Cisco Intrusion Detection & Prevention System (IDS/IPS)

IPS Features

IDS Features

Integration options

Malicious Traffic Detection

Terminologies

Risk Value

Cisco NGIPS Solutions

In-line Deployment

Ability to drop malicious traffic

Introduces delay

Passive Deployment

Generates alerts only

No Delay is introduced

No change is required in network topology

Network design is altered

Attack Severity Rating (ASR)

Attack Relevancy (AR)

Signature Fidelity Rating (SFR)

Global Correlation

Target Value Rating (TVR)

False Negative

True Positive

False Positive

True Negative

Cisco Firepower Series

AIM & NME - IPS

Virtual NGIPS

Software support

ASA with Firepower

Dedicated appliance

Policy-based IPS

Anomaly-based IPS

Reputation-based IPS

Signature-based IPS

FireSIGHT Management

ASA with Firepower

NGIPS

Firepower 7000/8000 Series