulirani maadiresi achinsinsi kukhala maadiresi omwe anthu onse amalumikizana nawo pa intaneti	Kutanthauzira Adilesi Yapaintaneti (NAT)	Kusintha kwa Ndondomeko ya NAT Network Address Translation (NAT) ya Firepower Threat Defense
Khazikitsani njira yotetezeka pakati pa zida zoyendetsedwa ndi Firepower Threat Defense kapena 7000/8000 Series.	Site-to-Site virtual private network (VPN)	VPN Yathaview kwa Firepower Threat Defense
Khazikitsani mayendedwe otetezeka pakati pa ogwiritsa ntchito akutali ndi Firepower Threat yoyendetsedwa Zida zodzitetezera	VPN yakutali	VPN Yathaview kwa Firepower Threat Defense
Gawani mwayi wa ogwiritsa ntchito pazida zoyendetsedwa, masinthidwe, ndi zochitika	Multitenancy pogwiritsa ntchito madambwe	Chiyambi cha Multitenancy Pogwiritsa Ntchito Ma Domain
View ndi kusamalira chipangizo kasinthidwe pogwiritsa ntchito kasitomala wa REST API	REST API ndi REST API Wofufuza	Zokonda za REST API Firepower REST API Quick Start Guide
Kuthetsa mavuto	N / A	Kuthetsa Mavuto

Kupezeka Kwapamwamba ndi Mawonekedwe a Scalability ndi Platform
Kukonzekera kopezeka kwakukulu (nthawi zina kumatchedwa failover) kumatsimikizira kupitiriza kwa ntchito. Masanjidwe ophatikizika ndi osanjikizidwa amaphatikiza zida zingapo palimodzi ngati chipangizo chimodzi chomveka, zomwe zimakwaniritsa kuchuluka kwazomwe zimagwiritsidwa ntchito komanso kusafunikira.

 

nsanja	Kupezeka Kwambiri	Kusonkhana	Stacking
Firepower Management Center	Inde Kupatula MC750	—	—
Firepower Management Center Virtual	—	—	—
Chitetezo cha Mphamvu ya Moto: Firepower 2100 mndandanda ASA 5500-X mndandanda YESAYA 3000	Inde	—	—
Chitetezo cha Mphamvu ya Moto: Firepower 4100/9300 chassis	Inde	Inde	—
Firepower Threat Defense Virtual: VMware KVM	Inde	—	—
Firepower Threat Defense Virtual (mtambo wa anthu): AWS Azure	—	—	—
Firepower 7010, 7020, 7030, 7050 Firepower 7110, 7115, 7120, 7125 Firepower 8120, 8130 AMP 7150, 8050, 8150	Inde	—	—
Firepower 8140 Firepower 8250, 8260, 8270, 8290 Firepower 8350, 8360, 8370, 8390 AMP 8350	Inde	—	Inde
ASA FirePOWER	—	—	—
NGIPSv	—	—	—

Nkhani Zogwirizana nazo
About 7000 ndi 8000 Series Chipangizo High kupezeka
About Firepower Threat Defense Kupezeka Kwambiri

About Firepower Management Center High Kupezeka

Zothandizira Kuzindikira, Kupewa, ndi Kukonza Zowopsa Zomwe Zingatheke
Kuti mupeze zolemba zachilendo, onani: http://www.cisco.com/c/en/us/td/docs/security/firepower/roadmap/firepower-roadmap.html

