CSCvf10507 - Enhancement QOS - Firepower Threat Defense Priority queuing / Bandwidth allocation

Ashley Hare · ‎04-05-2019

This is also apparent in FTD v6.3.0.1.

No functionality within the FMC GUI (v6.3.0.2) to carry this out.

If you attempt to deploy configuration using FlexConfig, you can create a class and assign it to a policy-map.

If you then attempt to use the ASA command 'priority' under this, the FMC will claim successful deployment of the code to the FTD appliance, but by running "show running-configuration" you won't see this entry within the ASA code.

Also trying to enable a low latency queue on an interface using 'priority-queue <interface>' won't deploy to an FTD device - FMC will claim an unsuccessful deployment of the config.

TAC have confirmed that this isn't yet a feature, although this enhancement request doesn't indicate a plan to implement it in an upcoming release.

The workaround suggested was to enable fastpath for any traffic requiring priority, but I don't see bypassing IPS features as a suitable solution for lack of this functionality.

bcoverstone · ‎08-16-2021

I held off updating our ASA 5505 until this year.

QoS still isn't supported in FDM at all, and even with FMC, you still can't use priority queueing.

I don't know what in the world Cisco is doing. The FTD 7.0 is almost a good product, they just need to fix a few glaring items that are missing. The current version is about where the original FTD should have been released at. What are we now, 7 years later? It took 7 years for Cisco to make FTD work as well as it should have on the initial release!!

I understand that I can also flash it as an ASA device. I may have to go that path because this just isn't going to work for my company.