Académique Documents
Professionnel Documents
Culture Documents
FirePOWER
ASDM: Used when youre running the ASA + Firepower (SFR) O.S. For standalone single site deployment: Suitable
for SOHO customers who do not have more than 3 devices and do not want to manage a separate sever
infrastructure.
FirePOWER Device Manager (FDM): Similar to ASDM. Used when youre running the FTD O.S. It manages
Firepower Threat Defense on Low-End & Mid-Range Platforms and give you Workflows, Diagrams and Default
configuration options.
FirePOWER Management Center (FMC): The Management Console is a hardware or virtual appliance
installed centrally to manage multiple FirePOWER deployments at same time. Suitable for enterprise who have more
than 5 devices deployed with FirePOWER.
FirePOWER Threat Defense (FTD): Unified image of the ASA and Firepower. Feature Highlights: Unified
Objects, Migration tool, Unified GUI for identity, NAT, Access, IPS, and File Policies, Graphical Representation of Policy
Deployment, System Health Monitoring Dashboard, Dynamic Theme, Routed Mode Support.
Management Terminology
Description Version 6.x Version 5.4
Management platform for all devices Firepower Management Center (FMC) FireSIGHT Management Center (FMC)
Reminder: FTD is the new unified image running on the firewall itself (ASA + Firepower image)
FMC vs FDM
Management Options
Firepower Management Center (FMC) Firepower Device Manager (FDM)
Managing more than one firewall centrally Single device that you want to manage and you dont
want to have any external management center
Firepower Management Center (FMC)
Its collects logs events from all the Firepower devices and make correlation and
reporting.
Firepower Device Manager (FDM)
- No IPS Tunning
Example:
If you have a single firewall with FTD and want to run on routed mode and you really dont want to run on a
failover pair and basic firewall to be enabled with static routing : Choose FDM
if you want to have an High Availability or ran it on a transparent or router mode with advanced ACL NAT
and then dynamic routing protocols and advanced security firewall feature such Security Intelligence, Site-to-site VPN, Rate
Limiting you might have to use FMC
FMC, FDM requirements