Try our new research platform with insights from 80,000+ expert users
IT Manager at a construction company with 11-50 employees
Real User
User-based firewall rules are helpful but the solution needs to be more reliable
Pros and Cons
    • "The product crashes. We have a cluster of firewalls and we regularly get failovers."

    What is our primary use case?

    Firewall and VPN.

    How has it helped my organization?

    I can't really say how it has improved our organization, but the benefits are that we have a necessary firewall with which we can create VPNs.

    What is most valuable?

    Pro user-based firewall rules.

    What needs improvement?

    The solution that we have right now doesn't do what I want it to do. We don't have a ratified solution for all the things that I wanted to right across our business. We're doing similar functions using different technology and I want ratification. I want to be able to do more than what we are currently able to do with the existing service, all under the umbrella of improving security.

    Buyer's Guide
    Cisco Secure Firewall
    March 2025
    Learn what your peers think about Cisco Secure Firewall. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
    845,040 professionals have used our research since 2012.

    What do I think about the stability of the solution?

    The product crashes. We have a cluster of firewalls and we regularly get failovers.

    How are customer service and support?

    I have used technical support once, and they were superb.

    Which solution did I use previously and why did I switch?

    When selecting a vendor, the most important criteria include:

    • Security - the ability of the technology from a security perspective.
    • The ability of the company to support the technology - knowledge of the product by the company. It may sound really silly to say that, but you'd be surprised how poor some companies' technical support is.
    • The financial stability of the company.

    How was the initial setup?

    I was involved in the initial setup. It was complex. 

    What other advice do I have?

    Do your research, know what you want to achieve.

    Cisco ASA needs to be more reliable. Because of the nature of the product, it has to be rock solid and, unfortunately, it's not.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    Computer Networking Consultant and Contractor with 51-200 employees
    Consultant
    Initial setup was very straightforward because the training and certification provided by the vendor helped us to solve rapidly any configuration issues.​
    Pros and Cons
    • "Stability, high availability of services, and very high MTBU were the most valuable features for me."
    • "The ability to integrate (as options) all-in-one features -- like anti-spam, anti-virus, etc."

    How has it helped my organization?

    I have 15 years’ experience with Cisco products and I've had very, very little problems with them. Also, for resolving appeared issues Cisco was a good partner.

    Crescendo (www.crescendo.ro) is an IT&C integrator and this product (based on Cisco Partnership) helped us to grow our business, and Cisco ASA was one of most sold product in our solutions portfolio.

    What is most valuable?

    Stability, high availability of services, and very high MTBU were the most valuable features for me -- because in my work as network and security consultant, it is very important to guarantee to my customer the security of his business.

    What needs improvement?

    The ability to integrate (as options) all-in-one features -- like anti-spam, anti-virus, etc.

    What do I think about the stability of the solution?

    With Cisco ASA firewall, no.

    What do I think about the scalability of the solution?

    No. Based on their recent acquisition of Firepower, Cisco added "multi 10Gbps" NGFW performance in their solutions portfolio, which can be used by us, as a Gold Partner with Advance Security Architecture Specialization, in our network architecture proposals.

    How are customer service and technical support?

    Very satisfied.

    Which solution did I use previously and why did I switch?

    I haven' t used another solution.

    How was the initial setup?

    Initial setup was very straightforward because the training and certification provided by the vendor helped us to solve rapidly any configuration issues.

    What's my experience with pricing, setup cost, and licensing?

    To discuss with Cisco Systems or their partners to gain the optimal price and to not consider, without verifying, the false information that Cisco ASA is very expensive.

    Which other solutions did I evaluate?

    We evaluated other solutions, like Fortinet, HPE, Juniper, Check Point, but Cisco ASA was what we need.

    What other advice do I have?

    To test the product in their network and to evaluate other products. I am sure that the Cisco ASA Firewall will be the winner.

