Cisco Cisco Firepower Management Center 4000
1-7
FireSIGHT System User Guide
Chapter 1 Introduction
FireSIGHT System Appliances
Table 1-2
Supported Capabilities by Defense Center Model
Feature or Capability
Series 2
Defense Center
Series 3
Defense Center
Virtual
Defense Center
collect discovery data (host, application, and user)
reported by managed devices and build a network
map for your organization
reported by managed devices and build a network
map for your organization
yes
yes
yes
view geolocation data for your network traffic
DC1000, DC3000
yes
yes
manage an intrusion detection and prevention (IPS)
deployment
deployment
yes
yes
yes
manage devices performing Security Intelligence
filtering
filtering
DC1000, DC3000
yes
yes
manage devices performing simple network-based
control, including geolocation-based filtering
control, including geolocation-based filtering
yes
yes
yes
manage devices performing application control
yes
yes
yes
manage devices performing user control
DC1000, DC3000
yes
yes
manage devices that filter network traffic by literal
URL
URL
yes
yes
yes
manage devices performing URL filtering by
category and reputation
category and reputation
DC1000, DC3000
yes
yes
manage devices performing simple file control by
file type
file type
yes
yes
yes
manage devices performing network-based
advanced malware protection (AMP)
advanced malware protection (AMP)
DC1000, DC3000
yes
yes
receive endpoint-based malware (FireAMP) events
from your FireAMP deployment
from your FireAMP deployment
yes
yes
yes
manage device-based hardware-based features:
•
fast-path rules
•
strict TCP enforcement
•
configurable bypass interfaces
•
tap mode
•
switching and routing
•
NAT policies
•
VPN
yes
yes
yes
manage device-based redundancy and resource
sharing:
sharing:
•
device stacks
•
device clusters
•
Sourcefire Software for X-Series VAP groups
•
clustered stacks
yes
yes
yes
establish high availability
DC1000, DC3000
DC1500, DC3500
no