Cisco Cisco IPS 4255 Sensor 情報ガイド
Q&A
All contents are Copyright © 1992–2008 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 1 of 5
Cisco ASA AIP-SSM-40 and Cisco IPS Sensor Software
Version 6.1
Version 6.1
General Information
Q.
What is the Cisco
®
ASA AIP-SSM-40?
A.
The Cisco ASA Advanced Inspection and Prevention Security Services Module 40 (AIP-SSM-
40) is a hardware module that plugs into a Cisco ASA device and runs Cisco IPS Sensor
Software, a comprehensive inline network-based defense system that is designed to
accurately identify, classify, and stop malicious traffic, including worms, spyware, adware, and
application abuse, before they affect your business or network assets.
Q.
I already have a Cisco ASA appliance. Why do I need an AIP-SSM?
A.
Cisco adaptive security appliances offer a combination of features, including firewall filtering,
VPN termination, and inspection of Internet protocols such as HTTP and FTP. The Cisco ASA
AIP-SSM extends Cisco intrusion prevention system (IPS) technology into SMB environments
by combining high-performance inspection, reliability, and full firewall and IPS integration.
With a Cisco ASA AIP-SSM solution, you can detect and prevent threats in all areas of your
business network.
Q.
What are the inspection and prevention capabilities of the Cisco ASA AIP-SSM-40?
A.
The Cisco ASA AIP-SSM-40 uses the same advanced IPS capabilities available on all Cisco
IPS sensors. Built on industry-leading Cisco security and network intelligence, the ASA AIP-
SSM-40 runs Cisco IPS Sensor Software Version 6.0 or later, providing a comprehensive set
of advanced inspections and signatures for known vulnerabilities, coupled with behavioral
network anomaly detection for emerging “day-zero” threats.
Q.
What is the performance of the Cisco ASA AIP-SSM-40 in my environment?
A.
Cisco calculates the performance numbers for the Cisco ASA AIP-SSM-40 using a
combination of the two most common Internet traffic profiles: media-rich and transactional
traffic.
●
Media-rich traffic
Media-rich environments are characterized by content. Web content seen on most popular
Websites are media-rich, as are video content and file transfers.
●
Transactional traffic
Transactional environments are characterized by shorter, more numerous connections.
These include many types of e-commerce transactions, as well as instant messaging,
voice, and lightweight interfaces such as RSS.
Also included in the performance calculation is the specific Cisco ASA appliance the AIP-SSM-40
has been installed in. The appliance throughput values are shown in the following table.
Cisco ASA Appliance Model
Firewall
Concurrent Threat Mitigation
Cisco ASA 5520 with AIP-SSM-40
450 Mbps
450 Mbps
Cisco ASA 5540 with AIP-SSM-40
650 Mbps
650 Mbps