cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


236
Views
0
Helpful
1
Replies
Beginner

5525-X to Firepower 2120 Migration

What is the best way to move malware policies tied to our existing 5525 to a Firepower 2120? In the FMC, do I apply the rules to the ACP used by the new FTD appliance? 

1 REPLY 1
Highlighted
Hall of Fame Master

Re: 5525-X to Firepower 2120 Migration

Yes, associate the file policy (or policies) with ACP entries as appropriate.

I say "as appropriate" because it's not always needed - for instance if you are allowing inbound https and not de-encrypting then there is no need to associate a file policy since you will not be able to get the SHA-256 of the file to send to the cloud for analysis.