Cisco Umbrella Reviews

Most of the time, it's for security reasons in terms of looking at what DNS requests are being done and other things like that.

It has certainly saved us time. If we go and look at what's rejected on the requests from the hospital itself, it has saved about 5% or 6% time.

It's there to keep everything secure. Hospitals are a very nice target for attacks. We have been under an attack from Russia once, which was a DDoS attack.

It secures our infrastructure from end to end so we can detect and remediate threats.

The protection from users doing stupid things is valuable. The dashboard gives me the information I need.

Its price could be better.

I've been using it for about two years.

It's very stable. I've never seen any problems with it.

It's perfect for the things we have with it. There is a quick resolution. There are no problems at all. I'd rate them a nine out of ten.

Positive

I've not used a similar solution. We went for Cisco Umbrella because they are delivering good products. We also have all Cisco switches in place, and then we have Cisco ACI and DNA Center. We only don't have Cisco firewalls.

I am not aware of any tools that we could consolidate or get rid of by using Cisco Umbrella because it was installed about five or six years before I came here.

Cisco is expensive. For example, we are looking at Nexus Dashboard, and it's costing about 250,000 euros. I ask, "What do I get from it?" I'm still not convinced that we have to spend on it, so pricing is a problem.

It's a very good product. I'd rate it an eight out of ten. Overall, I am satisfied with the product.

Our clients use Cisco Umbrella compared with SD-WAN or Meraki solutions. They use layer 7 firewall and web proxy in most use cases and fewer DNS security functionalities.

Cisco Umbrella has replaced on-premises firewalls in our client's branches. Our client had one central cloud solution, and now, they no longer need the local firewall.

Our clients have found that Cisco Umbrella increases its security posture because there is a central policy that fits everything.

Though Cisco Talos is usually part of the backend, it is mandatory to have a good solution.

We've been implementing Cisco Umbrella for three years.

I have not seen any issues with scalability.

Cisco's technical support is pretty good. When a solution is available, they will find it. On a scale from one to ten with ten being the best, I'd rate Cisco's technical support at nine.

Positive

We sell both Cisco and Zscaler. If the client already has a Cisco solution, then Umbrella is usually a better fit. In cases when a customer already uses Zscaler, has another SD-WAN solution, or has a different vendor, Zscaler may be the first choice.

As a Cisco Secure reseller, we bring value to our customers through our technicians and engineers who consult with them and implement the solution. This is a benefit from our partner side.

The initial deployment is quite easy. It's internal, and with a few clicks, Cisco Umbrella can be up and running.

Cisco should make the solution cheaper.

The locks and management could be better. The product is fairly new, and it may take some time to get all the features up and running.

Overall, I would rate Cisco Umbrella an eight on a scale from one to ten.

We have deployed an on-prem virtual appliance for Active Directory (AD) and user mapping. We have integrated our AD with it as well as all the pre-reqs that come with it.

It is a DNS solution. It stops us at the first layer of Layer 7, stopping at the DNS level. It just removes the burden for opening a connection, then looking at the firewalls and all the parameter devices. It has a single pane of glass that keeps you secure.

It has helped us in terms of the roaming client. That has helped us in terms of security. Whereas, previously the roaming client was bothering us, which got us into this solution. That has helped the end user with laptops and devices for different sites. This keeps us secure at all times wherever they go.

We are not using a DNS solution, but we have been using the firewalls and all the proxy firewalls instead, which has really helped us since we now know that the entire network environment is being secured by Umbrella. It gives us a real pat on the back that we are being backed by the Talos cloud and its security. We are monitoring in real-time. It works by itself to assess all the security features and parameters through Talos, which is really interesting and good for our environment.

The most valuable features are actually the reporting with all the visibility. It gives a hawk-eye view when we map AD with Umbrella. It gives us the visibility of every user, e.g., which sites and content are being used and who is accessing what. That has really been a good new addition for me.

We don't need to access multiple devices in order to give access to our internal resources. We are secured in having everything on a single pane of glass, which keeps us secure as well. We can enter the configuration to reach our destinations based on the main names. Other than that, it also secures us by not looking at only the destination, but also the predefined security parameters that Cisco Umbrella has provided. For example, if I coded command and control centers (CNCs), then most phishing websites, where there are known websites caught by Talos, are being categorized as the bad domain. That is where it gives us a nice, handy lift.

