Introduction
Cisco Firepower Threat Defense is an integrative software image combining Cisco ASA and Firepower features into one hardware and software inclusive system.
The Cisco Firepower NGIPS is a next generation intrusion prevention system that shares a management console with the Cisco firewall offerings, called the Firepower Management Center.
Cisco ASA Firepower Services provides the following key capabilities:
Access control: This policy based capability allows a network security administrator to define, inspect, and log the traffic that traverses a firewall. Access control policies determine how traffic is permitted or denied in a network. For instance, you can configure a default action to inspect all traffic or block or trust all traffic without further inspection. You can achieve a more complete access control policy with enrichment data based on security threat intelligence. Whether you configure simple or complex rules, you can control traffic based on security zones, network or geographical locations, ports, applications, requested URLs, and per user.
Intrusion detection and prevention: Intrusion detection and prevention help you detect attempts from an attacker to gain unauthorized access to a network or host, create performance degradation, or steal information. You define intrusion detection and prevention policies based on your access control policies. Create and tune custom policies at a very granular level to specify how traffic is inspected in a network.
AMP and file control: You can detect, track, capture, analyze, and optionally block the transmission of files, including malware files and nested files inside archive files in network traffic. File control enables you to detect and block users from sending or receiving files of different specific types over a multitude of application protocols. You can configure file control as part of the overall access control policies and application inspection.
Application programming interfaces (APIs): Cisco ASA Firepower Services supports several ways to interact with the system using APIs.
Supported Target Version
| Supported Target Versions |
|---|
| Firepower Device Manager(FDM) 6.7 |
| Firepower Management Center(FMC) 6.1 |
Integration Version History
| Application Version | Bug fixes / Enhancements |
|---|---|
| 2.1.0 |
|
| 2.0.0 | API statistics and Full discovery support. |
| 1.0.2 | Alert custom Macros support to the Metric and Component level. |
Click here to view the earlier version updates
| Application Version | Bug fixes / Enhancements |
|---|---|
| 1.0.1 | Alerting on gateway in initial Case of Discovery Failure. |
- See, Working with Cisco Firepower Threat Defense for more information on how to configure Cisco Firepower Threat Defense.
- See Supported Metrics and Default Monitoring Configuration for more information about Supported Metrics and Default Monitoring Configuration of Cisco Firepower Threat Defense.
- See Supported Alert and Resource Filter Input keys for more information about Supported Alert and Resource Filter Input keys of Cisco Firepower Threat Defense.
- See Risk, Limitations and Assumptions for more information about the Risk, Limitations and Assumptions of Cisco Firepower Threat Defense.