Cisco Firepower NGFW Valuable Features

JoshuaThums
Network Administration Lead at Forest County Potawatomi Community
The most valuable features of Cisco firewalls are the IPS and IDS items. We find them very helpful. Those are the biggest things because we have some odd, custom-made products in our environment. What we've found through the IPS and IDS is that their vulnerability engines have caught things that are near-Zero-day items, inside of our network. Those items are capable being exploited although they were not actually being exploited. Being able to see what those exploits are, the potential for vulnerabilities and exploits, is critical for us. View full review »
Dave Cooper
Network Engineer at CoVantage Credit Union
It's the brick wall that keeps us from the bad guys. It does a lot of things. In the beginning when you just have a firewall, of course, it's your NAT and it's your Access Control List. It's the thing that allows traffic in and out. There is some routing involved in that too. But once you add Firepower onto to it and you start enabling some of its features, you get some IDS/IPS involved with it and you can even do web filtering. We used to do some web filtering on the Firepower but we moved into Umbrella once we started. We do use Firepower for one piece of web filtering because Umbrella has yet to provide it: advertisement blocking. We don't allow our end-users to go into advertisements. If they're going to go to a site, they have to know what the site is, not just try to hit some kind of Google ad to get to it because those can be dangerous. View full review »
Al Faruq Ibna Nazim
Head of Technology at Computer Services Ltd.
Cisco Firepower NGFW is really easy to use right now to determine when my file requires a shift from primary to secondary status, and it can be done with automation. Earlier we used to do this with patching. I would say the Cisco Firepower NGFW actually gives superior intelligent behavior to transfer its active/passive infrastructure. Overall, Cisco Firepower NGFW has been a good power element in our systems due to its central location. View full review »
Find out what your peers are saying about Cisco, Fortinet, pfSense and others in Firewalls. Updated: September 2019.
372,124 professionals have used our research since 2012.
Girish Vyas
Architect - Cloud Serviced at a comms service provider with 11-50 employees
Firepower is an okay product. However, it is better as a firewall than the IPS or other services it provides. View full review »
sentwrkpres56
Senior Network Support & Presales Engineer at a tech services company with 51-200 employees
The Firepower Management Center is an easy way to manage the devices centrally. I guess this is something that all vendors provide so it's nothing special. I like the way Firepower presents the data. It gives you two classifications for the evidence, something based on the priority of the evidence and another classification based on the impact of the evidence in your environment. This makes it very easy to spot the evidence that is most impactful to my environment. Instead of having to go through all the evidence based on that priority, I can focus on the evidence that has the most impact on my environment. Sometimes you might have a high priority event but it has nothing to do with your environment. You have a vulnerability. You don't have to treat a vulnerability as an attack. Since you're not vulnerable, it's not impactful to your environment so you don't have to focus on it. This is something that other products don't provide. It is very flexible. You can have the next generation firewall work as a physical connection or as a Layer 2 device. You can have a combination of Layer 2 and Layer 3, which is really good. View full review »
Seniodascie9887
Senior Data Scientist & Analytics at a tech services company with 11-50 employees
The architecture of FTD is great because it has an in-depth coverage and because it uses the AVC, (Application, Visibility, and Control) and also rate limits. Also, the architecture of fast paths is great. View full review »
Nathan Chadwick
Technology Associate at a financial services firm with 1-10 employees
The IPsec VPN and web filtering. View full review »
Ali Abdo
Technical Manager at a comms service provider with 1,001-5,000 employees
They give me more visibility of what's going on when traffic comes in and goes out from the company or comes in from the outside. I can see what's going on with this traffic, which is a nice feature. I also like the malware inspection and management of the dashboard features. The management of the dashboard is different from the old Cisco Firewall. This management brings everything together into one management platform. View full review »
Informa9889
Information Systems Manager with 1-10 employees
With this solution, you can have an inspection of each package and see what the threat level it's at. It has made the work more dynamic. We don't have to block as much like we had to in the old days. View full review »
Iz
Assistant Manager (Infrastructure) with 1-10 employees
* Snort IPS with recommendation template * Extendable hardware module * Straightforward licensing * Cisco product integration View full review »
asstmana149958
Asst.Manager IT at a manufacturing company with 501-1,000 employees
All the features are good. The GUI is among the most valuable. View full review »
Gerald Zauner
Data Center Architect at Fronius International
It has many features but not all of them work. The features aren't stable enough for us to use them. The most valuable features are the firewalling and the deep inspection. View full review »
Presales489d
Presales Engineer
Monitoring, of course - the dashboard. It enables you to see what is happening. View full review »
Omid Najafi
Managing Director at Fasp
The most valuable feature of the Firepower solution is FireSIGHT, which can be easily managed and is user-friendly. View full review »
Vishal Punjabi
Consultant
Management Console and user profiling to define activities. View full review »
OscarCastillo
Network Engineer at IT Security
I like the easy administration. View full review »
David Hartt
‎Senior Vice President at a transportation company with 51-200 employees
DMZ segmentation, and IDS and IPS. View full review »
Pablo Torrejon
Support Engineer at a tech services company with 51-200 employees
We can shift traffic, block certain content, or redirect policies. View full review »
Yasir Al-Musawi
Network Security Specialist at a financial services firm with 501-1,000 employees
It is easy to create interfaces and routing, which all can be done at the GUI level. For now, we are still going around the services and will add more in the future. View full review »
Find out what your peers are saying about Cisco, Fortinet, pfSense and others in Firewalls. Updated: September 2019.
372,124 professionals have used our research since 2012.
Sign Up with Email