Hey guys,
Looking for a bit of advice or anecdotes on running Cisco ASA software on the FTD hardware.
We recently purchased a couple of demo boxes along with the Cisco Firepower management console in order to test the new platform out. We have found that there is a few issues with the FTD software platform that we simply can't work around. (Slow deployments with FMC and port-channel limitations using the onboard management)
Our Cisco rep has suggested loading the ASA software onto the FTD hardware in order to get the latest and greatest performance on a familiar platform and to maintain hardware support for the life of the devices. I have some concerns with regards to performance and optimization with the legacy software on a modern hardware platform and was wondering if anyone had experience with this. Is there any major limitations that a normal ASA would not experience? Any issues/bugs that you've encountered. We have a new order going in soon and are still debating whether or not to scrap it and start over with native ASA instead of FTD hardware.
(I have voiced my opinion on experimenting with Fortinet and PAN but management feels that the project that these firewalls will be destined for is too time sensitive to learn a new vendor's platform so we will reevaluate when we have more time with regards to other vendors)
Thanks in advance.
No comments:
Post a Comment