Cisco IOS Security Reviews

Name: Cisco IOS Security
Brand: Cisco
Rating: 4.0 (47 reviews)

Vendor: Cisco

4.0 out of 5

47 reviews
91% willing to recommend

1,424 followers

What is Cisco IOS Security?

Cisco IOS Software delivers a sophisticated set of security capabilities for a comprehensive, layered security approach throughout your network infrastructure. Cisco IOS security technologies help to defend critical business processes against attack and disruption, protect privacy, and support policy and regulatory compliance controls.

Get the Cisco IOS Security Buyer's Guide and find out what your peers are saying about Cisco IOS Security, Fortinet FortiGate, Netgate pfSense and more!

Cisco IOS Security is the #9 ranked solution in top Intrusion Detection and Prevention Software and #22 ranked solution in best firewalls. PeerSpot users give Cisco IOS Security an average rating of 8.0 out of 10. Based on the analysis of the 47 most recent Cisco IOS Security reviews, the overall sentiment is positive, with a sentiment score of 7.3. Cisco IOS Security is most commonly compared to Fortinet FortiGate: Cisco IOS Security vs Fortinet FortiGate. Cisco IOS Security is popular among the large enterprise segment, accounting for 52% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 30% of all views.

Helped 816,406 peers since 2012

Featured reviews

Karthik Venkataraman

Senior Consultant at Velocis Systems

Cisco IOS Security is a mature product with extensive capabilities, serving as the base for the defense layer. It offers good network visibility, which helps in rapid response through the Rapid Threat Containment feature. Its deployment and configuration are straightforward. From a networking perspective, for instance, Cisco IOS incorporates time-tested security features. The zone-based firewall feature has significantly influenced our network security management. For instance, when managing multiple geolocations, it's essential to apply geographically appropriate policies. If a customer operates within the UK zone, I need to implement UK-specific policies. This approach is also applicable to customers in the Asia Pacific and UK regions. It enables me to tailor security policies based on the geographical location of my customers, such as adjusting policies for customers in China or Japan. This flexibility helps in creating a comprehensive zone list. Additionally, this feature allows for seamless service agreements between all zones from headquarters, providing access to all zones within the firewall we create. Essentially, it facilitates the creation of zones within the firewall.

Read full review

Anik Islam

System Engineer at Ha-Meem Group

A good configuration mode is crucial for security features. This mode involves mapping server IPs and parameters from previous servers, including policy mapping and fetching packages through policy inspection. Refining these sites is necessary and should be implemented promptly. However, the challenge lies in the waiting period of ten to twenty minutes for common or single mapping to take effect. The system already has a global enablement, but there's a need to streamline and reduce conversation qualifications and authentication processes.

Read full review

Bilal Mustafa

Operations Specialist - MX Operations at Bank Alfalah Limited

It takes too much time to deploy a policy to FMC. It takes around eight minutes. You can't afford any downtime when you're changing policies. The update process could also be smoother. They could improve the FirePOWER integration to reduce the time needed to update to the newer version. Sometimes, in the middle of the update, the process starts, but it doesn't find the new installation, so we have to force it to run that particular part.

Read full review

Cisco IOS Security mindshare

Product category:

As of November 2024, the mindshare of Cisco IOS Security in the Firewalls category stands at 0.2%, up from 0.2% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Firewalls

Key learnings from peers

Last updated Nov 21, 2024

Valuable Features

Cisco IOS Security features include:

Embedded firewall capabilities
Robustness and minimal human interaction required for operation
Endpoint protection
Integration with Umbrella for tech analysis
A user-friendly interface with manageable rules
VPN functionality for remote work
Secure integration with other devices
Posturing
Plenty of functionality and certification support
Cost-effectiveness compared to alternatives
A wide range of security solutions for enterprises of all sizes

The software also offers automation and orchestration capabilities for secure SD-WAN and SD-Access.

"Cisco IOS Security is a mature product with extensive capabilities, serving as the base for the defense layer. It offers good network visibility, which helps in rapid response through the Rapid Threat Containment feature. Its deployment and configuration are straightforward."
"The VPN connection portal scan works flawlessly, which was a big plus for us."
"Cisco IOS Security increases the overall security of our network, performs authentication, and provides level 15 access and privileges."

Room for Improvement

Improvements can be made to Cisco's setup process, as it is complex and requires skilled engineers to troubleshoot. The monitoring capabilities of Cisco IOS Security are basic and could be enhanced. Upgrading the system is not a straightforward process, particularly in legacy environments, and the tool should have larger ports.

