topic FTDv Azure design in Network Security https://community.cisco.com/t5/network-security/ftdv-azure-design/m-p/4447677#M1082829 <P>Hi,</P><P>Requirement is to implement separate FTD firewalls in Azure for traffic coming from on-premises via Express route and another for internet traffic. Also want to achieve some FTD redundancy. ref:<A href="https://community.cisco.com/t5/security-documents/high-availability-and-scalability-design-and-deployment-of-cisco/ta-p/4109439" target="_blank">High Availability and Scalability Design and Deployment of Cisco Firepower Threat Defense Virtual in... - Cisco Community</A>&nbsp;The scalability part is overkill only need some redundancy.</P><P>&nbsp;Is there anyone with this kind of design? in azure&nbsp; we are using hub and spoke.</P><P>something like this :</P><P>f.eks</P><P>-if prod1 wants to talk to prod2 then traffic will go prod1&gt;FTDv1&gt;FTDv2&gt;prod2</P><P>&nbsp;</P><P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Internet</P><P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;|</P><P>on-prem ----FTDv1 ------FTDv2</P><P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; |&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; |</P><P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;prod1 a,b,c&nbsp; &nbsp; &nbsp; prod2 a,b,c</P> Wed, 11 Aug 2021 10:42:04 GMT mateens 2021-08-11T10:42:04Z FTDv Azure design https://community.cisco.com/t5/network-security/ftdv-azure-design/m-p/4447677#M1082829 <P>Hi,</P><P>Requirement is to implement separate FTD firewalls in Azure for traffic coming from on-premises via Express route and another for internet traffic. Also want to achieve some FTD redundancy. ref:<A href="https://community.cisco.com/t5/security-documents/high-availability-and-scalability-design-and-deployment-of-cisco/ta-p/4109439" target="_blank">High Availability and Scalability Design and Deployment of Cisco Firepower Threat Defense Virtual in... - Cisco Community</A>&nbsp;The scalability part is overkill only need some redundancy.</P><P>&nbsp;Is there anyone with this kind of design? in azure&nbsp; we are using hub and spoke.</P><P>something like this :</P><P>f.eks</P><P>-if prod1 wants to talk to prod2 then traffic will go prod1&gt;FTDv1&gt;FTDv2&gt;prod2</P><P>&nbsp;</P><P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Internet</P><P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;|</P><P>on-prem ----FTDv1 ------FTDv2</P><P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; |&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; |</P><P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;prod1 a,b,c&nbsp; &nbsp; &nbsp; prod2 a,b,c</P> Wed, 11 Aug 2021 10:42:04 GMT https://community.cisco.com/t5/network-security/ftdv-azure-design/m-p/4447677#M1082829 mateens 2021-08-11T10:42:04Z