We bundle Cisco Secure Firewall with our telco offerings as a service provider. We bundle it basically with Meraki.
Assistant Vice President at PLDT Enterprise
Offers good pricing and the ability to be used through the cloud
Pros and Cons
- "The feature of Cisco Secure Firewall that I appreciate the most is its ability to be used via the cloud, so we don't have to deploy service engineers on-site at any time."
- "We tried to look into Z3 models before, but our cybersecurity team found some issues where it was lacking. They found some bugs or loopholes, so we wanted Cisco to address these before we fully roll out the solution. We're trying again, and hopefully, with Cisco's updates, it will be acceptable to us in the near future."
- "They found some bugs or loopholes, so we wanted Cisco to address these before we fully roll out the solution."
What is our primary use case?
How has it helped my organization?
We have received good feedback from our engineers. It helps them with their day-to-day operations. I need to get some more input on specific items they need to gather more information about, but so far, there are no issues.
Regarding Cisco Secure Firewall's ability to unify policies across our environment, I haven't heard any particular issues from our engineers.
What is most valuable?
The feature of Cisco Secure Firewall that I appreciate the most is its ability to be used via the cloud, so we don't have to deploy service engineers on-site at any time.
Since telcos just provide basic connectivity, bundling Cisco Secure Firewall has actually allowed us to gain more value for our customers and level up versus our competitors. It helps our customers even more because they don't have to worry about cybersecurity issues, as we put it out of the box.
What needs improvement?
We found something that prevented us from using it and integrating it a few years back, so they should really have a discussion about improving those aspects. More specifically, it's related to cybersecurity technical details. Implementing a zero-trust security model is what we need help with. We're making progress. We have different types of security for our native applications, but we're slowly looking into what Cisco can deliver. We tried to look into Z3 models before, but our cybersecurity team found some issues where it was lacking. They found some bugs or loopholes, so we wanted Cisco to address these before we fully roll out the solution. We're trying again, and hopefully, with Cisco's updates, it will be acceptable to us in the near future.
Buyer's Guide
Cisco Secure Firewall
July 2026
Learn what your peers think about Cisco Secure Firewall. Get advice and tips from experienced pros sharing their opinions. Updated: July 2026.
903,933 professionals have used our research since 2012.
For how long have I used the solution?
We've been using Cisco Secure Firewall since 2016.
What do I think about the scalability of the solution?
Cisco Secure Firewall covers roughly our 2,000 employees really effectively. It's just a matter of expanding the requirements and infrastructure requirements with AWS, and I believe Cisco has some integrations that allow us to use that scale to our advantage.
How are customer service and support?
My opinion is somewhat biased because we have access to Cisco's TAC, and we are very much managed by our Cisco Philippines company team. I'd give them a nine out of ten.
What was our ROI?
The biggest return on investment when using Cisco Secure Firewall is that there's no waste in any infrastructure cost and licensing costs for us. If we have to repurpose a specific box per year, we could save on cost by just transferring it to another person or project rather than pay another one-year license for it.
What's my experience with pricing, setup cost, and licensing?
The pricing is very good for us, especially since we have a partnership with Cisco. The challenge is the licensing. There are competitors that offer more flexible licensing, such as daily licensing, some offer hourly, but Cisco is locked in for one, three, and five years. We don't have much flexibility, especially if we want to shift applications or shift users at any time. Hopefully, licensing becomes more flexible.
Which other solutions did I evaluate?
There were solutions from Fortinet. The main difference between Cisco and Fortinet is that Cisco will have more flexibility. It's just a matter of being able to put together the flexibility that we require versus what Cisco can provide at this time.
What other advice do I have?
The impact of the cloud-delivered Cisco Secure Firewall on my company's security posture involves some hesitation because it's on the cloud, but we're slowly adopting certain parts of it for our cybersecurity team. We're undergoing that transition and don't have full visibility yet on how they see that as a future mode of operations versus what other companies are doing globally.
I would rate Cisco Secure Firewall an eight out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer. Partners
OT NETWORK MANAGER at a energy/utilities company with 10,001+ employees
Reliable troubleshooting tools improve efficiency in energy sector security
Pros and Cons
- "The feature of Cisco Secure Firewall I prefer most is troubleshooting, packet capture, and packet tracer; I love those features."
