An administrator is working on a migration from Cisco ASA to the Cisco FTD appliance and needs to test the rules without disrupting the traffic.
Which policy type should be used to configure the ASA rules during this phase of the migration?
Click on the arrows to vote for the correct answer
A. B. C. D.A.
https://www.cisco.com/c/en/us/td/docs/security/firepower/migration-tool/migration-guide/ASA2FTD-with-FP-Migration-Tool/When migrating from Cisco ASA to Cisco FTD, it is important to ensure that the migration is seamless and does not disrupt the traffic. In order to test the rules without causing any disruptions, the administrator can use a policy type called "Prefilter" to configure the ASA rules.
The Prefilter policy type is used to apply policies to traffic before it is processed by the access control rules. It allows the administrator to apply a rule to traffic before it is processed by the access control rules, and can be used to test the ASA rules during the migration without disrupting the traffic.
Access Control policy type, on the other hand, is used to apply rules to traffic after it has passed through the Prefilter policy type. Access Control policies determine what traffic is allowed or denied based on a set of rules.
Intrusion policy type is used to detect and prevent network attacks, and Identity policy type is used to identify users and devices on the network.
Therefore, in order to test the ASA rules during the migration without disrupting the traffic, the administrator should use the Prefilter policy type to configure the ASA rules.