Cisco Cisco FirePOWER Appliance 7010 데이터 시트
© 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 1 of 4
Data Sheet
Cisco NGIPSv for VMware
Product Overview
Industry-leading threat protection. Real-time contextual awareness. Full-stack visibility. Intelligent security
automation. Together they equal security you can count on when using Cisco
®
NGIPSv for VMware, the virtualized
offering of the Cisco FirePOWER
™
next-generation IPS (NGIPS) solution. This highly effective intrusion prevention
system provides reliable performance and a low total cost of ownership. Threat protection can be expanded with
optional subscription licenses to provide Advanced Malware Protection (AMP), application visibility and control, and
URL filtering capabilities. Cisco FirePOWER appliances set the industry benchmark for threat detection
effectiveness, inspected throughput, and value as measured by studies conducted by NSS Labs, the world's
leading information security research and advisory company.
The Benefits of a Virtualized Solution
Server virtualization brings significant business benefits. It is capable of reducing costs, enabling rapid deployment,
and improving system availability. Yet implementing virtualization introduces potential security risks:
●
“Blind spots” are created because changes in topology or configuration will not be detected.
●
Functions are consolidated that other groups previously managed separately, such as networking or
security, which can lead to configuration mistakes.
●
Virtual machines (VMs) quickly propagate without adequate coordination or oversight, a problem known as
VM sprawl.
Cisco NGIPSv for VMware addresses the risks posed by virtualization by enabling
you to deploy Cisco’s leading
NGIPS solution within your virtual environments. This virtualized NGIPS is able to inspect traffic between virtual
machines and make it easier to deploy and manage NGIPS solutions at remote sites where resources may be
limited, increasing protection for both physical and virtual assets.
Reclaim the Visibility Lost When Virtualizing
The dynamic nature of virtual networks regularly involves changes to the virtual network’s topology as well as
configuration changes to individual virtualized hosts. Unfortunately, most systems management solutions are blind
to these changes. If the changes are done incorrectly, either on purpose or accidentally, security exposures can be
introduced into your critical processing environments without your knowledge.
For example, two different virtual networks are deployed on the same physical host. One is a production
environment, and the other is a development environment that contains source code for the production
environment. Due to misconfiguration or an inadvertent policy violation, these two virtual networks become
connected: a major security exposure but one that’s invisible to the outside world.
connected: a major security exposure but one that’s invisible to the outside world.
Cisco NGIPSv for VMware will alert you to these changes so that misconfigurations and violations of policy can be
addressed before they become problems. It also provides threat protection by identifying and blocking any
malicious traffic between your virtualized networks and individual VMs. Cisco NGIPSv for VMware provides
visibility into your virtualized world so that you can better control and secure this critical part of your processing
environment.