- "Cisco products are on the pricier side; that said, they're worth it."
- "Cisco Secure Firewall's licensing model can be improved, as I struggle with it in an air-gapped environment."
- "The second issue is the ROMmon mode, where during power outages the firewalls go into ROMmon mode, causing outages and financial loss until we can send someone on-site."
What is our primary use case?
My main use cases for Cisco Secure Firewall include certain requirements from the energy sector, NERC CIP compliance, acting as a perimeter security device, doing layer three routing for us, and VLAN segmentation, as well as creating DMZs.
How has it helped my organization?
These features benefit my company by reducing my troubleshooting time, and in the energy sector, time is money, so it does help. The time reduction depends on how quickly someone gets used to it.
What is most valuable?
The feature of Cisco Secure Firewall I prefer most is troubleshooting, packet capture, and packet tracer; I love those features.
You can quickly run certain commands on CLI or on FMC CLI to find out what could be the root cause, and it varies from person to person, but it's very useful.
I prefer Cisco since it has been here for a very long time, we have a good relationship with the sales team and Cisco representatives, and the support is pretty good, providing us with 24/7 support, which makes me pretty happy.
Cisco Secure Firewall in helping my company implement a zero-trust security model. I've yet to try it, however, I'm very excited to work on it. My impression of the visibility and control capabilities of Cisco Secure Firewall in managing encrypted traffic is pretty good. We can build site-to-site tunnels and various ways of site-to-route based or policy-based, allowing us to see the packets and cap decaps, and Cisco CLI provides a way to see the packets inside, which is very helpful.
What needs improvement?
Cisco Secure Firewall's licensing model can be improved, as I struggle with it in an air-gapped environment. To make it a ten, a couple of challenges need to be addressed, particularly with the licensing model, as I'm looking for a permanent license solution for air-gapped environments.
The second issue is the ROMmon mode, where during power outages the firewalls go into ROMmon mode, causing outages and financial loss until we can send someone on-site.
For how long have I used the solution?
I have been using Cisco Secure Firewall for almost six years.
What do I think about the stability of the solution?
The stability and reliability of the platform are pretty stable.
The only challenge I see is with the substation, where when it loses power and there's no manual reboot, it ends up in ROMmon mode and requires a physical reboot, which means we have to send somebody on-site. It does not pick it up when the power goes out and comes back up, going into ROMmon mode, so I need better answers from Cisco about that.
What do I think about the scalability of the solution?
I'm not sure how Cisco Secure Firewall scales with the growing needs of my company.
How are customer service and support?
My experience with customer service and technical support has been good. If I were to rate customer service and technical support on a scale of one to ten, I would give them an eight.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
In the past, we have used other solutions such as Palo Alto and other vendors. I am more of a Cisco person and prefer Cisco.
How was the initial setup?
My experience with the deployment of Cisco Secure Firewall is that it's pretty straightforward.
What was our ROI?
The biggest return on investment for me when using Cisco Secure Firewall is reliability and robust network design.
What's my experience with pricing, setup cost, and licensing?
Regarding pricing and setup costs, apart from the licensing issue, Cisco products are on the pricier side. That said, they're worth it. We have over 500 substations plus our data center just on OT, and everything is Cisco, so we are a core Cisco customer, and as long as the product is reliable, it's worth every penny.
Which other solutions did I evaluate?
We did consider other solutions before choosing Cisco Secure Firewall.
What other advice do I have?
I'm not sure how Cisco Secure Firewall's ability to unify policies across my environment is, as I haven't tried that.
I am not using Cisco SecureX with Secure Firewall; I'm using FMC for centralized management for the firewalls.
The impact of the cloud-delivered firewall on my company's security posture is tricky. For compliance, we are not supposed to have anything cloud-based, so it must be on-prem. We're a big company and we can use it in some other parts of the network, just not for my team.
Overall, I would rate Cisco Secure Firewall an eight out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer. Partners
Buyer's Guide
Cisco Secure Firewall
July 2026
Learn what your peers think about Cisco Secure Firewall. Get advice and tips from experienced pros sharing their opinions. Updated: July 2026.