The single-pane-of-glass management is really important. In today's era, administration costs and operational expenses will cost you a lot, and it reduces that as well. You don't need extra resources to manage all your parameter firewalls, looking at every single device to allow resources internal access. By just introducing the single-pane-of-glass management, it has lifted the burden off of management, especially the network management.

It gives us a quick view into what we are looking at. We don't need to go to the different devices and see where our traffic is starving, etc. So, we have better visibility, when using Umbrella, from its single pane of glass.

We faced an issue regarding virtual appliances (VAs) during deployment. They could improve the quality and management of the virtual appliances offered right now. You can't see much because it is a Linux machine, and they have customized it. You don't have any route access to the machine, only seeing limited things in it. When we opened a ticket, they didn't know much about VAs themselves. So, that is where it is lacking right now. I know this will improve in the long run.

I have been using it for seven or eight months.

We used support when we were deploying the VAs. So, we have opened tickets a couple of times when we were stuck.

The technical support is alright. I would rate it as eight of 10. There was one time when I opened a ticket regarding the VAs, which didn't go quite well. However, it has been a good experience overall.

Positive

We did not previously use another DNS solution. This solution was our first.

It is very easy to maintain network connectivity. For medium- and large- enterprises, it is not going to take more than a week or so to deploy the solution. Or, you can deploy it with fewer complexities in a couple of hours. Therefore, it is not that hard to gel it into your existing network. So, it works like a charm for us.

In our environment, all traffic was going to the data center. It didn't take us much time, or the complexity of the network wasn't much, so it didn't bother us to pre-plan its migration. We just had to change all our DNSs on the perimeter firewalls and point them towards Umbrella, and that was it.

It has helped us to remediate threats more quickly.

It is pretty much handy in terms of what it offers. Actually, it is all about how it caters to your security. Every solution has their pros and cons, but Cisco Umbrella catches all the vulnerabilities and things that could hit any organization.

Previously, we were not tracking roaming clients, which were changing networks every time. I was wondering if something was hitting the endpoints, because we wouldn't know. When Cisco Umbrella joined our network, it explored all our networks. This was really interesting and a key part of why we chose it.

The end user isn't tech-savvy and doesn't care what is being done. As far as the system admin and network admins are concerned, their work has been reduced in terms of management and managing the entire network.

I would rate the solution as nine out of 10.

I'm doing business for customers. I'm building customer networks. We have Cisco Umbrella and Cisco Secure Endpoint, and the use case is that we connect to the company network from all over the place, and we need to do it in a secure way. 

We are just a small company with about 300 employees. Everybody is using these products to securely connect to the corporate network. From there, we support our customers. It needs to be really secure so that no security problems spread from our network to the customers' network. This is something we absolutely need to avoid. That's why these products are really good for us.

For me, it's quite good for daily work. Mainly, I work from a home office, so I have it running all day. It's okay for me. There is not much noise about it. I don't need to pay a lot of attention to this. It's just running in the background, and that's what I need.

It enables mobile work from anywhere. If you are at home, at a customer, or traveling, it enables a secure way of accessing the corporate network.

As a user, everything is there for securing our infrastructure from end to end to detect and remediate threats. There's nothing else that I need.

It saves time for sure. It doesn't require much attention. Everybody can use it. The end-users don't need to have any special skills. It's just perfect. I don't have the metrics on time savings because it isn't easy to know how much time you would have spent if you had an unstable product or if you had to take care of all this. 

For me, it's important that I get a connection to my corporate network in a secure and fast way. This product just runs in the background and doesn't need any attention. For me, as a user, it's perfect. 

Overall, I'm quite happy with Cisco products, but there could be one place where you can check what's going on. There could be one place where you get all the information about these products so that you don't need to look around. You get the status, information about what lately happened, and if there was anything on the machine in one single place.

We've been using Cisco Umbrella for about a year and a half, and we've been using Cisco Secure Endpoint for somewhat longer. It has been about three years.

I haven't been in touch with them because it's just working.

We used other products such as separate virus scanners. Using all the products from Cisco simplified things. You don't need to worry about whether it's compatible or whether you need to do something special on the antivirus side. It simplified things for me.

