Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
613
Views
0
Helpful
1
Replies

what's the difference between ASA & PIX for IPS function?

jizj
Level 1
Level 1

‎06-25-2006 10:28 PM - edited ‎03-10-2019 03:04 AM

question is same with the title

Labels:
0 Helpful
1 Reply 1

a.kiprawih
Level 7
Level 7

‎06-26-2006 03:07 AM

Hi,

In ASA, the ips (AIP-SSM) is a provides proactive, full-featured intrusion prevention services to stop malicious traffic, including worms and network viruses that function similar to standalone IPS 4200 series. It can run either in inline or promiscuous mode.

In inline mode, you can divert inbound traffic from outside interface destine to inside/dmz to IPS module via backplance for properly inspection. Logically, IPS is sitting in the data path.

http://www.cisco.com/en/US/products/ps6825/index.html

For PIX, it only has a subset (something like less than 50) of IDS signature to address well-known/basic intrusion threats. Action is limited, either to reset, drop or alert.

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727a9.html#wp1101884

Obviously, IPS (AIP-SSM) is much better than PIX IDS.

Rgds,

AK

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card