Currently we are trying to use Cisco CSA in our production environment to eliminate the need for antivirus software that may slow down production servers. Though CSA is a great product, we have found it increasingly difficult to manage and maintain as the servers we operate are so vastly different. Is there something else out there that is comparable but easier to manage than CSA, or what do others do in production environments for protection? Thanks for your replies.
Currently Im on version 5.2, so maybe alot of the problems I have encountered could be resolved with a newer version. So you would say that version 6 is more use friendly? Seems like version 5.2 is very cumbersome and hard to manage, I feel like it could be a full time job to setup and manage it on a day to day basis.
I also am looking for a replacemnet becuase i feel csa is very high maitenance. In it's defense. it was in when i started this job and the person that brought it in has gone and there is now documentation. the version i'm on is 4.x. other products i have been looking at 1)stormshield by Skyrecon. 2)Cynapspro 3)Sanctuary Suite by Lumensions 4)Parity by bit9 and a few others. So far they all have the same issue in the sense that you have to have rule or a whitelist everytime you rollout a new app or make changes to an app that modify's the hash of the file. I'm actually going to start looking at CSA 6.0 and see if it helps my issues
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...