Cisco 4200 Series Manuale
Cisco Secure Firewall 4200 Series Hardware Installation Guide
First Published: 2023-09-07
Last Modified: 2023-09-13
Americas Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
http://www.cisco.com
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 527-0883
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS,
INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND,
EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH
THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY,
CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.
The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB's public domain version of
the UNIX operating system. All rights reserved. Copyright ©1981, Regents of the University of California.
NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS" WITH ALL FAULTS.
CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF
MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.
IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT
LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS
HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, network
topology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentional
and coincidental.
All printed copies and duplicate soft copies of this document are considered uncontrolled. See the current online version for the latest version.
Cisco has more than 200 offices worldwide. Addresses and phone numbers are listed on the Cisco website at www.cisco.com/go/offices.
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL:
https://www.cisco.com/c/en/us/about/legal/trademarks.html. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a
partnership relationship between Cisco and any other company. (1721R)
©2023 Cisco Systems, Inc. All rights reserved.
CONTENTS
Overview 1
CHAPTER 1
Features 1
Deployment Options 4
Package Contents 4
Serial Number and Documentation Portal QR Code 6
Front Panel 8
Front Panel LEDs 11
Rear Panel 14
8-Port 1/10/25-Gb Network Module 15
4-Port 40-Gb Network Module 17
2-Port 100-Gb Network Module 18
4-Port 200-Gb Network Module 20
8-Port 1000Base-T Network Module with Hardware Bypass 22
6-Port 10-Gb SR/10-Gb LR/25-Gb SR/25-Gb LR Network Module with Hardware Bypass 24
Power Supply Module 27
Dual Fan Modules 29
SSDs 30
Supported SFP/SFP+/QSFP+ Transceivers 31
Hardware Specifications 35
Product ID Numbers 36
Power Cord Specifications 38
Installation Preparation 45
CHAPTER 2
Installation Warnings 45
Safety Recommendations 47
Maintain Safety with Electricity 48
Cisco Secure Firewall 4200 Series Hardware Installation Guide
iii
Prevent ESD Damage 48
Site Environment 49
Site Considerations 49
Power Supply Considerations 49
Rack Configuration Considerations 50
Mount the Chassis 51
CHAPTER 3
Unpack and Inspect the Chassis 51
Rack-Mount the Chassis Using Slide Rails 51
Ground the Chassis 58
Installation, Maintenance, and Upgrade 63
CHAPTER 4
Install, Remove, and Replace the Network Module 63
Remove and Replace the SSD 65
Remove and Replace the Dual Fan Module 67
Remove and Replace the Power Supply Module 68
Cisco Secure Firewall 4200 Series Hardware Installation Guide
iv
Contents
CHAPTER 1
Overview
•Features, on page 1
•Deployment Options, on page 4
•Package Contents, on page 4
•Serial Number and Documentation Portal QR Code, on page 6
•Front Panel, on page 8
•Front Panel LEDs, on page 11
•Rear Panel, on page 14
•8-Port 1/10/25-Gb Network Module, on page 15
•4-Port 40-Gb Network Module, on page 17
•2-Port 100-Gb Network Module, on page 18
•4-Port 200-Gb Network Module, on page 20
•8-Port 1000Base-T Network Module with Hardware Bypass, on page 22
•6-Port 10-Gb SR/10-Gb LR/25-Gb SR/25-Gb LR Network Module with Hardware Bypass , on page 24
•Power Supply Module, on page 27
•Dual Fan Modules, on page 29
•SSDs, on page 30
•Supported SFP/SFP+/QSFP+ Transceivers , on page 31
•Hardware Specifications, on page 35
•Product ID Numbers, on page 36
•Power Cord Specifications, on page 38
Features
The Cisco Secure Firewall 4200 is a standalone modular security services platform that includes the Secure
Firewall 4215, 4225, and 4245.