903,933 professionals have used our research since 2012.
System Engineer at MDS Informaticki inzenjering
Secure remote access has strengthened client VPNs with reliable multi factor authentication
Pros and Cons
- "The most valuable feature of Cisco Secure Firewall for me relates to the remote access VPN, because companies need multi-factor authentication."
What is our primary use case?
Our company's use case involves integration with Cisco Secure Firewall for our clients, typically for remote access VPN. The purpose of our remote access VPN integration is to connect with Duo. We also perform integration with Cisco ICE and integration directly with the firewall.
What is most valuable?
The most valuable feature of Cisco Secure Firewall for me relates to the remote access VPN, because companies need multi-factor authentication. The selling point of the product revolves around multi-factor authentication for VPNs. I have implemented this with Cisco firewall, Cisco ICE, and Palo Alto integration with Duo.
What needs improvement?
If I could improve the product in any way to make it better for my clients, that would be beneficial. For now, everything is fine from my perspective, although there may be room for improvement that I have not yet identified.
For how long have I used the solution?
I have been using Duo for two years.
What do I think about the stability of the solution?
I find Cisco Secure Firewall to be stable and scalable. It is reliable. The solution has experienced downtime.
How are customer service and support?
I have worked with Cisco support. My experience with Cisco support is fine. When I need to open a case, I have done so. I did not contact Duo support, but I did contact support for Cisco firewall and Cisco ICE. I did not work with an engineer for Duo.
They are responsive. In general, it takes them two to three hours to get back to me. When they need to search for something, it may take a day.
How would you rate customer service and support?
Negative
How was the initial setup?
Deploying Duo is quite simple because Duo has very good documentation for all integrations. It typically takes a couple of days to deploy because we need to schedule meetings with our clients. When we gather all the information, we can integrate it, then test it and put it in production.
What about the implementation team?
I have experience with the implementation.
What other advice do I have?
The benefit of using this integration for our company is that clients want solutions from us. Our clients need to find a solution for multi-factor authentication, and we recommend them to use Cisco Secure Firewall with Duo. We integrate that with their firewalls or AAA servers. Cisco Secure Firewall integrates well. I am not involved with pricing and licensing concerns, as our company has a sales team who handles that. My company is a partner. I rate this product ten out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer. Partner
Last updated: Feb 11, 2026
Flag as inappropriateSenior Sales Manager at Bluechip Technical Services Pvt Ltd
Has enabled global teams to maintain consistent security policies with strong unified threat management
Pros and Cons
- "Most of the partners are looking for AI-driven solutions now, so if Cisco improves more on the AI part than other products, it will be very good when they are trying to capture the market."
What is our primary use case?
One of the biggest use cases for Cisco Secure Firewall is Public Bank; they use it in Malaysia, but we implemented it in the Sri Lankan branches.
When a global company is using Cisco Secure Firewall, they would prefer to go with the same product with the same switching and firewall, making it an umbrella solution.
What is most valuable?
I think the UTM is the best feature of Cisco Secure Firewall.
The UTM features are indeed the best.
The reason why the UTM feature of Cisco Secure Firewall is the best is because the customer is more concerned with security; for a worldwide company, they need the most security, and I think it's very suitable for the most secure companies.
The centralized management console in Cisco Secure Firewall is effective and helpful.
What needs improvement?
Most of the partners are looking for AI-driven solutions now, so if Cisco improves more on the AI part than other products, it will be very good when they are trying to capture the market.
Cisco Secure Firewall has to enhance its AI part.
Customers using Cisco Secure Firewall are looking for UTM features, and some enhancements have to be done, such as when you block applications, more applications have to be able to be blocked and categorized.
For how long have I used the solution?
I've been working with Cisco Secure Firewall for around 15 years as a partner.
What do I think about the stability of the solution?
Cisco Secure Firewall is stable, and there are no issues or challenges that my customers have faced with it.
What do I think about the scalability of the solution?
Customers use Cisco Secure Firewall both on the cloud and on-premises, and it is a scalable solution and easy to scale.
How are customer service and support?
My experience with Cisco support is good. I would rate the technical support of Cisco Secure Firewall eight out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
The deployment of Cisco Secure Firewall takes one day.
What was our ROI?
Customers see a return on investment with Cisco Secure Firewall, and it is workable in terms of value for money.
Which other solutions did I evaluate?
Competitively, Checkpoint is the best, but considering pricing and everything else, Cisco Secure Firewall is also the best product.
Cisco Firewall is better in terms of cost and is cheaper; unlike other products, if the license expires, no features work, but Cisco isn't that way. Most of the time, they have perpetual licenses, so that's the best solution customers are looking for.
The threat intelligence functionalities in Cisco Secure Firewall are also good, but when considering Checkpoint and others, they have some enhanced features; there is some differentiation, but it's also good.
What other advice do I have?
They need a global, one single vendor, which is why they see value for money with Cisco Secure Firewall.
I recommend Cisco Secure Firewall because it's a global vendor.
On a scale of 1-10, I rate Cisco Secure Firewall an 8.
Which deployment model are you using for this solution?
On-premises
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Disclosure: My company has a business relationship with this vendor other than being a customer. Partner
Director of Infrastructure at a media company with 1,001-5,000 employees
Central management simplifies policy unification and deployment speed, ensuring reliable security
Pros and Cons
- "Cisco Secure Firewall scales with the growing needs of my organization, as we have different models and sizes, and our central boxes are powerful enough to cover whatever we want whenever we want."
- "I have not had one Cisco Secure Firewall fail so far, which shows it is stable and reliable."
- "The upgrading process of Cisco Secure Firewall is a long process on a per-firewall basis, and it would be nice if that could be improved. One firewall can take two to two and a half hours to upgrade, so we end up having to watch it."
What is our primary use case?
My main use cases for Cisco Secure Firewall are mainly user access to the internet and blocking firewall sites.
How has it helped my organization?
With the centralized management of Cisco Secure Firewall, it's good in unifying policies across my environment. The simplicity and supportability are important to my organization as it's much easier if everything's the same as much as possible.
What is most valuable?
I appreciate that the central management of Cisco Secure Firewall is from one location, which saves a lot of time.
The IPS protection is good for us for security reasons.
The central management feature of Cisco Secure Firewall saves one location instead of having to log on to multiple locations, which speeds up deployment of any changes or requirements for monitoring.
What needs improvement?
The upgrading process of Cisco Secure Firewall is a long process on a per-firewall basis, and it would be nice if that could be improved. One firewall can take two to two and a half hours to upgrade, so we end up having to watch it. It becomes a problem; in the old firewall days, it would be about a ten-minute job. I know it's more complicated with the newer firewalls. It's just a long-winded process even if they have sorted it out a little bit with automation.
For how long have I used the solution?
I have been using Cisco Secure Firewall for probably about eight years.
What do I think about the stability of the solution?
I have not had one Cisco Secure Firewall fail so far, which shows it is stable and reliable. Right now, I have not experienced any downtime, crashes, or performance issues with Cisco Secure Firewall.
What do I think about the scalability of the solution?
Cisco Secure Firewall scales with the growing needs of my organization, as we have different models and sizes, and our central boxes are powerful enough to cover whatever we want whenever we want.
How are customer service and support?
My evaluation of customer service and technical support for Cisco Secure Firewall is that I have generally hardly ever had to use them. We did two weeks ago, and it was a very quick response that identified exactly where the issue in our configuration was.
Two weeks ago, I received a very quick response from customer service, which identified exactly where the issue on our configuration was, and it went very smoothly, so out of ten, I would give it a nine.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Prior to adopting Cisco Secure Firewall, I was also using previous Cisco firewalls, and before that, we had Fortinet and Juniper.
The factors that led me to consider the change to Cisco Secure Firewall were actually price, as Cisco's was a very competitive price, and we received a very good deal.
How was the initial setup?
My experience with the deployment of Cisco Secure Firewall has been generally okay.
What was our ROI?
I have seen a return on investment with Cisco Secure Firewall since we run them for a long time.
Our current Cisco Secure Firewall units have been in place for probably over three years now, and at the moment, we're not looking to replace them, indicating a good return on investment since they last and are supported quite a long time after they're released.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup costs, and licensing for Cisco Secure Firewall shows it can be expensive, especially the bigger boxes, since they do a lot more and handle a lot more, with a big jump from the smaller firewalls to the big firewalls.
Which other solutions did I evaluate?
The other solutions I considered before selecting Cisco Secure Firewall include Fortinet, Juniper, and Palo Alto. We're generally a Cisco house and have been for quite a few times with the old Cisco firewalls, so it was a natural progression.
What other advice do I have?
We did not purchase the product on AWS Marketplace.
We actually don't do that much encrypted inspecting traffic at the moment with Cisco Secure Firewall, which is something we want to look at. We just want to make sure we don't max out the CPU with the many jobs it does. Cisco Secure Firewall will be a building block part of our zero-trust security model, however, there will be a few other parts needed, such as Cisco Secure Access.
I have not really expanded the usage of Cisco Secure Firewall. My advice to other organizations considering Cisco Secure Firewall is that it does what it says on the tin; it works, it's reliable, and I have never had one fail, so I think it's good.
On a scale of one to ten, I rate Cisco Secure Firewall a nine.
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Cybersecurity Team Leader at EMAK For Computer Manufacturing (ECM)
Strong intrusion prevention has secured our data center and supports flexible firewall deployment
Pros and Cons
- "The best feature in Cisco Secure Firewall is the stability; we have a stable product with no lagging or crashing, unlike others."
- "Most of the time, Cisco provides features on some versions and the updated versions will move them; for example, we can do firewall policies based on users, which is from Active Directory."
What is our primary use case?
We have two deployment models for the use case: one is a perimeter firewall and one is a data center firewall. If you have a perimeter, you will position Cisco Secure Firewall as a perimeter firewall; it fits more in data as a data center firewall because in a data center firewall, you are inspecting incoming traffic and you need a very good IPS, so Cisco Secure Firewall is very effective as a data center firewall.
What is most valuable?
The best feature in Cisco Secure Firewall is the stability; we have a stable product with no lagging or crashing, unlike others. Additionally, the IPS is the next-generation IPS from Cisco, which has many features and many signatures with updated signatures for my IPS.
I switched to Cisco Secure Firewall to get very good IPS signatures and next-generation IPS; that is a market leader from Cisco.
The stability is very good. I do not experience any downtime, crashes, or performance issues; that is the best feature from Cisco Secure Firewall.
What needs improvement?
Most of the time, Cisco provides features on some versions and the updated versions will move them; for example, we can do firewall policies based on users, which is from Active Directory. It should be from Cisco ISE, so it is a very bad drawback from Cisco Secure Firewall. Not all customers have Cisco ISE, and we need to integrate to make a policy on users, not just by IP, but with users also. We had integration before with LDAP and Active Directory, but on some versions, Cisco requires us to do it through Cisco ISE.
For how long have I used the solution?
I have five years of experience with Cisco Secure Firewall overall.
What do I think about the stability of the solution?
The stability is very good. I do not experience any downtime, crashes, or performance issues; that is the best feature from Cisco Secure Firewall.
What do I think about the scalability of the solution?
Cisco Secure Firewall is providing scalability. I rate the scalability as a number 10.
How would you rate scalability?
Positive
How are customer service and support?
I rate the technical support a number 10.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Compared to Fortinet, we have a complex configuration, but we still have a stable product rather than Fortinet's product.
How was the initial setup?
Cisco Secure Firewall requires maintenance. Maintaining it is slightly complex; it is not easy or very easy.
What about the implementation team?
I am a customer. It was purchased through a partner. I was satisfied with my experience with the partner.
What was our ROI?
I have seen a return on investment of 50.
What's my experience with pricing, setup cost, and licensing?
The pricing for Cisco Secure Firewall is very good, and we got many discounts from them.
What other advice do I have?
Cisco Secure Firewall is deployed on-premises. We have a team of four users using the solution. I rate this review a 10.
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Last updated: Mar 18, 2026
Flag as inappropriateSystem Analyst at EllisDon
Firewall rules and clear GUI have strengthened corporate web protection and secure remote access
Pros and Cons
- "This has helped my team feel more confident that we are protected from malicious intruders, and I have noticed specific positive outcomes and changes since using Cisco Secure Firewall."
- "I believe Cisco Secure Firewall can be improved, particularly regarding the specifications such as the memory that is used on entry-level firewalls, because sometimes when doing an upgrade or changing configuration, issues arise."
What is our primary use case?
My main use case for Cisco Secure Firewall is to protect corporate internet access from malicious people.
I can provide a specific example of how I use Cisco Secure Firewall to protect my corporate internet system from malicious activity: I block malicious sites and create rules to detect them.
I also use it to provide remote access for vendors and IT support people.
What is most valuable?
The best features Cisco Secure Firewall offers in my experience are its GUI, clear definition, and process to create rules.
The GUI is clear and I am able to follow the description of processes such as backup, creation of rules, and other management processes.
This has helped my team feel more confident that we are protected from malicious intruders, and I have noticed specific positive outcomes and changes since using Cisco Secure Firewall.
What needs improvement?
I believe Cisco Secure Firewall can be improved, particularly regarding the specifications such as the memory that is used on entry-level firewalls, because sometimes when doing an upgrade or changing configuration, issues arise.
On the performance side, I notice that the upgrade to a different version is slow, so hopefully improved CPU and RAM will help performance.
For how long have I used the solution?
I have been using Cisco Secure Firewall for three years.
What do I think about the stability of the solution?
Cisco Secure Firewall is stable in my experience.
The hardware is working and we have not encountered the firewall failing because of a firmware upgrade.
What do I think about the scalability of the solution?
We have not needed the scalability feature of Cisco Secure Firewall as of now.
How are customer service and support?
I have not needed to reach out to Cisco support for any issues.
Which solution did I use previously and why did I switch?
I have not switched from another vendor or used another firewall vendor prior to Cisco.
Which other solutions did I evaluate?
Before choosing Cisco Secure Firewall, we did not evaluate other options.
What other advice do I have?
I would advise others looking into using Cisco Secure Firewall that it is easy to use and manage, easy to create rules, and upgrade the firmware, and it is reliable; I have not encountered any failure on my Cisco firewall so far. I rate this product an 8 out of 10.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer. Partner
Last updated: Apr 30, 2026
Flag as inappropriateAdministrator at a transportation company with 1,001-5,000 employees
Network has been securely segmented and keeps critical train services operating without interference
Pros and Cons
- "What I appreciate most about Cisco Secure Firewall is that it has been working since we bought it without any failure, highlighting its reliability and performance."
- "I think the old interface could be improved, as it is not that good."
What is our primary use case?
Our main use case for Cisco Secure Firewall is to have the different clients secured in their own VLAN and subnet, ensuring effective segregation of our network.
We do not have an internet connection with Cisco Secure Firewall; basically, it is all on-premise. We have different use cases and those need to stay separated, so they do not interfere with each other.
My main usage for Cisco Secure Firewall is that I work in a train company where we are basically managing the network for the different use cases of the train. Those need to get separated, so the phone does not interfere with the cameras, for example, and we only allow the designated ports to the other.
What is most valuable?
What I appreciate most about Cisco Secure Firewall is that it has been working since we bought it without any failure, highlighting its reliability and performance.
An example of how Cisco Secure Firewall benefits my organization is that it performs its function very effectively. We use it as a router, and it works really well, ensuring our operations run smoothly.
What needs improvement?
I think the old interface could be improved, as it is not that good. Cisco Firewall Management Center is much better, but I need to get more experience with that because we do not really have any experience with it. I did not work extensively with it as we are in the migrating phase.
For how long have I used the solution?
I have been using a Cisco firewall, specifically the ASA, for ten years and now we are migrating to Cisco Secure Firewall, which represents our ongoing commitment to network security.
What do I think about the stability of the solution?
I assess the stability and reliability of Cisco Secure Firewall as performing really well. We have had one small issue, but it happened over ten years, and with the new one, we have had no issues.
What do I think about the scalability of the solution?
I believe Cisco Secure Firewall can scale and grow with the needs of my organization because we bought the biggest model, so we do not really need to scale anywhere. We roughly calculated this and it should last the next nine to ten years, so if we buy a new one, it will probably have more performance, but the next ten years are secure.
How are customer service and support?
I have used customer service for Cisco Secure Firewall. We have a partner between us and Cisco and only the extreme cases get to Cisco. Most of the time our partner, Logicalis, will solve the problem for us because they have experts, so only really problems with the software or these kinds of things get right to Cisco.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
Before choosing Cisco Secure Firewall, we have a complete Cisco network, so we tried to keep the network together, completely Cisco. Therefore, there were no other solutions, as we did not use one before and we did not consider different options.
How was the initial setup?
I would describe the experience of deploying Cisco Secure Firewall as very smooth. We used the migration software which just took the complete ASA configuration and put it in Cisco Secure Firewall in Cisco Firewall Management Center, and that was it; it worked.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Last updated: Feb 10, 2026
Flag as inappropriateNetwork Engineer at Navitus
Firewall has delivered clear visibility and has simplified secure internet protection
Pros and Cons
- "I value Cisco products and advocate for them whenever I can."
- "The only area that can be improved is related to Cisco Secure Firewall Management Center, as certain versions are not always stable, which has been our only issue."
What is our primary use case?
Cisco Secure Firewall serves as our primary internet firewall.
What is most valuable?
I appreciate the ease of use most about Cisco Secure Firewall. The end-to-end visibility offered by Cisco Secure Firewall is excellent, and I have no issues with any of the products. I assess the operational efficiency of Cisco Secure Firewall in my IT environment as positive because I value Cisco products and advocate for them whenever I can.
What needs improvement?
The only area that can be improved is related to Cisco Secure Firewall Management Center, as certain versions are not always stable, which has been our only issue.
For how long have I used the solution?
I have been using Cisco Secure Firewall for twenty years.
What do I think about the stability of the solution?
I assess the stability and reliability of Cisco Secure Firewall as good; it is rock solid for me.
What do I think about the scalability of the solution?
I am uncertain about the specific challenges I face with hybrid distribution, especially regarding hybrid and distributed enterprise networks that Cisco Secure Firewall addresses.
How are customer service and support?
I evaluate customer service and technical support at a ten on a scale of one to ten, with ten being the best.
Which solution did I use previously and why did I switch?
I have used Cisco Secure Firewall throughout my career.
How was the initial setup?
I would describe my experience with deploying Cisco Secure Firewall as positive because there is extensive documentation and support available, making the deployment very straightforward.
Which other solutions did I evaluate?
I have never considered anything other than Cisco Secure Firewall; I would never switch.
Which deployment model are you using for this solution?
On-premises
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Last updated: Jun 2, 2026
Flag as inappropriateCentral management empowers us with unified policy control and compliance
Pros and Cons
- "The feature of Cisco Secure Firewall that I prefer the most is IPS; I appreciate the IPS feature because it's built in and I can control it using the FMC and push out the policy company-wide, making it centrally managed."
- "There could be some improvement in the way FMC displays the policy."
What is our primary use case?
Our main use cases for Cisco Secure Firewall include firewall, IPS, and URL filtering.
What is most valuable?
The feature of Cisco Secure Firewall that I prefer the most is IPS. I appreciate the IPS feature because it's built in and I can control it using the FMC and push out the policy company-wide, making it centrally managed. The IPS benefits my company because that's one of the requirements; we used to have separate IPS. Now it's all integrated, providing ease of use for us. Cisco Secure Firewall has helped my company achieve its goals because it's a next-generation firewall. That's what we need to maintain certain compliance from the security side. Having IPS built in, firewall, URL filtering, everything is centrally managed, so we have more visibility and management.
What needs improvement?
Compared to the previous generation, the ASA, firewall rules appear differently in the ASDM and the previous generation firewall versus FTD, which I don't prefer as much. The ASA makes it easier to view those policies. There could be some improvement in the way FMC displays the policy.
For how long have I used the solution?
I have been using Cisco Secure Firewall in my company for the last two years.
What do I think about the stability of the solution?
I haven't seen any breakdown or instability; the platform has been stable, and we haven't had any issues.
What do I think about the scalability of the solution?
