Hi

I am confused between Firepower FTD stuff and Firepower Services Software. So following are my questions based on what I understood:

With Firepower Services Software module:

1. You have your normal ASA OS and then you download the Firepower Services Software. Or is the compatible firewall always shipped with the Firepower Services Software pre installed?

2. So ASA will do - Routing, ACLs, NAT, VPN

          Firepower Services Software will do - AVC, URL Filtering, NGIPS and AMP

Is this understanding correct?

3. ASA as well as Firepower Services Software can be managed by ASDM and CLI. But only Firepower Services Software can be managed by Firepower Management Center i.e. only the above mentioned 4 functions of Firepower Services Software can be controlled by Firepower Management Center.

With FTD Image

4. There is only one image on the firewall. Correct?  (I say image because to install FTD I somehow need 2 files: like a *.lfbff file. and a .pkg file. Still confused why)

5. All the functions mentioned above for ASA as well as those provided by Firepower Services Software will be managed ONLY by Firepower Management Center. That means even if I have to add a simple ACE then I need to do it using the Management Center? Correct?

Please Clarify. Everything  with FTD/Firepower is really confusing. 😞