Scribd Logo
Upload

Welcome to Scribd!

  • Cisco FirePower Spanish May 25th

    Uploaded by

    Tester Mahe
    20 views28 pages

    Original Title

    Cisco_FirePower_Spanish_May_25th

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    20 views28 pages

    Cisco FirePower Spanish May 25th

    Uploaded by

    Tester Mahe

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 28

    Cisco FirePower NGFW

    Industry’s first adaptive, threat-focused next-generation firewall


    www.cisco.com/go/asafps

    2016
    The Security problem

    CHANGING DYNAMIC COMPLEXITY


    BUSINESS MODELS THREAT LANDSCAPE AND FRAGMENTATION

    Capture benefits of mobility, Protect against new and Simplify operations


    cloud and IoE changing attack vectors and reduce costs

    © 2016 Cisco and/or its affiliates. All rights reserved. 2


    The Strategy – Threat Centric model

    Point Technologies does not work in today’s Threat Landscape


    Cisco addresses the full attack continuum

    BEFORE DURING AFTER


    Policy & Control Identification & Block Analysis & Remediation

    Control Detect Determine scope


    Enforce Block Contain
    Harden Defend Remediate

    + +

    © 2016 Cisco and/or its affiliates. All rights reserved. 4


    Firewall evolution

    Segmentation Inspection
    Access Control App Control Threat Prevention Context Awareness

    Typical Firewall Typical IPS

    Typical NGFW (CheckPoint, Palo Alto…)

    NGSECURITY (Cisco FirePower)

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 5


    Firewall evolution – Context Awareness

    “You can’t protect what you can’t see”

    Client applications

    Operating systems

    Command
    and control
    File transfers servers Mobile devices
    Threats
    Routers and switches
    Users Application
    protocols
    Web
    Typical IPS applications Printers
    Malware

    Typical NGFW Network servers

    VoIP phones

    Cisco FirePower NGFW

    © 2016 Cisco and/or its affiliates. All rights reserved. 6


    Overview

    World’s most widely deployed enterprise-class ASA stateful firewall


    Industry-leading SourceFire FirePOWER Next-Generation Security

    WWW PDF

    HA VPN Identity App Control URL Filterting Security Intel IPS Malware

    TYPICAL NGFW

    Cisco TALOS

    WWW PDF

    Network Firewall Identity App Control URL Filtering Security Intel NGIPS NGMalware
    Management,
    Analytics and
    correlation

    Clustering/HA Advanced VPN Built-in Network Profiling

    Cisco
    Cisco FirePower NGFW FirePower MC

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 7


    Overview – NextGen Intrusion Prevention (NGIPS)

    Cisco TALOS

    WWW PDF

    Network Firewall Identity App Control URL Filtering Security Intel NGIPS NGMalware
    Management,
    Analytics and
    correlation

    Clustering/HA Advanced VPN Built-in Network Profiling

    Cisco
    Cisco FirePower NGFW FirePower MC

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 8


    NGIPS – Summary

    World’s most Powerfull Automated Tuning Impact Assessment


    Intrusion Prevention Adjust IPS policies Threat correlation reduces
    Engine automatically actionable events by up to
    based on network change 90%

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/ngips 9


    NGIPS – Impact Assessment

    Intrusion event

    Does not exists


    No Host / IP

    Service does not exists

    Not Vulnerable

    Vulnerable
    Needs action

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/ngips 10


    Overview – Advanced Malware Protection (AMP)

    Cisco TALOS

    WWW PDF

    Network Firewall Identity App Control URL Filtering Security Intel NGIPS NGMalware
    Management,
    Analytics and
    correlation

    Clustering/HA Advanced VPN Built-in Network Profiling

    Cisco
    Cisco FirePower NGFW FirePower MC

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 12


    AMP – Overview

    APT

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/amp 13


    AMP – Market Overview

    Network Based Host Based

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/amp 14


    AMP – Overview
    Sleep Techniques
    Sandboxing Unknown Protocols
    Encryption
    Polimorfism

    Point-in-Time

    Antivirus…

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/amp 15


    AMP – Overview

    Sandboxing

    Point-in-Time

    Antivirus…

    Sleep Techniques
    Unknown Protocols
    Sandboxing Encryption
    Cisco AMP Polimorfism

    Point-in-Time

    Continuous

    Reputation…
    File
    File reputation
    reputation == Unknown
    Dangerous
    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/amp
    Blocked! 16
    AMP – Summary

    Continuous

    Looks ACROSS the organization and answers:


    • When did it happen?
    • Where is patient 0?
    • What systems were infected?
    • What was the entry point?
    • What else did it bring in?

