Cisco IOS Security Reviews

We use Cisco IOS Security for security functions like firewalls and IPS in specific remote branches.

Cisco IOS Security enables communication between our network nodes. The solution provides authentication like policy enforcement, QOS, and intelligent routing. We use Cisco IOS Security for administration purposes.

Cisco IOS Security increases the overall security of our network, performs authentication, and provides level 15 access and privileges.

Cisco IOS Security should improve its functionalities.

I have been using Cisco IOS Security for more than four years.

I rate Cisco IOS Security a nine out of ten for scalability.

The solution's technical support is good. I rate the solution's technical support eight and a half out of ten.

Positive

The solution's initial setup is straightforward.

We have seen a return on investment with Cisco IOS Security.

The solution's pricing is very good.

Overall, I rate Cisco IOS Security a nine out of ten.

We use the solution to secure data centres for clients.

The solution has the best features for routers embedded with firewall capabilities. It helps us protect the network.

The solution’s setup process could be better. It is complex regarding troubleshooting, and only highly skilled engineers can resolve it.

We have been using the solution for 15 years.

The solution is stable.

It is a scalable solution. We have more than 100 clients using the solution.

The solution's technical support is excellent. The team includes certified engineers.

The solution's initial setup process is easy if you are highly skilled in handling the troubleshooting part. The deployment takes around two to three weeks, depending on the requirements.

We can purchase the solution's licenses as per specific business requirements.

The solution provides a robust system. I advise others to understand the technology to use the system with ease.

I rate it a ten out of ten.

We use the product for firewalls. 

We cannot directly upgrade the system. The tool's deployment is also very difficult in legacy environments. The tool needs to have bigger ports as well. 

I have been working with the product for four years. 

The product is stable. 

The tool is scalable. 

The tool's deployment takes around thirty minutes to complete. 

The tool could be priced lower. If you want advanced services, then you need to purchase them. 

Most of our customers are from the banking and financial domain. I have chosen the product after a thorough comparison and reading through whitepapers. 

Our company uses the solution as intrusion protection for customers. It fully integrates with the BMA and ISE. We manage all traffic in data centers to protect them from internal users and outside traffic.

The solution effectively integrates with Umbrella which has an intelligent background and is very helpful in tech analysis or discovery. 

The solution is not user friendly and it is hard to manage the GUI interface. This is an ongoing CISCO problem. 

The solution needs Active/Active firewalls to have good load balance with high availability. The firewalls should work simultaneously, not just as failovers. 

I have been using the solution for ten years. 

The solution is very stable if configured properly. I rate stability a nine out of ten. 

The solution is very highly scalable and other products really don't compete with its scalability. The solution can easily be used for small companies or big enterprises with thousands of users. I rate scalability an eight out of ten. 

Technical support does not have a broad knowledge base, so I rate them a six out of ten. 

Neutral

The setup is better than before but still not easy or clear like Palo Alto. If you want to configure the solution, then you need to study how to do it. 

The setup is difficult so I rate it a six out of ten. 

We implement the solution for customers on our own unless we have an issue or bug. It takes one expert staff person for deployment. Depending on the customer's policies and the network's complexity, deployment might take from three to seven days. 

Our process includes verifying the license and setting up the firewall, hardware, FMC, and the failover when there is more than one firewall. We then define or set up the configurable interfaces and the IP addresses. Finally, we define the VLAN of the customer and policies for each VLAN. 

The solution does not require ongoing maintenance if it is configured properly. 

Our ROI is that the solution saves time because it reduces attacks and helps with ongoing protection. The subscription model is also very helpful for ROI. 

I rate ROI at 1800%. 

The pricing is average and includes all features with support. I rate pricing a six out of ten. 

Palo Alto has a better GUI interface for handling all features and is easier to configure. 

I recommend the solution and rate it an eight out of ten. 

Cisco IOS Security helps us with splitting the DNS between a specific perimeter.

The product has valuable features for business intelligence. It enables intrusion detection for the network.

The product's technical support services need improvement.

We have been using Cisco IOS Security for more than ten years.

Cisco releases new patches and updates, whenever required. I rate its stability a nine out of ten.

I rate the product’s scalability a ten out of ten. We have three users for it in our organization. We might increase the usage depending on the business requirements.

Cisco has a lot of support partners. However, it takes a long time to replace some equipment.

Positive

I have used Cisco Adaptive Security Appliance (ASA) before.

The initial setup requires specific training. I rate the process an eight out of ten. The deployment involves setting up a bot for Buffalo with the management IP address. After that, I deploy the data center and access it remotely to complete the process.

I rate Cisco IOS Security's pricing a ten out of ten.

We evaluated a few products. Later, we opted for Cisco as we already have experience working with it.

It is a good product. It is valuable in terms of availability. Once configured and installed, the equipment runs for years. I rate it a seven out of ten as its support cost is high.

