Secure IPS (NGIPS)

High performance. Resiliency. Security operations empowerment.

Comprehensive and consistent protection

As cyber attacks evolve, network security requires unparalleled visibility and intelligence covering all threats for comprehensive protection. And with differing organizational responsibilities and agendas, you need a consistent security enforcement mechanism. These increasing operational demands call for a renewed focus on dedicated Secure IPS to provide a deeper level of security and visibility for the enterprise.

Snort 3.0 GA is available

Learn more about Snort 3's improvements and new features, and check out our quick breakdown here.

Secure IPS features


With Cisco Secure Firewall Management Center, you can see more contextual data from your network and fine-tune your security. View applications, signs of compromise, host profiles, file trajectory, sandboxing, vulnerability information, and device-level OS visibility. Use these data inputs to optimize security through policy recommendations or Snort customizations.


Secure IPS receives new policy rules and signatures every two hours, so your security is always up to date. Cisco Talos leverages the world's largest threat detection network to bring security effectiveness to every Cisco security product. This industry-leading threat intelligence works as an early-warning system that constantly updates with new threats.

Operational cost

Use Secure IPS automation to increase operational efficiency and reduce overhead by separating actionable events from noise. Prioritize threats for your staff and improve your security through policy recommendations based on network vulnerabilities. Stay informed on what rules to activate and deactivate, and filter events pertinent for the devices on your network.


Secure IPS flexible deployment options meet the needs of the enterprise. It can be deployed at the perimeter, at the data center distribution/core, or behind the firewall to protect mission-critical assets, guest access, and WAN connections. Secure IPS can be deployed for inline inspection or passive detection.


Secure IPS plugs into your network without major hardware changes or significant time to implement. Enable and manage several security applications from a single pane with Firewall Management Center. Seamlessly navigate between Secure IPS, Secure Firewall and Secure Endpoint to optimize your security and ingest third-party data through Cisco Threat Intelligence Director.

High-performance appliances

Cisco Firepower (4100 Series and 9000 Series) appliances are purpose-built to provide the right throughput, modular design, and carrier-class scalability. They incorporate a low-latency, single-pass design and include fail-to-wire interfaces.

Introducing Cisco SecureX

If your teams spend too much time stitching together point solutions, SecureX can simplify and strengthen your security with a truly integrated platform experience.

Find the best Secure IPS for you

Cisco Secure IPS is available on many appliance models and in both physical and virtual form factors. Choose the best option for your use case and throughput needs.

Firepower 1000 Series

  • Designed for small to medium business, branch office
  • Threat inspection from 650 Mbps to 2.2 Gbps

Firepower 2100 Series

  • Designed for sales and remote offices
  • Threat inspection from 2.0 to 8.5 Gbps
  • Fail-to-wire interfaces available 

Secure Firewall 3100 Series

  • Designed for enterprise environment
  • Threat inspection from 17 to 45 Gbps
  • Supports clustering and high port density flexibility
  • 8 x 1/10/25G, 4 x 40G network modules available

Firepower 4100 Series

  • Designed for internet-edge, high-performance environments
  • Threat inspection from 10 to 20 Gbps
  • Fail-to-wire interfaces available

Cisco Secure ISA 3000

Enforce consistent security policies across OT and IT environments. Our industrial security appliance (ISA) extends the network as a sensor and enforcer to IoT environments for multi-industry operations and regulatory compliance.

Firepower 9000 Series

  • Designed for service provider and data center deployments
  • Threat inspection up to 90 Gbps
  • Fail-to-wire interfaces available

Secure IPS Virtual

  • Small branch offices and remote locations
  • Threat inspection up to 800 Mbps
  • East-west data center/PCI critical servers
  • Full Secure IPS and options functionality

Firewall Threat Defense for ISR

  • Designed for branch and remote offices
  • Threat inspection up to 800 Mbps
  • Deployed on ISR G2 and 4000 Series routers
  • Increased security, lower WAN costs

Superior threat protection from Secure IPS

  • Intrusion detection: Stop more threats and address attacks. For vulnerability prevention, the Cisco Secure IPS can flag suspicious files and analyze for not yet identified threats.
  • Public cloud: Enforce consistent security across public and private clouds for threat management. Secure IPS is based on Cisco's open architecture, with support for Azure, AWS, VMware, and more hypervisors.
  • Internal network segmentation: Accommodate network agendas with an enforcement mechanism that spans the requirements of various internal organizations.
  • Vulnerability and patch management: Use insights from Secure IPS to patch high-priority vulnerabilities in a shorter period with fewer resources, without delay from your organization's test process or environment.

Upgrade to Secure IPS

If you have a Cisco IPS or Sourcefire Secure IPS, find an upgrade path that's best for you.

Customer success stories

Securing student learning

Learn how Convitto Nazionale Umberto Primo school safeguards student learning with Cisco security solutions. 

Protecting current and future business with Cisco Secure

"To protect our dynamic environment, we invested in state-of-the-art technology from our partner Cisco."

- Roberto Alunda, Telecom Engineering Director, MEDIAPRO

Related products

Firewall Management Center

Provide complete and unified management over Secure IPS, Secure Firewall, and Cisco Secure Endpoint deployments.

Security Analytics and Logging

Scalable log management with advanced analytics means faster time to detection.

Cisco Identity Services Engine (ISE)

Our access control policy platform is integrated with Secure IPS to provide rapid threat containment.

Meet the experts

Cisco Talos

Follow our industry-leading team of security intelligence and research experts who regularly share analyses of threats and provide you with tools to help protect you against them.

For partners

Are you a Cisco partner?  Log in to see additional resources.

Looking for a solution from a Cisco partner? Connect with our security technical alliance partners.