Try our new research platform with insights from 80,000+ expert users
Carlos Reis - PeerSpot reviewer
Network Security Engineer at New Era Technology
Real User
Top 10
Has great security intelligence features
Pros and Cons
  • "I like the security solutions from Cisco."
  • "There are certain limitations that need to be addressed."

What is our primary use case?

People still aggregate these functions. We have files that only serve the purpose of NextGen NGIPS.  They have no rules that just allow pure source running and execution. We need regular firewall protection with NetGen. It's nice because we can lease both firewall and IPS system functions. We have both running on the network.

What is most valuable?

Apex IPaaS functions itself. You can create an intrusion rule that can be used for blocking purposes.

I like the security solutions from Cisco. They don't only give you the IPS itself, but you also have another database and other applications. 

They also have the security intelligence feature. This is one of the first software lines. This brings you the URLs, IPs, etc. This is even before the access control.

What needs improvement?

There are certain limitations that need to be addressed. 

For how long have I used the solution?

I have been using the Cisco NGIPS for two years. 

Buyer's Guide
Cisco Secure IPS (NGIPS)
November 2024
Learn what your peers think about Cisco Secure IPS (NGIPS). Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,636 professionals have used our research since 2012.

How are customer service and support?

Cisco support is very good. 

How would you rate customer service and support?

Positive

What other advice do I have?

For the time being, I never received a complaint about a policy, but this may happen in the future. This can be due to consistent integration. 

They filter even between different companies and stuff and cloud providers and I've never received any complaints about the speed.

Overall, I rate the solution an eight out of ten. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
PeerSpot user
GlennCamilien - PeerSpot reviewer
Senior Cybersecurity Engineer at a financial services firm with 201-500 employees
Real User
Top 5
The centralized management is helpful if you have multiple locations
Pros and Cons
  • "The IPS functionality is useful if you have offices all over the place. It's nice to have centralized management instead of going to a separate ASA or FirePOWER device."
  • "The biggest problem with most Cisco products is that the interface is lagging behind the competition. The user interface could be updated and improved."

What is our primary use case?

I am currently working with Cisco NGIPS at home as an IPS device, so I can see what's hitting the firewall and look at the logs. I'm using it as a learning environment. 

What is most valuable?

The IPS functionality is useful if you have offices all over the place. It's nice to have centralized management instead of going to a separate ASA or FirePOWER device. 

What needs improvement?

The biggest problem with most Cisco products is that the interface is lagging behind the competition. The user interface could be updated and improved.

What do I think about the stability of the solution?

Cisco NGIPS is stable. 

What do I think about the scalability of the solution?

Cisco NGIPS is highly scalable. We use it to cover 15 offices.

How was the initial setup?

It requires some background in IPS and IT security to fully understand it, so it is somewhat complex to deploy.

What other advice do I have?

I rate Cisco NGIPS eight out of 10. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Cisco Secure IPS (NGIPS)
November 2024
Learn what your peers think about Cisco Secure IPS (NGIPS). Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,636 professionals have used our research since 2012.
CyberEng8ecc - PeerSpot reviewer
Cyber Engineer at a aerospace/defense firm with 10,001+ employees
Real User
This solution has helped improve productivity and detect attacks before they happen
Pros and Cons
  • "This solution has helped improve productivity and detect attacks before they happen."
  • "I would like to see better integration with SIEMs."

What is our primary use case?

It detects attacks from malicious intrusions and malicious activity before they happen.

How has it helped my organization?

This solution has helped improve productivity and detect attacks before they happen.

What is most valuable?

Signature rules from the Snort community around the world.

What needs improvement?

  • I would like to see better integration with SIEMs. 
  • Better rule building using other tools, like LuaH and Python.
  • Better performance.
  • Better intelligence gathering in domains, the main URLs, and endpoint solutions.

What do I think about the stability of the solution?

It's very reliable. We really like the product and will be staying with the product a while.

What do I think about the scalability of the solution?

At this point in time, it's making it a little bit difficult to scale due to the company, as the vendor is making some changes. We are waiting to see if the product is scalable or not. 

How are customer service and technical support?

Rating the technical support from one to five (where five is high), I would rate them as a two. I find them to be very bad.

Which solution did I use previously and why did I switch?

This was originally a Snort product, which was open source. So, there is a community for it worldwide.

We used ISS from IBM in the past, but it was causing many issues and was dropping packets. It was not an ideal solution, so we moved to Sourcefire FirePower NGIPS.

