Cisco ASA NGFW Pros and Cons

Cisco ASA NGFW Pros

NSA0898776
Network & Security Administrator at a financial services firm with 5,001-10,000 employees
I would say the Firepower module is most valuable. I'm trying more to transition to this kind firewall. I had to study a little on Palo Alto Networks equipment. There is a lot I have to learn about the difference.
View full review »
Beka Gurushidze
System Administrator at ISET
Right now, Cisco ASA NGFW has given us a lot of improvement. We are planning to move to a new facility and will be a much larger organization.
View full review »
Jijish Gopi
Security Engineer at a tech services company with 201-500 employees
One thing I like about the product is the logging features, the way it logs, the way it forwards the logs in Syslog.
View full review »
Find out what your peers are saying about Fortinet, Cisco, pfSense and others in Firewalls. Updated: June 2019.
348,558 professionals have used our research since 2012.
Frank Theilen
IT Adviser/Manager with 51-200 employees
The ASA 55-x range is a solid and reliable firewall. It secures the traffic for normal purposes.
View full review »
Ahmed Nagm
CEO at PCS
The feature that I found most valuable is the overall stability of the product.
View full review »
Nadika Perera
CEO at Synergy IT
I like the user interface because the navigation is very easy, straightforward on your left side pane you have all the sites that you need to browse. Unlike any other firewalls, it's pretty straightforward.
View full review »
Neil McFadyen
Supervisor of Computer Operations at a university
I am used to the ASA syntax, therefore it is quite easy to make up new rules. I have found that DNS doctoring rules are useful.
I found that setting up rules for HTTPS and SSH access to the management interface are straightforward, including setting the cypher type.
View full review »
Hassan Javaid
Senior Executive Technical Support at AITSL
We have multiple secure internal networks linked with our plants. We are from a oil company, so we have multiple plant areas which need to have restricted network access. Therefore, we are using it for restricting access to the plant area.
The initial setup was completely straightforward.
View full review »
ipmplspr538920
Security Governance at a comms service provider with 1,001-5,000 employees
We have been using a 5520 for seven years in our datacenter and we are satisfied by this version.
The solution is used for the protection of the mobile data network. It is protecting 3G/4G Internet customers and the Private APN.
View full review »
reviewer818484
Information Security Officer at a government with 501-1,000 employees
Integration with all the other Cisco tools is valuable.
View full review »

Cisco ASA NGFW Cons

NSA0898776
Network & Security Administrator at a financial services firm with 5,001-10,000 employees
The installation and integration of Cisco ASA with FirePOWER can be improved. The management with Fortigate is easier than Cisco ASA on FirePOWER. The management side of Cisco ASA can be improved so it can be more easily configured and used.
View full review »
Beka Gurushidze
System Administrator at ISET
There is no support here in Georgia. If something goes wrong, support is not always very helpful with the other firewalls or other products.
View full review »
Jijish Gopi
Security Engineer at a tech services company with 201-500 employees
It doesn't have a proper GUI to do troubleshooting, so most people have to rely on the command line.
It should have packets, deep level inspections and controls, like the features which other IPS solutions used to have.
Other firewalls, upgrading is a very easy task; from the graphical user interface, you just need to import the firmware versions into it and install it. In this firewall, you need to have a third-party solution in both. It's a process. It's a procedure, a hard procedure, actually, so there is no straightforward procedure for upgrading.
View full review »
Find out what your peers are saying about Fortinet, Cisco, pfSense and others in Firewalls. Updated: June 2019.
348,558 professionals have used our research since 2012.
Frank Theilen
IT Adviser/Manager with 51-200 employees
Firewalls, in general, were not really designed for normal IT personnel, but for firewall and network experts. Therefore, they missed a lot of options and did not provide any good reporting or improvement options.
View full review »
Ahmed Nagm
CEO at PCS
One of my main concerns, an area that could use improvement is in adjusting the need to buy a license to enable features.
View full review »
Nadika Perera
CEO at Synergy IT
If I need to download AnyConnect in a rush, it will prompt me for my Cisco login account. Nobody wants to download a client to a firewall that they don't own.
View full review »
In432TchMn89
Information Technology Manager at a financial services firm with 10,001+ employees
The only con that I have really seen with it is the reporting structure. FirePOWER is good. It has been a great help because, before that, it was not good at all.
View full review »
Neil McFadyen
Supervisor of Computer Operations at a university
10Gb interfaces should be available on more models.
It is surprising that you need to have a virtual appliance for the Firepower Management Center. It is not good if you have to setup a VMware server just for it.
It is confusing to have two management interfaces, e.g., ASDM and Firepower Management Center.
View full review »
Hassan Javaid
Senior Executive Technical Support at AITSL
Most of the time, when I try to run Java, it is not compatible with ASA's current operating systems.
We have to rely on Cisco ASDM to access the firewall interface. This needs improvement. Because we have a web-based interface, and it is a lot more user-friendly.
View full review »
ipmplspr538920
Security Governance at a comms service provider with 1,001-5,000 employees
The throughput highlighted on the datasheet (10Gbps) should be reviewed. This throughput is only for a UDP running environment, which you will never find in the real world. Rather consider a multiprotocol throughput.
A memory leakage issue which literally freeze the nodes (we have an HA environment). The issue is still not solved and the only recommendation from Cisco is to reboot the node.
View full review »
Find out what your peers are saying about Fortinet, Cisco, pfSense and others in Firewalls. Updated: June 2019.
348,558 professionals have used our research since 2012.

Sign Up with Email