Cisco ASA 5500 Series IPS Edition for the Enterprise

Similar documents
Cisco ASA 5500 Series IPS Solution

Cisco SA 500 Series Security Appliances

Cisco Incident Control System

A Unified Threat Defense: The Need for Security Convergence

Cisco Self Defending Network

Threat Control and Containment in Intelligent Networks. Philippe Roggeband - Product Manager, Security, Emerging Markets

INSIDE. Integrated Security: Creating the Secure Enterprise. Symantec Enterprise Security

Securing the Empowered Branch with Cisco Network Admission Control. September 2007

Future-ready security for small and mid-size enterprises

Cisco Intrusion Prevention Solutions

Cisco Network Admission Control (NAC) Solution

Cisco ASA Software Release 8.2

Networking Drivers & Trends

Cisco ASA 5500 Series Adaptive Security Appliances

Cisco IPS AIM and IPS NME for Cisco 1841 and Cisco 2800 and 3800 Series Integrated Services Routers

Cisco Security Manager 4.1: Integrated Security Management for Cisco Firewalls, IPS, and VPN Solutions

Cisco NAC Network Module for Integrated Services Routers

NetDefend Firewall UTM Services

The Cisco ASA 5500 Series Adaptive Security Appliances

PROTECTION FOR WORKSTATIONS, SERVERS, AND TERMINAL DEVICES ENDPOINT SECURITY NETWORK SECURITY I ENDPOINT SECURITY I DATA SECURITY

Wireless and Network Security Integration Solution Overview

ABB Ability Cyber Security Services Protection against cyber threats takes ability

Firewalls for Secure Unified Communications

Data Retrieval Firm Boosts Productivity while Protecting Customer Data

SteelGate Overview. Manage perimeter security and network traffic to ensure operational efficiency, and optimal Quality of Service (QoS)

DDoS MITIGATION BEST PRACTICES

AKAMAI CLOUD SECURITY SOLUTIONS

Implementing Cisco Network Security (IINS) 3.0

Symantec Network Security 7100 Series

ENDPOINT SECURITY STORMSHIELD PROTECTION FOR WORKSTATIONS. Protection for workstations, servers, and terminal devices

Sourcefire Solutions Overview Security for the Real World. SEE everything in your environment. LEARN by applying security intelligence to data

RESELLER LOGO RADICALLY BETTER. DDoS PROTECTION. Radically more effective, radically more affordable solutions for small and medium enterprises

Application Intelligence and Integrated Security Using Cisco Catalyst 6500 Supervisor Engine 32 PISA

Snort: The World s Most Widely Deployed IPS Technology

Selling the Total Converged Solution Module #1: Nortel Enterprise Networking Overview of the 4 Pillars and Why Nortel Tom Price Nortel HQ Sales

INSIDE. Symantec AntiVirus for Microsoft Internet Security and Acceleration (ISA) Server. Enhanced virus protection for Web and SMTP traffic

Internet Scanner 7.0 Service Pack 2 Frequently Asked Questions

IBM Global Technology Services Provide around-the-clock expertise and protect against Internet threats.

About This Guide. Document Objectives. Audience

Cisco CISCO Securing Networks with ASA Advanced. Practice Test. Version

Total Threat Protection. Whitepaper

Cisco Start. IT solutions designed to propel your business

Networks with Cisco NAC Appliance primarily benefit from:

Using CSC SSM with Trend Micro Damage Cleanup Services

Achieving End-to-End Security in the Internet of Things (IoT)

Agile Security Solutions

Cato Cloud. Software-defined and cloud-based secure enterprise network. Solution Brief

Lifecycle Solutions & Services. Managed Industrial Cyber Security Services

The Top 6 WAF Essentials to Achieve Application Security Efficacy

CISCO EXAM QUESTIONS & ANSWERS

SYMANTEC: SECURITY ADVISORY SERVICES. Symantec Security Advisory Services The World Leader in Information Security

