Cisco Intrusion Detection & Prevention System (IDS/IPS)
IPS Features
IDS Features
Integration options
Malicious Traffic Detection
Terminologies
Risk Value
Cisco NGIPS Solutions
In-line Deployment
Ability to drop malicious traffic
Introduces delay
Passive Deployment
Generates alerts only
No Delay is introduced
No change is required in network topology
Network design is altered
Attack Severity Rating (ASR)
Attack Relevancy (AR)
Signature Fidelity Rating (SFR)
Global Correlation
Target Value Rating (TVR)
False Negative
True Positive
False Positive
True Negative
Cisco Firepower Series
AIM & NME - IPS
Virtual NGIPS
Software support
ASA with Firepower
Dedicated appliance
Policy-based IPS
Anomaly-based IPS
Reputation-based IPS
Signature-based IPS
FireSIGHT Management
ASA with Firepower
NGIPS
Firepower 7000/8000 Series