Cisco Secure Firewall Reviews

We are deploying Cisco Secure Firewall for customers in the cloud, on-premise, or all around, depending on the customer. We have small customers that are migrating to the cloud, so we have to deploy virtual firewalls as well as on-premise solutions for both large-scale and small-scale operations.

The best return on investment when using Cisco Secure Firewall is the visibility. From my point of view, the best return on investment is the visibility. With Firepower Management and the FMC, you are able to really see everything that's going on in your network.

From my point of view, the stability and reliability of the product is quite good. The firewall sensors and the management are quite stable. We are encountering some problems, but mostly when you implement the solution correctly, you don't have any problems besides hardware failure, which is really rare. 

Scalability for Cisco Secure Firewall is a good point. It's hard to say because mostly we are consulting and planning together with the customer. If they can see upfront or if they know when they have to scale big, then we can scale with them. I think the appliances are well scaled for the use of the customer.

I have a lot of experience with the customer service and technical support of Cisco. Recently, we managed to get one of the Cisco engineers to connect with us to solve some customer problems.

My experience with the customer service and technical support of Cisco is quite excellent. The engineers are top-notch and they know what they are doing. They are really experts in their field.

Regarding customer service, I'm not as familiar with that aspect. However, with the technical support, when you know the right people and when you really have problems which you can't solve on your own, they are behind you and they can help you mostly.

Negative

I have worked with other solutions in the past, different ones. The vibe which is in Cisco equipment caught me from the early days. When I started, the first security appliance I saw was Cisco PIX. I worked sometimes with Cisco ASA, and this was all before I came to Bechtle. Now I'm where I want to be.

Deploying Cisco Secure Firewall is getting easier, so I would describe the experience as straightforward. You are now able to preconfigure the appliances to send out, so you don't need engineers on site. In some cases, you can preconfigure and send it to the customer, and the customer is able to plug it in and it has access to WAN or to the internet. You are up and can run the system. I would rate Cisco Secure Firewall overall as an eight or a nine out of ten.

This is mostly the system I'm working with, so I do work with other solutions other than Cisco Secure Firewall, but we do have other teams working with other vendors. We are at a point where things are getting more and more complicated and you need more and more knowledge to do the implementation correctly. My goal is to do Cisco and to do it the best I can and do it properly.

I'm mostly on the implementation side, so pricing, the setup cost, and the licensing are not really my part in the business. I hear it's quite expensive, but the service you get is worth it. When you invest so much, you will get a lot of service. About licensing, I don't have experience with other vendors regarding licensing, so I would say the licensing is quite good. I'm not sure if there are any other downsides, so I consider it acceptable.

My main use cases for Cisco Secure Firewall are to safeguard our network, including the IPS and all the traffic, and to control the traffic.

The visibility and control capabilities of Cisco Secure Firewall in managing encrypted traffic are very good. I can implement all my certificates, so I can open the traffic and see everything.

Cisco Secure Firewall’s ability to unify policies across our environment is at a high level. This unification of policies into one system is important for my company. We are able to consolidate all the policies instead of spreading them across many security systems.

What I appreciate the most about Cisco Secure Firewall is that it can be very elastic, as it can be configured with all the flexibility of my network needs and complexity. The service I receive from the Cisco engineer helps me implement all my needs. 

Cisco Secure Firewall allows me to safeguard Layer 7 or Layer 3 and manage the security rules with the business needs of my organization. The firewall has benefited my company overall because it safeguards and finds and stops all the malicious traffic.

Cisco Secure Firewall can be improved by simplifying the GUI, as it shouldn't be so complex.

I have been using Cisco Secure Firewall for ten years.

It's very robust. We don't have any downtime or anything. We work with a cluster with high availability, so if something goes wrong, we have it functioning.

Cisco Secure Firewall helps with the growing needs of our company as it's scalable.

Customer service and technical support for Cisco Secure Firewall are very good. I would rate them a nine out of ten.

Positive

It was a little bit difficult.