How was the initial setup?

The initial setup is easy because I am very familiar with the product.

What's my experience with pricing, setup cost, and licensing?

We buy the licensing on a yearly basis, when we renew our contract. It is around $14,000.

Which other solutions did I evaluate?

McAfee and Palo Alto were on our shortlist.

What other advice do I have?

The product is a ten because it is the only product in the market like this.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer2348394 - PeerSpot reviewer
Director, Security and Compliance at a tech services company with 1-10 employees
Reseller
Top 20
Offers protection to internal networks from malware
Pros and Cons
  • "The product's initial setup phase was easy."
  • "The product's high price is an area of concern where improvements are required."

What is our primary use case?

In my company, the solution is used as a platform for cybersecurity. The product offers protection from malware. In general, the solution offers protection to our company's internal network.

How has it helped my organization?

The product's benefits experienced by the company stem from the fact that the solution provides keep abilities that help users see what is happening in their network. The solution also provides alerts.

What needs improvement?

My company does not use the URL filtering capabilities offered by Cisco NGIPS. My company prefers to use the URL filtering feature offered by a brand other than Cisco since other tools provide an easier way to use the functionality.

I wanted to look into the other products offered in the market because Cisco NGIPS is expensive. The product's high price is an area of concern where improvements are required.

For how long have I used the solution?

I have been using Cisco NGIPS for eight years. My company has a partnership with Cisco. I am also a user of the product. My company operates as a reseller of Cisco products.

What do I think about the stability of the solution?

I don't remember seeing any crashes when using the solution. The product has been very stable in our company.

What do I think about the scalability of the solution?

The scalability offered by the product is fine. My company has not faced any problems with the scalability feature. The solution is deployed in three of our company's data centers.

How are customer service and support?

The first call that I had with the product's technical team was not good since it took time to provide an explanation to get the right engineer to help us with our problems. Once the user gets connected with the right engineer, the support offered is very good.

I rate the technical support a seven out of ten.

How would you rate customer service and support?

Neutral

Which solution did I use previously and why did I switch?

I have experience with Fortinet. I don't remember the name of one of the solutions that I had used in the past.

How was the initial setup?

The product's initial setup phase was easy.

I rate the product's initial setup phase a nine on a scale of one to ten, where one means a difficult process, and ten means that it is an easy process.

The solution is deployed on an on-premises model.

The solution can be deployed in a couple of weeks. We take care of the testing phase in our company before installing the solution only when the signatures are updated in our environment, which takes around a time frame of less than two weeks.

Around three or four engineers take care of the product's installation phase.

What about the implementation team?

My company purchases professional services from Cisco's partner to take care of the installation phase.

What's my experience with pricing, setup cost, and licensing?

Cisco NGIPS is an expensive product.

Which other solutions did I evaluate?

I have compared Fortinet FortiGate IPS against Cisco NGIPS.

What other advice do I have?

With Cisco NGIPS, the rate of false positives is very low.

I would tell those who plan to use Cisco NGIPS that it is a good solution, but if they have budget constraints, they should explore the other brands in the market.

I rate the tool an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
Flag as inappropriate
PeerSpot user
Carlos Bracamonte - PeerSpot reviewer
Senior Network Support Engineer at Amadeus
MSP
Top 5
Good protection, reliable and responsive support
Pros and Cons
  • "The URL filtering feature and the new locations feature are both valuable additions to the solution."
  • "While the Management GUI and FMC could be improved, the devices themselves function well."

What is our primary use case?

Some of our customers are having DDOS attacks and ransomware attacks.

How has it helped my organization?

Earlier in July 2019, I noted that there was an attack. To mitigate future attacks from the ransomware in Columbia Bank and other similar situations, we at Cisco Talent, which is responsible for security intelligence, provided updated security rules. We offered intrusion policies and codes through signatures to help overcome such situations.

What is most valuable?

It's a good solution.

The solution is not that bad. Next-generation firewalls work from my experience, they work. 

The URL filtering feature and the new locations feature are both valuable additions to the solution.

What needs improvement?

While the Management GUI and FMC could be improved, the devices themselves function well.

For how long have I used the solution?

I have been using Cisco NGIPS for more than five years.

I provided support for version 6.4, but in our company, we do have Firepower version 7.0.

What do I think about the stability of the solution?

Cisco NGIPS is a stable solution.

