Cisco Cisco Firepower Management Center 2000
Firepower System Release Notes
New Features and Functionality
7
New Features and Functionality
This section of the release notes summarizes the new and updated features and functionality included in Version
6.0.1 of the Firepower System:
6.0.1 of the Firepower System:
New Features
The following features are introduced in Version 6.0.1:
Fully Integrated, Threat-Focused Next-Generation Firewall
Most next-generation firewalls (NGFWs) focus heavily on enabling application control, but little on their threat
defense capabilities. To compensate, some NGFWs try to supplement their first-generation intrusion prevention
with a series of non-integrated add-on products. However, this approach does little to protect your business
against the risks posed by sophisticated attackers and advanced malware. Further, once you do get infected, they
offer no assistance in scoping the infection, containing it, and remediating quickly.
defense capabilities. To compensate, some NGFWs try to supplement their first-generation intrusion prevention
with a series of non-integrated add-on products. However, this approach does little to protect your business
against the risks posed by sophisticated attackers and advanced malware. Further, once you do get infected, they
offer no assistance in scoping the infection, containing it, and remediating quickly.
The Cisco Firepower™ Next-Generation Firewall (NGFW) is the industry’s first fully integrated, threat-focused
NGFW. It delivers comprehensive, unified policy management of firewall functions, application control, threat
prevention, and advanced malware protection from the network to the endpoint.
NGFW. It delivers comprehensive, unified policy management of firewall functions, application control, threat
prevention, and advanced malware protection from the network to the endpoint.
Firepower Threat Defense
The Firepower Threat Defense software package can be deployed on Cisco Firepower 4100 and 9300 appliances
to provide a performance and density optimized NGFW security platform for Internet edge and other
high-performance environments. Firepower Threat Defense functionality added in this release includes device and
interface management, routing, NAT, and device high availability, in addition to support for the full Firepower NGIPS
offering.
to provide a performance and density optimized NGFW security platform for Internet edge and other
high-performance environments. Firepower Threat Defense functionality added in this release includes device and
interface management, routing, NAT, and device high availability, in addition to support for the full Firepower NGIPS
offering.
This release introduces support for Firepower Threat Defense on the Firepower 4100 Series and the Firepower
9300, as well as on the ASA 5506-X, ASA 5506H-X, ASA 5506W-X, ASA 5508-X, ASA 5512-X, ASA 5515-X,
ASA 5516-X, ASA 5525-X, ASA 5545-X, and ASA 5555-X.
9300, as well as on the ASA 5506-X, ASA 5506H-X, ASA 5506W-X, ASA 5508-X, ASA 5512-X, ASA 5515-X,
ASA 5516-X, ASA 5525-X, ASA 5545-X, and ASA 5555-X.
Firepower 4100 Series
Stop more threats with our fully integrated next-generation firewall (NGFW) platform. The Firepower 4100 Series’
1-rack-unit size is ideal at the Internet edge and in high-performance environments. It shows you what is
happening on your network, detects attacks earlier so you can act faster, and reduces management complexity.
1-rack-unit size is ideal at the Internet edge and in high-performance environments. It shows you what is
happening on your network, detects attacks earlier so you can act faster, and reduces management complexity.
Firepower 9300 Series
This carrier-grade platform is ideal for data centers and other high-performance settings that require low latency
and high throughput. Deliver scalable, consistent security to workloads and data flows across physical, virtual, and
cloud environments. With tightly integrated services, the Firepower 9300 lowers costs and supports open,
programmable networks. The Firepower 9300 Series offers up to 1.2 Tbps clustered throughput, 10/40/100 Gb
network interfaces, up to 57 million concurrent connections with application control, and 500,000 new
connections per second. Available features and services include a stateful firewall, application visibility and
control, NGIPS, advanced malware protection, reputation-based URL filtering, and DDoS mitigation.
and high throughput. Deliver scalable, consistent security to workloads and data flows across physical, virtual, and
cloud environments. With tightly integrated services, the Firepower 9300 lowers costs and supports open,
programmable networks. The Firepower 9300 Series offers up to 1.2 Tbps clustered throughput, 10/40/100 Gb
network interfaces, up to 57 million concurrent connections with application control, and 500,000 new
connections per second. Available features and services include a stateful firewall, application visibility and
control, NGIPS, advanced malware protection, reputation-based URL filtering, and DDoS mitigation.