The security aspect of the solution has room for improvement, as it is complex and lacks user-friendliness. The stability and scalability could also be enhanced.

The GUI interface is difficult to manage, and the solution should have Active/Active firewalls for better load balancing and high availability. Performance issues, including stability and latency, need to be addressed. Integration with other solutions often leads to errors, and a simplified setup is desired.

Deploying policies to FMC takes too much time and the update process could be smoother. Configuration and reporting interfaces require improvement to make them more accessible for users without a technical background. Compatibility with other Cisco solutions should be increased.

Additional security features, better synchronization with other vendors, and improved AI capabilities are needed. Bugs and unexpected issues can arise, and additional features, such as better licensing options, would be beneficial.

Despite being a good device, Cisco IOS Security is not considered a market leader and lacks some functions that would make it easier to use.

"In the security portfolio from Cisco, the issue is marketing. Cisco is still seen primarily as an enterprise network player rather than being acknowledged as a security vendor."
"Cisco is a scalable product, but it is expensive compared to other vendors."
"Cisco IOS Security should improve its functionalities."

ROI

Cisco IOS Security provides a secure and stable solution, resulting in a positive return on investment. The solution effectively reduces attacks, saving time and offering ongoing protection.

Pricing

The pricing for Cisco IOS Security varies depending on specific business requirements and locations. Some users find the pricing to be reasonable and average, while others believe it could be lower compared to other solutions. Despite not being the most cost-effective option, users acknowledge that the quality of the product justifies the price. Cisco offers a range of licensing options, including smart licenses for different durations and perpetual licenses. Additional fees may apply for support and advanced services.

"You can get a better price if you commit to a longer-term license. Three years, five years, or even seven or ten years will be cheaper than a three-month or one-year term."
"The solution's pricing is very good."
"The product is expensive."

Popular Use Cases

The primary use case of Cisco IOS Security is to secure data centers for clients and to segregate IT and OT environments. It is used for firewall protection and intrusion protection for customers.

The product fully integrates with the BMA and ISE to manage all traffic in data centers and protect them from internal users and outside traffic. It is also used as a firewall for internet traffic security and for integration purposes with Cisco features and devices in organizations. Additionally, it is used for enterprise and NAC connectivity, providing flexible security features for any size organization.

Cisco IOS Security can be used as a simple switch to connect network devices with embedded security features such as port security and can be used for endpoint security, including protection against spyware, firewall breaches, and application vulnerabilities.

Service and Support

Some customers have praised the technical support team, mentioning that they respond promptly and have certified engineers. Others have expressed dissatisfaction, mentioning that the support team lacks a broad knowledge base and that dealing with them can be complicated, especially due to time zone differences.

Deployment

The initial setup for Cisco IOS Security varies in terms of ease and complexity. Some users find it relatively straightforward, while others consider it difficult and in need of training.

The deployment time also varies, ranging from a quick thirty minutes to a few weeks, depending on the requirements and familiarity with troubleshooting. Integration with other solutions and merging rules can add complexity and time to the setup process.

However, some users find the installation straightforward and easy, especially for IT users.

Scalability

The solution of Cisco IOS Security is described as scalable. Users mention that it can be used for both small companies and large enterprises with thousands of users.

Scalability seems to depend on the size of the box, as mentioned by a reviewer who has no issues with scalability with their current appliance. While all Cisco products are acknowledged as scalable, the pricing model is not straightforward.

Stability

Cisco IOS Security is consistently described as stable and reliable. However, a few reviewers mention that when FirePOWER is integrated into the solution, there may be some stability gaps compared to legacy solutions like SFR and ASA.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Cisco IOS Security Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

30%

Financial Services Firm

10%

Government

10%

Manufacturing Company

Healthcare Company

Educational Organization

Real Estate/Law Firm

Outsourcing Company

University

Comms Service Provider

Legal Firm

Wholesaler/Distributor

Retailer

Energy/Utilities Company

Hospitality Company

Media Company

Non Profit

Venture Capital & Private Equity Firm

Engineering Company

Aerospace/Defense Firm

Recreational Facilities/Services Company

Consumer Goods Company

Construction Company

Performing Arts

Logistics Company

Pharma/Biotech Company

Compare Cisco IOS Security with alternative products

Learn more about Cisco IOS Security

Cisco IOS Security was previously known as IOS Security.

Product Video

Cisco IOS Security customers

Arup Group, Brunel University London, City of Biel, Gobierno de Castilla-La Mancha, K&L Gates , New South Wales Rural Fire Service, Offshore Northern Seas, Transplace