Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
629
Views
0
Helpful
1
Replies

Cisco IPS

5y5tadmin
Level 1
Level 1

‎07-13-2016 11:10 PM - last edited on ‎03-25-2019 05:21 PM by Community Manager

Hi,

Currently we have Cisco firewall 5515-X that acts only for filtering but not blocking any suspicious activity. Now, our ISP is connect to the outside interface of this firewall. Let say, if we want to put in the IPS, it must be in front of firewall right?

Any recommended IPS that can be use? 

Kindly advice us on this.Thanks!

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-14-2016 10:05 PM

IPS can be either inside or outside the firewall.

Inside usually makes more sense because then the firewall ACL will prevent most inbound traffic with less computational cost than first screening the raw internet incoming traffic (and scanning attempts etc.) with an IPS.

You could add the FirePOWER software modules to your ASA and license the IPS feature on it. That sits  inline with the internal ASA traffic flow and inspects traffic redirected to it via Modular Policy Framework (MPF- service-policy, policy-map and class-map).

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card