Cisco Secure Firewall vs Trellix Network Detection and Response comparison

The compared Cisco and Trellix solutions aren't in the same category. Cisco is ranked #5 in Firewalls , with an average rating of 8.3, and holds a 5.7% mindshare in the category. Trellix is ranked #15 in ATP , with an average rating of 7.4, and holds a 5.1% mindshare. Additionally, 83% of Cisco users are willing to recommend the solution, compared to 97% of Trellix users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cisco Secure Firewall and Trellix Network Detection and Response based on real PeerSpot user reviews.

Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls.

To learn more, read our detailed Firewalls Report (Updated: November 2024).

Buyer's Guide

Firewalls

November 2024

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

Firewalls

Advanced Threat Protection (ATP)

Featured Reviews

DineshKumar28

Senior Manager at Cognizant

Sep 25, 2024

Effective threat prevention with responsive customer support

We are using Fortinet FortiGate as a firewall Fortinet FortiGate has been invaluable. It has helped save costs due to its various features, reliable performance, very good UI, low latency, and stability. The Threat Intel engine in Fortinet FortiGate is highly rated for its effectiveness in…

Read full review

Daniel Going

Managing architect at Capgemini

Jun 26, 2022

Is intuitive in terms of troubleshooting, easy to consume, and stable

We use it for data center security for both the north-south and east-west. With Firepower, you get the next-generation functionality and the next-generation firewall features. Traditionally, when you have a layer three access list, it's really tricky to get the flexibility you need to allow staff…

Read full review

BiswabhanuPanda

Senior technical consultant at Hitachi Systems Micro Clinic

Apr 4, 2024

Offers in-depth investigation capabilities, integrates well and smoothly transitioned from a lower-capacity appliance to a higher one

The in-depth investigation capabilities are a major advantage. When the system flags something as malicious, it provides a packet capture of that activity within the environment. That helps my team quickly identify additional context that most other tools wouldn't offer – like source IP or base64 encoded data. We can also see DNS requests and other details that aren't readily available in solutions like Check Point or others that we've tried. The detection itself is solid, and their sandboxing is powerful. There's a learning curve – you need a strong grasp of OS-level changes, process forking, registry changes, and the potential impact of those. But with that knowledge, the level of information Trellix provides is far greater than what we've seen elsewhere. The real-time response capability of Trellix has been quite effective, although it's not very fast. The key is this solution's concept of 'preference zero.' They don't immediately act on a zero-day. For example, the solution has seen a piece of malware for the first time. It'll let it in, then do sandboxing. Maybe after four or five minutes, it identifies that specific file's DNX Secure Store as malicious. At that point, they update the static analysis engine, and it gets detected if anything else tries to download the same file. There is that initial 'preference zero' concept, like with Panda. You may not hold traffic in the network. That's standard in the industry; we don't do much about it. To address that, we also have endpoint solutions. We use SentinelOne in our environment, which helps us identify threats like Western Bureaus and others.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is very flexible to use."

"UTM/NGFW features and FortiCloud for logs and backups are awesome."

"The simplicity of the product is great. It's very easy to use, which is a compliment we get all the time in terms of feedback."

"Allows for firewall rules to be programmed and named in a way that makes it “readable”"

"Fortinet FortiGate is scalable for our users. Right now, we have almost 70 users. We do not have any plan to increase our usage of FortiGate. For maintaining the firewall solution, one staff member is enough."

"The most valuable feature is the web filter."

"The tool is a nice product and easy to handle. The software's user interface is also good. You can easily implement remote access in the solution."

"The inspection and web security features are most valuable."

More Fortinet FortiGate pros

"I have found the most valuable feature to be the access control and IPsec VPN."

"FMC is very good in terms of giving a lot of visibility into what the firewall is seeing, what it's stopping, and what it's letting through. It lets the administrator have a little bit of knowledge of what's coming in or out of the device. It's excellent."

"Ease of configuration: It has gotten a lot easier to configure compared to the original Cisco Pix."

"The most valuable features are the provision of internet access, AnyConnect, and VPN capabilities."

"Beats sophisticated cyber attacks with a superior security appliance."

"The most valuable feature is the access control list (ACL)."

"Its security and filtering are most valuable. Every layer of data that comes into the organization goes through it. After setting up the criteria, it automatically filters the traffic. We don't have to check it often."

"It provides security for our company and users."

More Cisco Secure Firewall pros

"The installation phase was easy."

"Its ability to find zero-day threats, malware and anything malicious has greatly improved my customer's organization, especially for protecting the users' browser."

"The server appliance is good."

"The sandbox feature of FireEye Network Security is very good. The operating system itself has many features and it supports our design."

"The product is very easy to configure."

"If we are receiving spam emails, or other types of malicious email coming from a particular email ID, then we are able to block them using this solution."

"The most valuable feature is the network security module."

"Initially, we didn't have much visibility around what is occurring at our applications lower level. For instance, if we are exposed to any malicious attacks or SQL injections. But now we've integrated FireEye with Splunk, so now we get lots of triggers based on policy content associated with FireEye. The solution has allowed for growth and improvement in our information security and security operations teams."

