Cisco Cisco Firepower 4140 Security Appliance Hoja De Datos
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 3 of 12
Performance Specifications and Feature Highlights
Table 2 summarizes the capabilities of the Cisco Firepower NGFW 4100 Series and 9300 appliances and the
Cisco ASA 5500-FTD-X appliances when running the Cisco Firepower Threat Defense image.
Table 2.
Performance
2
Specifications and Feature Highlights with the Firepower Threat Defense Image
Features
Cisco Firepower Model
Cisco ASA 5500-FTD-X Model
4110
4120
4140
4150
9300
with 1
SM-24
Module
9300
with 1
SM-36
Module
9300
with 1
SM-44
Module
9300 with
3 Clustered
SM-44
Modules
5506-
FTD-X
5506W-
FTD-X
5506H-
FTD-X
5508-
FTD-X
5516-
FTD-X
5525-
FTD-X
5545-
FTD-X
5555-
FTD-X
Throughput:
FW + AVC
1
12 Gbps
20 Gbps
25 Gbps
30 Gbps
30 Gbps
42 Gbps
54 Gbps
135 Gbps
250
Mbps
250
Mbps
250
Mbps
450
Mbps
850
Mbps
1100
Mbps
1500
Mbps
1750
Mbps
Throughput:
AVC + IPS
1
10 Gbps
15 Gbps
20 Gbps
24 Gbps
24 Gbps
34 Gbps
53 Gbps
133 Gbps
125
Mbps
125
Mbps
125
Mbps
250
Mbps
450
Mbps
650
Mbps
1000
Mbps
1250
Mbps
Maximum
concurrent
sessions, with
AVC
9 million
15
million
25
million
30
million
30
million
30
million
30
million
60 million
50000
50000
50000
100,000
250,000
500,000
750,000 1,000,000
Maximum new
connections
per second,
with AVC
68,000
120,000
160,000
200,000
120,000
160,000
300,000
900,000
5,000
5,000
5,000
10,000
20,000
20,000
30,000
50,000
Application
Visibility and
Control (AVC)
Standard, supporting more than 4000 applications, as well as geolocations, users, and websites
AVC:
OpenAppID
support for
custom, open
source,
application
detectors
Standard
Cisco Security
Intelligence
Standard, with IP, URL, and DNS threat intelligence
Cisco
Firepower
NGIPS
Available; can passively detect endpoints and infrastructure for threat correlation and indicators of compromise (IoC) intelligence
Cisco AMP for
Networks
Available; enables detection, blocking, tracking, analysis, and containment of targeted and persistent malware, addressing the attack continuum both during and after attacks. Integrated
threat correlation with Cisco AMP for Endpoints is also optionally available
Cisco AMP
Threat Grid
sandboxing
Available
URL Filtering:
number of
categories
More than 80
URL Filtering:
number of
URLs
categorized
More than 280 million
Automated
threat feed and
IPS signature
updates
Yes: class-leading Collective Security Intelligence (CSI) from the Cisco Talos Group (
Third-party
and open-
source
ecosystem
Open API for integrations with third-party products; Snort
®
and OpenAppID community resources for new and specific threats
Centralized
management
Centralized configuration, logging, monitoring, and reporting is performed by the Firepower Management Center