Cisco ASA NGFW Valuable Features

NSA0898776
Network & Security Administrator at a financial services firm with 5,001-10,000 employees
I would say the Firepower module is most valuable. I'm trying more to transition to this kind firewall. I had to study a little of the Palo Alto Networks equipment. There is a lot I have to learn about the difference. Based on my certification, I had to do a lot of lab work, a lot of projects, a lot of technical work with Cisco ASA. Now, I'm moving to other vendors, like Palo Alto Networks and Fortinet so that I can empower my level of technical experience. * All my change requests are for Cisco ASA to work more on ease of management. * All of the features of Cisco ASA are used by all of the other vendors on the market. * The firewall solutions are all based on the same network equipment. The difference is why each business chooses to use it and how they implement the architecture for their solution using Cisco ASA and Firepower features. View full review »
Beka Gurushidze
System Administrator at ISET
For organization security, Cisco ASA NGFW has robust cyber-security features. We are planning to increase the number of firewalls installed, especially for wireless connections. View full review »
Jijish Gopi
Security Engineer at a tech services company with 201-500 employees
If you compare it with other products, other firewall products in the market, at this moment, it doesn't have that many features, no impressive feature in it, in fact. The one thing I like about the product is the logging features, the way it logs, the way it forwards the logs in Syslog. It generates the particular Syslog. Compared to other products, that is the only feature, I feel, that is good. I have worked with other firewall products, so I know it very well. The logs are pretty good. Then it forwards. When it forwards the logs to a third-party syslog server, it then writes the Syslog very well. That is the only feature I like about it. View full review »
Find out what your peers are saying about Cisco, Fortinet, Juniper and others in Firewalls. Updated: June 2019.
352,552 professionals have used our research since 2012.
Frank Theilen
IT Adviser/Manager with 51-200 employees
The Cisco ASDM management tool was helpful. View full review »
Ahmed Nagm
CEO at PCS
The feature that I found the most valuable is the overall stability of the product. View full review »
Nadika Perera
CEO at Synergy IT
I like the user interface because the navigation is very easy and straightforward. On the left side pane, you have all the sites that you need to browse. Unlike any other firewalls, it's pretty straightforward. View full review »
In432TchMn89
Information Technology Manager at a financial services firm with 10,001+ employees
I've always looked at as Cisco products as being the industry standard. They're wonderful at being able to lockdown and manage that. View full review »
Neil McFadyen
Supervisor of Computer Operations at a university
* Most of same old ASA 5520 config could be used for the new 5516-X model. The ASDM interface is improved and can also be configured to the Firepower settings. * I am used to the ASA syntax, therefore it is quite easy to make up new rules. I have found that DNS doctoring rules are useful, and I am not sure how other firewalls handle the issue of internal versus external DNS, so this was a reason to keep the same type of firewall. * Customizing logging event of syslog to feed into Splunk is very useful for management and monitoring just for the importance events instead of a huge stream of thousands of unneeded events. * I found it quite easy to block computers from the internet, e.g, in a computer lab with students doing an exam using software for the course when needed. * I use access to a list to block IPs which have attacked our web servers on the outside interface, since I do not have IPS. * I found that setting up rules for HTTPS and SSH access to the management interface are straightforward, including setting the cypher type. * It is very useful to use the command line interface for modifying or adding to the config because sometimes the ASDM interface is hard to find when the setting is more complicated. * The text config file is great to have, to know what is in the config, instead of having to check every setting in the GUI. * While the CLI is used the most, sometimes the ASDM is faster and easier to use to set some settings. View full review »
ipmplspr538920
Security Governance at a comms service provider with 1,001-5,000 employees
All features provided by the platform are quite the same for all other platforms. We rather missed some features we were used to, such as virtual routers View full review »
reviewer818484
Information Security Officer at a government with 501-1,000 employees
Integration with all the other Cisco tools is valuable. However, we've moved away from all Cisco security tools since this evaluation. Firewall choice was key to what direction we went and we found not only was the competing firewall solution superior, but their endpoint protection solution was as well. View full review »
Mbaunguraije Tjikuzu
Information Security Administrator at Bank of Namibia
The most valuable features are the firewall capabilities, filtering, and intrusion prevention. I respect the capability of the Cisco firewall. We fully use it all as a complete firewall solution. Cisco also has excellent anti-malware detection and other similar features. View full review »
Seang Haing
Team Leader Network Egnieer at deam