More Trellix Network Detection and Response pros

Cons

"From a reporting perspective, there's room for improvement. They're providing FortiAnalyzer through which one can get some enhancements, but the visibility and reporting still need slight improvement."

"We have an issue with hotel guest vouchers."

"Fortinet FortiGate could improve by adding FortiAnalyzer to its solution, we should not have to use another solution. FortiAnalyzer can provide more detailed information."

"We sometimes have issues with FortiGate's routing table in the latest firmware update. We had to downgrade the device because our customers complained about bugs."

"It would be nice if FortiGate incorporated some built-in endpoint protection features. I would also like a built-in SOC dashboard for managing multiple Fortinet firewalls."

"FortiGate can improve its token system, as it requires a purchase before use."

"While FortiGate is cheaper than most other solutions, we're seeing increased license renewal costs. Most of our clients are asking for more significant discounts because the price is going up."

"The performance could be a bit better. Right now, I find it to be lacking. Having good performance is very important for our work."

More Fortinet FortiGate cons

"Other firewalls, upgrading is a very easy task; from the graphical user interface, you just need to import the firmware versions into it and install it. In this firewall, you need to have a third-party solution in both. It's a process. It's a procedure, a hard procedure, actually, so there is no straightforward procedure for upgrading."

"Critical bugs need to be addressed before releasing the version."

"In Firepower, there is an ability to search and dig into a search, which is nice. However, I'm not a super fan of the way it scrolls. If you want to look at something live, it's a lot different. You're almost waiting. With the ASDM, where it just flows, you can really see it. The second someone clicks something or does something, you'll see it. The refresh rate on the events in Firepower is not as smooth."

"The use of it has really bogged down our response time for certain problems, given we have to go through AT&T for everything."

"Setting firewall network rules should be more straightforward with a clearer graphical representation. The rule-setting method seems old-fashioned. The firewall and network rules are separate from the Firepower and web access rules."

"The Cisco Firewall UI could be improved."

"The user interface is a little clunky and difficult to work with. Some things aren't as easy as they should be."

"It seems very clunky and slow. I would like to be able to tune it to be a more efficient product."

More Cisco Secure Firewall cons

"It would be great if we could create granular reports based on the protocols, types of attacks, regions of attack, etc. Also we would like to easily be able to add exceptions to rules in cases of false positives."

"Technical support could be improved."

"It is very expensive, the price could be better."

"Improvements could be achieved through greater integration capabilities with different firewall solutions. Integrating with the dashboard itself for different firewalls so users can also pull tags into their firewall dashboard."

"It doesn't connect with the cloud, advanced machine learning is not there. A known threat can be coming into the network and we would want the cloud to look up the problem. I would also like to see them develop more file replication and machine learning."

"It would be a good idea if we could get an option to block based upon the content of an email, or the content of a file attachment."

"The solution's support needs to improve their support."

"Its documentation can be improved. The main problem that I see with FireEye is the documentation. We are an official distributor and partner of FireEye, and we have access to complete documentation about how to configure or implement this technology, but for customers, very limited documentation is available openly. This is the area in which FireEye should evolve. All documents should be easily available for everyone."

More Trellix Network Detection and Response cons

Pricing and Cost Advice

"Fortinet FortiGate is reasonably priced."

"It has a competitive price."

"The price is fair for what we get with FortiGate."

"The price of FortiGate is average and I would say that based on the top five products available on the market, it is in the affordable range."

"Fortinet FortiGate has different licensing models, depending on what you're going to do. Services included would depend on the license model. Licenses can be renewed annually."

"Setup cost may be not so low, as you expect, because it depends on different factors, but TCO for 5 years may pleasantly surprise you."

"We pay for the solution annually."

"Fortinet FortiGate gives you most of the features in one license."

More Fortinet FortiGate pricing and cost advice

"When it comes to Cisco, the price of everything is higher. Cisco firewalls are expensive, but we get support from Cisco, and that support is very active."

"In terms of scalability, it is really expensive. It is scalable, but when it comes to pricing, the upgrading is a bit high."

"Always plan ahead for three years. In other words, do not buy a firewall on what your needs are today, but try to predict where you will be three years from now in terms of bandwidth, security requirements, and changes in organizational design."

"The cost of the firewalls versus the ROI is okay."

"The pricing was fairly reasonable. It was competitive and was slightly more than Check Point was. However, when we looked at the usability and the features that we would get out of Firepower, it was certainly reasonable. Licensing is complex, and I'd like it to be simplified."

"The Firepower series of appliances is not cheap. I just got a quote recently for six firewalls that was in the range of over half-a-million dollars. That's what could push us to look to other vendors..."

"The solution was chosen because of its price compared to other similar solutions."

"The licensing has definitely improved and got a lot easier. It is customizable depending on what the customer needs, which is a good benefit, instead of just a broad license that everybody has to pay."

More Cisco Secure Firewall pricing and cost advice

"There are some additional services that I understand the vendor provides, but our approach was to package all of the features that we were looking to use into the product."