Ngati mukufuna…	Konzani...	Monga tafotokozera mu…
Yang'anani, lowani, ndikuchitapo kanthu pa kuchuluka kwa magalimoto pa netiweki	Ndondomeko yowongolera zofikira, kholo lazinthu zina zingapo	Chiyambi cha Access Control
Kuletsa kapena kuyang'anira kulumikizana ndi kapena kuchokera ku ma adilesi a IP, URLs, ndi/kapena mayina ankalamulira	Security Intelligence mkati mwa malamulo anu owongolera mwayi	About Security Intelligence
Control the webmasamba omwe ogwiritsa ntchito pa netiweki yanu atha kuwapeza	URL kusefa mkati mwa malamulo a ndondomeko yanu	URL Kusefa
Yang'anirani kuchuluka kwa magalimoto oyipa komanso kulowerera pa intaneti yanu	Ndondomeko yolowera	Zoyambira Zolowera
Letsani kuchuluka kwa magalimoto obisika popanda kuwunika Yang'anani kuchuluka kwa magalimoto obisika kapena obisika	Ndondomeko ya SSL	Ndondomeko za SSL Zathaview
Yesetsani kuyang'ana mozama kuti mukhale ndi magalimoto ambiri ndikuwongolera magwiridwe antchito ndi Fastpathing	Zosankha zosefera	Za Prefiltering
Mulingo wochepetsera kuchuluka kwa magalimoto pamanetiweki omwe amaloledwa kapena kudaliridwa ndi njira zolowera	Ndondomeko ya Quality of Service (QoS).	Za Ndondomeko za QoS
Lolani kapena kuletsa files (kuphatikiza pulogalamu yaumbanda) pamaneti anu	File/ ndondomeko yaumbanda	File Ndondomeko ndi Chitetezo cha Malware
Gwiritsirani ntchito data kuchokera ku malo owopsa anzeru	Cisco Threat Intelligence Director (TID)	Threat Intelligence Director Wathaview
Konzani kutsimikizika kwa ogwiritsa ntchito kuti adziwitse ogwiritsa ntchito ndikuwongolera ogwiritsa ntchito	Kudziwitsidwa kwa ogwiritsa ntchito, chidziwitso cha ogwiritsa ntchito, mfundo zodziwika	Za Magwero Ozindikiritsa Ogwiritsa Ntchito Zokhudza Malamulo Odziwika
Sonkhanitsani wolandira, mapulogalamu, ndi data ya ogwiritsa ntchito kuchokera pazambiri zapaintaneti yanu kuti mudziwitse ogwiritsa ntchito	Ndondomeko za Network Discovery	Zathaview: Network Discovery Policy
Gwiritsani ntchito zida zopyola pulogalamu yanu ya Firepower kuti musonkhanitse ndi kusanthula zambiri za kuchuluka kwa magalimoto pa netiweki ndi ziwopsezo zomwe zingachitike	Kuphatikiza ndi zida zakunja	Kusanthula Zochitika Pogwiritsa Ntchito Zida Zakunja
Pangani kuzindikira ndi kuwongolera pulogalamu	Zodziwira ntchito	Zathaview: Kuzindikira kwa Ntchito
Kuthetsa mavuto	N / A	Kuthetsa Mavuto

Kuphatikiza ndi Zida Zakunja
Kuti mupeze zolemba zachilendo, onani: http://www.cisco.com/c/en/us/td/docs/security/firepower/roadmap/firepower-roadmap.html

Ngati mukufuna…	Konzani...	Monga tafotokozera mu…
Yambitsani zokonza zokha ngati zinthu zapa netiweki yanu zikuphwanya malamulo ogwirizana nawo	Kukonzanso	Mawu Oyamba pa Zokonzanso Firepower System Remediation API Guide
Sakanizani zomwe zachitika kuchokera ku Firepower Management Center kupita ku a pulogalamu yamakasitomala yopangidwa mwamakonda	Kuphatikiza kwa eStreamer	eStreamer Server Streaming Firepower System eStreamer Integration Guide
Funso ma tebulo a database pa Firepower Management Center pogwiritsa ntchito kasitomala wachitatu	Kufikira kunja kwa database	Zokonda Zakunja za Database Access Firepower System Database Access Guide
Onjezani zambiri zopezeka potengera zinthu kuchokera kuzinthu zina	Zolowetsa zolandira	Host Input Data Firepower System Host Input API Guide
Fufuzani zochitika pogwiritsa ntchito zida zakunja zosungira deta ndi zina zothandizira	Kuphatikiza ndi zida zowunikira zochitika zakunja	Kusanthula Zochitika Pogwiritsa Ntchito Zida Zakunja
Kuthetsa mavuto	N / A	Kuthetsa Mavuto

Kusintha Ma Domain pa Firepower Management Center
M'magawo ambiri, mwayi wogwiritsa ntchito umatsimikizira madera omwe wogwiritsa ntchito atha kuwapeza ndi mwayi woti wogwiritsa ntchito ali nawo mkati mwa maderawo. Mutha kugwirizanitsa akaunti ya ogwiritsa ntchito imodzi ndi madambwe angapo ndikugawa mwayi wosiyanasiyana kwa wogwiritsayo mu domeni iliyonse. Za example, mutha kugawa wogwiritsa ntchito
mwayi wowerengera kokha mu Domeni ya Global, koma maudindo a Administrator mu domeni yobadwa.
Ogwiritsa ntchito madomeni angapo amatha kusinthana pakati pa madambwe mkati momwemo web gawo la mawonekedwe.

