Try our new research platform with insights from 80,000+ expert users

Cisco Secure Firewall vs Cisco Secure Network Analytics comparison

Cisco Secure Firewall and Cisco Secure Network Analytics are both solutions in the Cisco Security Portfolio category. Cisco Secure Firewall is ranked #4 with an average rating of 8.2, while Cisco Secure Network Analytics is ranked #7 with an average rating of 8.2. Cisco Secure Firewall holds a 6.6% mindshare in CSS, compared to Cisco Secure Network Analytics’s 10.9% mindshare. Additionally, 83% of Cisco Secure Firewall users are willing to recommend the solution, compared to 88% of Cisco Secure Network Analytics users who would recommend it.
Cisco Secure Firewall
Read 409 Cisco Secure Firewall reviews
  • 367 Views
  • 260 Comparison Views
83% willing to recommend
Cisco Secure Network Analytics
Read 60 Cisco Secure Network Analytics reviews
  • 813 Views
  • 637 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cisco Secure Firewall and Cisco Secure Network Analytics based on real PeerSpot user reviews.

Find out in this report how the two Cisco Security Portfolio solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Secure Firewall vs. Cisco Secure Network Analytics Report (Updated: March 2025).
Buyer's Guide
Cisco Secure Firewall vs. Cisco Secure Network Analytics
March 2025
Download the complete report
Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Secure Firewall
Ranking in Cisco Security Portfolio
4th
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
409
Ranking in other categories
Firewalls (7th)
Cisco Secure Network Analytics
Ranking in Cisco Security Portfolio
7th
Average Rating
8.2
Reviews Sentiment
6.9
Number of Reviews
60
Ranking in other categories
Network Monitoring Software (22nd), Network Traffic Analysis (NTA) (3rd), Network Detection and Response (NDR) (5th)
 

Mindshare comparison

As of April 2025, in the Cisco Security Portfolio category, the mindshare of Cisco Secure Firewall is 6.6%, up from 5.3% compared to the previous year. The mindshare of Cisco Secure Network Analytics is 10.9%, down from 16.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cisco Security Portfolio
 

Featured Reviews

Maharajan S - PeerSpot reviewer
Enhances security with precise access control but has integration challenges
Overall, I would rate the product six out of ten. Because of the support and cost, I moved away from Cisco, but otherwise, it is a good product. Recommendation depends on the requirement. If lacking a proper team and being dependent on the OEM and partner, Cisco is not suitable. However, if the team is qualified with Cisco-certified people and the requirement is a big network, it can be considered. In today's hybrid work world, having an expanded gateway is more typical than having a single one. Thus, Cisco is unlikely to be recommended for a hybrid requirement unless in-house skills align. Otherwise, depending on partners and Cisco, it can be a risk. I rate the overall solution six out of ten.
Read full review
Sudhakar T - PeerSpot reviewer
Strong network security analytics with excellent encrypted traffic analysis features
Improvements are needed on the application layer for complete security analysis. The solution should have the ability to analyze security events not only at the network layer but also at the application and OS layers. There's a need for a more comprehensive licensing model where all necessary licenses are included by default.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The integration and configuration were pretty straightforward."
"Cisco ASA has an okay CLI with a nice GUI."
"The IPS (In-plane switching) is the most valuable feature."
"The stability of the product is good."
"Everything is all documented in the file or in the command line script that gets uploaded to the device. It gives us great visibility."
"My confidence continues to build upon using Cisco firewalls."
"The user interface, the UI, is excellent on the solution."
"We can shift traffic, block certain content, or redirect policies."
More Cisco Secure Firewall pros
"Most of the engineers I've worked with have been really good. Very knowledgeable and easy to work with."
"StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk."
"The most valuable feature about this solution is that it gives me insight of my network."
"Ease of deployment, once you get your ducks in a row."
"The most valuable features of this solution are the logging, keeping threats under control, and keeping our data and environment secure."
"The solution reduces the amount of time it takes to detect and remediate threats."
"The most valuable feature of Cisco Secure Network Analytics is the Threat Intelligence integration."
"There are already many functionalities, so I don't think there is anything to improve."
More Cisco Secure Network Analytics pros
 