We needed a good integrator to help us, and we contacted Cisco for some help with technical issues.

We are able to safeguard our assets.

It's acceptable and comparable to other products.

We did consider other solutions before choosing Cisco Secure Firewall. We considered all the big vendors such as Palo Alto, Check Point, Fortinet, and others. Cisco won because it has the best IPS model on it, and that's the reason why we chose this firewall.

I would rate Cisco Secure Firewall an eight out of ten. To make it a ten, the complexity of the configuration compared to other vendors needs to be addressed. Overall, we're very happy with the product.

On-premises

Our company's use case involves integration with Cisco Secure Firewall for our clients, typically for remote access VPN. The purpose of our remote access VPN integration is to connect with Duo. We also perform integration with Cisco ICE and integration directly with the firewall.

The most valuable feature of Cisco Secure Firewall for me relates to the remote access VPN, because companies need multi-factor authentication. The selling point of the product revolves around multi-factor authentication for VPNs. I have implemented this with Cisco firewall, Cisco ICE, and Palo Alto integration with Duo.

If I could improve the product in any way to make it better for my clients, that would be beneficial. For now, everything is fine from my perspective, although there may be room for improvement that I have not yet identified.

I have been using Duo for two years.

I find Cisco Secure Firewall to be stable and scalable. It is reliable. The solution has experienced downtime.

I have worked with Cisco support. My experience with Cisco support is fine. When I need to open a case, I have done so. I did not contact Duo support, but I did contact support for Cisco firewall and Cisco ICE. I did not work with an engineer for Duo.

They are responsive. In general, it takes them two to three hours to get back to me. When they need to search for something, it may take a day.

Negative

Deploying Duo is quite simple because Duo has very good documentation for all integrations. It typically takes a couple of days to deploy because we need to schedule meetings with our clients. When we gather all the information, we can integrate it, then test it and put it in production.

I have experience with the implementation.

The benefit of using this integration for our company is that clients want solutions from us. Our clients need to find a solution for multi-factor authentication, and we recommend them to use Cisco Secure Firewall with Duo. We integrate that with their firewalls or AAA servers. Cisco Secure Firewall integrates well. I am not involved with pricing and licensing concerns, as our company has a sales team who handles that. My company is a partner. I rate this product ten out of ten.

One of the biggest use cases for Cisco Secure Firewall is Public Bank; they use it in Malaysia, but we implemented it in the Sri Lankan branches.

When a global company is using Cisco Secure Firewall, they would prefer to go with the same product with the same switching and firewall, making it an umbrella solution.

I think the UTM is the best feature of Cisco Secure Firewall.

The UTM features are indeed the best.

The reason why the UTM feature of Cisco Secure Firewall is the best is because the customer is more concerned with security; for a worldwide company, they need the most security, and I think it's very suitable for the most secure companies.

The centralized management console in Cisco Secure Firewall is effective and helpful.

Most of the partners are looking for AI-driven solutions now, so if Cisco improves more on the AI part than other products, it will be very good when they are trying to capture the market.

Cisco Secure Firewall has to enhance its AI part.

Customers using Cisco Secure Firewall are looking for UTM features, and some enhancements have to be done, such as when you block applications, more applications have to be able to be blocked and categorized.

I've been working with Cisco Secure Firewall for around 15 years as a partner.

Cisco Secure Firewall is stable, and there are no issues or challenges that my customers have faced with it.

Customers use Cisco Secure Firewall both on the cloud and on-premises, and it is a scalable solution and easy to scale.

My experience with Cisco support is good. I would rate the technical support of Cisco Secure Firewall eight out of ten.

Positive

The deployment of Cisco Secure Firewall takes one day.

Customers see a return on investment with Cisco Secure Firewall, and it is workable in terms of value for money.

Competitively, Checkpoint is the best, but considering pricing and everything else, Cisco Secure Firewall is also the best product.

Cisco Firewall is better in terms of cost and is cheaper; unlike other products, if the license expires, no features work, but Cisco isn't that way. Most of the time, they have perpetual licenses, so that's the best solution customers are looking for.