Pansi pa dzina lanu logwiritsa ntchito pazida, dongosololi likuwonetsa mtengo wa madambwe omwe alipo. Mtengo:

• Imawonetsa madera akale, koma ikhoza kulepheretsa kuwafikira kutengera mwayi womwe wapatsidwa ku akaunti yanu.
• Imabisa domeni ina iliyonse yomwe akaunti yanu ya ogwiritsa ntchito siyitha kufikira, kuphatikiza madomeni a abale ndi obadwa.

Mukasinthira ku domain, dongosolo limawonetsa:

• Deta yomwe ikugwirizana ndi domeni yokhayo.
• Zosankha zamamenyu zimatsimikiziridwa ndi gawo la ogwiritsa ntchito lomwe mwapatsidwa pa domeniyo.

Ndondomeko
Kuchokera pamndandanda wotsikira pansi pa dzina lanu, sankhani dera lomwe mukufuna kupeza.

The Context Menu
Masamba ena mu Firepower System web mawonekedwe amathandizira kudina kumanja (kofala kwambiri) kapena kumanzere kumanzere komwe mungagwiritse ntchito ngati njira yachidule yopezera zinthu zina mu Firepower System. Zomwe zili m'ndandanda wankhani zimadalira komwe mumazipeza - osati tsamba lokha komanso deta yeniyeni.

Za exampLe:

• Malo omwe ali ndi ma adilesi a IP amapereka zambiri za wolandirayo yemwe amagwirizana ndi adilesiyo, kuphatikiza aliyense amene alipo ndi pro hostfile zambiri.
• SHA-256 hash value hotspots imakupatsani mwayi wowonjezera file's SHA-256 hash mtengo pamndandanda woyera kapena mndandanda wodziwika bwino, kapena view mtengo wonse wa hashi wokopera. Pamasamba kapena malo omwe sagwirizana ndi menyu yankhani ya Firepower System, menyu yanthawi zonse ya msakatuli wanu imawonekera.

Okonza Ndondomeko
Okonza malamulo ambiri amakhala ndi malo ambiri pa lamulo lililonse. Mukhoza kuyika malamulo atsopano ndi magulu; kudula, kukopera, ndi kumata malamulo; kukhazikitsa ulamuliro boma; ndi kusintha lamulo.

Mkonzi wa Malamulo Olowera
Mkonzi wa malamulo olowetsamo amakhala ndi malo otentha pa lamulo lililonse lolowera. Mutha kusintha lamuloli, kukhazikitsa malamulo, sinthani njira zolowera ndi kupondereza, ndi view zolemba malamulo. Mwachidziwitso, mutadina zolemba za Rule mu menyu yankhaniyo, mutha kudina Documentation ya Rule pawindo lazolemba kuti. view tsatanetsatane walamulo.

Chochitika Viewer
Masamba a zochitika (masamba obowolera pansi ndi tebulo viewzomwe zikupezeka pansi pa Analysis menyu) zili ndi malo opezeka pamwambo uliwonse, adilesi ya IP, URL, funso la DNS, ndi zina files' SHA-256 hashi mitengo. Pamene viewpamitundu yambiri ya zochitika, mutha:

• View zokhudzana ndi zomwe zili mu Context Explorer.
• Lowetsani pansi pazidziwitso zazochitika pawindo latsopano.
• View mawu athunthu m'malo omwe gawo la chochitika lili ndi mawu otalika kwambiri kuti awonekere pazochitikazo view,monga a file's SHA-256 hashi mtengo, kufotokozera za kusatetezeka, kapena a URL.
• Tsegulani a web zenera la msakatuli lomwe lili ndi chidziwitso chatsatanetsatane cha chinthucho kuchokera kugwero lakunja kupita ku Firepower, pogwiritsa ntchito mawonekedwe a Contextual Cross-Launch. Kuti mudziwe zambiri, onani Kufufuza kwa Zochitika Kugwiritsa Ntchito Web-Zotengera Zothandizira.
• (Ngati bungwe lanu latumiza Cisco Security Packet Analyzer) Onani mapaketi okhudzana ndi chochitikacho. Kuti mumve zambiri, onani Kufufuza Kwachitika Pogwiritsa Ntchito Cisco Security Packet Analyzer.

