Can Cisco Routers, Switches, or Firewalls run AV?

Unanswered Question
Jul 14th, 2010

Can anyone point me to a document or official statement from Cisco stating that their routers, switches, and firewalls are not capable of running Anti-Virus/Anti-Malware to protect their IOS?  NERC CIP standards require that all devices contained within the Electronic Security Perimeter run Anti-Virus/Anti-Malware software "where technically feasible", if the devices cannot run AV/AM you have to submit a "Technical Feasibility Exception"....done that...now they want proof that Cisco devices (routers, switches, firewalls) are not capable of running AV/AM to protect their IOS.  Please don't confuse this with all of the offering that Cisco has to protect end-user devices...this applies only to the routers, switches, and firewalls.

Any answers would be greatly appreciated, even comments from others dealing with this issue.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Panos Kampanakis Wed, 07/14/2010 - 15:50
The FW's have "Bot-Net Detectors" as added options.

I am not sure if you are referring to the ASA botnet filtering featute, but if that is the case, it is not a tool for bots or viruses against the ASA IOS itself. It identifies hosts infected and act as bots.

Please rate helpful posts.

PK

Leo Laohoo Wed, 07/14/2010 - 15:55

you are referring to the ASA botnet filtering

Yup.  That's the one.  Thanks.

it is not a tool for bots or viruses against the ASA IOS itself. It identifies hosts infected and act as bots.

Heck no.  I'm not saying this is the magic pill but I'm just adding this to the options.

+5 

Actions

This Discussion