    Our complete relationship is based on the following partner competencies:
    Certifications:

    • Gold Certified Partner
    Specializations:
    • Advanced Collaboration Architecture Specialization
    • Advanced Data Center Architecture Specialization
    • Advanced Enterprise Networks Architecture Specialization
    • Advanced Security Architecture Specialization


    Cloud Partners:
    • Storage: EMC
    • Virtualization: VMware
    • Cloud Management: VMware
    • Cloud Professional Services
    • SaaS Simple Resale


    Other Authorizations:
    • Registered Partner
    • Cisco Certified Refurbished Equipment
    • Cisco Developer Network Cisco Products Marketplace
    • Cisco Meeting Server formerly Acano
    • PSPP Defense
    • Smart Care Registered Partner
    • ATP - Unified Contact Center Enterprise

    Partner since:

    • More than 10 years

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    Buyer's Guide
    Cisco Secure Firewall
    March 2025
    Learn what your peers think about Cisco Secure Firewall. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
    845,040 professionals have used our research since 2012.
    PeerSpot user
    Constructor of the computer systems at a security firm with 51-200 employees
    Vendor
    It can be controlled through different methods but the online regional support needs improving.

    What is most valuable?

    • Reliability
    • Security
    • Flexibility
    • Functionality
    • Availability - controllability anywhere and with different methods

    How has it helped my organization?

    I can tell that when we have started using the Cisco AnyConnect for remote access to business apps it makes the work for remote staff much simpler. It's also easier to provide remote IT support. Aside from this, the security officers can sleep better now.

    What needs improvement?

    The ASA is an almost perfect device.

    For how long have I used the solution?

    I've used it for two years.

    What was my experience with deployment of the solution?

    I have had no problems deploying it.

    What do I think about the stability of the solution?

    Occasionally, the packet rate falls unexpectedly.

    What do I think about the scalability of the solution?

    I currently do not need to scale on my network.

    How are customer service and technical support?

    Customer Service:

    9/10 - the regional online support could be better.

    Technical Support:

    10/10.

    Which solution did I use previously and why did I switch?

    We use MySQL and Nagios devices alongside the ASA as our network infrastructure needs expanding and required more serious hardware solutions.

    How was the initial setup?

    When Cisco was installed, it did not go as expected.

    What was our ROI?

    It is not simple to calculate for IT hardware. To calculate the ROI for using the ASA, I would need to have a lot of statistics on the quality of services, both before and after.

    What's my experience with pricing, setup cost, and licensing?

    Cisco ASA 5512-X was bought for $3,000, and a further $1,000 was needed for installation and pre-configuration.

    Which other solutions did I evaluate?

    • Fortinet
    • Juniper

    What other advice do I have?

    As a rule, any device upon delivery is obsolete. Pick up the solution for your business, based on your specific needs.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    it_user216468 - PeerSpot reviewer
    Consulting Engineer at a tech services company with 5,001-10,000 employees
    Consultant
    It makes the discovery of applications and classification of user traffic simple but I'd like to see a roadmap for SSL decryption.

    What is most valuable?

    I'm most impressed with the visibility and control SourceFire solutions provide in to the types of traffic flowing in and out of an environment. It makes the discovery of applications and classification of user traffic simple, which in turn allows an organization to more effectively develop security policies and enforce acceptable use for its enterprise users.

    How has it helped my organization?

    I've worked with customers that have dealt with malware issues in the past and preventing its spread laterally within the environment has always been a concern. With SourceFire, we've been able to detect malicious files and stop them at the network edge before internal systems are compromised. Leveraging AMP in addition to FireAMP, which is the endpoint malware solution, is incredibly effective at blocking malware at the host level.The other good news is FireAMP can be leveraged along side traditional endpoint anti-virus software. The Defense Center also provides visibility into how malware is moving within the environment so tracking down infected machines becomes much easier for IT staff.

    What needs improvement?

    The overall product line is sound, but I'd like to see a roadmap for SSL decryption as part of the ASA with FirePOWER solution.

    For how long have I used the solution?

    I've been working with SourceFire product offerings since Cisco's acquisition of the company in late 2014. Prior to the officially branded Cisco solution, I'd worked with open source Snort in various capacities for several years. I've been using Cisco ASA with FirePOWER services, Cisco SourceFire NGIPS/NGFW most recently.