Pamene viewpolumikizana ndi zochitika, mutha kuwonjezera zinthu pamindandanda yokhazikika ya Security Intelligence Block ndi Osatsekereza:

• Adilesi ya IP, yochokera ku adilesi ya IP hotspot.
• A URL kapena dzina lachidziwitso, kuchokera ku a URL hotspot.
• Funso la DNS, kuchokera ku hotspot yafunso ya DNS.

Pamene viewkugwidwa files, file zochitika, ndi pulogalamu yaumbanda, mutha:

• Onjezani a file ku kapena kuchotsa a file kuchokera pamndandanda waukhondo kapena mndandanda wazodziwikiratu.
• Tsitsani fayilo ya file.
• View nested files mkati mwa archive file.
• Tsitsani zakale zamakolo file kwa chisa file.
• View ndi file kupanga.
• Tumizani ku file za pulogalamu yaumbanda yapafupi ndi kusanthula kwamphamvu.

Pamene viewmuzochitika zolowera, mutha kuchita ntchito zofanana ndi zomwe zili mumkonzi wa malamulo olowerera kapena ndondomeko yolowera:

• Sinthani lamulo loyambitsa.
• Khazikitsani lamuloli, kuphatikizapo kuletsa lamuloli.
• Konzani njira zochepetsera ndi kupondereza.
• View zolemba malamulo. Mwachidziwitso, mutadina zolemba za Rule mu menyu yankhaniyo, mutha kudina Documentation ya Rule pawindo lazolemba kuti. view tsatanetsatane walamulo.

Phukusi la Zochitika Zolowera View
Phukusi la zochitika zolowera views ali ndi ma adilesi a IP. Paketi view amagwiritsa ntchito menyu yodina kumanzere.
Dashboard
Ma widget ambiri aku dashboard amakhala ndi malo ochezera view zokhudzana ndi zomwe zili mu Context Explorer. Dashboard
ma widget amathanso kukhala ndi adilesi ya IP ndi SHA-256 hash hotspots.

Context Explorer
Context Explorer ili ndi malo ochezera pamasamba ake, matebulo, ndi ma graph. Ngati mukufuna kuwona zambiri kuchokera pazithunzi kapena mindandanda mwatsatanetsatane kuposa momwe Context Explorer imalola, mutha kubowola mpaka patebulo. views za data yoyenera. Mukhozanso view wogwirizira, wogwiritsa, ntchito, file, ndi chidziwitso cha malamulo olowerera.
Context Explorer imagwiritsa ntchito menyu yodina kumanzere, yomwe ilinso ndi zosefera ndi zosankha zina zapadera za Context Explorer.

Nkhani Zogwirizana nazo
Security Intelligence Lists ndi Zakudya

Kugawana Data ndi Cisco
Mutha kusankha kugawana zambiri ndi Cisco pogwiritsa ntchito izi:

• Cisco Success Network
  Onani Cisco Success Network
• Web analytics

Onani (Mwasankha) Kutuluka Web Kutsata kwa Analytics
Thandizo Lapaintaneti la Firepower, Momwe Mungachitire, ndi Zolemba Mutha kupeza chithandizo chapaintaneti kuchokera kwa web mawonekedwe:

• Podina ulalo wokhudzidwa ndi nkhani patsamba lililonse
• Posankha Thandizo > Paintaneti

