08-30-2020 05:22 PM
Hi,
How I will know that my FTD is protecting me from DDOS type of attacks. where I can find If this protection is enabled.
How FirePOWER can protect us from DDOS type of attacks and If Its not setup from where I can start implementing it.
08-31-2020 11:14 PM
DDOS is as much about flooding your Internet link with traffic as it is hitting your actual systems with malicious traffic. A Firepower 2000 series appliance cannot do anything about the former type of attack. It will restrict traffic to your internal network via the standard access control policy rules you have in place.
09-01-2020 12:06 AM
Thanks.
As you know we can verify threat detection setting on ASA to see whats restricted to mitigate such DDOS attacks.
Is there any way I can verify same setting on FMC and push to FTDs If not setup properly.
09-01-2020 08:26 AM
The equivalent in FTD is known as rate-based attack prevention. Details on configuring it in FMC can be found here:
The feature requires FMC and is not available with local management (FDM).
09-03-2020 02:54 PM
Thanks Marvin,
Yes Its clear. I also checked with TAC and we dont have threat defense policy configured on FMC i.e. required for DOS type of attacks.
09-05-2020 04:59 AM
You're welcome. Please rate my answer if it helped.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide