Extend Security Across Physical and Virtual Environments
The Cisco Adaptive Security Virtual Appliance (ASAv) is a completely reimagined virtual security solution. It supports both traditional tiered data center deployments and the fabric-based deployments of Cisco Application Centric Infrastructure (ACI) environments. The ASAv supports consistent, transparent security across physical, virtual, application-centric, SDN, and cloud environments.
Features and Capabilities
Fully Independent Solution
The ASAv brings full firewall capabilities to virtualized environments to help secure data center traffic and multitenant architectures. Because it has been optimized for data center environments, the ASAv supports vSwitches. The ASAv can therefore be deployed in Cisco, hybrid, and even non Cisco data centers, significantly reducing administrative overhead and improving flexibility and operational efficiency.
In any data center environment, the Cisco ASAv allows critical security functions to dynamically scale to protect assets as business demands change.
Fully Integrated ACI Security
The ASAv has been fully and transparently integrated into the fabric of the next-generation ACI data center architecture. This approach removes the limitations of traditional network-oriented security solutions, allowing for significantly streamlined provisioning.
In the ACI topology-independent environment, ASAv services are managed as a pool of security resources. These resources can be selected and attached to specific applications or transactions to provide dynamic, scalable, policy-based security.
- Full ASA feature set
- Adaptable provisioning
- Elastic scalability
- Security and service virtualization
- Independent operation
- Flexible configuration and management
The Cisco ASAv has a number of management options.
For ACI deployments, the Cisco Application Policy Infrastructure Controller (APIC) provides a single point of control for both network and security management. It can provision ASAv security as a service, manage policy, and monitor the entire environment for a unified view of the entire distributed infrastructure.