Cons

"The ability to integrate (as options) all-in-one features -- like anti-spam, anti-virus, etc."
"One of the challenges we've had with the Cisco ASA is the lack of a strong controller or central management console that is dependable and reliable all the time."
"One feature I would like to see, that Firepower doesn't have, is email security. Perhaps in the future, Cisco will integrate Cisco Umbrella with Firepower. I don't see why we should have to pay for two separate products when both could be integrated in one box."
"The application detection feature of this solution could be improved as well as its integration with other solutions."
"I don't have to see all the object groups that have been created on that firewall. That's just something that I would really appreciate on the CLA, even though it already exists on the GUI."
"I have found that Cisco reporting capabilities are not as rich as other products, so the reporting could be improved."
"Cisco could improve its score by developing more features that integrate seamlessly with various applications and investing in hardware acceleration to enhance performance."
"The intelligence has room for improvement. There are some hackers that we haven't seen before and its ability to detect those types of attacks needs to be improved."
More Cisco Secure Firewall cons
"Better integration between Cisco Secure Network Analytics and Cisco Secure Workload would be beneficial."
"We haven't seen ROI."
"We are continuing down the road of ACI and ISE with Cisco, so we would like to see the continuation of Stealthwatch integrating into ISE for exchange of information, and also, more into the ACI environment too."
"Stealthwatch needs improvement when it comes to speed."
"There could be better integration on the programming side, which uses Python. StealthWatch could provide a template for Python to manage the switches. For example, it would be nice if StealthWatch bounced a port automatically it detected something anomalous."
"If there was one improvement I’d suggest it would be that it detect traffic through an intranet. The product requires that traffic flow through a managed network device. The product is designed mostly for enterprise environments and not smaller environments or businesses."
"At my company, we might not be using it enough with other applications that we have that can integrate with it."
"We need to be able to filter out internal IPs as non-threats."
More Cisco Secure Network Analytics cons
 

Pricing and Cost Advice

"Licensing is not only for Secure Firewalls, and it's too complicated."
"It's a brilliant firewall, and the fact that it comes with a perpetual license really does go far in terms of helping the organization in not having to deal with those costs on an annual basis. That is a pain point when it comes to services like the ones we have on Fortigate. That's where we really give Cisco firewalls the thumbs up."
"This product requires licenses for advanced features including Snort, IPS, and malware detection."
"It is considered on the "high end" of the spectrum."
"The one-time cost is affordable, but the maintenance cost and the Smart Net costs need to be reduced. They're too high."
"There are licensing costs."
"I just bought it off the shelf, and I'm using it with my previous one, so I have not spent that much."
"The price is comparable."
More Cisco Secure Firewall pricing and cost advice
"On a yearly basis, licensing is somewhere around $30,000."
"The licensing costs are outrageous."
"It has a subscription model. There is yearly support, and there is also three-year support. It depends on what the customers want."
"It is worth the cost."
"Licensing is on a yearly basis."
"​Licensing is done by flows per second, not including outside (in traffic)."
"The pricing for this solution is good."
"We pay for support costs on a yearly basis."
More Cisco Secure Network Analytics pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Cisco Security Portfolio solutions are best for your needs.
See recommendations
845,406 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
Read full review
 