Simple and secure PCI DSS compliance

Juniper Networks Adaptive Threat Management Solutions

Comparison of Firewall, Intrusion Prevention and Antivirus Technologies

DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise

5 Trends That Will Impact Your IT Planning in Layered Security. Executive Brief

Cisco Connected Factory Accelerator Bundles

AT&T Endpoint Security

Enterprise Cybersecurity Best Practices Part Number MAN Revision 006

Cyber Security Program

Cisco ASA Next-Generation Firewall Services

Cisco IOS Inline Intrusion Prevention System (IPS)

Accelerate Your Enterprise Private Cloud Initiative

IBM Internet Security Systems Proventia Management SiteProtector

Perimeter Defenses T R U E N E T W O R K S E C U R I T Y DEPENDS ON MORE THAN

NETWORKING &SECURITY SOLUTIONSPORTFOLIO

Service. Sentry Cyber Security Gain protection against sophisticated and persistent security threats through our layered cyber defense solution

Solution Architecture

Security by Default: Enabling Transformation Through Cyber Resilience

The Cisco BYOD Smart Solution

Security

etrust Antivirus Release 7.1

CertifyMe. CertifyMe

Cisco SR 520-T1 Secure Router

Nebraska CERT Conference

Managed Endpoint Defense

Deployment of security devices can result in significant financial savings from reduction or redirection of IT staff resources needed to deploy,

Understanding Network Access Control: What it means for your enterprise

TOP 10 IT SECURITY ACTIONS TO PROTECT INTERNET-CONNECTED NETWORKS AND INFORMATION

Agenda. Today s IT Challenges. Symantec s Collaborative Architecture. Symantec TM Endpoint Management Suite. Connecting Symantec Technologies Today

Protecting Your Digital World

KERIO TECHNOLOGIES KERIO WINROUTE FIREWALL 6.3 REVIEWER S GUIDE

MICRO-SEGMENTATION FOR CLOUD-SCALE SECURITY TECHNICAL WHITE PAPER

Cisco Security Appliances

Symantec Client Security. Integrated protection for network and remote clients.

Symantec Endpoint Protection 11.0

Cisco Wireless Video Surveillance: Improving Operations and Security

Defense-in-Depth Against Malicious Software. Speaker name Title Group Microsoft Corporation

FIREWALL BEST PRACTICES TO BLOCK

Cisco Systems Korea Cisco Systems, Inc. All rights reserved. 1

Introducing the 9202-ETS MTL Tofino industrial Ethernet security appliance

Chapter 2 VLANs. CHAPTER 2 VLANs

Security Solutions. Overview. Business Needs

CISCO EXAM QUESTIONS & ANSWERS

GDPR: Get Prepared! A Checklist for Implementing a Security and Event Management Tool. Contact. Ashley House, Ashley Road London N17 9LZ

UNIFIED THREAT MANAGEMENT SOLUTIONS AND NEXT-GENERATION FIREWALLS NETWORK SECURITY NETWORK SECURITY I ENDPOINT SECURITY I DATA SECURITY

Delivering the Wireless Software-Defined Branch

Hardening the Education. with NGFW. Narongveth Yutithammanurak Business Development Manager 23 Feb 2012

Exam : Title : Security Solutions for Systems Engineers(SSSE) Version : Demo

Future Challenges and Changes in Industrial Cybersecurity. Sid Snitkin VP Cybersecurity Services ARC Advisory Group

Transcription:

Cisco ASA 5500 Series IPS Edition for the Enterprise Attacks on critical information assets and infrastructure can seriously degrade an organization s ability to do business. The most effective risk mitigation requires a solution that combines multiple trusted security technologies working in concert. Providing unparalleled protection for an organization s critical information assets, the Cisco ASA 5500 Series IPS Edition provides best-in-class firewall, application security, and intrusion prevention capabilities in a single, easy-to-deploy platform. Combining the strength and stability of the world s most-deployed firewall technology with the advanced inspection capabilities of the most popular IPS technology, the Cisco ASA 5500 Series IPS Edition protects an organization s servers and infrastructure from attack. Challenge Information assets and infrastructure form the core of the modern enterprise. Networked enterprises benefit from increased business efficiency and effectiveness, as well as a sustainable competitive advantage. However, this dependence on the network exposes the organization to risk. The growing number of attacks on the network, in concert with the increasing sophistication of these attacks, poses serious risks to the core business. Web presences and Internet commerce sites are targets for attack Internet worms can infect servers, disable them, and take down an entire network Day-zero exploits expose organizations before patches are released and implemented Difficult-to-control internal environments, such as labs, are ideal locations for worm and virus infestations Disgruntled employees can launch attacks from inside the Internet edge perimeter All contents are Copyright 1992 2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 1 of 6