Momwe Mungakhalire ndi widget yomwe imapereka njira zoyendetsera ntchito pa Firepower Management Center.
Mayendedwewa amakuwongolerani kuti mukwaniritse zomwe mukufuna kuti mukwaniritse ntchitoyo podutsa mugawo lililonse, imodzi pambuyo pa imzake mosasamala kanthu za ma UI osiyanasiyana omwe mungafunikire kuyendamo, kuti mumalize ntchitoyi.
Widget ya How To imayatsidwa mwachisawawa. Kuti mulepheretse widget, sankhani Zokonda za Mtumiki kuchokera pamndandanda wotsikira pansi pa dzina lanu, ndipo musayang'ane bokosi la Yambitsani Momwe Mungayendetsere mu Zosintha Zosintha.
Mayendedwewa amapezeka pamasamba onse a UI, ndipo samakhudzidwa ndi ogwiritsa ntchito. Komabe, kutengera mwayi wa wogwiritsa ntchito, zina mwazinthu za menyu sizidzawonekera pa mawonekedwe a Firepower Management Center. Potero, ma walkthroughs sangagwire pamasamba otere.

Zindikirani
Njira zotsatirazi zikupezeka pa Firepower Management Center:

• Lembani FMC ndi Cisco Smart Account: Njira iyi ikutsogolerani kuti mulembetse Firepower Management Center ndi Cisco Smart Account.
• Konzani Chipangizo ndikuwonjezera ku FMC: Njirayi imakuwongolerani kukhazikitsa chipangizo ndikuwonjezera chipangizocho ku Firepower Management Center.
• Konzani Tsiku ndi Nthawi: Njira iyi imakupatsani mwayi wokonza tsiku ndi nthawi ya Firepower.
• Zida Zachitetezo Zowopseza pogwiritsa ntchito mfundo zokhazikitsira nsanja.
• Konzani Zokonda pa Chiyankhulo: Njira iyi imakuwongolerani kuti mukonze zolumikizirana ndi zida za Firepower Threat Defense.
• Pangani Ndondomeko Yoyang'anira Kufikira: Ndondomeko yoyendetsera mwayi wofikira imakhala ndi malamulo oyendetsedwa, omwe amawunikidwa kuchokera pamwamba mpaka pansi. Kuyenda uku kukutsogolerani kuti mupange ndondomeko yolowera. Onjezani Lamulo Loyang'anira Kufikira - Kuyenda Kwachinthu: Njirayi ikufotokoza zigawo za
  lamulo loletsa kulowa, ndi momwe mungagwiritsire ntchito mu Firepower Management Center.
• Konzani Zokonda Zanjira: Ma protocol osiyanasiyana amathandizidwa ndi Firepower Threat Defense. Njira yosasunthika imatanthawuza komwe mungatumize kuchuluka kwa magalimoto pamanetiweki enaake omwe mukupita. Kuyenda uku kumakuwongolerani kuti musinthe ma static routing a zida.
• Pangani Ndondomeko ya NAT - Njira Yoyendera: Njirayi imakuwongolerani kuti mupange mfundo za NAT ndikukuyendetsani m'magawo osiyanasiyana a lamulo la NAT.

Mutha kupeza zolemba zina zokhudzana ndi Firepower system pogwiritsa ntchito mapu amsewu: http://www.cisco.com/c/en/us/td/docs/security/firepower/roadmap/firepower-roadmap.html

Masamba Olemba Zolemba Zapamwamba Zakutumizidwa kwa FMC

Zolemba zotsatirazi zitha kukhala zothandiza pokonza zotumizira za Firepower Management Center, Version 6.0+.

Zina mwazolemba zolumikizidwa sizikugwira ntchito ku Firepower Management Center deployments. Za example, maulalo ena pamasamba a Firepower Threat Defense ndi achindunji pazomwe zimayendetsedwa ndi Firepower Device Manager, ndipo maulalo ena pamasamba a Hardware ndi osagwirizana ndi FMC. Kuti mupewe chisokonezo, samalani kwambiri ndi mitu ya zolemba. Komanso, zolemba zina zimakhala ndi zinthu zingapo ndipo zimatha kuwoneka pamasamba angapo.

