Cisco ASA Botnet Traffic Filter (BTF) for detecting rogue activity and infected end points.Built-in Cisco IPS for HIPAA, PCI and NERC CIP compliant threat mitigation that combines passive OS fingerprinting with reputation and features on-box and off-box analyses.Web Security Essentials for reputation-based security policies to control access to web sites and applications.Application Visibility and Control (AVC) to manage individual and group access to specific components of an application and to control certain behaviors within micro-applications.Cisco Security Intelligence Operations (SIO) to protect against zero-day threats by providing near-real-time threat intelligence feeds to WSE, IPS, and CWS.Standard Cisco Security Services that can be run with ASA 5500-X firewalls include: Progent's Cisco-certified CCIE network consultants and information security specialists can help you manage and troubleshoot your ASA 5500-X firewalls, reimage your older ASA 5500-X devices to support Firepower services, migrate from older ASA 5500 or PIX firewalls to ASA 5500-X models, configure additional ASA 5500-X devices, implement and validate security policies, connect your on-premises firewalls with public cloud services, tune your firewall configuration to optimize performance, and integrate ASA 5500-X firewall with Cisco Firepower Management Center for centralized management of your security infrastructure.īasic Firewall Security Services for Cisco's ASA 5500-X Seriesįirst generation Cisco ASA 5500-X firewalls are capable of running Cisco's basic software-based and cloud-based security services without requiring additional hardware modules.
The combination of improved performance plus new firewall services and management options offered by Cisco for the ASA 5500-X family allow IT departments to address the momentous changes in the networking landscape such as bring-your-own-device (BYOD) and cloud computing and to deal with the 100,000-plus web-based threats that appear daily. Versions of ASA 5500-X firewalls are available to meet the budgets and operational requirements of small and mid-size organizations ranging from branches offices to enterprises. With Cisco's acquisition of Sourcefire, the extensive line of Cisco ASA 5500-X firewalls are available with Firepower Services, based on the world's most widely deployed IPS solution and featuring enhanced capabilities such as advanced malware protection, URL filtering, analytics and automation. Advantages of the ASA 5500-X line over legacy Cisco firewalls include a 64-bit architecture and multicore CPU technology, higher firewall and VPN throughput, more flexible management options, compatibility with Cisco's powerful advanced security services, and the ability to run multiple security services simultaneously without compromising performance. All these products combine Cisco's proven firewall technology with increasingly sophisticated intrusion prevention system (IPS) capabilities.
Cisco's ASA 5500-X Next Generation Firewall (NGFW) Series is designed to replace Cisco's older ASA 5500 family of firewalls, which in turn supplanted Cisco's PIX firewalls. Unlike pure switches or routers, firewalls can provide transport-layer and application-layer filtering.
Online Help from CCIE and CCNP Premier ExpertsĬisco's firewall appliances monitor network traffic and determine whether to permit specific traffic based on defined security rules (policies). Cisco ASA 5500-X Next Generation Firewalls with Firepower Services