

Cisco Secure Firewall and OPNsense compete in the network security market, with Cisco offering comprehensive support and pricing, while OPNsense excels with superior features.
Features: Cisco Secure Firewall provides advanced threat protection, robust VPN capabilities, and application visibility. OPNsense is known for its flexibility due to its open-source nature, strong intrusion detection and prevention systems, and an extensive plugin system.
Room for Improvement: Cisco Secure Firewall can reduce costs and enhance its feature set to compete better with alternatives like OPNsense. OPNsense could simplify deployment and offer more intuitive customer support systems for less technical users.
Ease of Deployment and Customer Service: Cisco Secure Firewall offers seamless deployment backed by extensive documentation and professional support, providing high customer satisfaction. OPNsense, while requiring a more technical setup, benefits from strong community support and detailed guidance.
Pricing and ROI: Cisco Secure Firewall requires higher initial investment but focuses on long-term ROI through effective strategies. OPNsense offers a cost-effective entry with its open-source nature, providing significant initial savings and a favorable balance of cost and functionality for budget-conscious buyers.
There is always a return on investment because you find you invest heavily, but your environment is secure and then you are at rest; you do not need to panic.
The biggest return on investment when using Cisco Secure Firewall is that there's no waste in any infrastructure cost and licensing costs for us.
From my point of view, the biggest return on investment when using Cisco Secure Firewall is the single pane of glass, which is a huge plus for us.
The network attacks reduced by approximately 60% after using that, even without customizing the custom configuration yet.
For a very little investment, I was able to increase the security of my network.
I have to provide many logs, yet problems remain unresolved, often requiring workarounds rather than solutions.
I have been working with them on firewalls, wireless, switching, and routing, and the support is the best.
They have expertise and provide solutions for the most difficult problems.
Compared to some open-source projects with weak support, OPNsense stands out for having both a strong community and commercial backing options.
I mainly rely on community support since the solution is open source.
If you say you do not have one, it is finished. This is where the monopoly starts.
When something happens in the device, the failover happens very quickly without any interruption.
Cisco Secure Cloud now allows us to potentially take the management functions of Cisco Secure Firewall, move it into the cloud, and integrate it with other Cisco security products, managing everything from one single pane.
I rate the scalability as a number 10.
OPNsense is an extremely scalable solution.
I use Zenarmor, pinning it to one core for packet inspection, and the CPU performance seems very good.
OPNsense's scalability is excellent; I just need to resize my hardware and upgrade the server, and voilà, I am good to go.
We have often encountered split-brain scenarios during failover processes and code upgrades, which have been persistent problems for us.
We work with a cluster with high availability, so if something goes wrong, we have it functioning.
Cisco Secure Firewall offers exceptional performance and stability.
For home and small network use, OPNsense is also reliable, providing enterprise-grade security at no cost.
The only challenge faced was its inadequacy to manage large voice traffic effectively, even with dedicated hardware.
At the latest code level, I haven't experienced any crashes.
My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time.
The GUI is useless for me and frustrates me to a very high degree, which led me to switch to the CLI for configuration.
Firewall as a Service can scale to a very large extent because it is a cloud-based offering that can scale up to a very large number, which is not a problem.
I would like the APIs to be more mature and more developed and have more options to automate threat hunting.
Enhancing its performance for significant amounts of data traffic would make it closer to a perfect solution.
It would be beneficial if they could create some videos on how to set it up themselves.
It's good to have them, however, it costs us a lot.
Basically, the license for the VPNs is for all the interfaces, and that is the thing that is really expensive compared with Palo Alto.
It's considered a premium, but people pay that price for Cisco.
I consider the pricing of OPNsense to be high when compared with other market products.
OPNsense is free, the licensing and setup was easy.
What stands out positively about Cisco is their training and support, which has effectively prepared engineers to work with their products.
This is very important to my organization, as we work extensively with security because we are a bank, so we can keep the data safe.
Cisco Secure Firewall allows me to safeguard Layer 7 or Layer 3 and manage the security rules with the business needs of my organization.
The most valuable features include the basic firewall functionality and the GeoIP location services.
I can have a Wi-Fi VLAN and feel secure that the server network or the VM network that I have on a different VLAN are isolated, and they cannot talk to one another, which adds a great level of security.
It offers enterprise-grade features such as intrusion detection and prevention system, VPN support, traffic shaping, and web filtering, all without license cost.
| Product | Mindshare (%) |
|---|---|
| Cisco Secure Firewall | 7.6% |
| OPNsense | 8.2% |
| Other | 84.2% |


| Company Size | Count |
|---|---|
| Small Business | 192 |
| Midsize Enterprise | 130 |
| Large Enterprise | 236 |
| Company Size | Count |
|---|---|
| Small Business | 32 |
| Midsize Enterprise | 6 |
| Large Enterprise | 8 |
Cisco Secure Firewall provides comprehensive network security with advanced features such as application visibility, URL filtering, and malware protection. It combines a user-friendly interface with robust VPN capabilities, making it a reliable choice for varying network environments and industry applications.
Cisco Secure Firewall offers exceptional protection with its integration into Cisco's broader ecosystem, ensuring enhanced threat detection and policy unification. Despite its complexity in command-line interfaces and management, Cisco Secure Firewall remains a potent tool for safeguarding data. It is widely adopted for edge security, VPN services, perimeter defense, and traffic segmentation, especially in hybrid settings. Essential sectors like banking and telecom benefit from its stable connectivity and centralized security management. Though there are challenges with costs and support for third-party APIs, the firewall's scalability and high availability provide comprehensive support for protecting network assets.
What are the key features of Cisco Secure Firewall?Cisco Secure Firewall is widely implemented across sectors like banking, education, ISPs, and telecoms. It fortifies data centers and network edge security, delivering strong protection for client access, hybrid environments, and intrusion prevention. In these industries, firewall solutions ensure secure connectivity and manage RTU traffic effectively, leveraging centralized management and integration with Cisco's security tools.
OPNsense is an adaptable open-source firewall and routing platform appreciated for its flexibility, scalability, and user-friendly interface. It is equipped with robust security features and offers excellent reporting and visibility, essential for small businesses and home setups.
OPNsense stands out for its modular design, allowing cost-effective customization. This system supports VPNs and various firewall capabilities, making it suitable for securing networks from malicious traffic. Its frequent updates and extensive documentation, combined with a supportive online community, enhance user experience. However, there is room for improvement in integration with virtual servers and Azure. Scalability and hardware updates are important for large-scale environments, and users desire more reliable VPN solutions and enhanced threat intelligence tools.
What are OPNsense's most important features?OPNsense is implemented in industries requiring VPN and firewall functions, supporting site-to-site connections, protecting servers, and managing commercial network traffic. Companies apply it for security, UTM, SD-WAN, content filtering, intrusion detection, and prevention, utilizing its open-source nature and effectiveness as a next-generation firewall.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.