Please see my attach file (router1-FTD-router2), all devices in area 0.
Does I need policy to permit ospf like these to permit ospf protocol go through FTD?
- source: 10.0.1.0/24 destination: 192.168.1.0/24 service/application: OSPF
- source: 192.168.1.0/24destination: 10.0.1.0/24 service/application: OSPF
Are you attempting to establish an OSPF neighbour ship between the two routers, though the firewall and the firewall not being part of your ospf process?
the FTD would need to allow protocol 89 (OSPF) between interfaces.
If the FTD is going to be a part of the OSPF process then you only need access rules that allow regular data traffic. No extra rules needed if the FTD is going to establish OSPF neighbor with the routers.
I assume the FTD in transparent mode and R1 is as internal network and R2 is external network. if not change it according to your design. your rule would be like this. in below example outside = external network and BIG_BOX = internal network
Multicast address of ospf are 22.214.171.124,126.96.36.199