The Secure Firewall 4200 supports Cisco Firepower Threat Defense and Cisco ASA software. See the Cisco
Secure Firewall Threat Defense Compatibility Guide and the Cisco Secure Firewall ASA Compatibility guide,
which provide Cisco software and hardware compatibility, including operating system and hosting environment
requirements, for each supported version.
The following figure shows the Secure Firewall 4200.
Cisco Secure Firewall 4200 Series Hardware Installation Guide
1
Figure 1: Secure Firewall 4200
The following table lists the features for the Secure Firewall 4200.
Table 1: Secure Firewall 4200 Features
424542254215Feature
1 RU
Fits a standard 19-inch (48.3-cm) square-hole rack
Form factor
Two slide-rail mounting brackets and two slide rails
4-post Electronic Industries Association (EIA)-310-D rack
Rack mount
Front to rear (I/O side to non-I/O side)
Cold aisle to hot aisle
Airflow
Two AMD 7763 (280 W
per CPU)
AMD 7763 (280 W)
AMD 7543 (240 W)Processor
Dual socket two 64-coresSingle socket 64-coreSingle socket 32-coreCore count
2.45 GHz (boost up to 3.5 GHz)2.8 GHz (boost up to 3.7
GHz)
Core clock
16 x 64 GB (1 TB) at
3200 Mt/s
8 x 64 GB (512 GB) at
3200 Mt/s
8 x 32 GB (256 GB) at
3200 Mt/s
System memory
Two 1/10/25-Gbps SFP28 portsManagement ports
One RJ-45 serial portConsole port
One USB 3.0 with 5 W Type A portUSB port
Eight fixed 1/10/25-Gbps SFP28 fiber ports
Named Ethernet 1/1 through 1/8
Network ports
Two (hot-swappable)
Hot-swapping of identical modules is supported, but if you replace
a network module with another type, you must reboot the system
so that the new network module is recognized.
Note
Network module slots
Cisco Secure Firewall 4200 Series Hardware Installation Guide
2
Overview
Features
424542254215Feature
• 8-port 1/10Gb SFP+ (FPR-X-NM-8X10G)
• 8-port 1/10/25Gb SFP+ (FPR-X-NM-8X25G)
• 4-port 40-Gb QSFP/QSFP+ (FPR-X-NM-4X40G)
• 4-port 40/100/200-Gb QSFP28/QSFP (FPR-X-NM-4X200G)
200-Gb traffic is not supported until a later release.
Note
• 2-port 100-Gb QSFP56/QSFP28/QSFP (FPR-XNM-2X100G)
• 6-port 10-Gb SFP SR multimode hardware bypass (FPR-X-NM-6X10SRF)
•6-port 10-Gb SFP LR single mode hardware bypass (FPR-X-NM-6X10LRF)
• 6-port 25-Gb SFP SR multimode hardware bypass (FPR-X-NM-6X25SRF)
•6-port 25-Gb SFP LR single mode hardware bypass (FPR-X-NM-6X25LRF)
• 8-port copper 1-Gb 1000Base-T hardware bypass (FPR-X-NM-8X1GF)
Network modules
Ships with two 1900 W AC power supplies
Hot-swappable
Ships with one 1900 W
AC power supply (second
power supply is optional)
Hot-swappable
AC power supply
Yes
Ships with two power supplies.
Note
Yes
You must
order a
second
power
supply.
Note
Redundant power
Three dual fan modules (hot-swappable)Fans
Two Nonvolatile Memory Express (NVMe) SSD slots for EDSFF (Enterprise &
Datacenter SSD Form Factor) SSD drives
Ships with two 1.8-TB SSDs; factory-configured for RAID1.
Storage
Displays the serial number and a QR code that points to the Documentation PortalPullout asset card
Grounding pad on the left side of chassis near the rear power switch; use the
grounding lug kit that ships with the chassis.
Grounding
On rear panelPower switch
Resets the system to factory default without requiring serial console access
The reset button is recessed. Press with a pin and hold longer than
5 seconds to set the system back to the factory default.
