Sourcefire is a world leader in intelligent cybersecurity solutions. Our flagship family of intrusion detection and prevention systems (IDS/IPS) lies at the heart of our security solutions portfolio. We offer standalone Next-Generation IPS (NGIPS) solutions, the only Next-Generation Firewall solution with NGIPS built-in, as well as several complementary products to protect your network.
|IPS Detection & Prevention (IDS/IPS)||✓||✓|
|Reports, Alerts & Dashboards||✓||✓|
|Centralized Policy Management||✓||✓|
|Custom IPS Rule Creation||✓||✓|
|Automated Impact Assessment||✓||✓|
|FireSIGHT Network & User Intelligence||✓||✓|
|IT Policy Compliance Whitelists||✓||✓|
|File Type Determination||✓||✓|
|Network Behavior Analysis||✓||✓|
|User and User Group Control||+||✓|
|Stateful Firewall Inspection||+||✓|
|Switching and Routing (Static and Dynamic)||+||✓|
|Network Address Translation (NAT)||+||✓|
|Advanced Malware Protection||+||+|
+ optional license(s) required
Next-Generation IPS (NGIPS): Sets a new standard for advanced threat protection, integrating real-time contextual awareness, intelligent security automation, and unprecedented performance with industry-leading network intrusion prevention. The NGIPS solution can be further expanded with optional Control Licenses to add application and user controls as well as additional functionality.
Next-Generation Firewall (NGFW): Includes the world’s most powerful NGIPS, granular application control, and advanced firewall functionality in a universal, high-performance security appliance.
Advanced Malware Protection for FirePOWER™: A comprehensive malware-defeating solution that enables malware detection/blocking, continuous analysis and retrospective alerting and leverages Sourcefire's vast cloud security intelligence. Available via a subscription add-on to FirePOWER appliances, simply software-enable these additional protections when you're ready - no need for additional hardware.
Advanced Malware Protection (AMP) Appliance: Inline protection of networks against advanced malware with malware detection/blocking, continuous file analysis and retrospective security. This dedicated appliance is designed for organizations with a specific and immediate need to protect against advanced malware. The AMP appliance can be expanded to include Application Control as well as other security functionality.
All Sourcefire purpose-built appliances operate in inline and/or passive modes and come with programmable fail-open capabilities standard to safeguard constant network availability.
Centralized Management: The Sourcefire Defense Center®, powered by FireSIGHT®, centrally manages Sourcefire physical and virtual appliances and enables you to categorize events, generate recurring reports, schedule automated Snort rule updates, configure policies, and display customizable dashboards to quickly communicate appliance feedback.
Virtualization: The Sourcefire Virtual Appliances and Sourcefire Virtual Defense Center™ are available for VMware, XEN, and Red Hat platforms. These virtual appliances enable you to inspect traffic between virtual machines (VMs) and simplify your deployment and management of appliances at remote sites where resources may be limited. Plus, you can mix and match physical and virtual Defense Centers and appliances to fit your needs.
SSL Inspection: Sourcefire SSL Appliances decrypt SSL traffic at up to 4.5Gbps line rate to enable existing security appliances to effectively inspect SSL traffic and then place the SSL-encrypted traffic back on the network for its final destination. SSL Appliance operates transparently on the network and supports both passive and inline network configurations.