There are two main ways that using Cisco ASA & Firepower has improved our organization: * Technical features * Our Sales team View full review »
Fabrizio Volpe
Senior Consultant at Unify Square
ASA is stable and with a low level of work required on the maintenance side. It is a dedicated firewall, so you do not have to manage additional topics like spam, web sites filtering and so on.The routing part is high level as usual with Cisco products. View full review »
NetworkE721d
Network Engineer with 201-500 employees
IPSec Tunnel and AnyConnect (of course), the context awareness was a good feature, but clumsy at the beginning. I think it's better now. The packet tracer command is a great tool for troubleshooting IPSec Tunnel, which I miss in the Palo Alto and other firewalls. Also, the IP access list counter is a good feature while troubleshooting. View full review »
Danut Agache
Computer Networking Consultant and Contractor
Stability, high availability of services, and very high MTBU were the most valuable features for me -- because in my work as network and security consultant, it is very important to guarantee to my customer the security of his business. View full review »
BogdanV
Presales Consultant at a tech services company with 51-200 employees
Classic ASA features such as NAT, Stateful Firewall, and VPN are basic functions for average organizations, but next generation features such as the granular control of port hopping applications, IPs, and malware protection are mandatory, considering current advanced security threats. One of the most valuable features is the correlation of events, including the path that a file takes in the network and its integration with the endpoint protection. This gives you the chance to take some actions in the case a breach happens. View full review »
Nelda Hojas
Chief Information Officer at Finance Corporation Limited
Cisco is known as a popular and trusted product. Because of its constant RND, we're assured that all updates, all patches, all fixes are done instantaneously. As far as the feature is concerned, it gives us a certain layer of protection. As a CIO, my vote of confidence is in the product itself. After making sure that we always have all the updates on the licenses we're assured that we're getting all the necessary security protection. View full review »
Sergei Chernooki
IT SecOps Manager at a software R&D company with 1,001-5,000 employees
Cisco ASAs are great network firewalls and they can work for years after being configured. The best features are NAT, transport-layer inspections, and VPN. View full review »
ramesh1923
Technical Specialist with 5,001-10,000 employees
VPN (site to site VPN and remote access ), NAT policies, modular policy framework, detailed troubleshooting methods. View full review »
Syed Razvi
Network and System Engineer at a non-tech company with 201-500 employees
I enjoy the interface of Cisco products, especially the CLI version. I think the IPS feature in the product is best compared to products of other vendors. All the IPS features can be accessed from a separate interface, e.g., Cisco IDM. View full review »
Johnsey Kivoto
IT Manager at a manufacturing company with 51-200 employees
I find that the product is a very good, and secure firewall. The benefits of this product is that it is a strong firewall solution. View full review »
Alvaro Picado
Systems Manager at a non-profit with 201-500 employees
* Stability * Reliability * Trust in a manufacturer of recognized prestige During the years that we have used the product we have hardly had any incidents. View full review »
ITmgr302604
IT Manager at a construction company with 11-50 employees
Pro user-based firewall rules. View full review »
AccountMe9ae
Account Manager
Advanced malware protection, it blocks malicious attacks. View full review »
Mahmoud Ashoub
Team Leader, Information Risk Engineer at National Bank of Egypt
Its ability to discover attacks is a valuable feature. All of the other features that have to do with security are good. View full review »
BURAK YESILDERYA
IT System Administrator at a transportation company with 201-500 employees
The Cisco Product Security Incident Response creates and maintains publications, commonly referred to as PSIRT Advisories, for security-related issues in Cisco ASA. View full review »
it_user346116
I.T Security Consultant
This is our perimeter router. We used it purposely for NAT and to port forward traffic. Other essential features of a firewall are handled separately by a UTM. View full review »
Tech432SrvcMn
Technical Services Manager at a comms service provider with 10,001+ employees
The most valuable feature is the section payover. But, I think that kind of function may also come from similar products. In addition, they have the integrated ITS/IPS source powered modules. This is a new screen for us, and it is also very useful. View full review »
Reviewer8932
Technical Administrator at a tech services company
Manageability of Cisco ASA. It has a GUI interface, unlike the most of Cisco IOS. For beginners they can "sneak in" and apply the command and see the actual commands that the GUI launches. In addition, Cisco has the reputation regarding security. View full review »
ICTmanager564855
ICT Manager with 1-10 employees
* IPS * Antivirus * IP filtering View full review »
Net823Eng2
Network Engineer at a media company with 51-200 employees
The IPS (In-plane switching) is the most valuable feature. This enables visibility to our networks and to outside attacks. It is a solution to maintain the visibility. View full review »
