cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

978
Views
15
Helpful
5
Replies

Firepower Device vs Firepower Threat Defense Device

Community,

Ive noticed in several areas of the FMC where you are presented with a choice when doing configurations. For instance in the VPN settings you are presented with choosing Firepower Device or Firepower Threat Defense Device. I believe the same is true when setting up Logical Devices in the 4140. What is the difference between these 2 choices? 

 

Thank you.

1 ACCEPTED SOLUTION

Accepted Solutions

Yes that is correct now you understand the difference between it.

please do not forget to rate.

View solution in original post

5 REPLIES 5
-Pili
Beginner

Hi, 

 

The main difference is that the firepower device is a add-on that you can have inside the ASA software, on FTD the ASAv and the Firepower code are mixed into the same appliance. In terms of how it works its the same, just the way that is operating within the box. 

 

 


@-Pili wrote:

Hi, 

 

The main difference is that the firepower device is a add-on that you can have inside the ASA software, on FTD the ASAv and the Firepower code are mixed into the same appliance. In terms of how it works its the same, just the way that is operating within the box. 

 


What is running as an add-on on the ASA is a third option, that are the firepower services for the ASA. The Firepower option for example in FMC is for the legacy Firepower implementation like the 7k and 8k appliances. They are all EOS and probably some are already EOL.

Thank you both for the quick replies. So what I am understanding is that "Firepower Device" refers to either the Firepower Module running on an ASA or the EOL 7000/8000 series devices, while the "Firepower Threat Defense Device" option is for the actual FTD devices (2100, 4100 etc.)?

 

Am I understanding this correctly?

 

Thank you. 

Yes that is correct now you understand the difference between it.

please do not forget to rate.

View solution in original post

Not completely correct. Especially the mentioned VPN, but also for example the NAT-Policy is not for the Firepower module on the ASA, as this is configured on the ASA itself in the "old way" like CLI, ASDM or CSM.

Create
Recognize Your Peers
Polls
Which of these topics should we host an event in the Community?

Top Choice: pxGrid (36%)

Content for Community-Ad