Note
Reset button
Cisco Secure Firewall 4200 Series Hardware Installation Guide
3
Overview
Features
Deployment Options
Here are some examples of how you can deploy the Secure Firewall 4200:
• As a firewall:
• At the enterprise internet edge in a redundant configuration
• At branch offices in either a high availability pair or standalone
• At data centers in a high availability pair or clustered, which serves the needs of smaller enterprises
•As a device that provides additional application control, URL filtering, or IPS/threat-centered capabilities:
• Behind an enterprise internet edge firewall in an inline configuration or as a standalone (requires
hardware fail-open network module support)
• Deployed passively off a SPAN port on a switch or a tap on a network, or standalone
• As a branch native SD-WAN solution that offers remote deployment and can be managed over a 4G
LTE
• As a VPN device:
• For remote access VPN
• For site-to-site VPN
Package Contents
The following figure shows the package contents for the Secure Firewall 4200. The contents are subject to
change and your exact contents contain additional or fewer items depending on whether you order the optional
parts. See Product ID Numbers for a list of PIDs associated with the package contents.
Cisco Secure Firewall 4200 Series Hardware Installation Guide
4
Overview
Deployment Options
Figure 2: Secure Firewall 4200 Package Contents
One or two power cords (country-specific)
See Power Cord Specifications, on page 38 for
a list of supported power cords.
2Secure Firewall 4200 chassis1
Ground lug, screws, and washers
•One ground lug (part number 32-100152-01)
• One ground lug bracket (part number
700-122528-01)
• Two M4.0 x 0.6 mm flat head Phillips
screws (part number 48-2030-01)
•Two ¼-20 x 0.297-inch screws (part number
48-102252-01)
• Two 0.469-inch OD, 0.261-inch ID,
0.025-inch T washers (part number
49-100464-01)
4SFP transceiver
(Optional; in package if ordered)
3
Cisco Secure Firewall 4200 Series Hardware Installation Guide
5
Overview
Package Contents
Two slide rails (800-109129-01)
Slide rail accessories kit (53-101561-01):
• Two slide rail mounting brackets (part
number 700-121935-01)
• Six 8-32 x 0.302-inch slide rail mounting
bracket Phillips screws (part number
48-102184-01) for securing the brackets to
the chassis
• Two M3 x 0.5 x 6-mm Phillips screws (part
number 48-101144-01) for securing the
chassis to your rack
6Cable management bracket kit (part number
69-101031-01)
• Two cable management brackets (part
number 700-130991-01)
• Four 8-32 x 0.375-inch Phillips screws (part
number 48-2696-01)
(Optional; in package if ordered)
5
—Cisco Secure Firewall 4200
This document has a URL and QR code that point
to the Digital Documentation Portal. The portal
contains links to the Product Information page,
the Hardware Installation Guide, the Regulatory
and Safety Information Guide, and the Getting
Started Guide.
7
Serial Number and Documentation Portal QR Code
The pullout asset card on the front panel of your Secure Firewall 4200 chassis contains the chassis serial
number and the Documentation Portal QR code, which points to the getting started guide, the regulatory and
compliance guide, and the hardware installation guide.
Cisco Secure Firewall 4200 Series Hardware Installation Guide
6
Overview
Serial Number and Documentation Portal QR Code
Questo manuale è adatto per i seguenti modelli
3
Indice
Altri manuali Cisco Accessori per proiettori
Cisco
Cisco TelePresence 3000 Manuale di istruzioni
Cisco
Cisco TelePresence MX700 Manuale utente
Cisco
Cisco MX200 G2 Manuale utente
Cisco
Cisco SX80 Manuale utente
Cisco
Cisco TelePresence Profile Series Manuale utente
Cisco
Cisco Telepresence MX800 Manuale utente
Cisco
Cisco MX200 G2 Manuale utente
Cisco
Cisco TX1300 47 Manuale utente