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/amp 17


    AMP – AMP Everywhere

    PC’s
    Mobile Virtual

    ASA with Dedicated FirePOWER


    FirePOWER Appliances
    Services

    SaaS
    Web & Email Cloud Web Security
    Security Appliances Mac & Hosted Email

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/amp 18


    Third Party Validation

    NSS Labs Security Value Map for NSS Labs Security Value Map for NSS Labs Security Value Map for
    Next-Generation Firewall Intrusion Prevention System Breach Detection
    (NGFW) (IPS) (AMP)
    2014 2015 2015

    © 2016 Cisco and/or its affiliates. All rights reserved. http://www.cisco.com/go/nssngfw2014 19


    Platform Overview – Low/Mid range sizing ASA/FirePower

    Cisco Cisco Cisco Cisco Cisco Cisco Cisco Cisco


    ASA5506X ASA5508X ASA5512X ASA5515X ASA5516X ASA5525X ASA5545X ASA5555X

    Performance
    Max Stateful Firewall 750Mbps 1Gbps 1Gbps 1.2Gbps 1.8Gbps 2Gbps 3Gbps 4Gbps
    Max AVC 200Mbps 450Mbps 300Mbps 500Mbps 850Mbps 1,1Gbps 1,5Gbps 1,75Gbps
    Max AVC+NGIPS 125Mbps 250Mbps 150Mbps 250Mbps 450Mbps 650Mbps 1Gbps 1,25Gbps
    Max IPSec VPN 100Mbps 175Mbps 200Mbps 250Mbps 250Mbps 300Mbps 400Mbps 600Mbps
    Max IPSec/SSL VPN Peers 50 50 250 250 150 750 2500 5000

    Capabilities
    Max Firewall Conns 50K 100K 100K 250K 250K 500K 750K 1M
    Max Conns/Second 5K 10K 10K 15K 20K 20K 30K 50K
    VLANs Supported 30 50 100 100 100 200 300 500
    Virtual Firewalls - - 2-5 2-20 2-20 2-50 2-100 2-250
    HA Supported A/S A/A & A/S A/A & A/S A/A & A/S A/A & A/S A/A & A/S A/A & A/S A/A & A/S

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 20


    Platform Overview – High range sizing ASA/FirePower

    Cisco Cisco Cisco Cisco


    ASA SM ASA 5585X FirePower 4100 FirePower 9300
    For Cat6500

    Performance
    Max Stateful Firewall 20Gbps 4-40Gbps 20-60Gbps1 75-225Gbps1
    Max AVC - 4,5-15Gbps 12-25Gbps2 25-100Gbps2
    Max AVC+NGIPS - 2-10Gbps 10-20Gbps2 20-90Gbps2
    Max IPSec VPN - 1-5Gbps 8-14Gbps1 15-54Gbps1
    Max IPSec/SSL VPN Peers - 5K-10K 10K-20K1 15K-60K1

    Capabilities
    Max Firewall Conns 10M 0,5M-4M 10M-25M1 55M-70M1
    Max Conns/Second 300K 50K-350K 150K-350K1 600K-2.5M1
    VLANs Supported 1000 1024 1024 1024
    Virtual Firewalls 2-250 2-250 2-2501 2-2501
    HA Supported A/A & A/S A/A & A/S A/A & A/S A/A & A/S

    1 ASA Code
    2 FirePower Threat Defense Code

    © 2016 Cisco and/or its affiliates. All rights reserved. 21


    Platform Overview - Licensing

    Cisco TALOS

    WWW PDF

    Network Firewall Identity App Control URL Filtering* Security Intel* NGIPS* NGMalware*
    Management,
    Analytics and
    correlation*

    Clustering/HA Advanced VPN* Built-in Network Profiling

    Cisco
    Cisco FirePower NGFW FirePower MC

    * License required
    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 22
    Platform Overview - Advantages
    SNORT Correlation
    Auto-Tuning Reporting
    Auto-False Positive red IOC
    Retrospection
    Endpoint
    Transparent Mode ISE Integration Open AppID Talos Multivector Advanced Sandboxing

    Cisco TALOS

    WWW PDF

    Network Firewall Identity App Control URL Filtering* Security Intel* NGIPS* NGMalware*
    Management,
    Analytics and
    correlation*

    Clustering/HA Advanced VPN* Built-in Network Profiling

    Cisco
    Cisco FirePower NGFW FirePower MC

    Clustering Clientless VPN Context


    Transparent VPN Real vulnerability
    Compliance

    Cisco Anyconnect
    AMP

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 23


    Cisco Anyconnect

    802.1x VPN
    (ISE) 1 (ASA)1
    Market Leader
    Simple & secure
    Network Posture over 130M licenses
    access anywhere on Visibility2* (ASA/ISE) 2* endpoints & 60,000
    any device
    customers
    Anti-Malware Cloud Proxy
    (AMP) 1* (CWS) 1*

    OpenDNS **

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/aanyconnect 24


    Platform Overview - Upgrade

    FirePOWER Services FirePOWER Services for


    for 5500-X* (Software) 5585-X (Blade)

    ASA5500X-SSD120= ASA-SSP-SFRxx-K9=

    * ASA-5512X, ASA-5515X, ASA-5525X, ASA-5545X, ASA-5555X

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 25


    © 2016 Cisco and/or its affiliates. All rights reserved. 27
    Unified Hardware

    NGFW - Cisco ASA NGIPS- Cisco FirePower APT - Cisco AMP

    Cisco ASA 5500-X Cisco ASA 5585-X Cisco FirePower 4100/9300

    Unified Management Unified Management* Unified Management


    Up to 225Gbps
    FW, NGFW, NGIPS, AMP, DDoS..

    *Roadmap

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 28


    Unified Software

    ASA with FirePower Services FirePower Threat Defense*


    ASA-5500X & ASA-5585 ASA-5500X, FirePower 4100/9300, vFP…
    FirePower Services

    ASA

    2014 2016

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 29


    Unified Management

    Cisco Firepower Management Center

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/asafps 30


    Unified Threat Response

    Cisco ISE Cisco FirePower NGFW

    © 2016 Cisco and/or its affiliates. All rights reserved. www.cisco.com/go/rtc 31

    You might also like