Features |
SM-40 |
SM-48 |
SM-56 |
3 x SM-56 |
Throughput: Firewall (FW) + Application Visibility and Control (AVC) (1024B) |
55 Gbps |
65 Gbps |
70 Gbps |
190 Gbps |
Throughput: FW + AVC + Intrusion Prevention System (IPS (1024B) |
55 Gbps |
65 Gbps |
68 Gbps |
190 Gbps |
Maximum concurrent sessions, with AVC |
35 million |
35 million |
35 million |
60 million |
Maximum new connections per second, with AVC |
380K |
450K |
490K |
1.1M |
TLS (Hardware Decryption)2 |
10 Gbps |
11 Gbps |
12 Gbps |
28 Gbps |
Throughput: NGIPS (1024B) |
60 Gbps |
68 Gbps |
73 Gbps |
190 Gbps |
IPSec VPN throughput (1024B TCP /Fastpath) |
27 Gbps |
33 Gbps |
36 Gbps |
110 Gbps1 |
Maximum VPN Peers |
20,000 |
20,000 |
20,000 |
60,000 |
Centralized management |
Centralized configuration, logging, monitoring, and reporting are performed by the Management Center or alternatively in the cloud with Cisco Defense Orchestrator |
|||
AVC |
Standard, supporting more than 4000 applications, as well as geolocations, users, and websites |
|||
AVC: OpenAppID support for custom, open-source application detectors |
Standard |
|||
Cisco Security Intelligence |
Standard, with IP, URL, and DNS threat intelligence |
|||
Cisco IPS License |
Available; can passively detect endpoints and infrastructure for threat correlation and Indicators of Compromise (IoC) intelligence |
|||
Cisco Malware Defense for Networks |
Available; enables detection, blocking, tracking, analysis, and containment of targeted and persistent malware, addressing the attack continuum both during and after attacks. Integrated threat correlation with Cisco Secure Endpoint is also optionally available |
|||
Cisco Malware Analytics |
Available |
|||
URL filtering: number of categories |
More than 80 |
|||
URL filtering: number of URLs categorized |
More than 280 million |
|||
Automated threat feed and IPS signature updates |
Yes: class-leading Collective Security Intelligence (CSI) from the Cisco Talos® group (https://www.cisco.com/c/en/us/products/security/talos.html) |
|||
Third-party and open- source ecosystem |
Open API for integrations with third-party products; Snort® and OpenAppID community resources for new and specific threats |
|||
High availability and clustering |
Active/active and Active/standby; up to 6 modules across up to 6 different Firepower 9300 chassis. |
|||
Cisco Trust Anchor Technologies |
Cisco Firepower 9300 Series platforms include Trust Anchor Technologies for supply chain and software image assurance. |
Cisco Firepower 9300 Series
Roll over image to zoom in
Cisco Firepower® 9300 adalah platform modular yang dapat diskalakan (melebihi 1 Tbps saat dikelompokkan), sekelas operator, dan dirancang untuk penyedia layanan, pusat komputasi berkinerja tinggi, pusat data besar, kampus, lingkungan perdagangan frekuensi tinggi, dan titik lain dalam jaringan yang memerlukan latensi rendah (kurang dari 5 mikrodetik offload) dan throughput yang luar biasa. Firepower 9300 mendukung flow-offloading, orkestrasi terprogram, dan pengelolaan layanan keamanan dengan API RESTful. Produk ini juga tersedia dalam konfigurasi yang sesuai dengan Network Equipment Building Standards (NEBS). Seri 9300 menjalankan perangkat lunak Cisco Secure Firewall ASA atau Threat Defense (FTD).