cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2594
Views
14
Helpful
6
Replies
Highlighted

AMP for endpoints/networks vs AMP in firepower

Hi Team.

We have two categories of AMP services , one which is used as  firepower services and other one is AMP for endpoints/networks.

Can anyone please throw some light on the differences between them and how exactly they work?

Everyone's tags (1)
6 REPLIES 6
Highlighted
Cisco Employee

Hi

Hi

Network amp run on network. It scans the traffic for malicious files when the traffic is passing through a firepower device. So it can detect /prevent file based threats on the network.

AMP for endpoint as the name suggests is an endpoint client which can be installed on windows,mac etc. Its like a security software which scans the end PC and is independent of AMP service on Firepower network device.

AMP for endpoint is managed by separate console cloud account.

Check this out

http://www.cisco.com/c/dam/en/us/td/docs/security/sourcefire/fireamp/fireamp-cloud/FireAMPDeploymentStrategy.pdf

and

http://www.cisco.com/c/en/us/products/security/amp-appliances/index.html 

network AMP can be used on any firepower appliance along with its IPS capability (subject to licensing )

Rate if helps.

Yogesh

Highlighted

Thanks for such an prompt

Thanks for such an prompt reply!

It means AMP for endpoints is a software+License installed on endpoints and Other one is a license on firewall , right ?

Highlighted
Cisco Employee

You are right.

You are right.

Highlighted
Beginner

Re: You are right.

if a malware pass thru the amp network would it be visible on amp end point and vice versa?
Highlighted
Cisco Employee

Re: Yes

Yes, Any Malware detected on AMP for networks & AMP for Endpoints will be updated to AMP cloud, same will be passed to all registered appliances and Endpoints.

Cisco Employee

Re: AMP for endpoints/networks vs AMP in firepower

Hey, we have a couple of experts discussing this exact topic on our #CiscoChat happening now, check it out:

https://www.youtube.com/watch?v=F_pym5xW3ug 

CiscoChat Live - Climbing the Pyramid of Pain: Automate Atomic IOCs to Supercharge Your Threat Hunts Security analysts consume and process thousands of thre...