Thursday, September 3, 2020

Cisco FTD Bugginess

We have about 10 FTD firewalls acting as the edge and backbone of our data centers and are getting concerned with the number of bugs we were hitting with these devices recently.

So far we have had a routine firmware upgrade completely corrupt the firewall and a format of the firewall was required, the devices get out of sync periodically which causes them to split the configs between the 2 devices in the HA pair (1 has the NATs and 1 has the ACLs) and stop passing traffic, continuous VPN disconnects occur due to a bug in the code which forced us to upgrade not only the firewall but also the FMC (14 hour process so far), and this is all on top of other issues including SIP calls not working correctly until you disable SIP inspection which we never had to do in our old ASAs.

Does anyone have any ideas as to why these FTDs are such hot garbage? Does anyone have any opinions on the FTDs in general? Would we be better off junking these in favor of another vendor?



No comments:

Post a Comment