Cisco Cisco Firepower Management Center 4000

A single configuration that represents one or more IP addresses, and that you add to an 

’s 

 and 

. Security Intelligence objects 

include 

s, and 

s and groups. The 

, 

, and the categories in the 

Security Intelligence objects.

In an 

, a list of IP addresses that forces the policy to examine traffic to and from 

those hosts using 

s, that is, to not deny the traffic using 

. Because 

a policy’s whitelist overrides its 

, you can use it to fine-tune the blacklist. 

A whitelist is comprised of 

s, including the 

An organization's guidelines for protecting its network. For example, your 

 might forbid 

the use of wireless access points. A security policy may also include an acceptable use policy (AUP), 
which provides employees with guidelines of how they may use their organization’s systems.

A security breach, attack, exploit, or other misuse of your network.

A grouping of one or more inline, passive, switched, or 

s that you can use to manage and 

classify traffic flow in various policies and configurations. The interfaces in a single zone may span 
multiple 

s; you can also configure multiple security zones on a single device. You must assign 

each interface you configure to a security zone before it can handle traffic, and each interface can belong 
to only one security zone. 

A network interface on a 

 that you use to monitor a network segment. Compare with 

The second series of Cisco 

 models. Because of resource, architecture, and licensing 

limitations, Series 2 appliances support a restricted set of FireSIGHT System features. Series 2 devices 
include the 3D500, 3D1000, 3D2000, 3D2100, 3D2500, 3D3500, 3D4500, 3D6500, and 3D9900. 
Series 2 

s include the DC500, DC1000, and DC3000.

The third series of Cisco 

 models. Series 3 appliances include 

s, as well as the DC750, DC1500, and DC3500 

The server 

) installed on a 

, identified by 

 traffic.