Firepower Management Center

• Zida zamagetsi zamagetsi za Firepower Management Center: http://www.cisco.com/c/en/us/support/security/defense-center/tsd-products-support-series-home.html
• Zida Zamagetsi za Firepower Management Center: • http://www.cisco.com/c/en/us/support/security/defense-center-virtual-appliance/tsd-products-support-series-home.html • http://www.cisco.com/c/en/us/support/security/defense-center/tsd-products-support-series-home.html
• Firepower Threat Defense, yomwe imatchedwanso NGFW (Next Generation Firewall) zida
• Pulogalamu ya Firepower Threat Defense: http://www.cisco.com/c/en/us/support/security/firepower-ngfw/tsd-products-support-series-home.html
• Firepower Threat Defense Virtual: http://www.cisco.com/c/en/us/support/security/firepower-ngfw-virtual/tsd-products-support-series-home.html
• Firepower 4100 mndandanda: https://www.cisco.com/c/en/us/support/security/firepower-4100-series/tsd-products-support-series-home.html
• Firepower 9300: https://www.cisco.com/c/en/us/support/security/firepower-9000-series/tsd-products-support-series-home.html
• ISA 3000: https://www.cisco.com/c/en/us/support/security/industrial-security-appliance-isa/tsd-products-support-series-home.html

Zida zamakono, zomwe zimatchedwanso NGIPs (Next Generation Intrusion Prevention System) zipangizo

• ASA yokhala ndi FirePOWER Services:
• ASA 5500-X yokhala ndi FirePOWER Services: • https://www.cisco.com/c/en/us/support/security/asa-firepower-services/tsd-products-support-series-home.html https://www.cisco.com/c/en/us/support/security/asa-5500-series-next-generation-firewalls/tsd-products-support-series-home.html
• ISA 3000 yokhala ndi FirePOWER Services: https://www.cisco.com/c/en/us/support/security/industrial-security-appliance-isa/tsd-products-support-series-home.html
• Firepower 8000 mndandanda: https://www.cisco.com/c/en/us/support/security/firepower-8000-series-appliances/tsd-products-support-series-home.html
• Firepower 7000 mndandanda: https://www.cisco.com/c/en/us/support/security/firepower-7000-series-appliances/tsd-products-support-series-home.html
• AMP za Networks: https://www.cisco.com/c/en/us/support/security/amp-appliances/tsd-products-support-series-home.html
• NGIPSv (chida chenicheni): https://www.cisco.com/c/en/us/support/security/ngips-virtual-appliance/tsd-products-support-series-home.html

Zolemba za License mu Zolemba

Mawu a License omwe ali koyambirira kwa gawo akuwonetsa laisensi Yachikale kapena Yanzeru yomwe muyenera kupereka ku chipangizo choyendetsedwa ndi Firepower System kuti mutsegule zomwe zafotokozedwa mgawoli.
Chifukwa kuthekera kokhala ndi zilolezo nthawi zambiri kumakhala kowonjezera, chikalata cha laisensi chimangopereka chilolezo chofunikira kwambiri pachinthu chilichonse.
Mawu akuti "kapena" mu Chidziwitso cha Layisensi akuwonetsa kuti muyenera kupatsa laisensi ku chipangizo chomwe chimayang'aniridwa kuti chithandizire zomwe zafotokozedwa mgawoli, koma chilolezo chowonjezera chikhoza kuwonjezera magwiridwe antchito. Za example, mwa file policy, ena file malamulo amafunikira kuti mupereke chilolezo cha Chitetezo ku chipangizochi pomwe ena amafuna kuti mupereke chilolezo cha Malware.

Kuti mumve zambiri zamalayisensi, onani About Firepower Licenses.

Nkhani Zogwirizana nazo 
About Firepower Licenses

Ndemanga Zazida Zothandizira mu Zolemba

Mawu akuti Zida Zothandizira koyambirira kwa mutu kapena mutu akuwonetsa kuti chinthucho chimangogwiritsidwa ntchito pazida zomwe zatchulidwa, banja, kapena mtundu. Za example, zambiri zimathandizidwa kokha pazida za Firepower Threat Defense.
Kuti mumve zambiri pamapulatifomu omwe amathandizidwa ndi kutulutsidwaku, onani zolemba zotulutsa.

