Showing results for 
Search instead for 
Did you mean: 


IPS and IDS Solution


I'm looking for an IPS and IDS solution to protect my my medium sized company's network. Can anyone please recommend the best IPS and IDS solution for my company?





Marvin Rhoads
VIP Community Legend

Posting that question on the Cisco Support Community kind of leads you to a Cisco product. :)


Which one depends a lot on your existing security products and the amount of throughput your require.

Hi Marvin,

Thanks for your reply.


Yes I'm looking cisco IPS/IDS  product.


Currently I'm running IP/IDS on asa firewall itself. I'm looking for a centralized IPS/IDS solution for our company as we have few branches in different cities.








Does all the traffic go through a single firewall at Hqs for Internet access or does each branch have direct Internet access?


Which IPS type are you currently running and on what hardware model? Firepower is the current generation and it offers centralized management of policy, devices and logs via the Firepower Management Center product.

Hi Marvin,


Each branch has its own direct internet access.

We're running firepower on every branch's  cisco asa 5516 firewall.



As long as each branch has direct Internet access and an ASA with Firepower services, there's always going to be distributed IPS functionality.


You should be using Firepower Management Center (FMC) to centrally manage all of the policies and gather all of the connection events.

Thanks Mervin.



Can you run Firepower Management Center (FMC) on the cloud?






FMC can run in the cloud. It's supported natively in AWS:


It's not supported on other cloud providers' platforms like Microsoft's Azure or Google's GCP.

Thanks Marvin!

You're welcome.


Please give a helpful rating or mark your question as answered if it has been.

Hi Marvin,

Just a quick question.

I have Protection, Control, URL Filtering licenses on all our branch office ASA. So, I'm planing to deploy a Firepower Management Center to centrally manage them, in order to do that,


Do I still need a separate licenses for those features to be activated in FMC?

Do I still need a separate license for FMC?







When you manage classic licenses (such as are used by ASA Firepower modules) you install the license keys on FMC itself. If you had previously been using ASDM, you will need to rehost those licenses to FMC.


FMC itself is a licensed product. The VM form factor can be purchased with license to manage either 2, 10 or unlimited (in reality up to 25 maximum) sensors (remote devices).

Thanks for your quick reply.

Content for Community-Ad