Aaron Solis
ESS Security with 201-500 employees
Starting in version 9.7 you could track a login history for audit purposes and, in 9.8, you are able to do active/backup HA with ASAv (Adaptive Security Virtual Appliance) deployed on MS Azure. View full review »
reviewer994896
Center for Creative Leadership at a professional training and coaching company with 501-1,000 employees
Its security is the most valuable feature. View full review »
Alondra Tyler
Sales Manager at a tech services company with 11-50 employees
VPN load balancing: This has been particularly essential for my connections to integrate via multiple time zones. View full review »
Fadil Kadrat
Network Engineer at Banque des Mascareignes
* Its VPN and ASN features are very stable. * It is easy to configure. View full review »
NetworkO9ae4
Network Operations Center Team Leader at a financial services firm with 10,001+ employees
At this point, we find that this product has high productivity and high availability and there is no need for improvement. View full review »
Deanna Acre
Information Systems Manager at a manufacturing company with 201-500 employees
Its ability to work with the traffic. View full review »
Moraima Matilda
Coordinator Network Support at a manufacturing company with 501-1,000 employees
The most valuable feature is the security that it provides our company and users. Furthermore, our company uses it for making rules for the bank to connect to our server in the DMZ, which is a security challenge. View full review »
reviewer916539
User at a tech services company with 10,001+ employees
It allowed us to consolidating multiple security devices into a single appliance. It consolidated and helped us eliminate firmware upgrade issues across multiple devices. The "Keep It Simple" method. View full review »
it_user413292
Regional Manager - Pre Sales at a tech services company with 51-200 employees
In-depth monitoring and analysis. It helps us to make better decisions and policies. View full review »
JuanMartinez1
Network Consulting Engineer at a energy/utilities company with 10,001+ employees
Nothing fancy about ASA capabilities, it does its job and does it well as long as you only care about filtering ports and protocols. View full review »
AhmadManzoor
Solutions Architect at a tech services company with 51-200 employees
* Network attack detection * DoS and DDoS attack prevention * Signature-based detection * User-defined signatures with regular expressions * Integrated URL and content filtering * Custom URL categories filtering * Integarted antrivirus * Protocols scanning View full review »
Reviewer83902
Network Administrator at a financial services firm with 1,001-5,000 employees
Sourcefire has been a great addition. The visibility and control have been nice. I also like the active/standby HA. View full review »
reviewer847167
Network and Securirty Engineer at a tech vendor with 501-1,000 employees
Filtering is the best feature, as I have gotten used to using it. . View full review »
Heath Freel
President and CTO with 51-200 employees
* Strong in NAT and access-lists * Very good as a stateful inspection firewall, but weak in all other areas. View full review »
reviewer824748
User at a comms service provider with 1,001-5,000 employees
Clustering architecture which offers zero downtime upgrades, keeping uptime close to 99.999%. This creates less stress on operations and network stability throughout the various maintenance tasks. View full review »
JohnMorris
Manager with 11-50 employees
The ability to have a protected home network on the unit and a separate secured office network linked back to corporate. View full review »
Anthony Hassiotis
Senior Network Manager with 51-200 employees
* Failover * Transparent firewall * Multi-context * Logging is great. It will show when it reaches its capacity before it is too late, unless you have bursts of traffic. View full review »
Gareth Munday
‎Enterprise Manager at a tech vendor with 1,001-5,000 employees
* VPN * Firewall * IDS/IPS These features allow us to deliver services to meet client needs across various industry verticals. View full review »
Samuel May
Information Security Manager with 51-200 employees
The most valuable features for us are Firepower and the VPN concentration. These are easy to use and have good insights. View full review »
Luke Guild
Tehcnician with 201-500 employees
ASDM provides GUI for configurations. ASDM has made configuring ASA easy. No need to memorize CLI commands. View full review »
PetrPetrov
User
* AnyConnect * Double translations * Independent IPS module * High performance * Various methods of organizing a VPN View full review »
Hector Carmenates
Information Technologies Consultant at a tech services company
* Reliability * Robustness * Security features * High encryption, hashing, and integrity support * Support * High performance View full review »
davidstrom
Owner at David Strom Inc.
The user interface of the Prime Security Manager is, well, prime and one of the best pieces of software I have seen from them, and the features are on par if not better than what their competitors offer. View full review »
MohamedMostafa2
student
ASA 5505 and ASA 5506 are very powerful tools to use in a business environment, and provide a lot of security. View full review »
Tony Petcou
Business Development Executive with 51-200 employees
Find out what your peers are saying about Cisco, Fortinet, Juniper and others in Firewalls. Updated: June 2019.
352,552 professionals have used our research since 2012.
Sign Up with Email