Top Industries

By visitors reading reviews
Educational Organization
42%
Computer Software Company
13%
Manufacturing Company
4%
Government
4%
Computer Software Company
29%
Financial Services Firm
12%
Government
9%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage at large. In my opinion, Fortinet would be the best option and l use Fortinet too...
See all answers
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fortigate is very stable, reliable, and consistent. We like that we can manage the e...
See all answers
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco ecosystem, it is very simple to handle. This solution has traffic inspection ...
See all answers
What do you like most about Cisco Stealthwatch?
The most valuable feature of Cisco Secure Network Analytics is the Threat Intelligence integration.
See all answers
What is your experience regarding pricing and costs for Cisco Stealthwatch?
The organization experienced challenges with licensing as Cisco has multiple licensing factors, and there are concerns about the price. Cisco solutions are considered to be very expensive.
See all answers
What needs improvement with Cisco Stealthwatch?
Improvements are needed on the application layer for complete security analysis. The solution should have the ability to analyze security events not only at the network layer but also at the applic...
See all answers
 

Comparisons

Fortinet FortiGate vs Cisco Secure Firewall Logo
Fortinet FortiGate vs Cisco Secure Firewall
Compared 40% of the time
Palo Alto Networks WildFire vs Cisco Secure Firewall Logo
Palo Alto Networks WildFire vs Cisco Secure Firewall
Compared 8% of the time
Netgate pfSense vs Cisco Secure Firewall Logo
Netgate pfSense vs Cisco Secure Firewall
Compared 6% of the time
Palo Alto Networks NG Firewalls vs Cisco Secure Firewall Logo
Palo Alto Networks NG Firewalls vs Cisco Secure Firewall
Compared 5% of the time
OPNsense vs Cisco Secure Firewall Logo
OPNsense vs Cisco Secure Firewall
Compared 4% of the time
More Cisco Secure Firewall Competitors
Darktrace vs Cisco Secure Network Analytics Logo
Darktrace vs Cisco Secure Network Analytics
Compared 17% of the time
Vectra AI vs Cisco Secure Network Analytics Logo
Vectra AI vs Cisco Secure Network Analytics
Compared 9% of the time
ThousandEyes vs Cisco Secure Network Analytics Logo
ThousandEyes vs Cisco Secure Network Analytics
Compared 8% of the time
ExtraHop Reveal(x) vs Cisco Secure Network Analytics Logo
ExtraHop Reveal(x) vs Cisco Secure Network Analytics
Compared 5% of the time
Arista NDR vs Cisco Secure Network Analytics Logo
Arista NDR vs Cisco Secure Network Analytics
Compared 4% of the time
More Cisco Secure Network Analytics Competitors
 

Product Reports

Buyer's Guide
Cisco Secure Firewall
March 2025
Cisco Secure Firewall reportDownload Cisco Secure Firewall product report
Buyer's Guide
Cisco Secure Network Analytics
March 2025
Cisco Secure Network Analytics reportDownload Cisco Secure Network Analytics product report
 

Also Known As

Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
Cisco Stealthwatch, Cisco Stealthwatch Enterprise, Lancope StealthWatch
 

Overview

Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.

The core features of Cisco Secure Firewall are multifaceted:

  • Advanced threat protection is achieved through a combination of intrusion prevention, malware detection, and URL filtering technologies.
  • For secure access, the firewall presents multiple options, including VPN, remote access, and single sign-on.
  • Its network segmentation capability is vital in creating barriers within the network to safeguard critical assets.
  • The firewall is scalable, effectively serving small businesses to large enterprises.
  • Management is streamlined through Cisco DNA Center, a central management system.

The benefits of deploying Cisco Secure Firewall are substantial. It significantly reduces the risk of cyberattacks, thereby enhancing the security posture of an organization. This security also translates into increased productivity, as secure access means uninterrupted work. Compliance with industry regulations is another advantage, as secure access and network segmentation align with many regulatory standards. Additionally, it helps in reducing IT costs by automating security tasks and simplifying management processes.

In practical scenarios, Cisco Secure Firewall finds diverse applications. It's instrumental in protecting branch offices from cyberattacks, securing remote access for various stakeholders, safeguarding cloud workloads, and segmenting networks to isolate sensitive areas.