How are customer service and support?

Cisco has great support.

What other advice do I have?

I would rate Cisco NGIPS an eight out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Senior Network / ITOps Engineer at a leisure / travel company with 201-500 employees
Real User
Easy to set up with helpful technical support and good integration capabilities
Pros and Cons
  • "You can do zero-day prevention and detection. It's quite useful."
  • "I'd like to see some cloud management. Cisco maybe already has it, however, my company doesn't use it as cloud management."

What is our primary use case?

The way we use it in my company is just for a basic firewall.

It's a next-generation firewall. You can integrate it with external systems, like Cisco Talos, Cisco Umbrella, all these things. You can do threat detection, threat prevention. You can integrate with your active directory. It can block traffic based on the user or user group.

What is most valuable?

I use the product mainly for follow-up. I would say the most important is the integration with our directory services, the user directory services. We can block or allow traffic based on the specific users or specific user groups.

There are other features such as the connection with the intelligence systems such as Talos on Cisco. You can do zero-day prevention and detection. It's quite useful.

The solution is stable and the performance is good. 

My understanding is that the initial setup is simple. 

What needs improvement?

I'd like to see some cloud management. Cisco maybe already has it, however, my company doesn't use it as cloud management. That said, it would be great to manage your device through the cloud instead of managing through a server on-premise.

For how long have I used the solution?

I've only used the solution for two months. It hasn't been that long just yet.

What do I think about the stability of the solution?

The product has been stable. Cisco is quite stable as a product. It doesn't crash or freeze. It's reliable. There are no bugs or glitches.

What do I think about the scalability of the solution?

I can't really speak to the scalability of the solution as I haven't used it for long enough.

Due to the fact that all the traffic passes through the firewalls, I would say 500 people or maybe more use the solution in our organization.

How are customer service and support?

Cisco technical support is great. They are helpful and responsive. We are very happy with their capabilities. 

Which solution did I use previously and why did I switch?

I'm also aware of Palo Alto, which in many ways is a more solid product. We used it in my previous company as it was more mature and much simpler to use in comparison to Cisco. 

How was the initial setup?

While I didn't set it up, my understanding is the implementation is straightforward. You read the documentation. It's this continuation from the old Cisco ASAs. People have used it for many years. Cisco's quite easy to set it up and keep up and running. You just need to add things on top of it, however, it's all quite easy. I have done an installation of the previous Cisco firewall. It's really straightforward. The upgrade is quite simple as well.

We have three technical personnel that can handle deployment and maintenance. We have to cover the whole globe, so we have three people on to handle everything 24/7.

What's my experience with pricing, setup cost, and licensing?

You do need to pay a licensing fee. If you want the additional features, like prevention or integration with extended intelligence systems, you need to pay additional licenses.

What other advice do I have?

I'm not sure which version of the solution we're using. It might be 6.4. It's likely whatever that latest version is.

I would recommend Cisco, however, I do find Palo Alto to be a good product as well, and in some ways more solid. 

I'd rate the solution at a nine out of ten. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Systems & Network Manager at Rocky View Schools
Real User
Works very well, very stable and scalable, and easy to use
Pros and Cons
  • "Its ease of use and its ability to block and allow ports in and out of our organization are the most valuable features. It works very well. It gives us all the information that we need."
  • "We don't like its licensing model. It has separate licensing for all the features. For instance, to get URL filtering, you need to buy another license. Every feature set seems to require another license. Unless you purchase them all upfront, you find some surprises and realize that you can't do that because you need another license. Its logging isn't quite as good as it used to be in our previous solution. We used to have Cisco ASA, and we could view the logs a lot easier than NGIPS (also known as Firepower). We saw real-time logging, but we don't see that as much in Firepower."

What is our primary use case?

It is our main firewall. We use it for reporting and for firewall purposes to block unwanted inputs and outputs.

What is most valuable?

Its ease of use and its ability to block and allow ports in and out of our organization are the most valuable features.

It works very well. It gives us all the information that we need.

What needs improvement?

We don't like its licensing model. It has separate licensing for all the features. For instance, to get URL filtering, you need to buy another license. Every feature set seems to require another license. Unless you purchase them all upfront, you find some surprises and realize that you can't do that because you need another license. 

Its logging isn't quite as good as it used to be in our previous solution. We used to have Cisco ASA, and we could view the logs a lot easier than NGIPS (also known as Firepower). We saw real-time logging, but we don't see that as much in Firepower.

