Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1704
Views
0
Helpful
2
Replies

SourceFire IPS updates

Go to solution
Colin Higgins
Level 2
Level 2

‎04-26-2015 07:44 AM - edited ‎03-10-2019 06:22 AM

We are in the process of putting in new firewalls with SFP IPS modules in them that will be managed by a SourceFire security center appliance (a 1500 series)

 

I know with the old IPS systems, the modules would get their signature updates directly. Will they now get their signature and software updates from the management server? (this would make things a lot easier)

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
pazzi
Cisco Employee
Cisco Employee

‎04-26-2015 07:55 AM

Hello Colin

 

Yes, your Firesight management center gets all the rules updates and the Intrusion policies get updated and redeployed to your sensors.

 

Hth

Paul

View solution in original post

0 Helpful
2 Replies 2

Go to solution
pazzi
Cisco Employee
Cisco Employee

‎04-26-2015 07:55 AM

Hello Colin

 

Yes, your Firesight management center gets all the rules updates and the Intrusion policies get updated and redeployed to your sensors.

 

Hth

Paul

0 Helpful

Go to solution
Colin Higgins
Level 2
Level 2
In response to pazzi

‎04-26-2015 08:07 AM

That sounds good

 

The reason I ask, is that some of the firewalls are edge devices providing outbound Internet access. I don't want to hairpin traffic off an internal router so that the IPS module can go fetch updates from Cisco.

 

I would much rather keep that management IP for the sensor isolated and have the server push updates to it.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card