We performed a comparison between Cisco Secure Network Analytics and LogRhythm NetMon based on real PeerSpot user reviews.
Find out in this report how the two Network Monitoring Software solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We can manage the entire system across the network and troubleshoot the pain points."
"Visibility. The ability to look East and West. To see what is passing through your circuits, where it is coming from, and how big it is."
"The most valuable feature about this solution is that it gives me insight of my network."
"Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box."
"The most valuable feature is NetFlow. The beginning of any security investigation starts with NetFlow data."
"It has improved our internal knowledge of what's going on with the network, and that's helpful."
"From a security standpoint, it is just seeing pockets as well. Visibility is very key for us."
"Provides easily identifiable anomalies that you can't see with signature detections."
"I believe this solution has reduced our incident response time."
"It has a very strong artificial intelligence engine."
"Visibility is a valuable feature, the ability to see even if the traffic is not going into the firewall"
"The protocols with which you see the traffic for a particular website that a client has in their environment, for example, are valuable. We can monitor whether the traffic is up to the mark or whether they need to add more bandwidth. Also, we can see if we're able to get real-time environment data as well. The customization dashboard is really good. LogRhythm NetMon has its own in-built dashboards which are helpful in guiding customization."
"The analytics feature is the most valuable feature."
"It is a stable solution...It is a scalable solution."
"The most valuable feature is the log, which can be analyzed by our SIEM solution."
"NetMon's best feature is traffic analysis."
"The Wi-Fi side needs improvement."
"We would like the solution to make more advances in the way that Extreme Networks has been doing."
"I would like to see more and cleaner reporting. For example, if I pull up Steven and I want to look and maybe compare him to what you've done in the past week, and compare that to the past six months, the point would be to see what the difference in activity looks like over this time. I don't see that capability in reporting to date. You see that trend but you don't really see a straightforward comparison. That right there is key to what we want to see about the normal activity."
"They should include Citrix VDIs in the next release."
"I think the interface is a little lacking. The interface seems like it just needs to be modernized. It's been the same interface now, ever since I've seen it probably four years ago."
"One update that I would like to see is an agent-based client. Currently, Stealthwatch is network-based. A local agent could help manage endpoints."
"If there was one improvement I’d suggest it would be that it detect traffic through an intranet. The product requires that traffic flow through a managed network device. The product is designed mostly for enterprise environments and not smaller environments or businesses."
"I would like to see interoperability with other Cisco products because we have ThousandEyes, Cisco Prime, and others. The interaction among these is important to us."
"Stealthwatch needs improvement when it comes to speed."
"Some of the automated tasks we can perform on QRadar cannot be performed on LogRhythm because the solution has limitations."
"Sometimes it's hard to find the network devices' self-audit logs."
"Could use a topology diagram which would help get an exact visual."
"I would like to see better integration with multiple products. Integration is not something that is readily available for most of the products."
"LogRhythm NetMon's pricing model is an area of concern that should be made a little bit cheaper in comparison to the other players in the market currently."
"The training for this product is not very good and needs to be improved."
"There is an issue with tunneling in relation to how the connectivity is established between the end devices and where NetMon is installed. On the console, I often observe that there's a difference of a few seconds or maybe a minute, and this lag time should not be there."
More Cisco Secure Network Analytics Pricing and Cost Advice →
Cisco Secure Network Analytics is ranked 24th in Network Monitoring Software with 57 reviews while LogRhythm NetMon is ranked 58th in Network Monitoring Software with 9 reviews. Cisco Secure Network Analytics is rated 8.2, while LogRhythm NetMon is rated 7.6. The top reviewer of Cisco Secure Network Analytics writes "Increased the visibility of what is happening in our network". On the other hand, the top reviewer of LogRhythm NetMon writes "A stable and scalable tool useful for network behavior analysis, DPA, and network forensic services". Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR, whereas LogRhythm NetMon is most compared with ObserverLIVE, PRTG Network Monitor and SCOM. See our Cisco Secure Network Analytics vs. LogRhythm NetMon report.
See our list of best Network Monitoring Software vendors.
We monitor all Network Monitoring Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.