Cisco ASA NGFW Pros and Cons

Cisco ASA NGFW Pros

NSA0898776
Network & Security Administrator at Diamond Bank Plc
I would say the Firepower module is most valuable. I'm trying more to transition to this kind firewall. I had to study a little on Palo Alto Networks equipment. There is a lot I have to learn about the difference.
View full review »
Beka Gurushidze
System Administrator at ISET
Right now, Cisco ASA NGFW has given us a lot of improvement. We are planning to move to a new facility and will be a much larger organization.
View full review »
Amit Gumber
Senior Manager at HCL Technologies
The most important point is the detection engine which is now part of the next-generation firewalls and which is supported by Cisco Talos.
View full review »
Find out what your peers are saying about Cisco, Fortinet, Juniper and others in Firewalls. Updated: September 2019.
371,355 professionals have used our research since 2012.
Jijish Gopi
Security Engineer at a tech services company with 201-500 employees
One thing I like about the product is the logging features, the way it logs, the way it forwards the logs in Syslog.
View full review »
Ahmed Nagm
CEO at PCS
The feature that I found most valuable is the overall stability of the product.
View full review »
Nadika Perera
CEO at Synergy IT
I like the user interface because the navigation is very easy, straightforward on your left side pane you have all the sites that you need to browse. Unlike any other firewalls, it's pretty straightforward.
View full review »
Neil McFadyen
Supervisor of Computer Operations at a university
I am used to the ASA syntax, therefore it is quite easy to make up new rules. I have found that DNS doctoring rules are useful.
I found that setting up rules for HTTPS and SSH access to the management interface are straightforward, including setting the cypher type.
View full review »
Imad Awwad
Group IT Manager at Malia Group
Unfortunately in Cisco, only the hardware was good.
View full review »
Hassan Javaid
Senior Executive Technical Support at AITSL
We have multiple secure internal networks linked with our plants. We are from a oil company, so we have multiple plant areas which need to have restricted network access. Therefore, we are using it for restricting access to the plant area.
The initial setup was completely straightforward.
View full review »
ipmplspr538920
Security Governance at a comms service provider with 1,001-5,000 employees
We have been using a 5520 for seven years in our datacenter and we are satisfied by this version.
The solution is used for the protection of the mobile data network. It is protecting 3G/4G Internet customers and the Private APN.
View full review »

Cisco ASA NGFW Cons

NSA0898776
Network & Security Administrator at Diamond Bank Plc
The installation and integration of Cisco ASA with FirePOWER can be improved. The management with Fortigate is easier than Cisco ASA on FirePOWER. The management side of Cisco ASA can be improved so it can be more easily configured and used.
View full review »
Beka Gurushidze
System Administrator at ISET
There is no support here in Georgia. If something goes wrong, support is not always very helpful with the other firewalls or other products.
View full review »
Amit Gumber
Senior Manager at HCL Technologies
Most users do not have awareness of this product's functionality and features. Cisco should do something to make them aware of them. That would be quite excellent and useful to organizations that are still using legacy data-center-security products.
View full review »
Find out what your peers are saying about Cisco, Fortinet, Juniper and others in Firewalls. Updated: September 2019.
371,355 professionals have used our research since 2012.
Jijish Gopi
Security Engineer at a tech services company with 201-500 employees
It doesn't have a proper GUI to do troubleshooting, so most people have to rely on the command line.
It should have packets, deep level inspections and controls, like the features which other IPS solutions used to have.
Other firewalls, upgrading is a very easy task; from the graphical user interface, you just need to import the firmware versions into it and install it. In this firewall, you need to have a third-party solution in both. It's a process. It's a procedure, a hard procedure, actually, so there is no straightforward procedure for upgrading.
View full review »
Ahmed Nagm
CEO at PCS
One of my main concerns, an area that could use improvement is in adjusting the need to buy a license to enable features.
View full review »
Nadika Perera
CEO at Synergy IT
If I need to download AnyConnect in a rush, it will prompt me for my Cisco login account. Nobody wants to download a client to a firewall that they don't own.
View full review »
In432TchMn89
Information Technology Manager at a financial services firm with 10,001+ employees
The only con that I have really seen with it is the reporting structure. FirePOWER is good. It has been a great help because, before that, it was not good at all.
View full review »
Neil McFadyen
Supervisor of Computer Operations at a university
10Gb interfaces should be available on more models.
It is surprising that you need to have a virtual appliance for the Firepower Management Center. It is not good if you have to setup a VMware server just for it.
It is confusing to have two management interfaces, e.g., ASDM and Firepower Management Center.
View full review »
Imad Awwad
Group IT Manager at Malia Group
In NGFW, Cisco should be aligned with the new technology and inspection intelligence because Cisco is far behind in this pipeline.
View full review »
Hassan Javaid
Senior Executive Technical Support at AITSL
Most of the time, when I try to run Java, it is not compatible with ASA's current operating systems.
We have to rely on Cisco ASDM to access the firewall interface. This needs improvement. Because we have a web-based interface, and it is a lot more user-friendly.
View full review »
Find out what your peers are saying about Cisco, Fortinet, Juniper and others in Firewalls. Updated: September 2019.
371,355 professionals have used our research since 2012.
Sign Up with Email