Cisco FTD + FMC Enterprise Security Lab

Multi-site Firepower lab built in Cisco Modeling Labs. Two FTD firewalls — each behind a simulated ISP edge router — managed by a single FMC instance. Covers the full Firepower policy stack from day-zero bootstrap through active threat inspection and event analysis.

• → FTD day-zero bootstrap via JSON config files, management interface setup, and FMC registration — two devices onboarded to a single management center
• → Access Control Policy with explicit allow/block rules, application filtering, URL category blocking (gambling, adult, malware), and IPS integration using Balanced Security and Connectivity baseline
• → Dynamic PAT for inside-to-outside traffic, optional static NAT for published services, identity NAT for VPN/DMZ paths — all visible in FMC connection and NAT event logs