User reviews from PeerSpot reflect an overall positive experience with the Cisco Secure Firewall. Users appreciate its ease of configuration, good management capabilities, robust protection, user-friendly interface, and scalability. However, some areas for improvement include better integration capabilities with other vendors, maturity, control over bandwidth for end-users, and addressing software bugs.

In summary, Cisco Secure Firewall is a comprehensive, versatile, and reliable security solution that effectively meets the security needs of various organizations. It offers a balance of advanced protection, user-friendly management, and scalability, making it a valuable asset in the realm of network security.

Cisco

Cisco Secure Network Analytics is a highly effective network traffic analysis (NTA) solution that enables users to find threats in their network traffic even if those threats are encrypted. It turns an organization’s network telemetry into a tool that creates a complete field of vision for the organization’s administrators. Users can find threats that may have infiltrated their systems and stop them before they can do irreparable harm.

Cisco Secure Network Analytics Benefits

A few ways that organizations can benefit by choosing to deploy Cisco Secure Network Analytics include:

  • Security scaling. Secure Network Analytics makes it easy for organizations to scale up their level of network protection to match the growth that their business is experiencing. It can be deployed on whatever type of system is necessary. Users will have their growth needs met at every stage of their business journey because the solution offers users the ability to use it on-premises or in the cloud and it can be consumed as a SaaS-based or license-based solution. Whenever any kind of device is added, Secure Network Analytics can automatically classify that device so that it is seamlessly integrated into its network protection system.
  • Detects threats as they appear. Users gain the ability to scan their network traffic for even the most advanced threats at all times. Secure Network Analytics easily identifies the early warning signs that are typically initiated before attacks are conducted by bad actors. Once these signs are found, users are warned so that they can take steps to prevent those threats from escalating. This also enables users to determine the source of the threat and whether it might have spread further than initially thought.
  • Eliminate blind spots. Organizations that use Secure Network Analytics can view their network traffic across both private networks and public cloud environments. The scanning power of the solution allows users to gain complete visibility with a fewer number of sensors than their competitors require to achieve a similar level of protection.

Cisco Secure Network Analytics Features

Some of the many features that Cisco Secure Network Analytics offers include:

  • Centralized security management. Secure Network Analytics’ Identity Services Engine feature enables users to control their network from a single graphical user interface. Administrators can simplify their jobs by controlling profiler, posture, guest, authentication, and authorization services from a single pane of glass.
  • Machine learning tools. Secure Network Analytics uses machine learning to generate alerts when malicious or suspicious activity is detected. It also analyzes the threat so that users gain insight into the nature of the dangers that confront them. Additionally, it examines the threats to determine whether they are actual threats or false alarms. This significantly reduces the number of false alarms that administrators have to spend time attempting to resolve.
  • Automation. Users can automate routine tasks that users would otherwise have to handle manually. This automation feature frees administrators and employees to handle other more critical tasks.

Reviews from Real Users

Cisco Secure Network Analytics is a solution that stands out even when compared to many other comparable products. Two major advantages that it offers are the way that it enables users to define the threshold at which the solution will issue a warning to administrators and the predefined alerts that it offers straight out of the box.

Gerald J., the information technology operations supervisor at Aboitiz Equity Ventures, Inc., writes, “StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk.”

A senior security engineer at a tech services company, says, “Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box.”

Cisco
 

Sample Customers

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF
Buyer's Guide
Cisco Secure Firewall vs. Cisco Secure Network Analytics
March 2025
Free Report: Cisco Secure Firewall vs. Cisco Secure Network Analytics
Find out what your peers are saying about Cisco Secure Firewall vs. Cisco Secure Network Analytics and other solutions. Updated: March 2025.
DOWNLOAD NOW
845,406 professionals have used our research since 2012.
See our Cisco Secure Firewall vs. Cisco Secure Network Analytics report.
See our list of best Cisco Security Portfolio vendors.

We monitor all Cisco Security Portfolio reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.