FTD - Deployment Modes and Interface Modes

muthumohan — Thu, 10 Mar 2022 05:30:07 GMT

Hi All,

The more I read about this topic, the more I get confused.

I am pretty clear on the deployment modes, routed and transparent modes and how they work.

Again, I clearly know how the interface modes work.

The source of confusion is the combination of two, deployment modes and interface modes.

For example, how will FTD work in inline-set interface mode in the routed mode? In inline-set, the incoming and outgoing interfaces are fixed, that means no 'routing' takes place. Also, in inline-set, no IP address is configured on the interfaces.

Another source of confusion is "IPS-Only" mode? What is this mode on FTD? Does this mode only working on 'Intrusion Policy' bypassing all other policies like ACP, File Policy etc.? For me, Inline-set, inline-tap and passive interface modes are better used in "IPS-Only" mode rather than in routed or transparent mode.

Any clarification on this would be greatly appreciated.

Thanks,

Mohan

Re: FTD - Deployment Modes and Interface Modes

muthumohan — Thu, 10 Mar 2022 05:41:26 GMT

In other words, does ACP (URL Filtering, Application filtering etc.) and File Policy work in inline-set, inline-Tap and passive interface modes? Or, only Intrusion policy (IPS-Only) works in this mode?

topic Re: FTD - Deployment Modes and Interface Modes in Network Security

FTD - Deployment Modes and Interface Modes

Re: FTD - Deployment Modes and Interface Modes