For how long have I used the solution?

I have been using this solution for two years.

What do I think about the stability of the solution?

It has been very stable. I don't think it has gone down at all in two years.

What do I think about the scalability of the solution?

It is very scalable. In terms of the number of users, we have 26,000 students and 3,500 staff members. Everybody in our organization goes through it and takes advantage of it on our system. We have about five people who are managing it, and they are from the network group, infrastructure group, and storage group.

How are customer service and technical support?

We did have some engagement with the technical support people regarding the integration with Nexus Switches, and they were very good. They helped us out quite a bit.

Which solution did I use previously and why did I switch?

We were using Cisco ASAs. They were going out of service. They were going out of sale and support. So, we decided to move to Firepower. We wanted to go to the Next-Gen IPS type of stuff, and ASAs didn't have that kind of feature set.

How was the initial setup?

It was quite complex. It required some workarounds with other network components in our system. It could have been a lot less complicated. Nexus Switches that we had were a little bit older, and they didn't integrate as well with Firepower as they could have. So, we ended up having to buy some new switches. 

The deployment pretty much took about three weeks. It involved moving all of our stuff from our old firewall onto the new one. Rules were a little different, so we had to work on it for a while. Fortunately, we could run them in parallel, so it worked out okay.

What about the implementation team?

We did it in-house.

What was our ROI?

It has definitely given us our return on the investment.

What's my experience with pricing, setup cost, and licensing?

It is expensive. It has separate licensing for all the features, and every feature set seems to require another license.

Licensing is on a yearly basis. There are no additional costs besides the standard licensing fee.

What other advice do I have?

I would advise others to make sure that the rest of their equipment is completely compatible with the newest Firepowers.

I would rate Cisco NGIPS an eight out of ten. It gives us all the information that we need. We've got to dig for it sometimes, but it is a good product.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1349358 - PeerSpot reviewer
IT Manager at a financial services firm with 51-200 employees
Real User
Useful filters, reliable, and customer support helpful
Pros and Cons
  • "I have found the filter and the antivirus to be most valuable."
  • "The user interface needs some improvement, it is a little rudimentary and not very intuitive."

What is our primary use case?

We use the solution for traffic filtering, security, and antivirus capabilities.

What is most valuable?

I have found the filter and the antivirus to be most valuable.

What needs improvement?

The user interface needs some improvement, it is a little rudimentary and not very intuitive. If you are not very technical inclined you may need to be assisted or might struggle to set it up.

The newer version tends to use a lot of system resources. For example, your processor and RAM.

For how long have I used the solution?

I have been using the solution for approximately four years.

What do I think about the stability of the solution?

The solution is stable and reliable, it does the job well.

What do I think about the scalability of the solution?

The scalability is excellent, they can support a large environment. However, a large size organization will need its own dedicated appliance.

How are customer service and technical support?

The customer support is very good.

Which solution did I use previously and why did I switch?

We have used and still use Darktrace. We do not use it to replace Cisco's NGIPS solution but we use it predominantly as an in-network snooper.

How was the initial setup?

The installation is complex.

What about the implementation team?

We used an in-house team to do the deployment and it takes roughly a day and a half depending on the size of your organization and the configuration. Setting up the rules, all the features, and the licensing takes time.

To do the maintenance you need somebody familiar with Cisco and networking technologies.

What was our ROI?

By using this solution we have received a return on our investment. 

What's my experience with pricing, setup cost, and licensing?

Cisco products are not cheap and this solution is no different. However, the price of all of the Firepower is part of a bundle when you buy the actual firewall, the Cisco firewall. It is part of the whole bundle package, but Firepower IPS itself has its own costs.

We are on a yearly license and the price depends on the environment, we pay approximately $33,000. The solution has additional components, and each one of the components cost extra.

What other advice do I have?

For those wanting to implement this solution, I was advice before deploying the solution, understand exactly what you want it to do for you. The product has a couple of different capabilities, do you want to expand, or you may not want to expand. These are scenarios that you have to take into account. I would not recommend the solution for small organizations, it would be too time-consuming for that.

I rate Cisco NGIPS an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Cisco Secure IPS (NGIPS) Report and get advice and tips from experienced pros sharing their opinions.
Updated: November 2024
Buyer's Guide
Download our free Cisco Secure IPS (NGIPS) Report and get advice and tips from experienced pros sharing their opinions.