Solution The Cisco ASA 5500 Series IPS Edition protects an organization s servers and infrastructure without compromising its ability to use the network as a business tool. With its solid firewall and advanced application security capabilities, the Cisco ASA 5500 Series IPS Edition provides robust and stable policy enforcement. Market-leading intrusion prevention and antiworm capabilities enable the Cisco ASA 5500 Series IPS Edition to protect assets from sophisticated attacks. Combined with Cisco s management and monitoring application suites, the Cisco ASA 5500 Series IPS Edition provides unparalleled protection of critical assets and infrastructure. Capabilities of the solution include: Most trusted and deployed firewall technology: Building on the Cisco PIX Family of security appliances, the Cisco ASA 5500 Series allows valid business traffic to flow, while keeping out unwelcome visitors. And with its application control capabilities, the solution can control the use of peer-to-peer, instant messaging, and other non-corporate applications. Such applications can lead to security leaks and the introduction of threats to the business s network. Accurate, multi-vector threat protection: The Cisco ASA 5500 Series IPS Edition combines inline intrusion prevention services with innovative technologies that improve accuracy. As a result, more threats can be stopped without the risk of dropping legitimate network traffic. Through a series of innovative yet simple techniques, the Cisco ASA 5500 Series IPS Edition allows organizations to adapt the detection and response technologies to individual environments, providing analysis and mitigation that is specific to your business. Network integration and resiliency: Building on Cisco networking expertise, the Cisco ASA 5500 Series IPS Edition provides tight integration with other network elements, increasing the effectiveness of security technologies. Threat-protected VPN: Building upon the market-proven VPN capabilities of the Cisco VPN 3000 Series Concentrator, the Cisco ASA 5500 Series IPS Edition provides secure site-to-site and remote-user access to corporate networks and services. This solution offers businesses maximum flexibility for secure connectivity by combining support for Secure Sockets Layer (SSL) and IP Security (IPSec) VPN capabilities into a single, best-in-class solution. Using the services offered by the Cisco ASA 5500 Series IPS Edition, businesses can enforce identity-based security and networking policies, as well as prevent worms and many other forms of attack, while extending their network securely to employees, contractors, and business partners. Complete Incident Life-Cycle Management: The Cisco management and monitoring suite enables large-scale deployment and operation of the Cisco ASA 5500 Series IPS Edition. Cisco provides a complete solution, covering management, monitoring, and outbreak prevention. Also included with the solution is the Cisco Adaptive Security Device Manager (ASDM), which provides a powerful, yet easy-to-use browser-based management and monitoring interface for individual devices. All contents are Copyright 1992 2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 2 of 6

Business Benefits The Cisco ASA 5500 Series IPS Edition provides the security and connectivity that helps your business with: Business Resiliency: Prevent disruption of business-critical applications and services due to security breaches by implementing the industry s most-deployed enterprise-grade firewall, IPS, application security, and worm protection technology. Reduce Cleanup Costs: Reduce the costly process of cleaning up after an infection by preventing the infection from occurring. Operational Consolidation: Reduce costs associated with deployment and ongoing management and monitoring of the security solution by standardizing on a single platform for security services. Liability Management: Reduce the company s exposure to liability related to compromised data or inadequate corporate controls by implementing comprehensive access control and threat protection services in a single device. Architecture The Cisco ASA 5500 IPS Edition is the focal point of a complete solution for critical asset protection. Tight integration with Cisco management, monitoring, and outbreak prevention systems enables organizations to deploy and maintain a security solution that protects critical assets and infrastructure (Figure 1). All contents are Copyright 1992 2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 3 of 6

