Class-based policing is the most important part of the ASA, and was its differentiator.
Cisco ASA Firewall Review
Class-based policing is the most important part of the ASA, and was its differentiator.
What is most valuable?
How has it helped my organization?
It gave us more organized DMZs and logical segments.
What needs improvement?
I’m not a fan of the new modular licensing model. Cisco moved from a base license to an a la carte SaaS model a couple of years back, wherein the customer is required to pay for feature sets on a case-by-case basis. This makes it difficult for people who want to study and trial new technologies and features.
For how long have I used the solution?
I’ve been using ASA technology since it was PIX, so since 1999.
What do I think about the stability of the solution?
We have not had stability issues.
What do I think about the scalability of the solution?
We have not had scalability issues.
How are customer service and technical support?
Support with Cisco TAC, or with VARs like WWT and Trace3 is usually pretty good.
Which solution did I use previously and why did I switch?
I have used both ASA and PAN. Different strokes for different folks.
How was the initial setup?
Initial setup is straightforward. You can get as granular and complex as you want, but out of the box, ASAs provide a secure FW solution.
Which other solutions did I evaluate?
We evaluate all other options.
What other advice do I have?
ASAs are a solid solution. Cisco provides more training and learning materials than any other vendor, which is critical if an organization wants to take true ownership of a technological solution. Documentation and use cases alone tend to make me a fan of Cisco's way of engineering, and they have come a long way over the last few years when it comes to integrating their solutions into comprehensive security communications platforms using tools like PRIME and ISE. FirePOWER and AMP make Cisco an even better overall contender for top FW status.
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Jun 27 2017
More Cisco ASA Firewall reviews from users...who work at a Financial Services Firm
...at Large Enterprises
...who compared it with Fortinet FortiGate
Author
it_user391305
Member of the Board of Directors at a tech services company with 1,001-5,000 employees
Consultant
Highlights
The IPS (In-plane switching) is the most valuable feature.
It provides security for our company and users.
It is a comprehensive suite and complete package.
The integration and configuration were pretty straightforward.
The transparency of the single UI to ensure security. A product has to be simple so that an administrator can use it.
Among the top features are integrated threat defence and the fact that each virtual appliance is separate so you get great granular control.
Its VPN and ASN features are very stable.
Product Categories
FirewallsPopular Comparisons
Fortinet FortiGate
Cisco Firepower NGFW Firewall
Meraki MX
Palo Alto Networks WildFire
SonicWall TZ
Juniper SRX
Sophos XG
Sophos UTM
SonicWall NSA
WatchGuard Firebox
Azure Firewall
Check Point Virtual Systems
Barracuda CloudGen Firewall
Palo Alto Networks VM-Series
Buyer's Guide
Download our free Cisco ASA Firewall Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- What Is The Biggest Difference Between Cisco ASA And Fortinet FortiGate?
- Which is the best network firewall for a small retailer?
- When evaluating Firewalls, what aspect do you think is the most important to look for?
- If you could go back, would you change your decision to buy that firewall and why?
- What is the best way to prevent DoppelPaymer Ransomware?
- Best firewall models for 750 to 1000 users
- Which lesser known firewall product has the best chance at unseating the market leaders?
- Comparing network security vendors and devices
- What's the difference between Firewall and NAT Traversals?
- Should I configure SIP or NAT traversal technologies on my firewall?