McDewey

Multi-vendor documentation library · semantic search · MCP endpoint at /mcp

Page 23

↗ View in doc context
page
23
source
catalyst-9300/series/datasheet/datasheet.md
chunk_id
catalyst-9300::series::datasheet::datasheet::23

Data sheet Cisco public © 2025 Cisco and/or its affiliates. All rights reserved. - Secure Boot: Cisco Secure Boot technology anchors the boot sequence chain of trust to immutable hardware, mitigating threats against a system’s foundational state and the software that is to be loaded, regardless of a user’s privilege level. It provides layered protection against the persistence of illicitly modified firmware. - Cisco Trust Anchor module: A tamper-resistant, strong cryptographic, single-chip solution provides hardware authenticity assurance to uniquely identify the product so that its origin can be confirmed to Cisco. This provides assurance that the product is genuine. Cloud Security • Cisco Umbrella® DNS integration: Small to midsize networks reliant on managed service providers can now host the Cisco Umbrella agent directly on their Catalyst 9300 Series Switches. This allows the business to easily customize its DNS filtering policies granularly at the user or group level to prevent bring-your-own-device (BYOD) or IoT guest or corporate users from accessing malicious or inappropriate websites, without having to rely on the service provider to push the policies out. It also lets the business optimize use of bandwidth by allowing direct cloud access for trusted apps. Requires a Cisco Catalyst and Cisco DNA Advantage license and Cisco Umbrella license per device. • Cisco ASAc app hosting integration: The integration of ASAc on Cisco Catalyst 9000 switches simplifies the network design by providing the flexibility to plug small-form-factor firewalls into the network closer to the source. It also avoids complex tunnels to centralized firewalls. This design lowers the total cost of ownership by reducing the number of physical firewall appliances in the network. The ASAc Firewall App hosting solution hosts a virtual firewall or ASAc on Cisco Catalyst 9300 Series Switches. All the physical firewalls next to a switch can be virtualized and deployed on the switch itself. As in a traditional network, the SecOps team manages the ASAc firewalls deployed on the Catalyst switches, and the NetOps team instantiates the application and performs lifecycle management using Cisco Catalyst Center. The SecOps team controls policy management using Cisco Defense Orchestrator. Both the SecOps and NetOps teams can seamlessly manage the network without any disruptions. The container version of Cisco ASAc provides full firewall functionality to secure IT, OT, and IoT converged networks. ASAc uses Layer 3 firewall policies and does a stateful inspection of the traffic. The ASAc firewall runs on a 240-GB external SSD that is mounted on a Cisco Catalyst 9300 Series Switch. Cisco Catalyst Center deploys the ASAc on these Catalyst switches, and ASAc is then onboarded to Cisco Defense Orchestrator. Service assurance • Cisco ThousandEyes integration: Deliver a superior network and service experience for your users, employees, and partners with groundbreaking observability from network to app. Cisco ThousandEyes network tests are now integrated into Cisco Catalyst 9300 Series Switches with Cisco Catalyst and Cisco DNA Advantage licenses, giving you visibility beyond your campus