    What was my experience with deployment of the solution?

    Learning the advanced capabilities of the system can take time, but it's rather intuitive. I have not encountered issues deploying base functionality with the offerings at this point.

    What do I think about the stability of the solution?

    Overall, the systems are stable and IT admins have control in to how the sensors operate within the network in the event of failure.

    What do I think about the scalability of the solution?

    There are scalability limitations with FirePOWER on the ASA, so determining anticipated throughput requirements is critical. The standalone IPS sensors can be stacked for increased throughput, so depending on your organizations needs, this may be a better path for some organizations concerned about scalability.

    How are customer service and technical support?

    Customer Service:

    8/10.

    Technical Support:

    9/10.

    Which solution did I use previously and why did I switch?

    I've used Palo Alto's FW/IPS offerings and Cisco's older IPS platform on the ASA. Usually, I don't decide what organizations purchase, but I am impressed with SourceFire's capabilities over the latter.

    How was the initial setup?

    Initial set up is straight forward, but there is not much documentation available if you have no experience with the offering. I'd recommend training for all network admins that administer SourceFire systems, especially if you want to leverage some of the advanced features.

    What other advice do I have?

    Do research in to the types of offerings out there and make a determination of what may be the best fit for your organizations requirements and future security goals.

    Disclosure: My company has a business relationship with this vendor other than being a customer: The company I work for is partners with many tech vendors
    PeerSpot user

    Hey All,
    I am using frotinet porduct for more than 10 years, I am studying to move to Cisco ASA5516 with source power, I would like to know how is it stable against fortigate FG300D

    Fortigate firewall throughput numbers are totally different from the Cisco ASA5516,
    any help?

    See all 2 comments
    Network & Systems Administrator Individual Contributor at T-Systems
    Real User
    Good user interface and easy to configure but needs better integration capabilities.
    Pros and Cons
    • "The management aspect of the product is very straightforward."
    • "It would be nice if you didn't have to configure using a command-line interface. It's a bit technical that way."

    What is our primary use case?

    We primarily use the solution for configuring the firewall.

    What is most valuable?

    It's an almost perfect solution.

    The configuration is very easy.

    The management aspect of the product is very straightforward.

    The solution offers very good protection. 

    The user interface itself is very nice and quite intuitive.

    What needs improvement?

    It would be ideal if the solution offered more integration capabilities with other vendors. For example, if you had a web security appliance, it would be great to be able to integrate everything in order to better report security events.

    While I can't think of specific features I'd like improved, overall, they could do more to continue to refine the solution.

    It would be nice if you didn't have to configure using a command-line interface. It's a bit technical that way.

    For how long have I used the solution?

    We first started using the solution in 2015. It's been five years at this point.

    What do I think about the stability of the solution?

    The solution is very stable. We've found it to be extremely reliable. There are not bugs or glitches. It doesn't crash or freeze.

    What do I think about the scalability of the solution?

    The solution can scale well. that's not a problem at all. If a company needs to expand it to fit their needs, they can do so.

    How are customer service and support?

    We've been in contact with technical support on multiple occasions and each time we've had a good experience. We're satisfied with their level of support. They are fairly good.

    How was the initial setup?

    I have nothing bad to say about the deployment. It went pretty well, and we can configure everything as we need to.

    What's my experience with pricing, setup cost, and licensing?

    I don't really handle the billing, so I'm unsure of the pricing. I work more on the technical side. 

    What other advice do I have?

    We're just customers. We don't have a business relationship with Cisco.

    It's a very good solution. I'd recommend it to other users.

    Overall, I'd rate it seven out of ten.

    Although I can't speak to the pricing, I've found the solution works quite well for us. I'd rate it higher if it could integrate a bit better with other solutions.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    Tayyab Tahir - PeerSpot reviewer
    Senior IT Officer at Paragon
    Real User
    The vendor offers a great educational series to train users on their devices
    Pros and Cons
    • "Cisco offers a great educational series to train users on their devices."
    • "It is hard to control the bandwidth of end-users with a Cisco Firewall. That is the main issue I've faced. I used Mikrotik for many years for this very reason. Mikrotik has the option to set a bandwidth restriction for a single IP or complete segments. Cisco should add this option to their firewall."

    What needs improvement?

    It is hard to control the bandwidth of end-users with a Cisco Firewall. That is the main issue I've faced. I used Mikrotik for many years for this very reason. Mikrotik has the option to set a bandwidth restriction for a single IP or complete segments. Cisco should add this option to their firewall.

    For how long have I used the solution?

    We have been using Cisco for about five years. All our products, switches, routers, and firewalls are Cisco devices.

    What do I think about the scalability of the solution?

    Cisco Firewall's scalability is fine. 

    What other advice do I have?

    I rate Cisco ASA Firewall eight out of 10. Cisco offers a great educational series to train users on their devices.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    MD.SIHAB TALUKDAR - PeerSpot reviewer
    System Engineer at a financial services firm with 1,001-5,000 employees
    Real User
    Top 20
    Stable and reasonably-priced, and the support is okay
    Pros and Cons
    • "The most valuable feature is stability."
    • "The performance should be improved."

    What is our primary use case?

    This is a product that is used at the infrastructure level to protect the network from outside traffic.

    What is most valuable?

    The most valuable feature is stability.

    What needs improvement?

    When using this product, our network is slower. The performance should be improved.

    The installation could be made easier.

    For how long have I used the solution?

    We have been working with Cisco Firepower NGFW Firewall for more than two years.

    What do I think about the stability of the solution?

    This is a stable product and we plan to continue using it.

    How are customer service and technical support?

    Support from Cisco is good enough.

    How was the initial setup?

    The installation can be easy, although it is slightly more difficult to install than Fortinet FortiGate. One day is enough for deployment but it takes a long time to configure.

    What about the implementation team?

    I deployed Firepower with support from the team in India.

    We have a team of three people for deployment and maintenance.

    What's my experience with pricing, setup cost, and licensing?

    The price of Firepower is not bad compared to other products.

    What other advice do I have?

    This is a good product and I recommend it.

    I would rate this solution an eight out of ten.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    reviewer1471347 - PeerSpot reviewer
    Administrator at a university with 1,001-5,000 employees
    Real User
    Flexible solution and can be easily integrated with your network hardware
    Pros and Cons
    • "I have found the stability of this solution really good. This is why I use it."
    • "Comparing Cisco solution to others, it is expensive, it would be better for it to be cheaper."

    What is our primary use case?

    I am doing research on the product and testing it for security.

    What is most valuable?

    It is a flexible solution and can be easily integrated with your network hardware. It is a very useful product. This product is very popular in the industry and the network security environment is good.

    What needs improvement?

    It would be a benefit to improve the integration with other similar products from other vendors on the market, for example, Huawei or Fortinet products. Comparing Cisco solution to others, it is expensive, it would be better for it to be cheaper.

    For how long have I used the solution?

    I have been using the solution for three to four years.

    What do I think about the stability of the solution?

    I have found the stability of this solution really good, this is why I use it.

    What do I think about the scalability of the solution?

    The product is scalable.

    How are customer service and technical support?

    The customer service is really helpful, they do their part in keeping our organization's network from outside intrusion.

    Which solution did I use previously and why did I switch?

    I have used other solutions in the past, such as Cisco Firepower. I find Cisco products to be superior.

    How was the initial setup?

    The solution is normally easy to install but if the user has more requirements, as in a more complicated setup, it could take more time.

    What about the implementation team?

    I did the deployment myself.

    What's my experience with pricing, setup cost, and licensing?

    The product is very expensive. 

    What other advice do I have?

    I would recommend this product. I suggest this solution to my colleagues because it is a great product and is really stable. When looking at other products in use in other companies this product is superior. 

    I rate Cisco ASA Firewall ten out of ten.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    Buyer's Guide
    Download our free Cisco Secure Firewall Report and get advice and tips from experienced pros sharing their opinions.
    Updated: March 2025
    Buyer's Guide
    Download our free Cisco Secure Firewall Report and get advice and tips from experienced pros sharing their opinions.