The Cisco ASA 1000V Cloud Firewall extends the proven Adaptive Security Appliance security platform to consistently secure the tenant edge in multitenant private and public cloud deployments. Complementing the zone-based security capabilities of the Cisco Virtual Security Gateway (VSG), the Cisco ASA 1000V Cloud Firewall provides multitenant edge security, default gateway functionality, and protection against network-based attacks, for a comprehensive cloud security solution. The Cisco ASA 1000V Cloud Firewall integrates with the Cisco Nexus 1000V Series Switch to offer a multi-hypervisor-capable solution and enable a single ASA 1000V instance to secure multiple ESX hosts for superior deployment flexibility and simplified management. Cisco Virtual Network Management Center (VNMC) is used to offer dynamic, policy-driven, multitenant management.
Feature |
Benefit |
Proven firewall to secure private and public clouds |
Extends proven ASA capabilities to secure the multitenant virtual and cloud infrastructure at the edge Secures the cloud perimeter against network-based attacks Supports consistent capabilities across hybrid infrastructures: physical, virtual, and cloud Uses the most widely deployed secure connectivity solution that reliably extends IT infrastructure to the cloud and transfers mission-critical workloads between distributed locations without compromise |
Increased solution flexibility and operational efficiency |
Provides deployment flexibility and simpler management with distinctive capabilities for a single ASA 1000V instance to span multiple ESX hosts Enables consistency and flexibility with a multi-hypervisor-capable solution Supports enhanced scalability by providing VXLAN gateway capabilities Enhances efficiency and simplifies management with security policies organized into templatized edge profiles Captures operational efficiency with an option to support consistent address space between the existing physical and extended cloud infrastructure, or between multiple tenants within the cloud infrastructure Decreases end-to-end time to deploy a fully functional virtual machine by automatically provisioning IP addresses to virtual machines at a rapid pace Enhances management flexibility through XML APIs that support integration with third-party management and orchestration tools |
Comprehensive approach to new virtualization workflows |
Employs an advanced, cloud-ready manager, offering a transparent, scalable, multitenant-capable, policy-based solution, for end-to-end security of virtual and cloud environments Helps ensure collaborative governance with role-relevant management interfaces for network, server, and security administrators |