The threat intelligence functionalities in Cisco Secure Firewall are also good, but when considering Checkpoint and others, they have some enhanced features; there is some differentiation, but it's also good.

They need a global, one single vendor, which is why they see value for money with Cisco Secure Firewall.

I recommend Cisco Secure Firewall because it's a global vendor.

On a scale of 1-10, I rate Cisco Secure Firewall an 8.

On-premises

Other

Our primary use case for Cisco Secure Firewall is for enterprise customers. We primarily work on Cisco Meraki switching and wireless. We also engage with Cisco Secure Firewall for threat prevention and information security.

The Cisco Secure Firewall appliances are primarily ASIC-based, which makes them fast and purpose-built. They stand out because they are not Intel-based systems, and in terms of performance and stability, they are among the best. Scalability is another strong point, as I have not encountered any issues in terms of scalability. Everything is in a cluster and can operate in active standby, active-active, or active-passive mode. Additionally, Cisco's support is excellent, which adds further value to their solutions.

The configuration might be slightly difficult compared to other players in the market like Fortinet or WatchGuard. It can be challenging for someone who is not used to using an application to configure the firewall, but with experience, it becomes manageable.

I have been working with Cisco Secure Firewall for four, five, six years or more.

There have been no issues with deployment.

Cisco Secure Firewall offers exceptional performance and stability. They are among the best in terms of stability.

I have not come across any issues with scalability. Everything scales very well.

Customer service and support are excellent. I would rate their support 10 out of 10. I have been working with them on firewalls, wireless, switching, and routing, and the support is the best.

Positive

For someone like me who has been working on firewalls for quite some time, I do not see any problems with the initial setup. However, for someone trying to configure it for the first time with little experience, it may present a challenge.

Return on investment depends on the customer. While some may see it as an expense, others view it as an investment based on their understanding of Cisco.

The pricing is slightly more expensive than other products in the market. It's considered a premium, but people pay that price for Cisco.

I have been working with Palo Alto, Fortinet, SonicWALL, and WatchGuard.

I would definitely recommend Cisco Secure Firewall for its architecture, performance, stability, and exceptional support. When choosing a product, consider features delivery, stability, scalability, and customer support. On a scale of one to ten, I rate their firewalls eight to eight and a half.

On-premises

Our main use case for Cisco Secure Firewall is to have the different clients secured in their own VLAN and subnet, ensuring effective segregation of our network.

We do not have an internet connection with Cisco Secure Firewall; basically, it is all on-premise. We have different use cases and those need to stay separated, so they do not interfere with each other.

My main usage for Cisco Secure Firewall is that I work in a train company where we are basically managing the network for the different use cases of the train. Those need to get separated, so the phone does not interfere with the cameras, for example, and we only allow the designated ports to the other.

What I appreciate most about Cisco Secure Firewall is that it has been working since we bought it without any failure, highlighting its reliability and performance.

An example of how Cisco Secure Firewall benefits my organization is that it performs its function very effectively. We use it as a router, and it works really well, ensuring our operations run smoothly.

I think the old interface could be improved, as it is not that good. Cisco Firewall Management Center is much better, but I need to get more experience with that because we do not really have any experience with it. I did not work extensively with it as we are in the migrating phase.

I have been using a Cisco firewall, specifically the ASA, for ten years and now we are migrating to Cisco Secure Firewall, which represents our ongoing commitment to network security.

I assess the stability and reliability of Cisco Secure Firewall as performing really well. We have had one small issue, but it happened over ten years, and with the new one, we have had no issues.

I believe Cisco Secure Firewall can scale and grow with the needs of my organization because we bought the biggest model, so we do not really need to scale anywhere. We roughly calculated this and it should last the next nine to ten years, so if we buy a new one, it will probably have more performance, but the next ten years are secure.

I have used customer service for Cisco Secure Firewall. We have a partner between us and Cisco and only the extreme cases get to Cisco. Most of the time our partner, Logicalis, will solve the problem for us because they have experts, so only really problems with the software or these kinds of things get right to Cisco.

