Overview
Cisco Secure Firewall Management Center (FMC) is your administrative nerve center for managing critical Cisco network security solutions. It provides complete and unified management over firewalls, application control, intrusion prevention, malware defense, and URL filtering. Quickly and easily go from managing a firewall to controlling applications to investigating and remediating malware outbreaks. You can gain additional context with instant access to Cisco SecureX through our built-in ribbon to reduce threat dwell time.
Realize a payback period of 10 months over a three-year investment*.
Achieve greater efficiency with simplified management: Administer firewalls, correlate and prioritize threats, as well as quickly act on them in a single pane of glass.
- Reduce up to 95%* of network operation work streams by managing your firewall instances with Secure Firewall Management Center
- Supports REST API - a HTTP-based interface for management, policies, and monitoring
- Dynamically manage AWS objects for your cloud environment with Cisco Secure Dynamic Attribute Connector
Gain superior visibility and control: Discover real-time information about changing network resources and operations. Obtain the breadth and depth of context to make decisions.
- Identify users, applications, and devices through passive analysis of network traffic
- Leverage discovery data of your dynamic environment to automate tuning of intrusion rules
- Prioritize business-critical applications while blocking the irrelevant ones with access control, network discovery, and quality of service (QoS) policies
Accelerate response with Cisco SecureX: Bring together Secure Firewall Management Center and Cisco SecureX to accelerate threat detection and remediation.
- Speed up incident response with the new SecureX ribbon in Firewall Management Center, enabling SecOps to instantly pivot to the SecureX open platform
- Configure AWS VPCs manually or automatically from SecureX in response to events from Cisco Secure products
- Monitor your AWS accounts and workloads for malicious activity by integrating with Amazon GuardDuty
FREE TRIAL - See and try our Secure Firewall Threat Defense Virtual with Secure Firewall Management Center.
https://www.cisco.com/go/try-firewall
For more information on Secure Firewall Management Center see data sheet.
See release notes for supported AWS instance types.
*Forrester Total Economic Impact of Cisco Secure Firewall, 2022. www.cisco.com/go/firewallTEI
Highlights
- An AWS Security Competency approved solution providing real-time visibility and unified security to protect your most critical network resources across dynamic environments.
- Centrally manage hundreds of firewalls, control applications, block intrusion attempts, and prevent the spread of malware over encrypted and unencrypted traffic.
- Receive hourly rule updates from Cisco Talos® Threat Intelligence and deploy them globally across hundreds of firewalls from a single location.
Details
Pricing
Additional AWS infrastructure costs
Type | Cost |
|---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
Please contact your Cisco Sales Team for refund or cancellation policy information
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Resources
Support
Vendor support
BYOL: Cisco TAC provides support based on purchased licenses and support contract from Cisco or an authorized Cisco Reseller http://www.cisco.com/cisco/web/support/index.html https://supportforums.cisco.com/community/12249536/firepower-firesight-system http://www.groupwaretech.com/awsmarketplace/cisco/http://WWW.TRACE3.COM http://WWW.SHI.COM http://WWW.SYCOMP.COM http://WWW.COMPUTACENTER.COM (EMEAR) http://WWW.VELOCIS.IN (APJ)
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Customer reviews
It works
After an initial install of 6.2.2 in Apr 2018, where it took approximately 50+ minutes to setup/install I got it working (check the instance console to see progress) Trying to connect before it is completely setup will result in issues connecting to it via SSH.
Just rememebr to mention to cisco that you are using a FMCv when contacting support about anything.
Setup worked when following instructions
I saw a lot of poor reviews due to problems logging into the FMC after install. Following the instructions on Cisco's website gave me no trouble at all, and I was able to log in after setup was complete.
https://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/aws/fmcv-aws-qsg.html
It seems some people may have missed the following steps:
- During instance creation: "Under Advanced Details, add the default login information."
Sample Login Configuration:
#MC
{
"AdminPassword": "<enter_your_password>",
"Hostname": ""
}
- When setup is complete (after approximately 30 to 40 minutes), the Instance Screenshot should show a message similar to âÂÂCisco Firepower Management Center for AWS vW.X.Y (build ZZ)âÂÂ... You should then be able to log in to the newly created Firepower Management Center Virtual using SSH or HTTPs.
Works Great
Seamless transition from on-premise appliance to this. Performance is great with the recommended EC2 size and the documentation is accurate. This makes it a no brainer to deploy.
Followed instructions - don't work
Spun up,went all ok, can ping the device.
Tried to access via ssh and used admin user like so:
ssh -l admin <ip_address> -i .pem
Asks for password - cannot access VM.
Instructions in AMI description to not work:
Connect to your instance using an SSH client, and the private SSH key selected or created earlier in these steps. Example: ssh -i mykeypair.pem admin@myhostname.compute-1.amazonaws.com 12. If you need management access to your FMCv from outside of your VPC, you will need to create an Elastic IP and associate it with one of the FMCv network interfaces. 13. Once SSH has connected, you may begin configuring your instance.
Just need to follow instructions
Had problems at first but once I re-read instructions and used ADMIN instead of ROOT, everything went ok.
Cisco Support is very helpful as long as you describe the problem correctly.
Must use the correct terms. Like FMCv on AWS and FTD on AWS or FMC outside AWS.