Zidziwitso Zopezeka mu Zolemba

Mawu a Access kumayambiriro kwa ndondomeko iliyonse muzolembazi akuwonetsa maudindo omwe akugwiritsidwa ntchito omwe amafunikira kuti achite njirayi. Maudindo aliwonse omwe atchulidwa amatha kuchita izi.
Ogwiritsa ntchito omwe ali ndi maudindo achikhalidwe akhoza kukhala ndi zilolezo zomwe zimasiyana ndi zomwe zidafotokozedwa kale. Pamene gawo losankhidwiratu likugwiritsidwa ntchito kusonyeza zofunikira zopezera njira, gawo lachilolezo lokhala ndi zilolezo zofanana limakhalanso ndi mwayi. Ogwiritsa ntchito ena omwe ali ndi maudindo amatha kugwiritsa ntchito njira zosiyana pang'ono za menyu kuti afikire masamba osinthika. Za example, ogwiritsa ntchito omwe ali ndi udindo wokhala ndi mwayi wolowa nawo yekha amapeza ndondomeko yowunikira maukonde kudzera mu ndondomeko yolowera m'malo mwa njira yokhazikika kudzera mu ndondomeko yolowera.
Kuti mudziwe zambiri za maudindo a ogwiritsa ntchito, onani Maudindo Ogwiritsa Ntchito ndi Kusintha Maudindo Ogwiritsa Ntchito pa Web Chiyankhulo.

Misonkhano Yamadilesi ya IP ya Firepower System

Mutha kugwiritsa ntchito mawu a IPv4 Classless Inter-Domain Routing (CIDR) ndi mawu ofanana ndi a IPv6 a kutalika kwa prefix kuti mufotokoze midadada ya maadiresi m'malo ambiri mu Firepower System.
Mukamagwiritsa ntchito CIDR kapena prefix length notation kuti mutchule chipika cha ma adilesi a IP, Firepower System imagwiritsa ntchito gawo lokha la adilesi ya IP yotchulidwa ndi chigoba kapena kutalika kwa prefix. Za example, ngati mutalemba 10.1.2.3/8, Firepower System imagwiritsa ntchito 10.0.0.0/8.
Mwa kuyankhula kwina, ngakhale Cisco imalimbikitsa njira yokhazikika yogwiritsira ntchito adilesi ya IP pamalire ang'onoang'ono mukamagwiritsa ntchito CIDR kapena prefix length notation, Firepower System sichifuna.

Zowonjezera Zowonjezera

Bungwe la Firewall Community ndi malo osungiramo zinthu zomwe zimakwaniritsa zolemba zathu zambiri. Izi zikuphatikiza maulalo amitundu ya 3D ya zida zathu, chosankha masinthidwe a Hardware, chikole chazinthu, zosintha zakale.amples, zolemba zaukadaulo zazovuta, makanema ophunzitsira, labu ndi magawo a Cisco Live, njira zochezera, Cisco Blogs ndi zolemba zonse zofalitsidwa ndi gulu la Technical Publications.
Ena mwa anthu omwe amatumiza kumasamba ammudzi kapena malo ogawana makanema, kuphatikiza oyang'anira, amagwira ntchito ku Cisco Systems. Malingaliro omwe amaperekedwa pamasamba amenewo ndi ndemanga iliyonse yofananira ndi malingaliro aumwini a olemba oyambirira, osati a Cisco. Zomwe zili m'nkhaniyi zimaperekedwa pazidziwitso zokhazokha ndipo sizikutanthauza kuti zikhale zovomerezeka kapena zoyimiridwa ndi Cisco kapena gulu lina lililonse.

Zindikirani
Makanema ena, zolemba zaukadaulo, ndi zofotokozera mu Firewall Community zimalozera kumitundu yakale ya FMC. Mtundu wanu wa FMC ndi mtundu womwe watchulidwa m'mavidiyo kapena zolemba zaukadaulo zitha kukhala ndi kusiyana kwa mawonekedwe omwe amapangitsa kuti machitidwewo asafanane.

Chiyambi ndi Firepower

Zolemba / Zothandizira

CISCO Yayamba Ndi Kukhazikitsa Koyamba Kwa Mphamvu Yoyaka Moto [pdf] Buku Logwiritsa Ntchito Zinayamba ndi Firepower Kuchita Kukhazikitsa Koyamba, Kukhazikitsa Koyatsira Moto Kupanga Kukhazikitsa Koyamba, Kuchita Kukhazikitsa Koyamba, Kukhazikitsa Koyamba, Kukhazikitsa

Maumboni

• Buku Logwiritsa Ntchito