Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Global Accelerated Learning • Est. 1999
Glossary Term Cisco Secure Firewall

Training Camp • Cybersecurity Glossary

What is Cisco Secure Firewall?

It is Cisco's next-generation firewall (formerly Firepower/ASA) adding IPS, application control, and Talos-driven malware protection to stateful inspection.

Glossary > Network Security > Cisco Secure Firewall

Cisco Secure Firewall — It is Cisco's next-generation firewall (formerly Firepower/ASA) adding IPS

Understanding Cisco Secure Firewall

Cisco Secure Firewall is Cisco's next-generation firewall (NGFW) platform — encompassing the former Firepower and ASA lines — that combines traditional stateful packet inspection with advanced threat-prevention services. It controls network traffic against security policies while adding intrusion prevention, application visibility and control, URL filtering, and malware protection in a single enforcement point.

It works by inspecting traffic at multiple layers. Stateful inspection tracks connection state to permit return traffic for established sessions; application control identifies and governs traffic by application rather than just port; an integrated intrusion prevention system (IPS) matches traffic against signatures and behavioral rules; and Advanced Malware Protection plus URL and DNS filtering block known-bad files and destinations. Threat intelligence from Cisco Talos continuously updates these detections, and the firewalls are managed centrally through tools such as Secure Firewall Management Center for unified policy and event analysis.

It matters for security because port-based firewalls alone cannot stop modern threats that hide inside permitted protocols like HTTPS. By inspecting application content, decrypting TLS where policy allows, and correlating intrusion and malware events, Cisco Secure Firewall enforces granular least-privilege network access and detects threats that traditional rules miss. As a key perimeter and segmentation control, its policy accuracy and timely signature updates directly determine how much malicious traffic reaches internal assets.

For example, an enterprise deploys Cisco Secure Firewall at its internet edge with rules that allow only required outbound applications, an IPS policy tuned to its environment, and TLS inspection on selected traffic. When a user clicks a phishing link, URL filtering blocks the malicious site, and if a file slips through, AMP analyzes it against Talos intelligence and quarantines the malware — events the management center correlates so analysts can see the full attack chain and respond.

Learn More About Cisco Secure Firewall:

Ready to Get Certified?

Cisco Secure Firewall is one of the topics you'll master in the Security+ Boot Camp.

Security+ Boot Camp →