https://community.cisco.com/t5/network-security/fmc-policy-configuration-problem/m-p/3675965#M132826 thanks for reply,i am clearly understood Fri, 27 Jul 2018 03:43:12 GMT wupeifeng 2018-07-27T03:43:12Z https://community.cisco.com/t5/network-security/fmc-policy-configuration-problem/m-p/3578429#M132824 <HTML><HEAD></HEAD><BODY><P>hello，everyone</P><P></P><P>I am confused about two FMC policy Configuration problem，</P><P></P><P>question one：</P><P>on the advance config of&nbsp; the access control policy , As shown in the following figure:</P><P>when I chose this option ,invoking intrusion policy on here ,is that mean intrusion policy taken into effect all traffic before access control policy handle traffic?</P><P><IMG __jive_id="119425" alt="2018-07-18_22-38-41.png" class="image-1 jive-image" src="https://community.cisco.com/legacyfs/online/fusion/119425_2018-07-18_22-38-41.png" style="width: 620px; height: 397px;" /></P><P>question two:</P><P>when FTD interface on route or transparent mode ,can this option be taken into effect ?</P><P>for example :when i chose this option, it drop traffic ,otherwise it don't.</P><P><IMG __jive_id="119427" alt="2018-07-18_22-40-12.png" class="jive-image image-2" src="https://community.cisco.com/legacyfs/online/fusion/119427_2018-07-18_22-40-12.png" style="width: 620px; height: 202px;" /></P><P></P><P></P><P>i hope someone can&nbsp; answer my question,thanks</P></BODY></HTML> Wed, 18 Jul 2018 15:34:08 GMT https://community.cisco.com/t5/network-security/fmc-policy-configuration-problem/m-p/3578429#M132824 wupeifeng 2018-07-18T15:34:08Z https://community.cisco.com/t5/network-security/fmc-policy-configuration-problem/m-p/3674979#M132825 <P>Hi,</P> <P>&nbsp;</P> <P>Please find the answers inline to the questions.</P> <P>&nbsp;</P> <P>A1: The option of intrusion policy before the access control policy is determined will be applicable for all the traffic that is coming to the device. If any of the incoming traffic matches the intrusion policy associated under this option it will be dropped. Else it would go to access control policy and take action based on rule match.</P> <P>&nbsp;</P> <P>A2: For any traffic that matches the intrusion policy unless the action "drop when inline" is not selected, the traffic will not be dropped. This is applicable to both routed mode as well as transparent mode.</P> <P>&nbsp;</P> <P>In case if "drop when inline" is not selected, you would notice a lot of "would have dropped events"</P> <P>&nbsp;</P> <P>&nbsp;</P> Thu, 26 Jul 2018 03:25:04 GMT https://community.cisco.com/t5/network-security/fmc-policy-configuration-problem/m-p/3674979#M132825 Raghunath Kulkarni 2018-07-26T03:25:04Z https://community.cisco.com/t5/network-security/fmc-policy-configuration-problem/m-p/3675965#M132826 thanks for reply,i am clearly understood Fri, 27 Jul 2018 03:43:12 GMT https://community.cisco.com/t5/network-security/fmc-policy-configuration-problem/m-p/3675965#M132826 wupeifeng 2018-07-27T03:43:12Z