Before choosing Cisco Secure Firewall, we have a complete Cisco network, so we tried to keep the network together, completely Cisco. Therefore, there were no other solutions, as we did not use one before and we did not consider different options.

I would describe the experience of deploying Cisco Secure Firewall as very smooth. We used the migration software which just took the complete ASA configuration and put it in Cisco Secure Firewall in Cisco Firewall Management Center, and that was it; it worked.

On-premises

I have worked with other solutions similar to Cisco Secure Firewall, and in the past, I worked with Pulse Secure VPN. My experience with Pulse Secure VPN was also good in the past. In the near past, I replaced a lot of Ivanti VPN with Cisco Secure Firewall. The migration to Cisco Secure Firewall was caused by many security incidents on the side of Ivanti.

From my point of view, the biggest return on investment when using Cisco Secure Firewall is that the end-users have a good experience with the remote access VPN, are happy to use it, and have to use it every day. That is very satisfying for the customer.

The scalability of Cisco Secure Firewall is sufficient to meet the growing needs of my clients.

My experience with the documentation is that sometimes it refers to Cisco ASA instead of Cisco Secure Firewall, and the screenshots are not accurate. That is sometimes confusing for my customers.

The stability and reliability of Cisco Secure Firewall is reliable. The high-availability function of Cisco Secure Firewall helps to minimize downtimes, which is why I find it reliable.

My clients have never tried to expand its usage, or there was not a need for it. It is always enough for them because we are good at planning, so they do not need to resize.

My experience with the customer service and technical support of Cisco Secure Firewall is mostly with the partner support and not with the TAC directly.

Negative

In the past, my installations of Cisco Secure Firewall were on-premise.

I would describe the deployment process for Cisco Secure Firewall as straightforward. The deployment process is very easy because Cisco Secure Firewall has a good setup in the Firepower Management Center.

I was not told about a return on investment, but my clients are happy to use the remote access VPN solution.

My experience with the price, the setup costs, and the licensing of Cisco Secure Firewall is that the price and the licenses are fair and competitive in the market.

I have worked with other solutions similar to Cisco Secure Firewall, and in the past, I worked with Pulse Secure VPN. My experience with Pulse Secure VPN was also good in the past. In the near past, I replaced a lot of Ivanti VPN with Cisco Secure Firewall. The migration to Cisco Secure Firewall was caused by many security incidents on the side of Ivanti.

On-premises

My main use cases for Cisco Secure Firewall include serving as a perimeter firewall between the data center and users, and as the firewall between the internet and users.

An example of how Cisco Secure Firewall benefits my organization is that we use it with Azure, along with Azure firewall and FTD, and it works very well.

Cisco Secure Firewall is highly performant and easy to manage. 

Cisco Secure Firewall handles this adequately, but a simpler licensing model would be beneficial, especially when using the firewall in the cloud, since on-premises performance is limited by the hardware being used.

I have been using Cisco Secure Firewall for approximately fifteen years, starting from Cisco PIX.

Cisco Secure Firewall has demonstrated good reliability and stability. Although we did not invest heavily, which results in limited performance due to our license being restricted to one gigabit, that is our constraint rather than a Cisco limitation. I have not experienced any crashes or downtime with Cisco Secure Firewall, and everything has operated smoothly.

Cisco Secure Firewall can scale with the growing needs of my organization.

I have not needed to use customer service.

Negative

Deploying Cisco Secure Firewall is very straightforward and uncomplicated, as the systems are simple to deploy and the graphic interface is user-friendly.

My experience with the pricing, setup cost, and licensing for Cisco Secure Firewall is positive.

Before choosing Cisco Secure Firewall, I considered some competitors, as we have other firewalls from different vendors. It is beneficial to use firewalls from different vendors because if someone can overcome one firewall, there is the other firewall for protection.

I selected Cisco Secure Firewall because it works well in the Azure environment. 

Public Cloud

Microsoft Azure