"When I compare this solution to its competitors in the market, I find that it is a little expensive."

"It's an expensive solution."

"When you purchase FireEye Network Security NX, will need to purchase a megabit per second package. You must know your needs from day one."

"FireEye is comparable to other products, such as HX, but seems expensive. It may cause us to look at other products in the market."

"We're partners with Cisco so we get a reasonable price. It's cheaper than Palo Alto in terms of licensing."

"The tool is a bit pricey."

"The user fee is not as high but the maintenance fee is expensive."

More Trellix Network Detection and Response pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Comparison Review

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Mar 11, 2015

Cisco ASA vs. Palo Alto Networks

Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Read full review

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

15%

Manufacturing Company

Comms Service Provider

Educational Organization

31%

Computer Software Company

16%

Government

Manufacturing Company

Financial Services Firm

19%

Comms Service Provider

Manufacturing Company

Computer Software Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Which is better - Fortinet FortiGate or Cisco ASA Firewall?

One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...

See all answers

How does Cisco's ASA firewall compare with the Firepower NGFW?

It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...

See all answers

Which is better - Meraki MX or Cisco ASA Firewall?

Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...

See all answers

What do you like most about FireEye Network Security?

We wanted to cross-reference that activity with the network traffic just to be sure there was no lateral movement. Wi...

See all answers

What is your experience regarding pricing and costs for FireEye Network Security?

The pricing is fair, a little expensive, but fair. We've evaluated other products, and they're similarly priced. It's...

See all answers

What needs improvement with FireEye Network Security?

The solution's support needs to improve their support.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 22% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 13% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

Meraki MX vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks WildFire vs Cisco Secure Firewall

Compared 9% of the time

Netgate pfSense vs Cisco Secure Firewall

Compared 6% of the time

Meraki MX vs Cisco Secure Firewall

Compared 4% of the time

Sophos XG vs Cisco Secure Firewall

Compared 3% of the time

Palo Alto Networks NG Firewalls vs Cisco Secure Firewall

Compared 3% of the time

More Cisco Secure Firewall Competitors

Fortinet FortiSandbox vs Trellix Network Detection and Response

Compared 20% of the time

Palo Alto Networks WildFire vs Trellix Network Detection and Response

Compared 16% of the time

Vectra AI vs Trellix Network Detection and Response

Compared 9% of the time

Darktrace vs Trellix Network Detection and Response

Compared 8% of the time

Zscaler Internet Access vs Trellix Network Detection and Response

Compared 5% of the time

More Trellix Network Detection and Response Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

November 2024

Download Fortinet FortiGate product report

Buyer's Guide

Cisco Secure Firewall

November 2024

Download Cisco Secure Firewall product report

Buyer's Guide

Trellix Network Detection and Response

October 2024

Trellix Network Detection and Response report

Download Trellix Network Detection and Response product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate

Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall

FireEye Network Security, FireEye

Learn More

Fortinet

Cisco

Video not available

Trellix

Overview

Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.

The core features of Cisco Secure Firewall are multifaceted:

Advanced threat protection is achieved through a combination of intrusion prevention, malware detection, and URL filtering technologies.
For secure access, the firewall presents multiple options, including VPN, remote access, and single sign-on.
Its network segmentation capability is vital in creating barriers within the network to safeguard critical assets.
The firewall is scalable, effectively serving small businesses to large enterprises.
Management is streamlined through Cisco DNA Center, a central management system.

The benefits of deploying Cisco Secure Firewall are substantial. It significantly reduces the risk of cyberattacks, thereby enhancing the security posture of an organization. This security also translates into increased productivity, as secure access means uninterrupted work. Compliance with industry regulations is another advantage, as secure access and network segmentation align with many regulatory standards. Additionally, it helps in reducing IT costs by automating security tasks and simplifying management processes.

In practical scenarios, Cisco Secure Firewall finds diverse applications. It's instrumental in protecting branch offices from cyberattacks, securing remote access for various stakeholders, safeguarding cloud workloads, and segmenting networks to isolate sensitive areas.

User reviews from PeerSpot reflect an overall positive experience with the Cisco Secure Firewall. Users appreciate its ease of configuration, good management capabilities, robust protection, user-friendly interface, and scalability. However, some areas for improvement include better integration capabilities with other vendors, maturity, control over bandwidth for end-users, and addressing software bugs.

In summary, Cisco Secure Firewall is a comprehensive, versatile, and reliable security solution that effectively meets the security needs of various organizations. It offers a balance of advanced protection, user-friendly management, and scalability, making it a valuable asset in the realm of network security.

Detect the undetectable and stop evasive attacks. Trellix Network Detection and Response (NDR) helps your team focus on real attacks, contain intrusions with speed and intelligence, and eliminate your cybersecurity weak points.

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.

FFRDC, Finansbank, Japan Advanced Institute of Science and Technology, Investis, Kelsey-Seybold Clinic, Bank of Thailand, City of Miramar, Citizens National Bank, D-Wave Systems

Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls. Updated: November 2024.

DOWNLOAD NOW

814,649 professionals have used our research since 2012.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.