Cisco NGFW Firepower Threat Defense (FTD)

11. Lecture-11:FDM, System Settings, DNS Server Configuration

Either a DNS domain name system, or a domain name server. So, as we already know, DNS is a reserved host name to IP address and IP address to fully qualified domain name. And there are 13 DNS servers all over the world. Then there are many replicas of these 13 DNS servers. But you can configure your own DNS server here in FTD if you want to set the DNS details. So you can go to system settings. And here is the DNS server. So right now we are using the Cisco umbrella. Either open DNS, which we call it. So we are using umbrella DNS, which has two IPs, Cisco umbrella DNS. So if you want to change, you can allow these DNS inside or outside of the DMZ, whatever you have. So you can change the interface right now to any interface. And these are the DNS groups. If you want, you can create your own. Click here to create a new DNS group. Type your DNS IP 8811, whatever, 8844, whatever, and it's the retriever time and timeout for DNS entry. Okay? So you can put those details in this way. You can create a DNS group here. This is a pull time to an expiry time for DNS, which means there is a default value. The same can be done. This is for the data interface. This is our data interface. This one and this one and this one is ourmanagement for management DNS. You can do the same thing. Click here to create a new DNS group. A DNS group is nothing but a combination of DNS IP. You can configure one, two, three, or up to three. So this is all about DNS configuration for the management interface and the data interface. And then you can save. Okay, so this is the DNS server configuration here. If you go to system sitting and do aDNS, you can then add a primary, secondary, and thirdDNS entry as a group. And you can put them like this and save the city.

12. Lecture-12:FDM, System Settings, Management Interface

Now you can configure the management interface as well. If you go to the management interface here, you can type the IP address through DHCPeither statically or dynamically. Let me show you. There is management, interface. My management IP address is currently 192.168.800.200, which I have statically assigned. If you want to use DHCP, you can click DHCP to get the IP through DHCP, which is not recommended. It's better to assign a static IP. So this place is all related to Management Interface. This is my Management Interface out of brand Management Interface. This is the IP which I'm using. So if you want to get IPs through DHCP,you can change them, and if you want to change this IP statically, you can change it later on by saying that I want to change this management IP. Just type here. This is the subnet mask gateway and the same thing for IPV Six and MTU size, which is by default this one and save. They said it's the simplest way to configure Management IP from here.

13. Lecture-13:FDM, System Settings, Device Hostname Configuration

Hostname of the device If you want to change the device name, right now our name is FTD. You know, when we first and configure the device FTD, I give it the name FTD. If you want to change, you can go to host name (here is FTD) and just type in any other name. Suppose FTD UK, whatever you want to give them the name. So firewall host name and save setting. That's it. It will change the name. It will prompt you. By the way, suppose I say zero one, so when you click okay, the device name will change to FTD one until it's applied. So I click on the host name and then you can proceed. By the way, a prompt can come and then you can proceed. And you can change the host name. In this way, you can do the same thing through CLI as well, just the command configure network host name, so you see, okay, and the new one does not ask you, it applies straight away to the FTD one, because the slide is the old one in 6.2, but in 6.7 it will prompt you. Do you want to proceed? NS change straight away is a good thing. If you want, you can change them. We will do CLI later in the course. If you want, you can change the name of the network host from here as well through the CLI. So this was to change the host name of the device.

14. Lecture-14:FDM, System Settings, Network Time Protocol NTP

Okay, you want to define the time and date of the system, NTP. And if you have internal NTP, you want to use external NTP so you can change the setting from here. If you go to a system seat, there is a time service service. Right now I'm using the default NTP services. This one, if you want your own user-defined NTPserver, lets me type Google One. I don't know the Google Time Server, so let me search for Google one. So type that one so we'll get the time from there. You can type your country's NTP server as well. Suppose in my case, we have the Arabia NTP server. So combine NTP. If you go to this main URL,it will give you all the country detail.So this is Saudi Arabia's NTP server. Let me copy this one. And if you want, you can use this one. If you require another IP address, either locally or from the internet, you can type the URL as well as the IP address up to three times. You can set an NTP server and save the settings. So that's where you can apply NTP. Click here and here is the manual link: I typetimegoogle.com, but in this case, I put my country. Okay? This is the way to configure NTP date and time to get the time automatically from this URL. Okay?

15. Lecture-15:FDM, System Settings, HTTP Proxy Configuration

Related to Http proxy what is Http proxy?And some organization they are usingproxy like a blue coat proxy.Any other proxy and the traffic going through proxy so thenyou need to put some port number and IP address ofthe proxy you know if you did not two type ofproxy transparent and the other one explicit proxy so if youhave explicit proxy then what you can do in your FTDyou can come see more and there is Http proxy soyou can enable this one put the Http IP proxy detailport number normally 80 80 we are using and if youhave enable authentication you can put username and password and thisway your traffic will go through explicit proxy if it istransparent then it's okay no need to do changes here butin case if you have so you can do Http proxyhere you can enable it.Put the detail and save the setting and deploy thatset so in this way you can configure in caseyou deploy somewhere and they have a proxy to fromhere you need to change see more and from here.

ExamSnap's Cisco 300-710 Practice Test Questions and Exam Dumps, study guide, and video training course are complicated in premium bundle. The Exam Updated are monitored by Industry Leading IT Trainers with over 15 years of experience, Cisco 300-710 Exam Dumps and Practice Test Questions cover all the Exam Objectives to make sure you pass your exam easily.