Cisco Secure Firewall scales with the growing needs of my company as we're going to implement clustering. I've used clustering in my past experience; it's very easy and straightforward. We had some minor issues with the clustering. I appreciate the clustering capability, though I haven't implemented it in my current job.
How are customer service and support?
The customer service and technical support have been great; they've always been great.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I considered other solutions such as Palo Alto before choosing Cisco Secure Firewall. We were using Palo Alto, but we decided to go with Cisco because of its ease of use. We were a Cisco shop, and there's a micro facility where you can migrate all the ASA to the firewall.
How was the initial setup?
The deployment process of Cisco Secure Firewall is simple enough. Out of the box, you perform the initial management configuration, specify the FMC location, join FMC, and then you can manage it from FMC. The process is straightforward and simple.
What was our ROI?
From my point of view, the biggest return on investment when using Cisco Secure Firewall is the single pane of glass, which is a huge plus for us. Having that visibility, managing all the alerts, IPS alerts, vulnerability management - everything is a huge plus.
What's my experience with pricing, setup cost, and licensing?
My experience with the pricing, setup costs, and licensing is that it's consistent. I don't have much visibility on the licensing side, but I assume it remains the same.
Which other solutions did I evaluate?
There are differences between Palo Alto and Cisco, particularly on the cloud side. Palo Alto has Prisma Cloud and additional tools. I would say Cisco has room for improvement in that area for the future. We're not heavily in the cloud, so for us, it's not a significant concern.
What other advice do I have?
We haven't used any new features or functionalities in Cisco Secure Firewall recently, but we plan to try file scanning, focusing more on the malware side, AMP and everything. That's something we want to try next.
My impression of the visibility and control capabilities of Cisco Secure Firewall in managing encrypted traffic is limited as we haven't tried SSL encryption yet. That's something we might explore in the future.
Regarding Cisco Secure Firewall's ability to unify policies across my environment, managing via FMC ensures accuracy. Unifying policies is essential for my company because it provides one pane of glass. Software pushes, policy implementation, traffic monitoring, and having all alerts in one place are crucial.
The impact of the cloud-delivered firewall on my company's security posture is significant. Having the same FTD running in the cloud, managed by FMC, is our future direction. We currently implement this with Azure.
Regarding zero trust security model implementation, we are exploring options with SD-WAN, both on-premises and in the cloud with firepower. I'm meeting with a Cisco engineer next week to discuss implementation strategies.
I don't see anything that needs improvement in Cisco Secure Firewall; we've been very satisfied with it. I've been using FTD for almost five to seven years now, including with a previous company, and heavily worked on migration from ASA to FTD.
From one to ten, I would rate Cisco Secure Firewall a ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer. Partnership
Buyer's Guide
Download our free Cisco Secure Firewall Report and get advice and tips from experienced pros
sharing their opinions.
Updated: July 2026
Popular Comparisons
Fortinet FortiGate
Netgate pfSense
Sophos Firewall
Cisco Umbrella
Palo Alto Networks NG Firewalls
Cisco Identity Services Engine (ISE)
WatchGuard Firebox
Check Point Harmony SASE (formerly Perimeter 81)
Check Point Quantum Force (NGFW)
Cisco Meraki MX
Check Point Cloud Firewall (formerly CloudGuard Network Security)
Azure Firewall
Cisco Secure Network Analytics
Cisco Duo
Buyer's Guide
Download our free Cisco Secure Firewall Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- What Is The Biggest Difference Between Cisco ASA And Fortinet FortiGate?
- Cisco Firepower vs. FortiGate
- How do I convince a client that the most expensive firewall is not necessarily the best?
- What are the biggest differences between Cisco Firepower NGFW and Fortinet FortiGate?
- What Is The Biggest Difference Between Cisco Firepower and Palo Alto?
- Would you recommend replacing Cisco ASA Firewall with Fortinet FortiGate FG 100F due to cost reasons?
- What are the main differences between Palo Alto and Cisco firewalls ?
- A recent reviewer wrote "Cisco firewalls can be difficult at first but once learned it's fine." Is that your experience?
- Which Cisco firewall model is the latest: ASA or NGFW?
- Which is better - Fortinet FortiGate or Cisco ASA Firewall?














