Cisco IOS Security features include:
The software also offers automation and orchestration capabilities for secure SD-WAN and SD-Access.
Improvements can be made to Cisco's setup process, as it is complex and requires skilled engineers to troubleshoot. The monitoring capabilities of Cisco IOS Security are basic and could be enhanced. Upgrading the system is not a straightforward process, particularly in legacy environments, and the tool should have larger ports.
The security aspect of the solution has room for improvement, as it is complex and lacks user-friendliness. The stability and scalability could also be enhanced.
The GUI interface is difficult to manage, and the solution should have Active/Active firewalls for better load balancing and high availability. Performance issues, including stability and latency, need to be addressed. Integration with other solutions often leads to errors, and a simplified setup is desired.
Deploying policies to FMC takes too much time and the update process could be smoother. Configuration and reporting interfaces require improvement to make them more accessible for users without a technical background. Compatibility with other Cisco solutions should be increased.
Additional security features, better synchronization with other vendors, and improved AI capabilities are needed. Bugs and unexpected issues can arise, and additional features, such as better licensing options, would be beneficial.
Despite being a good device, Cisco IOS Security is not considered a market leader and lacks some functions that would make it easier to use.
Cisco IOS Security provides a secure and stable solution, resulting in a positive return on investment. The solution effectively reduces attacks, saving time and offering ongoing protection.
The pricing for Cisco IOS Security varies depending on specific business requirements and locations. Some users find the pricing to be reasonable and average, while others believe it could be lower compared to other solutions. Despite not being the most cost-effective option, users acknowledge that the quality of the product justifies the price. Cisco offers a range of licensing options, including smart licenses for different durations and perpetual licenses. Additional fees may apply for support and advanced services.
The primary use case of Cisco IOS Security is to secure data centers for clients and to segregate IT and OT environments. It is used for firewall protection and intrusion protection for customers.
The product fully integrates with the BMA and ISE to manage all traffic in data centers and protect them from internal users and outside traffic. It is also used as a firewall for internet traffic security and for integration purposes with Cisco features and devices in organizations. Additionally, it is used for enterprise and NAC connectivity, providing flexible security features for any size organization.
Cisco IOS Security can be used as a simple switch to connect network devices with embedded security features such as port security and can be used for endpoint security, including protection against spyware, firewall breaches, and application vulnerabilities.
Some customers have praised the technical support team, mentioning that they respond promptly and have certified engineers. Others have expressed dissatisfaction, mentioning that the support team lacks a broad knowledge base and that dealing with them can be complicated, especially due to time zone differences.
The initial setup for Cisco IOS Security varies in terms of ease and complexity. Some users find it relatively straightforward, while others consider it difficult and in need of training.
The deployment time also varies, ranging from a quick thirty minutes to a few weeks, depending on the requirements and familiarity with troubleshooting. Integration with other solutions and merging rules can add complexity and time to the setup process.
However, some users find the installation straightforward and easy, especially for IT users.
The solution of Cisco IOS Security is described as scalable. Users mention that it can be used for both small companies and large enterprises with thousands of users.
Scalability seems to depend on the size of the box, as mentioned by a reviewer who has no issues with scalability with their current appliance. While all Cisco products are acknowledged as scalable, the pricing model is not straightforward.
Cisco IOS Security is consistently described as stable and reliable. However, a few reviewers mention that when FirePOWER is integrated into the solution, there may be some stability gaps compared to legacy solutions like SFR and ASA.
Cisco IOS Security was previously known as IOS Security.