Advanced firewall with threat detection, web filtering, and malware protection. It monitors encrypted traffic and integrates with both Cisco XDR and Talos for comprehensive security. Suitable for businesses, branch offices, and data centers.
Cisco Secure Firewall is a comprehensive portfolio of next-generation firewalls that are designed to provide a high level of protection against modern cyber threats. It combines traditional firewall features (stateful inspection, NAT, VPN) with advanced security technologies, including deep application inspection, IPS, advanced malware protection, and more. With a modular licensing model, a wide range of hardware platforms and flexible deployment options (including virtual and cloud), Secure Firewall provides solutions for organizations of all sizes – from branch offices to large-scale data centers and cloud environments.
Cisco Secure Firewall uses a simple modular licensing model:
Essentials (Base):
- Port and protocol status inspection
- Network Address Translation (NAT)
- Site-to-Site and Remote Access VPN
- High Availability and Clustering
- Application Visibility & Control (AVC) detects 7,000+ applications
- Geolocation filtering based on country of origin or destination
IPS (Threat):
- Next-Generation Intrusion Prevention System (NGIPS) built on the Snort 3 engine
- Security Intelligence with IP and URL reputation filtering
- Encrypted Visibility Engine (EVE) detects threats in encrypted traffic without decryption
- Impact Flags for alert prioritization
- Recommended Rules for automatic IPS rule optimization
Malware Defense (Malware):
- Malware detection, blocking, and tracking
- Integration with Secure Malware Analytics (sandboxing)
- Retrospective detection and automated remediation
URL Filtering (URL):
- Web traffic filtering by category and reputation
- Checks hundreds of millions of URLs across many categories
- Advanced categories for increased protection and compliance
Hardware platforms and deployment options:
Cisco Secure Firewall offers a wide portfolio of platforms for different scenarios:
- 1000 and 1200 Series: Compact devices for branch offices and smaller locations with throughput from hundreds of Mbps to units of Gbps.
- 3100 Series: Powerful firewall for edge and mid-range data centers with up to 45 Gbps throughput, equipped with hardware-accelerated VPN.
- 4100 and 4200 Series: High-performance Internet edge and data center platforms with up to 200 Gbps throughput; with optional DDoS module.
- 9300 Series: Carrier-grade modular chassis for service providers and large data centers with 55–190 Gbps of throughput per chassis, with clustering capability in excess of 1 Tbps and optional DDoS module.
- Virtual Solution (NGFWv): For private and public clouds (VMware, KVM, Hyper-V, AWS, Azure, and more).
Management options:
- Firewall Management Center (FMC)
- On-premises solution for the centralized administration of multiple firewalls
- Also available as virtual appliance
- Advanced features for policy management, monitoring and reporting
- Includes AI Assistant to simplify firewall administration in natural language
- Built-in web-based tool for the basic management of individual devices
- No additional costs, suitable for undemanding implementations
- Cloud service for centralized policy and configuration management
- Includes cdFMC – FMC in the Cisco Cloud
- Enables unified administration across Secure Firewalls, ASA, Meraki MX, and other Cisco products
Advanced security features:
- Snort 3 IPS: A next-generation open-source IPS engine with high performance, scalability, and customization options.
- Encrypted Visibility Engine (EVE): Enables identifying threats and applications in encrypted traffic without decryption.
- Security Intelligence: Integration with Cisco Talos threat intelligence provides real-time protection against known threats and C&C servers.
Customer benefits
Comprehensive visibility and monitoring
Detection of 7,000+ applications and granular monitoring at the user and device level.
Effective threat protection
Combines multiple detection engines (IPS, AMP, URL filtering) and Talos threat intelligence.
Flexible deployment
Wide range of platforms and licensing options to match the needs of your organization.
Consistent policies
Centralized management in FMC, Security Cloud Control, or FDM ensures security policy consistency across different environments.
Performance optimization
Hardware with dedicated security processors minimizes latency and throughput impacts.
Simplified administration
New AI Assistant and automated IPS rule recommendations increase the efficiency of security teams.
Cisco Secure ecosystem integration
Works seamlessly with XDR, Secure Endpoint, Duo, and other solutions.
Cisco Secure Firewall
This provides a modern, scalable, and flexible platform to protect networks from evolving cyber threats. With a modular licensing model, diverse range of hardware and virtual appliances, and extensible security features (IPS, Malware Defense, URL Filtering, etc.), we offer solutions for all kinds of organizations – from small branch offices to large service providers. In addition, the New AI Assistant in the Firewall Management Center enables natural language firewall management, making the job easier for both experienced administrators and less specialized teams.
With Cisco Talos integration and a wide range of management options (including Security Cloud Control), security can be tailored to specific needs while maintaining a consistent and centralized security policy across multiple sites and clouds.