Cisco Firepower Threat Defense (FTD)

Chapter 13Handling Encapsulated Traffic

FTD can analyze encapsulated traffic. It can take an action based on the outermost and innermost headers of an encapsulated packet. As of this writing, FTD supports the Generic Routing Encapsulation (GRE), IP-in-IP, IPv6-in-IP, and Teredo encapsulation protocols. This chapter demonstrates how an FTD device handles an encapsulated packet over a tunnel.

Encapsulation and Prefilter Policy Essentials

An encapsulation protocol, also known as a tunneling protocol, is used to mask the original IP header of a packet and encapsulate the packet with a completely different IP header. Routers can leverage this protocol to transport certain types of traffic that may not be allowed via the underlying network. Some of ...

Get Cisco Firepower Threat Defense (FTD) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Cisco Firepower Threat Defense (FTD) by Nazmul Rajib

Chapter 13Handling Encapsulated Traffic

Encapsulation and Prefilter Policy Essentials

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly