Cisco Firepower

Cisco Firepower is an integrated threat-oriented firewall (ITU).

2021: FSTEC Russia Firewall Certification

SATEL announced on March 31, 2021 that it had received a certificate of compliance for information security - a firewall implemented in the Cisco Firepower 2100 series network security devices. The certificate was issued by the Federal Service for Technical and Export Control of the Russian Federation (FSTEC of Russia).

The relevant equipment was certified by SATEL under the series scheme, which gives customers the opportunity to obtain an unlimited number of certified Cisco Firepower 2100 firewalls.

Cisco Firepower 2100 is a "A" and "B" type firewall used on the physical and logical edge of an information system or between the physical and logical boundaries of segments of an information system. The firewall is designed to integrate local area networks into an enterprise-wide network (Intranet) and into global networks such as the Internet. Integration is implemented on the basis of the rules set by the administrator for filtering information flows in given directions, which ensure differentiation of access of subjects of one network to objects of another. The interpretation of the rule set is carried out by a sequence of inter-network screen software commands that allow or prohibit the transmission of data packets in one direction or another.

The firewall of the Cisco Firepower 2100 series is certified in the System of certification of means of information protection on safety requirements of information No. ROSS RU.0001.01BI00 and has the certificate of conformity to requirements for safety of information No. 4373. According to the certificate, this equipment meets the requirements of the documents:

• Requirements for firewalls (FSTEC of Russia, 2016);
• The "A" Type 6 firewall protection profile. IT.ME.A6.PZ (FSTEC of Russia, 2016);
• The protection profile of type "B" firewalls of the sixth protection class. IT.ME.B6.PZ (FSTEC of Russia, 2016);
• Information security requirements that establish levels of confidence in information security tools and information technology security tools (approved by Order of the FSTEC of Russia dated June 2, 2020 No. 76) on the 6th level of trust.

Compliance with Russian regulations is an integral part of Cisco's strategy. We are glad that we were able to take another step in this direction together with our long-term technological partner - SATEL, - commented, Mikhail Kader Honored System Engineer. Cisco

2017: Cisco Firepower 2100 Series

In February 2017, Cisco introduced the next-generation firewall family for the Internet perimeter - the Cisco Firepower 2100 series. These firewalls have almost constant bandwidth when additional security services are included, and meet the needs of today's organizations for uptime and protection of critical business functions and data.

Models of this series

• Firepower 2110 Security Appliance
• Firepower 2120 Security Appliance
• Firepower 2130 Security Appliance
• Firepower 2140 Security Appliance

When moving to digital business models, cybersecurity solutions must support scaling to add new features and confront new threats and vulnerabilities without compromising network and application performance. In reality, this, unfortunately, is not so. Enabling intrusion detection on a firewall can reduce throughput by half or even more. As a result, web-based customer interaction applications such as Internet banking and e-commerce, which need maximum performance and are more often targeted by intruders, suffer significantly. Some enterprises disable information security functionality to improve performance, putting both themselves and their customers at risk.

The 2100 Series firewalls, which use the industry's first dual-core architecture, accelerate key encryption, shielding, and security features. These models are specifically designed to meet customers' needs to maintain the right level of security and performance at all times. The Cisco Firepower 2100 delivers better performance even with the threat analysis functionality used, compared to products of a similar price category.

2016

On February 18, 2016, Cisco announced the release of the fully integrated Cisco Firepower threat-oriented firewall.

Cisco Firepower-4100 (2016)

The solution, according to the vendor, is significantly different from analogues limited to application control: the Cisco solution detects and recognizes potential hackers, ensuring security.

Together with the announcement of ITU, the company launched the Cisco Security Segmentation Service consulting service.

Its mission is to help:

• improve compatibility;
• localize the source of the attack;
• Detect threats
• Monitor content security
• Prevent data leakage across your IT infrastructure.

Both Cisco innovations are designed to protect against dangerous and persistent threats of cyber attacks.

Threat protection is a distinctive feature of ITU Cisco Firepower. Cisco Firepower combines threat analytics, security policy compliance, and information about how users connect to applications. This level of transparency across the business environment enhances protection and reduces the time it takes to detect and respond to threats. ITU automates and adjusts protective measures and almost immediately strengthens the protection system due to its ability to take into account current vulnerabilities, assets and threats in the network. Concerted security actions provide protection that point solutions cannot provide.

Cisco Firepower increases the speed, ease, and efficiency of detecting and responding to attacks. The product integrates Cisco threat protection services and dynamic packet filtering technology into a single solution.

Among the features of the product:

• Next Generation Intrusion Prevention System (NGIPS)
• Advanced Malware Protection (AMP)
• reputation-based URL filtering.

The integrated ITU combines Cisco and third-party solutions, allowing them to share their analytical capabilities and context. Enterprises can now link previously disparate pieces of data, recognize and repel complex attacks more quickly, wherever they occur. This increases the competitiveness of organizations that want to take advantage of new business opportunities by starting to work with the cloud, virtual environment, the Internet of Things, and mobile devices.

Cisco introduced the Cisco Firepower 4100 Series for high-performance applications used by midsize and large businesses. This high-performance device, in its class, with optimal density of computing resources, is capable of tracking threats at high throughput and low network latency and is suitable for use by high-frequency trading organizations and data center deployments. The device is equipped with built-in ports 40 GbE, the height of the housing is one rack (1U).