Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2618
Views
1
Helpful
8
Replies

Can Cisco FTD block DDoS attack?

Go to solution
King_1988
Level 1
Level 1

‎08-08-2023 07:43 PM

Hi Good People

 

We have cisco 2100 ftd managed by FMC. Can this block DDoS attack or any model of ftd or do we need any license? 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to King_1988

‎08-10-2023 10:18 AM - edited ‎12-24-2024 10:13 PM

Only in the most basic sense (protect against syn floods, scanners etc.).

True DDoS protection (for instance from volumetric attacks) requires an external service like the Radware service. It is available as an optional add-on for 4100, 4200 and 9300 series (or as separate appliances or cloud-delivered as a service).

(EDIT 12-25-2024: not offered on 4200 series.)

View solution in original post

8 Replies 8

Go to solution
marce1000
Hall of Fame
Hall of Fame

‎08-08-2023 11:40 PM

 

 - Review this thread : https://community.cisco.com/t5/network-security/ftd2100-ddos-protection/td-p/4143697

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
King_1988
Level 1
Level 1
In response to marce1000

‎08-09-2023 01:03 AM

Thanks. But it would be better if you can reply in just summary of this. Whether it blocks DDos or not? And which license/feature needed to block DDos?

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP

‎08-08-2023 11:55 PM

Hello,

as far as I recall, the FTD 4100 does support advanced DDoS protection.

https://www.cisco.com/c/en/us/products/security/secure-ddos-protection/index.html#~products

0 Helpful

Go to solution
King_1988
Level 1
Level 1
In response to Georg Pauwen

‎08-09-2023 08:38 PM

Can you please confirm? I need the correct info. FTD2100 supports DDoS blocking?

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to King_1988

‎08-10-2023 10:18 AM - edited ‎12-24-2024 10:13 PM

Only in the most basic sense (protect against syn floods, scanners etc.).

True DDoS protection (for instance from volumetric attacks) requires an external service like the Radware service. It is available as an optional add-on for 4100, 4200 and 9300 series (or as separate appliances or cloud-delivered as a service).

(EDIT 12-25-2024: not offered on 4200 series.)

Go to solution
King_1988
Level 1
Level 1
In response to Marvin Rhoads

‎08-10-2023 11:00 PM

Thanks a lot Marvin for the specific answer.

0 Helpful

Go to solution
kaiminchu
Level 1
Level 1
In response to Marvin Rhoads

‎12-24-2024 08:25 PM

Dear Sir

Is there any documentation to prove that 4200 supports Radware’s DDoS protection?

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to kaiminchu

‎12-24-2024 10:12 PM

Sorry, I wrote incorrectly earlier. The Radware vDP option is only available on 9300 and 4100 series firewalls.

See Table 9 here for confirmation:

https://www.cisco.com/c/en/us/products/collateral/security/secure-firewall/guide-c07-737902.html

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card