Scribd
Upload
40 views

LM-WIN2012-DC1 Lm-Fmc1: (Domain Controller Dns/Ca) (Cisco Firepower MC 6.1)

This document contains a network diagram showing various devices connected across multiple sites. It depicts the physical and logical network topology, including firewalls, routers, switches and an IPS device. Optional logical configurations are presented for deploying the IPS in inline, tap/span, or virtual routing and forwarding modes between sites connected over a WAN link.

Uploaded by

Rodolfo Serra Blanco
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
40 views

LM-WIN2012-DC1 Lm-Fmc1: (Domain Controller Dns/Ca) (Cisco Firepower MC 6.1)

This document contains a network diagram showing various devices connected across multiple sites. It depicts the physical and logical network topology, including firewalls, routers, switches and an IPS device. Optional logical configurations are presented for deploying the IPS in inline, tap/span, or virtual routing and forwarding modes between sites connected over a WAN link.

Uploaded by

Rodolfo Serra Blanco
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

LM-WIN2012-DC1 LM-FMC1

(Domain Controller
(Cisco Firepower MC 6.1)
DNS/CA)

VLAN32 .40 .107


172.16.32.0/24

.251 .250
IPS-Only Transparent FW (BVI .249)

Gi0/2
SPAN/ERSPAN Gi0/0 Gi1/1 Gi1/0/3
mgmt mgmt
SW1
Gi0/1 LM-HQ-FW2 Gi1/2 Gi1/0/4
LM-GATEWAY
Adapter 2 Gi1/0/20
vSW LM-HQ-IPS1 LM-HQ-FW2
SW1
Adapter 3
LM-HQ-IPS1 .252 VLAN332

.1

VLAN10 LM-HQ-FW1 VLAN192


.1 172.16.10.0/24 192.168.10.0/24
Loopback0 .1 .2 Gi1/1 .251
SW1 Internet
172.16.0.1 Gi1/2 Gi1/3
.1
mgmt .250

Routed FW

SW1 Loopback0
10.0.0.0/24 172.17.0.2

.2 .254 WAN .2 .1
LM-HQ-R1 Gi0/0 LM-BR2-R1 Gi0/1 Gi1/0/24
SW1
E140D VLAN1
172.17.2.0/24
.250
Loopback0 LM-BR2-IPS1
172.16.0.2
Physical Loopback0
LM-FMC1 172.17.0.2 VLAN1
10.0.0.0/24 172.17.2.0/24

.2 .1 .2
WAN Gi0/0 LM-BR2-R1 Gi0/1 Gi1/0/24
SW1
Gi1/0/23
E140D Ge2
172.16.32.107 Ge0 Ge1
vmnic1
(Mgmt)
M1 M1 vmnic1 (Mgmt)
.250
D1 vmnic2 (Data1)
D2 vmnic3 (Data2)

LM-BR2-IPS1 NGIPSv

Logical (IDS) Loopback0


172.17.0.2 VLAN1
10.0.0.0/24 172.17.2.0/24

.2 .1 .2
WAN Gi0/0 LM-BR2-R1 Gi0/1 Gi1/0/24
SW1
E140D Copied
Ge1 Traffic

D1

LM-BR2-IPS1
Logical (IPS Option 1) Loopback0
172.17.0.2 VLAN1
10.0.0.0/24 172.17.2.0/24
.1

.2 .2
WAN Gi0/0 LM-BR2-R1
VLAN1
BVI1
SW1
Gi1/0/23
E140D Ge2
Ge1

D2

D1

LM-BR2-IPS1

Logical (IPS Option 2)


Loopback0
172.17.0.2 VLAN1
10.0.0.0/24 172.17.22.0/24

.2 .1 .2
WAN VRF
Gi0/0 LM-BR2-R1 Gi0/1 Gi1/0/24
SW1
E140D
Ge0
UCSE1/0.2 UCSE1/0.3
VLAN 2 VLAN 3
D2 D1

Transitory Subnet LM-BR2-IPS1


172.17.2.0/24
VLAN1
UCSE1/0.2
VLAN 2 .250 172.17.22.0/24
M1 UCSE1/0.3
VLAN 3 VRF INSIDE
.1 .10 .1 .2
LM-BR2-R1
D2 D1
LM-BR2-R1 SW1
LM-BR2-IPS1
(Transparent)

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy