https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764522#M132658 <P>Any&nbsp; transparent firewall is a Layer 2 firewall that acts like a “bump in the&nbsp;wire,” or a “stealth firewall,” and is not seen as a router hop to connected devices.</P><P>&nbsp;</P><P>in use cases where you want to forward all the L2&nbsp; traffic via FW. ( you have difficulties to change topology in exiting environment and deploy FTD inline.)</P><P>un supported features :</P><P>&nbsp;</P><P>1. DHCP relay</P><P>2. routing protocol (only static allowed)</P><P>3. multicast routing.</P><P>4. QoS</P><P>5. VPN.</P><P>&nbsp;</P> Sun, 16 Dec 2018 10:23:40 GMT balaji.bandi 2018-12-16T10:23:40Z https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764484#M132656 <P>Hi Techies, Can anyone please help on below Issue its really appreciating till now for yours entire help. "If we plant a FTD in Transparent Mode/Layer2 then what are limitation in terms of IPS/IDS, Malware and URL subscriptions. Can we still enforce the Security Features. What are other limitations" Thanks</P> Tue, 12 Mar 2019 11:17:20 GMT https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764484#M132656 animesh.mishra 2019-03-12T11:17:20Z https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764514#M132657 <P>If we plant a FTD in Transparent Mode/Layer2 then what are limitation in terms of IPS/IDS, Malware and URL subscriptions. Can we still enforce the Security Features. What are other limitations</P><P>&nbsp;</P><P>in terms of transparent mode on FTD there is no limitation in terms of IPS/IDS, Malware and URL subscription. what model you have?</P><P>this link will tell you what are the spec.<span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="31.PNG" style="width: 937px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/26291i2D15DE32931AA7CC/image-size/large?v=v2&amp;px=999" role="button" title="31.PNG" alt="31.PNG" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="32.PNG" style="width: 941px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/26292i1C7C1059E02953FE/image-size/large?v=v2&amp;px=999" role="button" title="32.PNG" alt="32.PNG" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="33.PNG" style="width: 935px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/26290i60FB64F4B4482ADE/image-size/large?v=v2&amp;px=999" role="button" title="33.PNG" alt="33.PNG" /></span></P><P><A href="https://www.cisco.com/c/en/us/products/collateral/security/firepower-ngfw/data_sheet-c78-736661.html" target="_blank">https://www.cisco.com/c/en/us/products/collateral/security/firepower-ngfw/data_sheet-c78-736661.html</A></P> Sun, 16 Dec 2018 09:41:13 GMT https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764514#M132657 Sheraz.Salim 2018-12-16T09:41:13Z https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764522#M132658 <P>Any&nbsp; transparent firewall is a Layer 2 firewall that acts like a “bump in the&nbsp;wire,” or a “stealth firewall,” and is not seen as a router hop to connected devices.</P><P>&nbsp;</P><P>in use cases where you want to forward all the L2&nbsp; traffic via FW. ( you have difficulties to change topology in exiting environment and deploy FTD inline.)</P><P>un supported features :</P><P>&nbsp;</P><P>1. DHCP relay</P><P>2. routing protocol (only static allowed)</P><P>3. multicast routing.</P><P>4. QoS</P><P>5. VPN.</P><P>&nbsp;</P> Sun, 16 Dec 2018 10:23:40 GMT https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764522#M132658 balaji.bandi 2018-12-16T10:23:40Z https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764582#M132659 Hi<BR /><BR />Deploying FTD in transparent mode won't remove any features from next-gen features.<BR />Limitations are on other features.<BR />If you implement FTD and redirect the traffic using span to monitor the traffic, there you'll have some limitations. Sun, 16 Dec 2018 16:03:31 GMT https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764582#M132659 Francesco Molino 2018-12-16T16:03:31Z https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764728#M132660 Thanks Bud Mon, 17 Dec 2018 03:04:09 GMT https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764728#M132660 animesh.mishra 2018-12-17T03:04:09Z https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764766#M132661 You're welcome Mon, 17 Dec 2018 05:58:55 GMT https://community.cisco.com/t5/network-security/limitations-of-ftd-in-transparent-mode/m-p/3764766#M132661 Francesco Molino 2018-12-17T05:58:55Z