01-25-2023 06:47 PM
For IPsec Site-to-Site VPN, is the Firepower 2100 running FTD code supported/recommended or should we stick with the ASA code running on the FP2100?
01-25-2023 11:36 PM
Firepower is the recommended. Both ASA and FTD maintain a site to site VPN in the same way. Though the ASA image is still around, I believe in the not too distant future it will be end of life and FTD will become the only firewall in Cisco's portfolio...again, this is my view / opinion and not Cisco's.
01-26-2023 12:51 AM
Hi @ThariqAli
The Firepower 2100 running FTD (Firepower Threat Defense) code is recommended for IPsec Site-to-Site VPN. FTD is a unified software image that includes the firewall, VPN, and advanced threat protection features of Cisco's ASA (Adaptive Security Appliance) and Cisco Firepower NGFW (Next-Generation Firewall) in a single software image. FTD offers more advanced features and capabilities compared to ASA code, such as improved threat detection and response, improved VPN capabilities, and improved management and reporting. Additionally, FTD is the recommended software image for all Firepower devices moving forward, as Cisco is phasing out support for the ASA code on Firepower devices.
Please rate this and mark as solution/answer, if this resolved your issue
All the best,
AK
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide