Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1449
Views
2
Helpful
3
Replies

ASA firewall and Cisco ids

Go to solution
202103637
Level 1
Level 1

‎11-05-2023 02:46 AM

I am writing to request some information that would help me solve some problem in my university case study. I am particularly interested in learning about the following:

The key differences between ASA firewall and cisco ids
Which one is more important to university
Does the ASA firewall contain ids features?

I would be really grateful if you could help me. Thank you for your time and consideration

@MHM Cisco World 

1 Accepted Solution

Accepted Solutions

Go to solution
MHM Cisco World
VIP
VIP

‎11-05-2023 03:03 AM - edited ‎11-05-2023 03:06 AM

the ASA is platform which by default can run l3/l4 ACL 
the IDS is software package download into ASA. (or separate IDS appliance)
NOW what different ??

let take simple example Host-ASA-Server 

Host try to access http Server
ASA can use L3/L4 to filter the IP and Port host use, BUT that it 
NO 
inside http there are many bug worm virus, that normal ASA can not detect it Here IDS come in,
IDS use special signature (signature is any part OR pattern of traffic) to deny traffic or monitor it. 

these signature is collect by cisco secure team and update always. 

for more check below 

Cisco IDS/IPS Fundamentals

Cisco IOS Intrusion Prevention System - Cisco Systems

 

Thanks A Lot
MHM

View solution in original post

3 Replies 3

Go to solution
MHM Cisco World
VIP
VIP

‎11-05-2023 03:03 AM - edited ‎11-05-2023 03:06 AM

the ASA is platform which by default can run l3/l4 ACL 
the IDS is software package download into ASA. (or separate IDS appliance)
NOW what different ??

let take simple example Host-ASA-Server 

Host try to access http Server
ASA can use L3/L4 to filter the IP and Port host use, BUT that it 
NO 
inside http there are many bug worm virus, that normal ASA can not detect it Here IDS come in,
IDS use special signature (signature is any part OR pattern of traffic) to deny traffic or monitor it. 

these signature is collect by cisco secure team and update always. 

for more check below 

Cisco IDS/IPS Fundamentals

Cisco IOS Intrusion Prevention System - Cisco Systems

 

Thanks A Lot
MHM

Go to solution
202103637
Level 1
Level 1
In response to MHM Cisco World

‎11-05-2023 03:17 AM

Thank you soo much for your response i really appreciate it, you made my day.

but I'm still concerned because I have read some documents that state that Cisco IDS can be a separate device is that true? Also we can't say that one is more beneficial than the other or more important right? because I'm trying to rank security devices based on their importance to the university and i couldn't tell which one is more important but according to AI it says that the ASA Firewall is more important because it contains IPS and VPN solution so what is your thought on this? 

0 Helpful

Go to solution
james.king14
Level 1
Level 1

‎11-06-2023 05:39 AM

The ASA can do IDS but since the FTD came out. Cisco recommends that you
use that module for all IDS/IPS configuration. For Universities I would
recommend the FTD process. That way you will be able to not only see the
intrusions but fight them before they reach your network.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card