I work for customers, and this was set up by our internal IT department. 

I would advise seriously looking into it because, for our users, it's just working perfectly. 

I would rate it a 10 out of 10. There are no complaints.

Our primary use case for Cisco Umbrella is DNS filtering. We also have virtual appliances installed at almost all of our sites. 

We refer our end users to the local VAs and also to the public Umbrella DNS. We mostly use it for the guest network. For internal users, we have dedicated virtual appliances installed at every site. We have a number of offices globally and each major site will have one VA.

Thanks to Cisco Umbrella, we are better able to respond to malicious attacks and block those domains right away. 

The most valuable features in my opinion are DNS filtering, filtering details, and the ability to block certain web pages. However, we mostly use DNS filtering. I also think that the dashboard view is really helpful. Whenever sites get blocked, we get the details and the users who are connecting to them.

There is room for improvement in the dashboard. It could stand to be a bit more detailed. I would also like to be able to customize the dashboard to focus more on what is important for my company. This would be particularly important for the customized dashboard we create for the leadership team. This would help us get information to them quickly.

I have been using Cisco Umbrella for the last three to four years. 

Cisco Umbrella is stable. 

We use Cisco Umbrella across multiple offices so it is scalable. For the smallest offices, we use data center VAs and even in that configuration, it is scalable. 

Cisco's tech support is OK. I have had only good experiences with them. 

They could work on getting on the calls more quickly because it can be difficult to reach them sometimes. This is particularly true during P1 outages. 

On the other hand, they do really well with giving us helpful suggestions and additional information when we need it. The documentation is particularly good. 

Positive

We did not previously use a different solution. We were blocking things through the Cisco firewall. 

Migrating from our previous firewall configuration to Cisco Umbrella was not so difficult. We did not additionally configure the normal firewall policies. All we did with this solution was add an additional layer of security.

The initial setup is not simple. It is quite difficult and cannot be implemented by everyone. You need to have some basic understanding of the product to deploy it. You need to understand DNS filtering and domain blocking and have a working knowledge of DNS and how it works. You should also have experience with virtual machines and VM detecting because Cisco Umbrella is on a VM. 

We have seen a return on investment from Cisco Umbrella. We have seen many benefits. 

We are Cisco partners so we get a discount on the licensing. With the discount, I would say the pricing is OK. 

We did not evaluate other options. Ultimately, we landed on Cisco because it is more user-friendly than its competitors. 

End-to-end detection is mostly used for end users. We make use of it and it works well for us. It helps us find malicious attacks and identify other breaches. Cisco Umbrella is helpful when it comes to remediation as well. Whenever there is a new attack, we receive a notification and we block the domains through the solution. 

Cisco Umbrella frees up time for our IT staff, particularly the network operations team. They use this product to find attacks and users who access non-allowed pages. However, I cannot say exactly how much time is saved because it all depends on the day. We have offices across the globe and each is impacted individually by the solution.

Cisco Umbrella has not caused our organization to consolidate tools.

One of our purposes for acquiring Umbrella was to block phishing links that we get in emails and to manage risky websites. We're using it for our internal network and the roaming client for external users.

Blocking malicious websites and preventing users from going into them, as well as the phishing attacks that usually come with malicious links, were the challenges. With Umbrella we can block them.

We use it in our Active Directory domain and for about 175 users. We use it on desktop computers and on laptops for external users. It's all on-premises, protecting servers and workstations.

It has improved our company a lot because we now see where the users are going and prevent them from going to malicious websites. It has reduced, by a lot, the chances of hackers getting into our organization.

With Umbrella, it's our IT staff who we feel secure. Sometimes the end-users, our clients, don't fully understand the purpose of the tools when we install them, such as the roaming client. And sometimes they get false positives and they don't fully understand why. But for us, as IT admins, we feel a lot more comfortable with the tool in place, because we know that it's unlikely our users will go to a malicious website. Umbrella is protecting us.

Umbrella has also helped us remediate threats more quickly. It's really good for securing our infrastructure from end to end. Umbrella's footprint is really small. If you want to secure infrastructure, such as servers, you don't have to install an agent. You just have to use DNS forwarders and point them to the umbrella servers. That's easier. It helps us protect our infrastructure for sure.

The Global Block List is one of the most valuable features because it's really easy to block domain names as well as URLs. Sometimes you don't want to block the whole site, you just want to block one URL. The Global Block and Allow Lists are the best features for us.

Cisco Umbrella also provides a single pane of glass for management. It's really helpful and it's important for us because we have multiple locations. Without a single pane of glass, if you want to block websites you have to go to every location, in each firewall, one by one. But when you have a single management portal, it's a lot easier.

The user experience is good because, as IT and admins, it's easy to use. But that's not only for admins, it's also true for the clients because they know the reason a website is blocked. The user experience is pretty smooth because they can report a false positive or a malicious website that has not been blocked in Umbrella. We are happy with the user experience.

And when it comes to applying and maintaining network connectivity consistently across all workplaces, Umbrella is excellent. We can track, among the different locations that we have, where the users are trying to get to. That means the risk of disruption is reduced by using Umbrella. And in that way, Umbrella contributes to maintaining network connectivity.

The user interface is pretty nice. Once you know how to do tasks, it's easy.

There are some situations where we would like to block things for specific user groups. I know that Umbrella does that, but it's not that easy. When you go to the Global Allow and Block Lists, that's the easy part. But when you want a specific task for specific rules and policies for user groups, you have to go three levels down in the menu, and it's hard to find where you do that task.

Also, the policies are not that easy to manage.

I have been using Cisco Umbrella for around a year and a half.

The stability is really good. They have about 99.99 percent uptime. I can't think of a significant disruption in the service.

We are a small organization, but from what I have seen, it is very scalable.

We have never requested support.

The initial deployment was straightforward.

The solution is on-premises but the management is cloud-based.

We did it all by ourselves.

We have seen return on investment by reducing the risk we had in the past. That has saved us from having to invest a lot of time in support, which is something we had to do when a user didn't know what they were doing and got infected. We now spend less time on end-user support.

The pricing is pretty fair. It's good.

In my former company, we used Area 1 for DNS protection, not Umbrella. I knew OpenDNS before it became Umbrella. In fact, I used OpenDNS for my personal accounts. In my current company we evaluated Area 1, but in the end, we loved Cisco's support and that is one of the reasons we went with Umbrella. But, obviously, the features in Umbrella are pretty good.

Once our end-users understood why we use Umbrella, that it was for improving our organization's security, it improved their morale. Nowadays, they are aware of cyber threats and they know that Umbrella is one of the tools that we use to prevent a breach. They feel more secure now.

Resilience helps a lot in cyber security. One of the things that makes Umbrella great is that you don't have to detect threats by yourself. Wherever in the world a new threat is detected, it's in the Global Block List of Umbrella and we don't have to manage those threats one by one.

That kind of resilience is more and more important for our organization every day. Fortunately, our C-level now understands the risks and what the organization could lose. They understand the impact. With the support of management, cyber security is really important for our organization.

I would tell the leaders of other organizations who want to build more resilience that cyber security is more important now because we are serving our internal and external customers. The problem with a cyber security risk, a threat or a disruption in IT services, is that it will probably cause us to stop producing what we produce. Our customers will have a bad experience, and that means it is not only a financial issue but one of reputation. I would tell such leaders to always keep cyber security in mind because it's not just about your IT guys, it's for the whole organization.

It's an excellent product. It has worked really well. The only reason I don't give it a 10 out of 10 is, as I mentioned, that there are some tasks that could be done more easily.

We have a centralized security policy. For the end user traffic from the firewall to go out to the Internet, it traverses through the secure SD-WAN going back to the data center. It passes a lot of proxies, firewalls, and different security checks. Hence, there are some performance issues. Therefore, we asked Cisco to come in and see if there were any products that could improve this situation for the local Internet breakout, and this was the solution that they brought to the table.

We have a remote location that uses Viptela SD-WAN in conjunction with Umbrella.

It adds a lot of value to the environment. The end user has been much happier with their application performance after using it. I don't see any drawbacks with this solution. 

Hybrid work is also kind of important. Some users may be working from home these days, especially after COVID, as they don't necessarily have to come back to the centralized location for security checks. They can have security going out local from their home environment as well. 

