08-26-2021 06:15 AM
Hello,
is it possible with FTD to do with FTD, to have IPSec tunnels from more than one interface ?
We have a firewall connected to a wan router by 3 interfaces (on the wan router each interface is in a different VRF).
We want to create an IPSec tunnel from each of these 3 interfaces.
is it possible ? (we have FMC), I attached a diagram .
thank you
Solved! Go to Solution.
08-26-2021 06:21 AM
Well you can only have 1 active default gateway on the FTD. You'd need specific static routes via the other interfaces to the peer you wish to establish a tunnel with.
08-26-2021 06:39 AM
sakoury@dcgroup.com no restrictions, you just select the interface when creating the topology in the FMC.
08-26-2021 06:21 AM
Well you can only have 1 active default gateway on the FTD. You'd need specific static routes via the other interfaces to the peer you wish to establish a tunnel with.
08-26-2021 06:35 AM
Hello Rob,
Thanks for your reply, we will add the static routes via other interfaces.
I remember with ASA we had the restrictions of enabling cryptomap on only one interface,
does this limitation exists in FTD ?
Thank you
08-26-2021 06:39 AM
sakoury@dcgroup.com no restrictions, you just select the interface when creating the topology in the FMC.
08-26-2021 06:55 AM
Thank you Rob, Appreciated
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: