Cisco ASA NGFW Valuable Features

Network & Security Administrator at Diamond Bank Plc
I would say the Firepower module is most valuable. I'm trying more to transition to this kind firewall. I had to study a little of the Palo Alto Networks equipment. There is a lot I have to learn about the difference. Based on my certification, I had to do a lot of lab work, a lot of projects, a lot of technical work with Cisco ASA. Now, I'm moving to other vendors, like Palo Alto Networks and Fortinet so that I can empower my level of technical experience. * All my change requests are for Cisco ASA to work more on ease of management. * All of the features of Cisco ASA are used by all of the other vendors on the market. * The firewall solutions are all based on the same network equipment. The difference is why each business chooses to use it and how they implement the architecture for their solution using Cisco ASA and Firepower features. View full review »
Beka Gurushidze
System Administrator at ISET
For organization security, Cisco ASA NGFW has robust cyber-security features. We are planning to increase the number of firewalls installed, especially for wireless connections. View full review »
Amit Gumber
Senior Manager at HCL Technologies
One of the most valuable features in the current version is the dashboard where we have a complete analytical view of the traffic behavior. We can immediately find anomalies. The most important point is the detection engine which is now part of the next-generation firewalls and which is supported by Cisco Talos. View full review »
Find out what your peers are saying about Cisco, Fortinet, Juniper and others in Firewalls. Updated: September 2019.
371,917 professionals have used our research since 2012.
Jijish Gopi
Security Engineer at a tech services company with 201-500 employees
If you compare it with other products, other firewall products in the market, at this moment, it doesn't have that many features, no impressive feature in it, in fact. The one thing I like about the product is the logging features, the way it logs, the way it forwards the logs in Syslog. It generates the particular Syslog. Compared to other products, that is the only feature, I feel, that is good. I have worked with other firewall products, so I know it very well. The logs are pretty good. Then it forwards. When it forwards the logs to a third-party syslog server, it then writes the Syslog very well. That is the only feature I like about it. View full review »
Ahmed Nagm
The feature that I found the most valuable is the overall stability of the product. View full review »
Nadika Perera
CEO at Synergy IT
I like the user interface because the navigation is very easy and straightforward. On the left side pane, you have all the sites that you need to browse. Unlike any other firewalls, it's pretty straightforward. View full review »
Information Technology Manager at a financial services firm with 10,001+ employees
I've always looked at as Cisco products as being the industry standard. They're wonderful at being able to lockdown and manage that. View full review »
Neil McFadyen
Supervisor of Computer Operations at a university
* Most of same old ASA 5520 config could be used for the new 5516-X model. The ASDM interface is improved and can also be configured to the Firepower settings. * I am used to the ASA syntax, therefore it is quite easy to make up new rules. I have found that DNS doctoring rules are useful, and I am not sure how other firewalls handle the issue of internal versus external DNS, so this was a reason to keep the same type of firewall. * Customizing logging event of syslog to feed into Splunk is very useful for management and monitoring just for the importance events instead of a huge stream of thousands of unneeded events. * I found it quite easy to block computers from the internet, e.g, in a computer lab with students doing an exam using software for the course when needed. * I use access to a list to block IPs which have attacked our web servers on the outside interface, since I do not have IPS. * I found that setting up rules for HTTPS and SSH access to the management interface are straightforward, including setting the cypher type. * It is very useful to use the command line interface for modifying or adding to the config because sometimes the ASDM interface is hard to find when the setting is more complicated. * The text config file is great to have, to know what is in the config, instead of having to check every setting in the GUI. * While the CLI is used the most, sometimes the ASDM is faster and easier to use to set some settings. View full review »
Imad Awwad
Group IT Manager at Malia Group
Unfortunately in Cisco, only the hardware was good. As for the features and services it was less than the others. Having all of the features means higher specs of hardware and intelligence processing so that it can handle all the logs proactively. Now, what is needed from the Information security, is to be proactively aware of any threat that might expose our data and at the same time have full visibility over our information sharing endpoints. View full review »
Security Governance at a comms service provider with 1,001-5,000 employees
All features provided by the platform are quite the same for all other platforms. We rather missed some features we were used to, such as virtual routers View full review »
Information Security Officer at a government with 501-1,000 employees
Integration with all the other Cisco tools is valuable. However, we've moved away from all Cisco security tools since this evaluation. Firewall choice was key to what direction we went and we found not only was the competing firewall solution superior, but their endpoint protection solution was as well. View full review »
Mbaunguraije Tjikuzu
Information Security Administrator at Bank of Namibia
The most valuable features are the firewall capabilities, filtering, and intrusion prevention. I respect the capability of the Cisco firewall. We fully use it all as a complete firewall solution. Cisco also has excellent anti-malware detection and other similar features. View full review »
Seang Haing
Team Leader Network Egnieer at deam
There are two main ways that using Cisco ASA & Firepower has improved our organization: * Technical features * Our Sales team View full review »
Fabrizio Volpe
Senior Consultant at Unify Square
ASA is stable and with a low level of work required on the maintenance side. It is a dedicated firewall, so you do not have to manage additional topics like spam, web sites filtering and so on.The routing part is high level as usual with Cisco products. View full review »
Nelda Hojas
Chief Information Officer at Finance Corporation Limited
Cisco is known as a popular and trusted product. Because of its constant RND, we're assured that all updates, all patches, all fixes are done instantaneously. As far as the feature is concerned, it gives us a certain layer of protection. As a CIO, my vote of confidence is in the product itself. After making sure that we always have all the updates on the licenses we're assured that we're getting all the necessary security protection. View full review »
IT Specialist at a government with 1,001-5,000 employees
The most valuable features are the flexibility and level of security that this solution provides. View full review »
Johnsey Kivoto
IT Manager at a manufacturing company with 51-200 employees
I find that the product is a very good, and secure firewall. The benefits of this product is that it is a strong firewall solution. View full review »
Alvaro Picado
Systems Manager at a non-profit with 201-500 employees
* Stability * Reliability * Trust in a manufacturer of recognized prestige During the years that we have used the product we have hardly had any incidents. View full review »
IT Manager at a construction company with 11-50 employees
Pro user-based firewall rules. View full review »
Account Manager
Advanced malware protection, it blocks malicious attacks. View full review »
Mahmoud Ashoub
Team Leader, Information Risk Engineer at National Bank of Egypt
Its ability to discover attacks is a valuable feature. All of the other features that have to do with security are good. View full review »
IT System Administrator at a transportation company with 201-500 employees
The Cisco Product Security Incident Response creates and maintains publications, commonly referred to as PSIRT Advisories, for security-related issues in Cisco ASA. View full review »
I.T Security Consultant
This is our perimeter router. We used it purposely for NAT and to port forward traffic. Other essential features of a firewall are handled separately by a UTM. View full review »
Technical Services Manager at a comms service provider with 10,001+ employees
The most valuable feature is the section payover. But, I think that kind of function may also come from similar products. In addition, they have the integrated ITS/IPS source powered modules. This is a new screen for us, and it is also very useful. View full review »
Technical Administrator at a tech services company
Manageability of Cisco ASA. It has a GUI interface, unlike the most of Cisco IOS. For beginners they can "sneak in" and apply the command and see the actual commands that the GUI launches. In addition, Cisco has the reputation regarding security. View full review »
ICT Manager with 1-10 employees
* IPS * Antivirus * IP filtering View full review »
Network Engineer at a media company with 51-200 employees
The IPS (In-plane switching) is the most valuable feature. This enables visibility to our networks and to outside attacks. It is a solution to maintain the visibility. View full review »
Aaron Solis
ESS Security with 201-500 employees
Starting in version 9.7 you could track a login history for audit purposes and, in 9.8, you are able to do active/backup HA with ASAv (Adaptive Security Virtual Appliance) deployed on MS Azure. View full review »
Center for Creative Leadership at a professional training and coaching company with 501-1,000 employees
Its security is the most valuable feature. View full review »
Alondra Tyler
Sales Manager at a tech services company with 11-50 employees
VPN load balancing: This has been particularly essential for my connections to integrate via multiple time zones. View full review »
Fadil Kadrat
Network Engineer at Banque des Mascareignes
* Its VPN and ASN features are very stable. * It is easy to configure. View full review »
Network Operations Center Team Leader at a financial services firm with 10,001+ employees
At this point, we find that this product has high productivity and high availability and there is no need for improvement. View full review »
Deanna Acre
Information Systems Manager at a manufacturing company with 201-500 employees
Its ability to work with the traffic. View full review »
Moraima Matilda
Coordinator Network Support at a manufacturing company with 501-1,000 employees
The most valuable feature is the security that it provides our company and users. Furthermore, our company uses it for making rules for the bank to connect to our server in the DMZ, which is a security challenge. View full review »
User at a tech services company with 10,001+ employees
It allowed us to consolidating multiple security devices into a single appliance. It consolidated and helped us eliminate firmware upgrade issues across multiple devices. The "Keep It Simple" method. View full review »
Regional Manager - Pre Sales at a tech services company with 51-200 employees
In-depth monitoring and analysis. It helps us to make better decisions and policies. View full review »
Network Consulting Engineer at a energy/utilities company with 10,001+ employees
Nothing fancy about ASA capabilities, it does its job and does it well as long as you only care about filtering ports and protocols. View full review »
Solutions Architect at a tech services company with 51-200 employees
* Network attack detection * DoS and DDoS attack prevention * Signature-based detection * User-defined signatures with regular expressions * Integrated URL and content filtering * Custom URL categories filtering * Integarted antrivirus * Protocols scanning View full review »
Network Administrator at a financial services firm with 1,001-5,000 employees
Sourcefire has been a great addition. The visibility and control have been nice. I also like the active/standby HA. View full review »
Network and Securirty Engineer at a tech vendor with 501-1,000 employees
Filtering is the best feature, as I have gotten used to using it. . View full review »
Heath Freel
President and CTO with 51-200 employees
* Strong in NAT and access-lists * Very good as a stateful inspection firewall, but weak in all other areas. View full review »
User at a comms service provider with 1,001-5,000 employees
Clustering architecture which offers zero downtime upgrades, keeping uptime close to 99.999%. This creates less stress on operations and network stability throughout the various maintenance tasks. View full review »
Tracey Jackson
Senior Network Engineer at a university with 1,001-5,000 employees
The VDB updates run on schedule, so less hands-on configuration is needed. View full review »
Manager with 11-50 employees
The ability to have a protected home network on the unit and a separate secured office network linked back to corporate. View full review »
Anthony Hassiotis
Senior Network Manager with 51-200 employees
* Failover * Transparent firewall * Multi-context * Logging is great. It will show when it reaches its capacity before it is too late, unless you have bursts of traffic. View full review »
Gareth Munday
‎Enterprise Manager at a tech vendor with 1,001-5,000 employees
* VPN * Firewall * IDS/IPS These features allow us to deliver services to meet client needs across various industry verticals. View full review »
Samuel May
Information Security Manager with 51-200 employees
The most valuable features for us are Firepower and the VPN concentration. These are easy to use and have good insights. View full review »
Luke Guild
Tehcnician with 201-500 employees
ASDM provides GUI for configurations. ASDM has made configuring ASA easy. No need to memorize CLI commands. View full review »
* AnyConnect * Double translations * Independent IPS module * High performance * Various methods of organizing a VPN View full review »
Hector Carmenates
Information Technologies Consultant at a tech services company
* Reliability * Robustness * Security features * High encryption, hashing, and integrity support * Support * High performance View full review »
ASA 5505 and ASA 5506 are very powerful tools to use in a business environment, and provide a lot of security. View full review »
Tony Petcou
Business Development Executive with 51-200 employees
Find out what your peers are saying about Cisco, Fortinet, Juniper and others in Firewalls. Updated: September 2019.
371,917 professionals have used our research since 2012.
Sign Up with Email