Meraki

Community

Meraki MX Advance Security License

SCC
Building a reputation
‎Jul 21 2020 5:22 PM
‎Jul 21 2020 5:22 PM

Meraki MX Advance Security License

Hi All,

 

One of the client has asked me if i would be paying for such a expensive license for MX which is Advance Security License. Does it mean i can have Machine without antivirus behind MX. Becasue Advance license does has AMP.

 

Please advise ?

0 Kudos
4 Replies 4
General-Zod
Getting noticed
‎Jul 21 2020 5:41 PM
‎Jul 21 2020 5:41 PM

Hi @SCC 

 

I most definitely would ‘always’ have AV running on your desktop / server environment.

 

Security has and always will be a layered approach.

 

there is no silver bullet

 

cheers

JohnD
Getting noticed
‎Jul 21 2020 5:57 PM
‎Jul 21 2020 5:57 PM

Endpoint AV and gateway security are complementary technologies, they are two layers of defense, not meant to substitute for each other.

 

As an example:

 

You need an endpoint AV because it’s easy to hide traffic from a network gateway. For example, if a virus uses a password protected ZIP file (or encryption) to download its payload, or even HTTPS , a gateway cannot detect that threat, but an endpoint AV can easily see the infected file as it’s being unpacked.

 

And an endpoint AV is potentially weak because a virus running on the endpoint can attempt to disable the endpoint AV, but because such a virus does not compromise your MX, it cannot disable protection on the MX.

In response to JohnD
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Jul 22 2020 1:19 AM
‎Jul 22 2020 1:19 AM

Amen to what these two gentlemen said! Never ever try to concentrate on one single solution when it comes down to security. This is completely going to fail big time, hopefully the reasons already mentioned are already enough.

PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jul 22 2020 7:03 PM
‎Jul 22 2020 7:03 PM

That's like saying do I need to pay for expensive airbags in my car if I use a seatbelt?  You want to have multiple layers of protection to keep you alive.

 

You want to have multiple layers of security to prevent compromise and infection.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.