08-20-2022 08:25 PM
Hi tech people,
I have deployed the active/standby FTD with FMC behind the NAT Routers(Internet edge router). My FTDs are in Route Mode. I want to use the ftd as a NGFW firewall to protecting my LAN and upstream router. In this scenario my routing is working and user can use the Internet but I observed that my policies are not working to block the desire traffic through the firewall. Do I need to do somen changes in design or I can protect my system using intrusion prevention with balance security in place. You suggestion will be high appreciated.
Thanks for your support.
08-21-2022 12:45 AM
but I observed that my policies are not working to block the desire traffic through the firewall
what is the version of FTD, is this managed by FMC ? what traffic example, Hope you have a Licensed for IPS.
some reference :
08-21-2022 04:06 AM
may be FTD prefilter policy allow all traffic pass through FTD ?
08-21-2022 06:08 AM - edited 08-21-2022 06:09 AM
If you want to understand and diagnostic your issues You need to master two things on FTD:
-packet flow on FTD through different policies and the logic of each policy: prefilter policy, SSL Policy, Access Control Policy, File policy and Intrusion policy.
-understand the log analysis through the event viewer on FMC.
I advice to go through the two points listed above.
Best regards
Redouane
09-30-2022 10:27 PM
If you want to understand and diagnostic your issues You need to master two things on FTD:
-packet flow on FTD through different policies and the logic of each policy: prefilter policy, SSL Policy, Access Control Policy, File policy and Intrusion policy.
-understand the log analysis through the evekt viewer on FMC.
I advice to go through the two points listed above.
Best regards
Redouane
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide