Set the Firewall Mode

You can set the firewall mode when you perform the initial system setup at the CLI. We recommend setting the firewall mode during setup because changing the firewall mode erases your configuration to ensure you do not have incompatible settings. If you need to change the firewall mode later, you must do so from the CLI.

Procedure

Step 1

Unregister the threat defense device from the management center.

You cannot change the mode until you deregister the device.

  1. Choose Devices > Device Management.

  2. Next to the device you want to unregister, click More (more icon), and then click Delete.

Step 2

Access the threat defense device CLI, preferably from the console port.

Step 3

Change the firewall mode:

configure firewall [routed | transparent]

Example:


> configure firewall transparent
This will destroy the current interface configurations, are you sure that you want to proceed? [y/N] y
The firewall mode was changed successfully.

Step 4

Re-register with the management center.