Figure 1. Solution Architecture Primary Components Cisco ASA 5500 Series IPS Edition Provides protective services at locations across the enterprise. Management Cisco Security Manager (CS-Manager) provides an enterprise-grade management infrastructure for large-scale deployments of Cisco security technologies. Monitoring Cisco Security Monitoring, Analysis, and Response System (CS-MARS) provides real-time monitoring and incident response capabilities, which enable organizations to get the most value from the advanced inspection services of the Cisco ASA 5500 Series IPS Edition. Outbreak Prevention The Cisco Incident Control System (ICS) premium service enhances the capabilities of the Cisco ASA 5500 Series IPS Edition by providing near-real-time updates for the most dangerous worms and viruses. Cisco ICS enables organizations to respond in minutes, in a way never before possible, to new threats by using the industry s most rapid outbreak prevention response system. Complementary Solutions The Cisco ASA 5500 Series Adaptive Security Appliance is a modular platform that provides the next generation of security and VPN services for small and medium-sized business and enterprise applications. The comprehensive portfolio of services within the Cisco ASA 5500 Series enables customization for location-specific needs through its four tailored package product editions: the Firewall, IPS, Content Security, and VPN Editions. These packages enable superior protection by providing the right services for the right location. At the same time, they enable standardization on the Cisco ASA 5500 Series platform to reduce costs in management, training, and sparing. Finally, each Edition simplifies design and deployment by providing pre-packaged location-specific security solutions. All contents are Copyright 1992 2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 4 of 6

Figure 2. Complementary Solutions Cisco Services Cisco Systems and its partners offer world-class service and support tailored for your business. Cisco has adopted a lifecycle approach to services that addresses the necessary set of requirements for deploying and operating Cisco ASA 5500 Series security appliances that improves your network s business value and return on investment. For more information on Cisco security services, visit http://www.cisco.com/go/services/security. Recommended Solutions Cisco ASA 5500 Series IPS Edition solutions are available in solution bundles, or as a la carte components within the Cisco ASA 5500 Series family. Tables 1 and 2 provide part numbers and descriptions for Cisco ASA 5500 Series products. To place an order, visit the Cisco Ordering Home Page. Table 1. Recommended Cisco ASA 5500 Series IPS Edition Bundles and Options Description Attack Protection Performance Part Number Cisco ASA 5510 Appliance IPS Edition Bundle Includes Advanced Inspection and Prevention Security Services Module 10 (AIP-SSM-10 module, Firewall services, 250 IPSec VPN peers, 2 SSL VPN peers, and 5 Fast Ethernet interfaces Cisco ASA 5520 Appliance IPS Edition Bundle Cisco ASA 5520 IPS Edition includes AIP-SSM-20 module, Firewall services, 750 IPSec VPN peers, 2 SSL VPN peers, 4 Gigabit Ethernet interfaces and 1 Fast Ethernet interface Cisco ASA 5540 Appliance IPS Edition Bundle Cisco ASA 5540 IPS Edition includes AIP-SSM-20 module, Firewall services, 5000 IPSec VPN peers, 2 SSL VPN peers, 4 Gigabit Ethernet interfaces and 1 Fast Ethernet interface 150 Mbps ASA5510-AIP10-K9 375 Mbps ASA5520-AIP20-K9 450 Mbps ASA5540-AIP20-K9 All contents are Copyright 1992 2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 5 of 6

Table 2. Cisco ASA 5500 Series Orderable Components Description Part Number Platforms Cisco ASA 5510 Adaptive Security Appliance Cisco ASA 5520 Adaptive Security Appliance Cisco ASA 5540 Adaptive Security Appliance ASA5510-BUN-K9 ASA5520-BUN-K9 ASA5540-BUN-K9 Security Services Modules Cisco ASA 5500 Series AIP-SSM-10 Cisco ASA 5500 Series AIP-SSM-20 ASA-SSM-AIP-10-K9 ASA-SSM-AIP-20-K9 For More Information For more information on how your organization can benefit from the Cisco ASA 5500 Series IPS Edition, visit http://www.cisco.com/go/asa. The Cisco ASA 5500 Series CSC-SSM includes embedded software and support from Trend Micro. Point of sale and registration data will be provided to both Cisco and Trend Micro. Printed in USA Printed in USA C02-60005-02 6/07 All contents are Copyright 1992 2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 6 of 6

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback