Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
24627
Views
95
Helpful
8
Replies

Firepower vs NGIPS vs FireSight vs FirePower Management Center

Go to solution
esa_fresa
Level 1
Level 1

‎11-10-2016 08:29 AM - edited ‎03-10-2019 06:42 AM

I'm struggling to understand the distinction between all of these terms. Is someone able to help me understand what is what?

3 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Oliver Kaiser
Level 7
Level 7

‎11-10-2016 02:52 PM

Firepower is the term Cisco uses for most of the products aquired from Sourcefire.

FMC

Firepower Management Center aka Firesight Management Center aka Defense Center.
Firepower Management Center has been re-branded two times, its all the same

Central Management for firepower devices (NGIPS, ASA Firepower Module, FTD)

NGIPS

Dedicated IPS appliance / IPS component of the firepower solution (also used on ASA Firepower module and FTD)

ASA with Firepower Services

ASA with software/hardware module running Firepower services. (= two different images running on the same box. Traffic is redirected to firepower module for layer 7 inspection)

FTD 

Firepower Threat Defense is the new unified image combining ASA software and firepower software into a single image. (not full feature parity to ASA yet)

If you need further information let me know.

View solution in original post

8 Replies 8

Go to solution
Oliver Kaiser
Level 7
Level 7

‎11-10-2016 02:52 PM

Firepower is the term Cisco uses for most of the products aquired from Sourcefire.

FMC

Firepower Management Center aka Firesight Management Center aka Defense Center.
Firepower Management Center has been re-branded two times, its all the same

Central Management for firepower devices (NGIPS, ASA Firepower Module, FTD)

NGIPS

Dedicated IPS appliance / IPS component of the firepower solution (also used on ASA Firepower module and FTD)

ASA with Firepower Services

ASA with software/hardware module running Firepower services. (= two different images running on the same box. Traffic is redirected to firepower module for layer 7 inspection)

FTD 

Firepower Threat Defense is the new unified image combining ASA software and firepower software into a single image. (not full feature parity to ASA yet)

If you need further information let me know.

Go to solution
catanner19
Level 1
Level 1
In response to Oliver Kaiser

‎01-17-2017 01:36 PM

What about the term NGFW? and FirePOWER vs Firepower??

http://www.cisco.com/c/dam/m/en_us/products/security/ngips/NGIPS_transition_guide.pdf

Customers will not buy it, if they do not know what it is.

0 Helpful

Go to solution
Oliver Kaiser
Level 7
Level 7
In response to catanner19

‎01-18-2017 12:27 AM

NGFW is the term used for firewalls that provide features up to layer 7 including IPS, AMP, URL Filtering, User Identity Integration etc... its basically just a marketing term used by vendors and is used for both ASA with Firepower Services and the new Firepower Appliances with run FTD in the cisco world.

Considering FirePOWER vs Firepower... Thats the same, but marketing will always write FirePOWER and engineers dont care and just write it as Firepower ;)

Go to solution
Ramakrishnan V
Level 1
Level 1
In response to Oliver Kaiser

‎03-21-2017 04:54 AM

How Cisco Firepower-Firesight differs from Defense Center, Both(Firesight and Defense Center) are same. 

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Ramakrishnan V

‎03-21-2017 05:22 AM

[@v.ramakrishnan]  ,

If you are asking a question then, yes, they are the same product. Cisco has only changed then name with newer versions.

When the product was made by Sourcefire it was called Defense Center. Cisco acquired that company and started calling it FireSIGHT Management Center. That was version 5.x.

When they updated to version 6.x, they changed the name to the current FirePOWER Management Center.

Reference:

https://www.cisco.com/c/en/us/td/docs/security/firepower/compatibility/firepower-compatibility.html#id_38024

Go to solution
bcoverstone
Level 1
Level 1
In response to Oliver Kaiser

‎10-30-2017 07:43 PM

It's all just Snort.

0 Helpful

Go to solution
jsburch01
Level 1
Level 1
In response to Oliver Kaiser

‎04-03-2020 07:14 AM

Oliver,

 

Thank you for your response.  I worked with the IPS back in 2017 and and need to catch up on the new terms. 

My question is concerning the new terminology and usage today in 2020

 

It appears that cisco has discontinued stand alone IPS systems (NGIPS) and is focusing only on their IPS/firewall Solutions?  is this true?  Another way of asking, is it true that, if I have a an ASA and I want to have a separate IPS I need to buy a system that can run the FTD image or do a virtual FTD to have a stand alone IPS now?

 

Thanks

 

 

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to jsburch01

‎04-03-2020 11:24 AM

The separate NGIPS (Firepower 7000 and 8000 series and NGIPSv) went end of sales as of June 2019:

https://www.cisco.com/c/en/us/products/collateral/security/firepower-7000-series-appliances/eos-eol-notice-c51-741685.html

If you have an ASA you can run Firepower service modules on some models. That adds the IPS features.

Or you can convert it (for more recent ASAs - not all models are eligible) to run FTD image which includes the NGFW and NGIPS features as well.

Or you can purchase a new Firepower appliance (1000, 2000, 4100 and 9300 series hardware, FTDv either on-prem or in AWS and Azure public clouds). Those can generally run as either NGFW or NGIPS, depending on how you configure them.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card