Posting that question on the Cisco Support Community kind of leads you to a Cisco product. :)
Which one depends a lot on your existing security products and the amount of throughput your require.
Thanks for your reply.
Yes I'm looking cisco IPS/IDS product.
Currently I'm running IP/IDS on asa firewall itself. I'm looking for a centralized IPS/IDS solution for our company as we have few branches in different cities.
Does all the traffic go through a single firewall at Hqs for Internet access or does each branch have direct Internet access?
Which IPS type are you currently running and on what hardware model? Firepower is the current generation and it offers centralized management of policy, devices and logs via the Firepower Management Center product.
As long as each branch has direct Internet access and an ASA with Firepower services, there's always going to be distributed IPS functionality.
You should be using Firepower Management Center (FMC) to centrally manage all of the policies and gather all of the connection events.
FMC can run in the cloud. It's supported natively in AWS:
It's not supported on other cloud providers' platforms like Microsoft's Azure or Google's GCP.
Just a quick question.
I have Protection, Control, URL Filtering licenses on all our branch office ASA. So, I'm planing to deploy a Firepower Management Center to centrally manage them, in order to do that,
Do I still need a separate licenses for those features to be activated in FMC?
Do I still need a separate license for FMC?
When you manage classic licenses (such as are used by ASA Firepower modules) you install the license keys on FMC itself. If you had previously been using ASDM, you will need to rehost those licenses to FMC.
FMC itself is a licensed product. The VM form factor can be purchased with license to manage either 2, 10 or unlimited (in reality up to 25 maximum) sensors (remote devices).