2013 Cisco buys Sourcefire for $2.7 billion
- 10 + years of safety experience
- From network security to malware defense-->ngips,ngfw,malware Protection | Physical,virtual,cloud
- Support Open Source System-->snort,clamav,razorback
after Sourcefire is integrated, Cisco will provide the industry's best next-generation security services.
- The Cisco firepower is built into the ISR router
- Firepower threat defense in ISR-IDS
Deploying probes in UCS-E
Router replication traffic to the probe
Firepower Detector Analysis Flow
- ISR Firepower Threat Defense-IPS
Deploying probes in UCS-E
IPs deployed in online mode
Packet entry from UCS-E interface
Firepower probe analyzes traffic, allowing traffic to be sent to the WAN interface
firepower threat defense combined with data center ACI
1, Network Threat defense detection engine SF Next Generation Threat defense system, detects the presence of attack or malicious traffic
2,defense Center generates alarm to notify APIC Controller
3,apic threat-based information to generate a security policy
4,apic a security policy to a specified location, such as a designated network switch/Wireless controller/firewall, depending on where the threat occurred.
Ciscofirepower01_ Past Life