A network security engineer is deploying Cisco Firepower Threat Defense (FTD) in a data center. The requirement is to inspect traffic between two internal VLANs while allowing the firewall to enforce access control policies based on source and destination zones. Which deployment mode should the engineer use?
Trap 1: Routed mode
Routed mode requires IP changes and is not optimal for same-subnet traffic inspection between VLANs.
Trap 2: Inline mode
Inline mode is not a standard FTD deployment mode; it refers to inline tap/set on Firepower sensors.
Trap 3: Hybrid mode
Hybrid mode is not a valid deployment mode for FTD.
- A
Routed mode
Why wrong: Routed mode requires IP changes and is not optimal for same-subnet traffic inspection between VLANs.
- B
Inline mode
Why wrong: Inline mode is not a standard FTD deployment mode; it refers to inline tap/set on Firepower sensors.
- C
Transparent mode
Transparent mode operates at layer 2, allowing inspection between VLANs without IP renumbering.
- D
Hybrid mode
Why wrong: Hybrid mode is not a valid deployment mode for FTD.