Cisco Firepower Threat Defense (FTD) is a unified software image, which is a combination of Cisco ASA and Cisco FirePOWER services features that can be deployed on Cisco Firepower 4100 and the Firepower 9300 Series appliances as well as on the ASA 5506-X,ASA 5506H-X, ASA 5506W-X, ASA 5508-X, ASA 5512-X, ASA 5515-X, ASA 5516-X, ASA 5525-X, ASA 5545-X, and ASA 5555-X. However, at the time of writing, the Cisco Firepower Threat Defense (FTD) unified software cannot be deployed on Cisco ASA 5505 and 5585-X Series appliances.
The Cisco Firepower Threat Defense is continually expanding the Next-Generation Firewall Servicesit supports which currently includes :
* Stateful Firewall Capabilities
* Static and Dynamic Routing. Supports RIP, OSPF, BGP, Static Routing
* Next-Generation Intrusion Prevention Systems (NGIPS)
* URL Filtering
* Application Visibility and Control (AVC)
* Advance Malware Protection (AMP)
* Cisco Identity Service Engine (Cisco ISE) Integration
* SSL Decryption
* Captive Portal (Guest Web Portal)
* Multi-Domain Management
* Rate Limiting
* Tunnelled Traffic Policies
* Site-to-Site VPN. Only supports Site-to-Site VPN between FTD appliances and FTD to ASA
* Multicast Routing Shared NAT
* Limited Configuration Migration (ASA to Firepower TD)
While the Cisco Firepower Threat Defense is being actively developed and populated with some great features, we feel that it’s too early to place it in a production environment.
