Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
777
Views
0
Helpful
1
Replies

Anyconnect VPN on ASA with FTD running parallel

MehnazKhan2492
Level 1
Level 1

‎03-24-2021 11:33 AM

Hi, 

 

Just seeking some help and guidance as we are running RA VPN on ASA 5512 with users authenticated via ISE posturing policies, we prefer to build a parallel FTD so for now ASA and FTD will be running parallel for same RA VPN.

 

Slowly and steadily we will move all the users to new FTD appliances, are there any recommendation steps to avoid any outage while both firewalls are running parallel.

 

Regards,

Mehnaz

 

 

Labels:
0 Helpful
1 Reply 1

Sheraz.Salim
VIP Alumni
VIP Alumni

‎03-24-2021 11:38 AM - edited ‎03-24-2021 11:39 AM

ASA is on different public ip address/different cert presesented to client and for FTD is also on different subnet/different ip address. as long as the clinet is landing on different firewall and client authenticate from ISE you should be fine.

 

here are few link might find you interesting.

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/215236-ise-posture-over-anyconnect-remote-acces.html

please do not forget to rate.
0 Helpful
Customers Also Viewed These Support Documents