I can’t tell you how helpful this was! I definitely agree that this should be native to FMC, but until then this saved me. Thanks for taking the time to put this together.
Hi I follow as your steps to set the route-map and PBR, but I'd like to know how to delete it. I try to create a new Flexconfig to no them, but still failed.
I am not sure which interface, the flex config should be applied to. You applied it to the ISP interfaces, It didn't work when I tried. I applied it to all the interfaces, including inside network and it worked. - thanks for guide however.
Can you also set packets matching a route map to TRUSTED so all other checks/IPS will be skipped from that point? If so, this would be a good replacement for priority scheduling that no longer exists in FTD
I thought route maps were applied on interfaces where the traffic is being received from the endpoints (ie the interface connected to the LAN)? Is it done differently on the FTD 2100s?
If you have multiple subinterfaces in the same zone "INSIDE" belonging to different networks/vlans how do you configure the FTD to allow communication between those zone. Only the inside zones.
I have a question similar to Carlos. I assume the track statement references an SLA created. Do you have a video that goes into more detail about SLA creation? Can you point me in a direction of some good documentation that I have with SLAs and PBR? The Internet is really lacking in this. Thanks.
www.cisco.com/c/en/us/td/docs/security/firepower/601/configuration/guide/fpmc-config-guide-v601/Reusable_Objects.pdf#nameddest=unique_532 Look under heading "SLA Monitor Objects". I assume you can figure out the rest from there. I did.
HI, thanks for the video. I have an IP range that refuses to take the PBR policy. Where I can find info/commands to troubleshoot this specific issue? Thanks!
And this is why I'm already not a fan of FTD. This would have taken 5 seconds in the CLI of the ASA. This is confusing and you have to click through 1000 screens to accomplish something extremely simple like PBR.
![What is Policy Based Routing and how is works || PBR || [TAMIL]](http://i.ytimg.com/vi/H4mjw6ziYVQ/mqdefault.jpg)
![What is Policy Based Routing and how is works || PBR || [TAMIL]](/img/tr.png)
I can’t tell you how helpful this was! I definitely agree that this should be native to FMC, but until then this saved me. Thanks for taking the time to put this together.
Hi bro I have a doubt , can I use this concept of PBR for FMC with four outside interfaces?
Same here! This video saved me!
Hi I follow as your steps to set the route-map and PBR, but I'd like to know how to delete it. I try to create a new Flexconfig to no them, but still failed.
Policy should be applied on inside interface right ??..(I mean where the traffic is initiating)
Yes, but he applied in outside int.
Can you make a video for PBR on FDM firewall
Hello , where have you configured track option , in my case both the isp is showing as down , under debug policy-route. Could you please help
I am not sure which interface, the flex config should be applied to. You applied it to the ISP interfaces, It didn't work when I tried. I applied it to all the interfaces, including inside network and it worked. - thanks for guide however.
Can you also set packets matching a route map to TRUSTED so all other checks/IPS will be skipped from that point? If so, this would be a good replacement for priority scheduling that no longer exists in FTD
I thought route maps were applied on interfaces where the traffic is being received from the endpoints (ie the interface connected to the LAN)? Is it done differently on the FTD 2100s?
If you have multiple subinterfaces in the same zone "INSIDE" belonging to different networks/vlans how do you configure the FTD to allow communication between those zone. Only the inside zones.
Does PBR Support on FTD logical Software apart from ASA software as logical device ?
clause should be configured with next-hop IP in order to work PBR using FlexConfig.
I have a question similar to Carlos. I assume the track statement references an SLA created. Do you have a video that goes into more detail about SLA creation? Can you point me in a direction of some good documentation that I have with SLAs and PBR? The Internet is really lacking in this. Thanks.
+1
Also interesting
www.cisco.com/c/en/us/td/docs/security/firepower/601/configuration/guide/fpmc-config-guide-v601/Reusable_Objects.pdf#nameddest=unique_532
Look under heading "SLA Monitor Objects". I assume you can figure out the rest from there. I did.
ruclips.net/video/MKcSBTJ55e8/видео.html
How can we route traffic to other internal zones from inside after implementing all traffic to use the next hop as shown in video?
Is the track number refering to the SLA created?
HI, thanks for the video. I have an IP range that refuses to take the PBR policy. Where I can find info/commands to troubleshoot this specific issue? Thanks!
Must be applied on onside interface. can you explain this please.?
we can block application in FTD 6.2 without FMC
Hi bro I have a doubt , can I use this concept of PBR for FMC with four outside interfaces?
And who thought this was better than just doing it via the CLI?
It is not.
Nice video. Thank you!
The SLA creation doesn't shown here, Then how it would work for other's who gonna follow this video?
This is exactly wrong way of implementing pbr.. I'hv implemented it in production this. method doesn't work
And this is why I'm already not a fan of FTD. This would have taken 5 seconds in the CLI of the ASA. This is confusing and you have to click through 1000 screens to accomplish something extremely simple like PBR.
Tell me about it!So sad,i have to config PBR on an FTD 2110
Terrible explanation, no diagram, and the configuration is incorrect