Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4195
Views
0
Helpful
1
Replies

sfr fail-open monitor-only

fcorre
Level 1
Level 1

‎03-04-2019 07:37 PM

Dear,

We have a ASA FirePOWER with module sfr in monitor state "sfr fail-open monitor-only", integrate to FMC.

My query is, as long as I keep the "monitor-only" on the ASA, will any modification that I make in the FMC not impact the traffic? either create zones in the FMC, or put an instrusion policy in inline.

This I consult since I need to create an instrusion policy to see if there would be false positives, for that I will keep the monitor-only and the INStrusion policy in the IPS will put it inline.

 

Thanks vey much.

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-05-2019 12:44 AM

Correct. "monitor-only" will be unable to affect the traffic flow through the ASA.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card