Dears,
I have a project to migrate an ASA to FTD but i am worried about the FTD performance due the following reason:
The Access-Control policies number in the ASA are huge around 10000 line, so when i do the migration to the FTD i will have a huge number of ACP rules, my concern about the performance when i attach the intrusion policy and the file policy to each rule coz the rules number is huge !!
So i am wondering if the FTD performance will degrade when we enable IPS and AMP policy for huge number of rules or the structure is not concerned about the number of the rules that IPS will be enabled.
I am worried because i can see the deployment time is increasing once i am configuring more rules with IPS in other environments.
Thanks in advance,
Muhannad