Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1095
Views
2
Helpful
3
Replies

IPS fail-open for FTD

Go to solution
tato386
Level 6
Level 6

‎07-18-2023 06:24 AM

ASA with FirePower had a "fail open/close" setting to control access in case of SFR module failure.  From what I can tell, with an FTD device the IPS function is integrated into the firewall (LINA?) so is this setting NA in the FTD environment?

Thanks,

Diego

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-19-2023 07:23 AM

It is mostly not applicable with the exception of the optional network module that is available for some models that offers fail-to-wire capability. Very few customers opt for those since they are quite expensive and only available for appliance that offer a network module expansion slot.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-19-2023 07:23 AM

It is mostly not applicable with the exception of the optional network module that is available for some models that offers fail-to-wire capability. Very few customers opt for those since they are quite expensive and only available for appliance that offer a network module expansion slot.

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to MHM Cisco World

‎07-19-2023 07:29 AM

Note the IPS-only mode for which you can do Snort fail open in software is not the mode 98% of customers are running.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card