The Cisco Firepower® NGFW (next-generation firewall) is the industry’s first fully integrated, threat-focused next-gen firewall with unified management. It uniquely provides advanced threat protection before, during, and after attacks.
Platform Image Support
The Cisco Firepower NGFW includes Application Visibility and Control (AVC), optional next-gen IPS (NGIPS), Cisco® Advanced Malware Protection (AMP) for Networks, and URL Filtering. The Cisco Firepower 2100 Series, 4100 Series, and 9300 appliances use the Cisco Firepower Threat Defense software image. Alternatively, Cisco Firepower 4100 Series, and 9300 appliances can support the Cisco Adaptive Security Appliance (ASA) software image.
Management Options
Cisco Firepower NGFWs may be managed in a variety of ways depending on the way you work, your environment, and your needs. The Cisco Firepower Management Center (formerly FireSIGHT) provides centralized management of the Cisco Firepower NGFW, the Cisco Firepower NGIPS, and Cisco AMP for Networks. It also provides threat correlation for network sensors and Advanced Malware Protection (AMP) for Endpoints. The Cisco Firepower Device Manager is available for local management of 2100 Series and select 5500-X Series devices running the Cisco Firepower Threat Defense software image. The Cisco Adaptive Security Device Manager is available for local management of the Cisco Firepower 4100 Series, Cisco Firepower 9300 Series, and Cisco ASA 5500-X Series devices running the ASA software image. Cisco Defense Orchestrator cloud-based management is also available for consistent policy management across Cisco security devices running the ASA software image, enabling greater management efficiency for the distributed enterprise.
Firepower DDoS Mitigation
Also available on the Cisco Firepower 4100 Series and 9300 appliances is tightly integrated, comprehensive, behavioral DDoS mitigation for both network and application infrastructure protection. This DDoS mitigation is Radware’s Virtual DefensePro (vDP). It is available from and supported directly by Cisco.
Cisco Firepower 2100 Series Appliances The Cisco Firepower 2100 Series is a family of four threat-focused NGFW security platforms that deliver business resiliency through superior threat defense. It offers exceptional sustained performance when advanced threat functions are enabled. These platforms uniquely incorporate an innovative dual multicore CPU architecture that optimizes firewall, cryptographic, and threat inspection functions simultaneously. The series’ firewall throughput ranges from 1.9 to 8.5 Gbps, addressing use cases from the Internet edge to the data center.
Cisco Firepower 4100 Series Appliances The Cisco Firepower 4100 Series is a family of four threat-focused NGFW security platforms. Their throughput ranges from 35 to 75 Gbps, addressing data center use cases. They deliver superior threat defense, at faster speeds, with a smaller footprint.
Cisco Firepower 9300 Security Appliance The Cisco Firepower 9300 is a scalable (beyond 1 Tbps when clustered), carrier-grade, modular platform designed for service providers, high-performance computing centers, large data centers, campuses, high-frequency trading environments, and other environments that require low (less than 5-microsecond offload) latency and exceptional throughput. Cisco Firepower 9300 supports flow-offloading, programmatic orchestration, and the management of security services with RESTful APIs. It is also available in Network Equipment Building Standards (NEBS)-compliant configurations.
Cisco ASA 5500-FTD-X Series Appliances The Cisco ASA 5500-FTD-X Series is a family of eight threat-focused NGFW security platforms. Their throughput ranges from 750 Mbps to 4 Gbps, addressing use cases from the small or branch office to the Internet edge. They deliver superior threat defense in a cost-effective footprint.
Cisco Firepower NGFW Virtual (NGFWv) Appliances Cisco Firepower NGFWv is available on VMware, KVM, and the Amazon Web Services (AWS) and Microsoft Azure environments for virtual, public, private, and hybrid cloud environments. Organizations employing SDN can rapidly provision and orchestrate flexible network protection with Firepower NGFWv. As well, organizations using NFV can further lower costs utilizing Firepower NGFWv. More information: Performance | Concurrent connections | 2000000 | | Noise level | 56 dB | Data transmission | Firewall throughput | 4.75 Gbit/s | | VPN throughput | 1.5 Gbit/s | | IPS/IDS throughput | 4750 Mbit/s | | Maximum firewall connections per second | 24000 | Design | Rack mounting | Yes | | Form factor | 1U | Logistics data | Harmonized System (HS) code | 85176990 | Ports & interfaces | Connectivity technology | Wired | | USB 2.0 ports quantity | 1 | | Ethernet LAN (RJ-45) ports | 12 | | Serial ports quantity | 1 | | SFP module slots quantity | 12 | Network | Maximum Number of VPN connections supported | 7500 | | Number of VLANs | 1024 | Other features | Firewall throughput | 4750 Mbit/s | | VPN throughput | 1500 Mbit/s | Security | Content filtering | 280000000 URL | Weight & dimensions | Dimensions (WxDxH) | 429 x 502 x 44 mm | | Weight | 9600 g | Operational conditions | Operating temperature (T-T) | 0 - 40 °C | | Storage temperature (T-T) | -20 - 65 °C | | Operating relative humidity (H-H) | 10 - 85 % | | Storage relative humidity (H-H) | 5 - 95 % | | Operating altitude | 0 - 3048 m | | Non-operating altitude | 0 - 12192 m | Power | AC input voltage | 100-240 V | | AC input frequency | 50 - 60 Hz | | Input current | 6 A | | Power supply | 400 W | | Number of power supply units | 1 | Storage | Number of HDDs installed | 1 | | Total storage capacity | 200 GB |
|