Thank you for your successful completion of the Hybrid Mesh Firewall Training and for your commitment to deepening your expertise with Cisco Secure Firewall and advancing your customers’ long-term security strategies.
The Quickstart to Security: Cisco Firewall Homelab Setup workshop is designed to enable participants to onboard their Cisco Secure Firewall into Cisco Security Cloud Control and Cloud Delivered FMC for Homelab use.
During this session, you will onboard your Cisco Secure Firewall into your Cisco Security Cloud Control tenant using Zero-touch provisioning. As part of the onboarding process, you will configure security policies on your firewall enabling your local LAN devices to access the internet with increased protection and visibility to device’s activities directly through cloud-delivered FMC.
Key Takeaways
- Understanding of Cisco’s Hybrid Mesh Firewall solution and its advantages
- Gain hands-on experience with Cisco Security Cloud Control for centralized and extensive security management
- Onboard Cisco Secure Firewall for Homelab use
- Gain the skills needed to deliver impactful customer demos and POCs
Who Should Attend
- Participants who have completed the Hybrid Mesh Firewall : PseudoCo Project Meteor workshop and have received a Cisco Secure Firewall and Cisco Security Cloud Control Tenant.
Workshop Format
- Duration: 2 hours
- Structure: A multi-phase, self-contained hands-on workshop
- Phases Include:
- Introduction to Cisco Secure Firewall Hardware
- Onboarding firewall on to Security Cloud Control Tenant
- Configuring standard and advanced settings on the firewall using Cloud Delivered Firewall Management Center
- Home Lab Firewall installation best practices
- Tools Used: Cisco Security Cloud Control, Secure Firewall
Prerequisites
- Basic understanding of firewall concepts and network security
- Cisco Secure Firewall Unit
- Security Cloud Control Tenant
Completion of the workshop grants access to:
- Cisco Secure Firewall device
- Security Cloud Control
- Firewall Management
- Cloud-Delivered Firewall Management Center (cdFMC)
- Firewall Threat Defense (FTD) Subscription licenses including Threat (IPS), Malware Protection, and URL filtering.
Technical Disclaimer
· Be sure to follow the QuickStart guide and onboard your firewall to Security Cloud Control (SCC) within 30 days of your SCC tenant welcome email.
· Important: Remember, these seed unit firewalls are enterprise firewalls, never remove power without safely shutting the firewall down as explained in section 2.6 of the quick start guide.
· Important: We recommend waiting to power on your firewall for the first time until you are ready to onboard the firewall in SCC. Zero Touch Provisioning (ZTP) using the Serial Number will only work the first time the firewall is turned on. If ZTP does not work, you can login to the firewall via a serial connection and use the CLI Registration Key method in SCC.
· The Security Cloud Control tenants that Cisco creates for home lab firewall seed units have special licensing processes and smart license accounts built-in so you will not need to request licenses or renewals.
· If you wish to use your own pre-existing Security Cloud Control account, licensing is not available and must be purchased separately.
· Once you have completed the QuickStart guide, you will notice every couple of days your firewall will show out of sync in SCC even when you have not made any changes. This is expected as Cisco maintains the cdFMC as a SaaS solution and applies updates and patches regularly.
Privacy and Telemetry
Please note that Cisco Subject Matter Experts (SMEs) who provision your licensing and tenants will be de-provisioned immediately after setup, ensuring no ongoing access or visibility into your home network. As a prerequisite, Firewall Telemetry must be enabled to verify proper device utilization. This telemetry strictly monitors device health and usage without providing Cisco access to your network traffic or data.
Thank you for your continued support of Cisco Secure Firewall. Should you have any questions or require further assistance, please do not hesitate to contact this team directly.