![]() A scenario would be that we have an underlay, a corporate network, and a guest network VRF-routed zone big macro security zones. That ability has been critical in some of the designs we've done. That is possible with SGTs and SD-Access and Firepower. There have also been use cases where I'm doing east-west and north-south in the same firewall box. It's got a lot more information than NetFlow-type systems. As a result, I was able to give information to the customer, saying, "This is what it's doing and this is what it's seeing in your network." I find it very helpful to get all that type of data. It was incredibly helpful in picking up all of the flows of data. I used Firepower boxes for some of those, where we tapped a line and let Firepower see all the traffic. ![]() I've done network assessments, where we wanted to get visibility into all flows. ![]() For the customer, it's a lot easier in the newer platform than it was in the previous one. In some cases that I'm aware of, when moving from specific platforms like Check Point, Firepower has offered a much easier way of working with the platform and deploying changes. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |