Good Afternoon,
We are looking at deploying FTD's and the it has been brought up that new policies are to be built as well. The concern is that deploying these new policies in a monitoring state to ensure it does not block valid traffic will leave us open to attacks. I've configured Firepower a few times, but never from the ground up and i was curious as to how someone protects their assets at the same time as letting the policy learn and be tuned. Any insight is helpful. thank you!