Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
555
Views
0
Helpful
0
Replies

Multiple FTDv in Azure behind an ELB routing/NAT question

c-kn
Level 1
Level 1

‎12-13-2018 03:11 PM - edited ‎03-12-2019 04:17 AM

I have 2 NGFWv/FTDv devices deployed in Azure. They are sandwiched between 2 load balancers to provide "HA" per the video series that everyone watches.

 

https://www.youtube.com/watch?v=Zjc9hmc2m68

 

My question is when providing access to servers behind the firewalls. In various videos in the series Anubhav Swami says to add secondary private IPs to the firewall for each server. Then NAT traffic to the private IP on the inside. I haven't seen any information that directly address this when running this setup with multiple firewalls between the load balancers.

 

In our current setup if I have 2 web servers (web1 and web2) behind the firewall then I will need 3 PIPs on each firewall. One for each server and another for all the "other" traffic. I also have to have a NAT statement for the load balancer probe and the actually traffic for each PIP. These firewalls are managed separately and require separate NAT policies.

 

Am I missing something or is this the correct way to go about this configuration?

 

Thanks.

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card