cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1560
Views
5
Helpful
3
Replies

Can FTD on NGFW (without FMC) perform "tracked routing" and "redundant routing"?

CSCO13058904
Level 1
Level 1

Hi!

I want to know whether FTD (without FMC) on NGFW can perform theses functions or not.

 

1. Tracked Routing
- like when the firewall has links to two ISP, and the traffic normally goes to ISP1.
But when ISP1 is down, then the internet traffic goes to ISP2 instead.

 

2. Redundant Routing
- In a router, I can put one or more redundant next hops for the same destination with the use of metric, like this:-

ip route 10.0.0.0 255.255.255.0 111.111.1.1
ip route 10.0.0.0 255.255.255.0 111.111.1.2 10

 

or this

 

ip route 0.0.0.0 0.0.0.0 111.111.1.1
ip route 0.0.0.0 0.0.0.0 111.111.1.2 10

 

but I do not know if FTD allows me to do this or not.

 

At the moment, I only find that if I want to have these two functions on FTD, I need to also have FMC.
But if i do not want FMC, I need to go back and use ASA.

 

Thanks for your advise.
Best Regards

1 Accepted Solution

Accepted Solutions

Muhammad Awais Khan
Cisco Employee
Cisco Employee

Hi,

 

Tracked Routing is started supported from release 6.5 on irepower Device Manager/FDM which is local device manager of FTD appliance. FDM works without FMC.

 

Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/650/relnotes/firepower-release-notes-650/features.html

 

Redundant Routes are also supported directly from Firepower Device Manager, when you add a static Route, there is option available to define the metric. Also, FTD supports Equal Cost Multi Path Routing or ECMP where you can have upto 8 Routes for same destination with same metric.

 

Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/630/fdm/fptd-fdm-config-guide-630/fptd-fdm-routing.html#ID-2101-0000004d

View solution in original post

3 Replies 3

Muhammad Awais Khan
Cisco Employee
Cisco Employee

Hi,

 

Tracked Routing is started supported from release 6.5 on irepower Device Manager/FDM which is local device manager of FTD appliance. FDM works without FMC.

 

Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/650/relnotes/firepower-release-notes-650/features.html

 

Redundant Routes are also supported directly from Firepower Device Manager, when you add a static Route, there is option available to define the metric. Also, FTD supports Equal Cost Multi Path Routing or ECMP where you can have upto 8 Routes for same destination with same metric.

 

Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/630/fdm/fptd-fdm-config-guide-630/fptd-fdm-routing.html#ID-2101-0000004d

Thanks for your great help.

You are welcome :) 

Review Cisco Networking for a $25 gift card