The performance has been greatly improved, especially for some of the end users who kept creating tickets and complaining that it was really slow when everything had to go through the central tool for security checks. Now, everything is locally broken out. Also, security now has all the right filters and malware checks.

The malware piece protects the network from malicious attacks. We have had a lower case of security breaches. Therefore, that brings a lot of value to the table.

The content filtering piece is something that really ties back to what my customer is using because they do have some sites that they don't want end users to go to, in order for the security to be locally available, allowing the users to break out to the Internet. The content filtering is a key piece that our customers want to test and use. So, we tested, and it was successful.

The single-pane-of-glass management is very important. Management wants to look at a single frame, then expand it to get the information that they need, without relying on engineers to take it out. Sometimes, engineers need to go down multiple levels to get the information and package it, and then it is possibly not the information that they are looking for. So, it has to be done again.

I have been using the solution for about six months.

We haven't encountered any issues.

The scalability is good. There aren't any limitations with its scalability. We can scale it out.

We have had some tech cases. However, a lot of times we have our account engineers who help out. They are very savvy and knowledgeable. If something is unknown, they will reach out to internal Cisco for help. They are pretty good. I would give them 9 out of 10.

Positive

We did previously use a different solution. 

We wanted to do the local breakout, but our previous solution wasn't able to do it. We spent quite a bit of time testing the other solution, but it just didn't work. This is why we reached out to Cisco.

We did some testing. Network connectivity was a bit of a challenge at the beginning, but we were able to get the right help from Cisco. The POC probably took a month or so

Application performance has greatly improved and there are less operational issues. Productivity has been going up because we have less operational issues. Also, we have happy customers.

Usually when we have a good solution, we share it with our peers who can then bring it to their customer's attention, if they need to solve the same problem.

I would rate this solution anywhere between 8 and 9 out of 10 because it addresses the needs of my customer, but leaving room for improvement.

Our customers use Umbrella for a security network. They want to have DNS connectivity and drop traffic before it becomes dodgy. 

Clients implement Umbrella with the full proxy. 

Umbrella enables customers to be secure. We are happy with this and this is the most important benefit for customers.

DNS is the most valuable feature of Umbrella. We want to have DNS integration with data directories and we have customers asking about the Azure Integration. 

We try to fit all the Cisco Secure products together. This is the value the customers can see as well. We enable the Firewalls, Umbrella, and AMP so that the customer can see the whole view of what Cisco is doing. 

Our customers want to be able to work remotely. They want Umbrella to work securely from the office and to work securely outside of the office. 

We have been using Umbrella for years now. We have an Umbrella internally as well. I sell Umbrella to customers. We offer the full setup to them.

We are resellers and integrators.

The stability is getting better.

The scalability is fine. The central management, that comes with most solutions, is really good. It's easier for us to go from two devices to 20 devices.

We have had quite a good experience with their support so I can't complain about it. Most of the time TAC cases are quite straightforward and do not take a long time to fix.

Positive

Our clients deploy on public cloud, private cloud, hybrid cloud, on-premise, or SaaS.

I am an engineer and do the initial deployment for them and make tweaks until it works for them. 

The complexity of the deployment will depend on the client's requirements. Some of them have straightforward requirements and some of them are quite detailed. The implementation itself is fine but there can be details where we need to check the documentation and make sure we're following what they require. 

Customers use the Firewall Migration for the migration mostly from the ASAs. We do the ASA to FTD migration, which doesn't work well.

Two or three engineers are required for the deployment. The installation is done by different engineers.  

We also do the maintenance. So whatever we deployed, we also support. We do all the support requirements, updating and reviewing the deployment that we did. We do the config that is required. For example, for the migration, if we deploy something, we come back to review what we did because we want to make sure that the customer is more secure than it was before. So we just rerun the same configuration, trying to find out if there's a gap that we can fix and make sure that the customer is secure.

The pricing changes too fast. We get the license and we need to relicense it because they already made changes to it. We always need to be on top of the licenses because they're always changing.

Cisco Talos seems to be working fine for our customers. 

My advice to somebody considering this solution is to try it. It's probably the best option to try it and see if it works. Do a proof of concept and proof of value for the customer.