Cisco ASA NGFW Other Advice

Network & Security Administrator at a financial services firm with 5,001-10,000 employees
Cisco ASA is a good solution. I never had a problem with. I will say that I mostly recommend Fortinet because of their ease of management and Palo Alto Networks because of their reputation for business efficiency. I would rate Cisco ASA with an 8 out of 10 points. View full review »
Beka Gurushidze
System Administrator at ISET
In Georgia, there is no problem using the Cisco firewall, because it's accessible. You cannot use other products, because they are not accessible. That's the whole problem. I would rate Cisco ASA NGFW an 8 out of 10. View full review »
Jijish Gopi
Security Engineer at a tech services company with 201-500 employees
If I were to advise others who are looking into implementing this product I would say I don't think they will like it. They would be able to meet business requirements better with other products, other vendors' firewalls. That's what I think, that's what I know from my own experience, from dealing with customers. If those features, which I mentioned above in the first few questions, if they can add those features into the firewall as a standalone box, it can definitely become a player on the stage. They already have a good platform, even if it's a legacy product, it has that bit of maturity. So if, on top of that very good platform, they can add those features - security, threat intelligence features - they can get back into the market. View full review »
Frank Theilen
IT Adviser/Manager with 51-200 employees
Get someone to help you plan and set up the firewall concept, as well as the initial setup and testing. Waiting for later is not the time to test or change anything without an outage. View full review »
Ahmed Nagm
I am satisfied with the current facility and the management environment of the Cisco ASA, it's great for me. I think that the cost would be the main factor when evaluating solutions since some of the companies or some of our clients ask about costs upfront. Once the client has made their initial request and inquired about any subsequent subsystem connectivity integration ideas, they always want to know how much everything will cost. The deciding factor is mainly based on the price point of the total user solution. Overall, the criteria that we consider when constructing an integration decision depends largely on the client company we are working with. We evaluate clients based according to their size, industry function, and the total budget that would be recommended for an effective solution. I would give this product a rating of 9 out of 10! View full review »
Nadika Perera
CEO at Synergy IT
I would advise someone considering this solution to just go for it. It's expensive but it's a robust solution. The only thing is that you have to convince your finance guy to go for it. I would rate it a nine out of ten. View full review »
Information Technology Manager at a financial services firm with 10,001+ employees
Talk to your peers in the industry, find out what they use and why, and then look at exactly what you're using it for. We changed a great deal of our infrastructure, adding a lot of extra tunnels, so that made a complicated product even harder to manage. Look at what you're comfortable in managing with their interface. We start looking at upgrade cost, our constant licensing cost. I look at other products that rank very high in industry ratings. Now I'm looking at similar products that are a little bit easier to manage. That is another fault of the ASA. They're very complicated to manage, but that’s because they have so many features. It's a very feature-rich product. When selecting a vendor the most important factors are * Security - obviously that is number one because we are a financial institution * stability of the vendor * how the product is ranked in the market. In terms of security, right now is a really tough time for us because, even as a smaller community bank, we’re targeted. We have huge targets on us right now from hackers. I have to have a product that is stable, that will hold up, from a reputable company. I'm looking at companies that are top-tier. I would rate the ASA equipment itself a nine out of 10. The software and manageability would rate a seven and the reason for that is the complexity of it. It is extremely complicated, even for our Cisco-certified person who manages it for us. View full review »
Hassan Javaid
Senior Executive Technical Support at AITSL
I would recommend the product, but cost is a big factor. Some companies cannot afford expensive products, like Cisco and Palo Alto. View full review »
Security Governance at a comms service provider with 1,001-5,000 employees
It is definitely not for Telco. View full review »
Information Security Officer at a government with 501-1,000 employees
Watch out for the marketing hype vs objective reality. Do the advertised features actually work correctly/effectively? We chose a different solution after performing in-house testing. View full review »
Christina Phillips, MBA
Principal Network Engineer at a tech services company with 51-200 employees
I utilize different brands of firewalls depending on the needs of a client, i.e., in-house IT versus outsourced. I am vendor agnostic as much as possible. View full review »
Mbaunguraije Tjikuzu
Information Security Administrator at Bank of Namibia
For the Cisco ASA NGFW, it is a bit more expensive than other products, but their method is a lot more stable in my experience. It has all the features that you would need in a next-generation firewall. They are always developing new features and introducing them. I don't have anything that I'm currently missing with Cisco. On a scale from one to ten, I would rate the product at eight. View full review »
Seang Haing
User at deam
I always encourage our existing customers to move to the Cisco ASA Firepower version, i.e. the next generation Firepower like 2100, 4000, or 9300. I would rate Cisco ASA an eight out of ten. An eight and not a ten because some of the features are limited and some are awful. We had to install other solutions for security and had to spend a lot on other hardware. Other vendors like Fortinet or Palo Alto Networks focus more on offering complete solutions. View full review »
Fabrizio Volpe
Senior Consultant at Unify Square
ASA is one of the the state-of-the-art firewall devices for security. It is affordable and not too complicated to use if you are doing standard operations (modifying ACLs, natting and so on) on an existing deployment. View full review »
Network Engineer with 201-500 employees
Do look at Palo Alto for comparison, SonicWall is also on the market. But before anything, you need to know your infrastructure really well. For example, we brought a PAN firewall for east-west traffic control so we could implement a zero trust network. But our business traffic is a bidding traffic which has extremely small packet size and huge connection size per seconds happening, which sent the PAN firewall into a tailspin. Since we bought the device without a POC, we had to eat the cost. So make sure to do a PoC with all the vendor equipment before you purchase it. View full review »
Pete Nixon
Senior Network Security Engineer at a university
Spec the right hardware model and choose the right license for your needs. View full review »
Alin Prodea
Network Security Administrator at a tech company with 5,001-10,000 employees
Choose it if you aim to have a stable environment. View full review »
Danut Agache
Computer Networking Consultant and Contractor
To test the product in their network and to evaluate other products. I am sure that the Cisco ASA Firewall will be the winner. Our complete relationship is based on the following partner competencies: Certifications: • Gold Certified Partner Specializations: • Advanced Collaboration Architecture Specialization • Advanced Data Center Architecture Specialization • Advanced Enterprise Networks Architecture Specialization • Advanced Security Architecture Specialization Cloud Partners: • Storage: EMC • Virtualization: VMware • Cloud Management: VMware • Cloud Professional Services • SaaS Simple Resale Other Authorizations: • Registered Partner • Cisco Certified Refurbished Equipment • Cisco Developer Network Cisco Products Marketplace • Cisco Meeting Server formerly Acano • PSPP Defense • Smart Care Registered Partner • ATP - Unified Contact Center Enterprise Partner since: • More than 10 years View full review »
Alexander Kostov
Senior IT Networking and Security Manager at a tech services company with 10,001+ employees
I would recommend that you understand the needs of the business case before choosing the product and start implementing it. It is very important to choose the right licenses from the beginning. View full review »
Rizal Meijer
Networking Specialist at a insurance company with 1,001-5,000 employees
You will want to have Next Generation functionality, so choose FortiGate or Cisco Firepower. View full review »
Presales Consultant at a tech services company with 51-200 employees
Take a look at the features included in the unified image. Some classic ASA functionality has not been integrated yet, go for non-unified image if the deployment requires something that is not available – classic ASA iOS plus Sourcefire code. View full review »
Nelda Hojas
Chief Information Officer at Finance Corporation Limited
I would rate this solution a nine out of ten. Not a ten because I'm reserving the one point for whatever new surprises they are going to provide. View full review »
Sergei Chernooki
IT SecOps Manager at a software R&D company with 1,001-5,000 employees
All you need to succeed is careful design, professional setup, and a support contract. View full review »
Technical Specialist with 5,001-10,000 employees
If you are looking into implementing VPN or advanced features, I recommend using this product. URL or content filtering is not good as much as the NGFWs are. View full review »
Timothy Ames
Member of the Board of Directors at a tech services company with 1,001-5,000 employees
ASAs are a solid solution. Cisco provides more training and learning materials than any other vendor, which is critical if an organization wants to take true ownership of a technological solution. Documentation and use cases alone tend to make me a fan of Cisco's way of engineering, and they have come a long way over the last few years when it comes to integrating their solutions into comprehensive security communications platforms using tools like PRIME and ISE. FirePOWER and AMP make Cisco an even better overall contender for top FW status. View full review »
Kiarash Barzoodeh
Security Engineer at ODI
This product is very usable when you need integrity in your network. This product is very functional when you use a Cisco Identity Services engine. View full review »
Syed Razvi
Network and System Engineer at a non-tech company with 201-500 employees
If your company is small or mid-range, it is better to go with other vendors, because of the pricing. View full review »
Johnsey Kivoto
IT Manager at a manufacturing company with 51-200 employees
Yes, it's a good provider when it comes to firewall solution, but maybe limiting when you are looking at the wall UTM management. It's delayed behind some of the competitors. View full review »
Alvaro Picado
Systems Manager at a non-profit with 201-500 employees
Today, Cisco has other more current solutions in terms of benefits. From the Cisco ASA 55xx-X with Firepower Services and, obviously, higher products. But for an organization like ours, similar products like Cisco ASA 55xx-X, FortiGate 100e or d model, etc., are enough. View full review »
Rizwan Siddiqi
Network Security Consultant at a tech services company with 51-200 employees
IT Manager at a construction company with 11-50 employees
Do your research, know what you want to achieve. Cisco ASA needs to be more reliable. Because of the nature of the product, it has to be rock solid and, unfortunately, it's not. View full review »
Account Manager
We are using ASA5585-X with Firepower SSP-20 (ASA version 9.6(1)3, Firepower version When looking at different solutions, take a deep look at the features. View full review »
Azar Mammadli
IT Operation Manager
The Cisco ASA product line will be replaced by Cisco FTD. Cisco FTD software is not ready for production, due to a lack of many basic NGFW features. Maybe only the high-performance Firepower 41xx/21xx/90xx Series is good as an IPS, because it is using a stable Sourcefire engine. View full review »
Meei Ling Tan
Senior Network Specialist
Know what features are needed, and then purchase the necessary hardware and license. View full review »
Security Technical Architect at a tech services company with 10,001+ employees
Plan very well in order to have a seamless project implementation and transition. View full review »
Mahmoud Ashoub
Team Leader, Information Risk Engineer at National Bank of Egypt
I would rate it a seven out of ten. I would recommend this solution to a colleague. No product will give you 100% of what you're looking for but this solution is close. View full review »
Network Engineer at a mining and metals company with 1,001-5,000 employees
If you are looking for a stable run and it is easy to find someone to configure the service, then better go for Cisco; their support is very professional. View full review »
Sedef Koker
IT Manager at a manufacturing company
I know that Cisco acquired Sourcefire and they re-introduced next-generation firewall features and I think they’ll improve NX features. View full review »
Project Manager with 11-50 employees
Use the best practice guides and online documentation. Cisco has more information online free that any other brand, so use it!!! View full review »
I.T Security Consultant
Go for it. I really like how, once you get the ASA set up properly, it can run for a whole year without any major issues, apart from the normal daily administration. View full review »
Joseph Kingori
IT Support Engineer
It is a very good device to use for those who value their network security. View full review »
Technical Services Manager at a comms service provider with 10,001+ employees
We like that Cisco has a lot of experience on the market trends. View full review »
Tahir Javed
Manager Network Security at a financial services firm with 5,001-10,000 employees
Cisco has done great job in introducing new features in their security product by acquiring specialized companies in the past. However, they still need to improve their unique feature products as they are in a challenger position, but not on top, at various product review portals. View full review »
Technical Administrator at a tech services company
I rate it an eight out of 10. I am only handling or supporting the ASA 5520 model in our company. View full review »
ICT Manager with 1-10 employees
We need to upgrade our security requirements due to the new security requirement applicable in Europe (from GDPR) and the cyber security guidelines for our vessel (we are a US shipping company). Most important criteria when selecting a vendor: familiarity, reliability, and price. View full review »
Aaron Solis
ESS Security with 201-500 employees
Best value will always be delivered by adding FMC (Firepower Management Console); at least their virtual edition. View full review »
Center for Creative Leadership at a professional training and coaching company with 501-1,000 employees
This solution has good security and it's a good product. You can trust Cisco, and there's support as well, which is really good. I would rate this solution an eight out of ten. View full review »
Dorin Berbescu
Executive Manager with 11-50 employees
Be careful with temperature control in the rack area, since Cisco ASA 5585-X with SSP-10 heats up a lot. View full review »
Gerente de Telecomunicaciones at a financial services firm with 1,001-5,000 employees
You have to find more confidentiality, integrity and availability. View full review »
Mohamed Shehada
Senior Network & Data Communication Engineer at a tech services company with 201-500 employees
Read, read, read and understand your requirements beforehand. View full review »
Deanna Acre
Information Systems Manager at a manufacturing company with 201-500 employees
Look through what your needs are. View full review »
Arshad Mohammad Khan
Security Consultant at Accenture
Evaluate other product before using this product. View full review »
Shaikh Muhammad Adeel
Sr Network Engineer at a tech services company with 501-1,000 employees
I would go for bundle licenses and hire a Cisco engineer for implementation. View full review »
Regional Manager - Pre Sales at a tech services company with 51-200 employees
It is a good datacenter firewall, as they have now overcome integration issues with latest versions. View full review »
Solutions Architect at a tech services company with 51-200 employees
Good product, give it a chance. View full review »
ICT Manager - Network Operations at a healthcare company
Cisco is good. Look at your requirements and create a matrix to figure out the best option. View full review »
Network and Securirty Engineer at a tech vendor with 501-1,000 employees
Configuration on Firepower is currently madness as you have to redeploy it again with all its configurations if you use it as a module. View full review »
Heath Freel
President and CTO with 51-200 employees
Overall, this is a legacy product. View full review »

Sign Up with Email