08-11-2015 06:40 AM - edited 03-10-2019 06:25 AM
Hi,
To be HIPAA compliant our company needs to have an IPS device. I was looking into it and I came across this router module (See link below). We have about 200 users behind the router and we have 2 branch offices with a similar setup. My concerns are, will this module fulfill our requirement of having a decent IPS solution. Will it be able to support an enterprise network? What factors do I need to take into account when finalizing an IPS device.
Any insight is appreciated.
Solved! Go to Solution.
08-11-2015 04:29 PM
Those network modules and all of the "legacy" Cisco IPS devices, modules and software are end-of-sales. Here's the announcement confirming that for those particular modules.
For a modest requirement such as yours, I recommend a small ASA 5500-X series running in transparent mode with the FirePOWER services module running the IPS feature. That's minimally intrusive to your network ("bump in the wire") and doesn't cost all that much for the capabilities it offers. the exact model would be primarily dependent on your current and projected throughput but for up to over 50 Mbps with IPS policy active you would be fine with the smallest model (ASA 5506-X).
Find a Cisco partner who has a security practice in your area. They can advise you on details and provide a quote.
08-11-2015 04:29 PM
Those network modules and all of the "legacy" Cisco IPS devices, modules and software are end-of-sales. Here's the announcement confirming that for those particular modules.
For a modest requirement such as yours, I recommend a small ASA 5500-X series running in transparent mode with the FirePOWER services module running the IPS feature. That's minimally intrusive to your network ("bump in the wire") and doesn't cost all that much for the capabilities it offers. the exact model would be primarily dependent on your current and projected throughput but for up to over 50 Mbps with IPS policy active you would be fine with the smallest model (ASA 5506-X).
Find a Cisco partner who has a security practice in your area. They can advise you on details and provide a quote.
09-17-2015 08:26 AM
We do have an ASA 5515 (HS setup) behind the router and we have decided to go with getting the FirePOWER license for the ASAs. Apparently there is a VM setup needed for this but that shouldn't be a problem. Thanks for your advise. :)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide