Tenable Cisco Firepower Best Practices

Details Verifies integrity of an uploaded software before upgrading the system Rationale: Sometimes, manipulating software from downloading them from the...

Details Enables the intrusion prevention with the IP audit feature on untrusted interfaces Rationale: The intrusion prevention is an additional...

Details Enables the unicast Reverse-Path Forwarding (uRPF) on untrusted interfaces. Rationale: The unicast Reverse-Path Forwarding(uRPF) enabled on an interface ensures...

Details Deletes the known default accounts configured Rationale: In order to attempt access to known devices’ platforms, attackers use the...

Details Enables logging Rationale: Logging is fundamental for audit requirements and incident management and should be enabled on any business...

Details Disables the logging to the Serial console Rationale: Enabling the logs to be sent to the Serial console may...

Details Determines the size of the local buffer in which the logs are stored so that they can be checked...

Details Determines which syslog messages should be sent to the syslog server. Rationale: Syslog messages are an invaluable tool for...

Details Enables the inspection of an application that is not in the default global policy application inspection Rationale: By default,...

Details Disables the Proxy-ARP function on untrusted interfaces Rationale: The Firepower replies to ARP requests performed to IP addresses belonging...