We can use iOS security for a variety of security features. We can use it to run DPM. We run encrypted data and can use it for zone-based firewalls, to a zone-based firewall.

I use VPN solutions such as site-to-site or user-site VPN, and some do not require a firewall.

It is less expensive than alternative firewalls.

While Cisco IOS Security is stable and scalable, I would like to see it improved to be even better.

I have been working with Cisco IOS Security for three months.

I use version 12.4 and I use 15 and above for the router.

Cisco IOS Security is very stable.

Cisco IOS Security is a scalable solution.

We have approximately 50 users.

We have not contacted technical support.

I don't have any critical issues, and I haven't had any open technical tickets with support. Everything is fine, but I work in security with multi-media solutions. We haven't had any problems.

The installation is straightforward. It's easy, we didn't have any problems with the installation of Cisco IOS Security.

I have three or four technical teams to help me work on publishing.

Cisco IOS Security requires a license.

With Cisco, we have a variety of licenses. They have smart licenses that can be provided for one year, two years, three years, five years, and seven years. Alternatively, they have perpetual licenses available. I am working with a perpetual license, but not a smart license.

Before we can use any security feature on the Cisco router, we must first purchase an iOS security license.

Yes, I would recommend this solution. It is more stable and less expensive than other firewalls. In some cases, it saves money for the project or the companies that work with it.

I would rate Cisco IOS Security an eight out of ten.

The main purpose of Cisco IOS Security is for our data center. It connects each node and user to the network.

The most valuable feature of Cisco IOS Security is posturing.

Cisco IOS Security could improve by having more compatibility with other Cisco solutions.

I have been using Cisco IOS Security for approximately three years.

Cisco IOS Security is a stable solution.

The scalability of Cisco IOS Security is good. I can increase and decrease elements when needed.

We have approximately 45,000 people that can use the solution. Additionally, We have approximately 1,000 IT managers, technicians, and other users who directly use this solution.

The support from Cisco IOS Security was very helpful.

I rate the support from Cisco IOS Security a four out of ten.

I previously used another similar solution.

I can do all the implementation of the solutions through the Cisco DNA Center. I can manage the Cisco IOS Security configuration. The whole process can be complex. Additionally, when we cannot connect to the internet we need to do manual configuration.

The full setup can take a couple of hours. However, initially, it took to use a couple of weeks.

We did the implementation of Cisco IOS Security in-house.

We have two service engineers that are involved in the deployment and maintenance of the solution. They have the appropriate training needed to support the solution.

I rate Cisco IOS Security an eight out of ten.

We are a reseller and Cisco IOS Security is one of the network security products that we offer to our clients. The primary use case is securing connectivity between sites. Examples of this are between a site and a data center, or a site and a cloud provider.

DMVPN as a technology, not necessarily for security, has allowed my customers to be more agile in their connectivity, without having to rely on a hub-and-spoke topology. Rather, they can leverage a full mesh topology, which is essentially SD-WAN.

IPsec allows us to overlay that, which means we can obfuscate the underlying infrastructure, whatever the transports are. Whether it is a secure private transport like MPLS or just public internet, we can commoditize the underlying transports and trust that everything is secured from prying eyes. 

What I have used the most and received the most benefit from is the IPsec technology. It overlays on DMVPN tunnels and being able to secure these object-based tunnels is good because they perform significantly better than traditional IPsec tunnels.

With respect to user-friendliness, it is a command-line interface and those with such experience will get along just fine, whereas others may struggle. My expectation is that it will remain a primarily command-line-based technology.

The biggest annoyance is probably the quality control of the code. They have to make sure that they are better at vetting bugs and software issues before they release code to the general public.

I have been working with this product for the past ten years.

It is not the most stable system that I have worked with.

I don't think that scalability is much of an issue.

Our clients are small enterprise-level organizations, typically between 1,000 and 5,000 knowledge workers.

The technical support is pretty good and I would rate them an eight out of ten. If anything, they should work on their response times for critical cases.

I would say that 80% of my experience is with Cisco products.

The initial setup is fairly complex, although it depends on the feature sets that you're looking for. Cisco IOM is probably the most complex part of it because it involves setting up all of the QoS policies, performance-routing policies, and performance-routing domains.

From a DMVPN over IPsec perspective, it is pretty straightforward.

Price is certainly something that the IOS technology has fallen behind the competition on.

My advice for anybody who is implementing this product is to ensure that they don't overlook the technical overhead that is required to get it set up and keep it running. From an SD-WAN perspective, there are more user-friendly options out there, so they are going to have their own shortcomings. However, if you're going down the route of a Cisco command-line-based solution then make sure that you're prepared to have the staff on hand to manage it or instead, have a trusted partner that you work with and has the expertise to manage it.

From a feature-set perspective, as long as Cisco continues down the path of combining features from its products onto the unified platform, it will have all the features you need.

It's a good product and it does exactly what it's intended to do, but there and stability issues and the price is expensive.

I would rate this solution a seven out of ten.