Hi,

Requirement is to implement separate FTD firewalls in Azure for traffic coming from on-premises via Express route and another for internet traffic. Also want to achieve some FTD redundancy. ref:High Availability and Scalability Design and Deployment of Cisco Firepower Threat Defense Virtual in... - Cisco Community The scalability part is overkill only need some redundancy.

 Is there anyone with this kind of design? in azure  we are using hub and spoke.

something like this :

f.eks

-if prod1 wants to talk to prod2 then traffic will go prod1>FTDv1>FTDv2>prod2

                                        Internet

                                             |

on-prem ----FTDv1 ------FTDv2

                      |                      |

                 prod1 a,b,c      prod2 a,b,c