ASA Deployment in Platform Mode
Is This Chapter for You?
The Firepower 2100 runs an underlying operating system called the Firepower eXtensible Operating System
(FXOS). You can run the Firepower 2100 for ASA in the following modes:
• Platform mode—When in Platform mode, you must configure basic operating parameters and hardware
interface settings in FXOS. These settings include enabling interfaces, establishing EtherChannels, NTP,
image management, and more. You can use the Firepower Chassis Manager web interface or FXOS CLI.
You can then configure your security policy in the ASA operating system using ASDM or the ASA CLI.
• Appliance mode (the default)—Appliance mode lets you configure all settings in the ASA. Only advanced
troubleshooting commands are available from the FXOS CLI.
This chapter describes how to deploy the Firepower 2100 in your network in ASA Platform mode. By default,
the Firepower 2100 runs in Appliance mode, so this chapter tells you how to set the mode to Platform mode.
This chapter does not cover the following deployments, for which you should refer to the
guide:
• Failover
• CLI configuration
This chapter also walks you through configuring a basic security policy; if you have more advanced
requirements, refer to the configuration guide.
Note
The Firepower 2100 hardware can run either ASA software or FTD software. Switching between ASA and
FTD requires you to reimage the device. See
Note
Privacy Collection Statement—The Firepower 2100 does not require or actively collect personally-identifiable
information. However, you can use personally-identifiable information in the configuration, for example for
usernames. In this case, an administrator might be able to see this information when working with the
configuration or when using SNMP.
•
About the ASA, on page 70
•
End-to-End Procedure, on page 71
C H A P T E R
Reimage the Cisco ASA or Firepower Threat Defense
Cisco Firepower 2100 Getting Started Guide
4
ASA configuration
Device.
69