Most Helpful Review
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The user interface is easy to navigate."
"It is very stable compared to other firewall products."
"The management aspect of the product is very straightforward."
"The best features are stability and scalability."
"Unfortunately in Cisco, only the hardware was good."
"The most valuable feature must be AnyConnect. We have quite a few customers who use it. It is easy to use and the stablest thing that we have. We have experienced some issues on all our VPN clients, but AnyConnect has been the stablest one."
"The traffic inspection and the Firepower engine are the most valuable features. It gives you full details, application details, traffic monitoring, and the threats. It gives you all the containers the user is using, especially at the application level. The solution also provides application visibility and control."
"If we look at the Cisco ASA without Firepower, then one of the most valuable features is the URL filtering."
"The main benefit of the Check Point Virtual Systems solution is its ability to split up the hardware appliances that we have into several logical, virtual devices with separate traffic handling policies, as well as the switching and routing."
"The most valuable feature for us is the cluster support."
"As per the solution's blade design, there are many options. For example, you have to buy a UTM blade and an advanced malware blade, etc. If the blade license is there, we can configure from the firewall GUI."
"A unique architecture makes this product stand out from other solutions."
"The IPS, application and URL filtering, as well as Identity Awareness, are all very valuable features."
"We find Check Point valuable because they are 100% focused on security. It totally closes the potential vulnerability channel. We can check our mail and our attachments and we can scan everything easily. We get an immediate report about the situation of the attachments. We can discover if the target's security attack was started from phishing, etc. We also enjoy using the additional features that protect our internal customer from targeted attacks."
"The program is very stable."
"The most valuable feature of this solution is that you can start off with a simple firewall and expand it to UTM."
"The most valuable feature is the cloud-based protection against zero-day malware attacks."
"What I like about Palo Alto is that it is a complete product, with everything in it."
"The most valuable feature is the improved security that it offers."
"The technical support is good."
"For example, if a security Intel threat talks about an IOC. We can then go to our MSP and say, "Is there a signature for this particular type of malware that just came out?" And if they'll say yes, then we'll say, "Okay. Does it apply to these firewalls? And have we seen any hits on it?" There's absolutely value in it."
"The most valuable feature for us is the VPN."
"Using WildFire has reduced the number of viruses and the amount of malware that comes into our system, which means that I don't have to rely on the end-users to identify it."
"The way that the solution quickly updates to adjust to threats is the solution's most valuable aspect. When there's a security attack, within five minutes, all Wildfire subscribers have access to updates so that all systems will be safe. Its threat prevention is way better than other vendor products."
"The annual subscription cost is a bit high. They should try to make it comparable to other offerings. We have a number of Chinese products here in Pakistan, which are already, very cheap and have less annual maintenance costs compared to Cisco."
"They need a user-friendly interface that we could easily configure."
"It would be nice if you didn't have to configure using a command-line interface. It's a bit technical that way."
"You shouldn't have to use the ASDM to help manage the client."
"In NGFW, Cisco should be aligned with the new technology and inspection intelligence because Cisco is far behind in this pipeline."
"One of the problems that we have had is the solution requires Java to work. This has caused some problems with the application visibility and control. When the Java works, it is good, but Java wasn't a good choice. I don't like the Java implementation. It can be difficult to work with sometimes."
"Security generally requires integration with many devices, and the management side of that process could be enhanced somewhat. It would help if there was a clear view of the integrations and what the easiest way to do them is."
"One area where the ASA could be improved is that it doesn't have AMP. When you get an ASA with the Firepower model, ASA with FTD, then you have advanced malware protection."
"As an administrator, I can say that among all of the Check Point products I have been working with so far, the Virtual Systems solution is one of the most difficult."
"Our biggest complaint concerns the high resource usage for IDP/IPS, as we cannot turn on all of the features even with new hardware."
"If you compare the GUI with the Palo Alto and Forcepoint in the Cisco, they're very easy. Check Point, due to its design, is a little bit complex. They should make the GUI easy to use so that anyone can understand it easily, like Fortinet's GUI. Many companies end up using Fortinet because the GUI is very easy, and there's no need for training. They just deploy the box and do the configuration."
"It can be difficult to install properly without prior training"
"Sometimes, if you aren't familiar with the solution, it can be a bit complex, but it does become easier to use with time. However, every time they launch a new version, it becomes more complex and you need to take time to get familiar with all the changes. For every version that they upgrade, you need to upskill yourself."
"The stability of the solution could be improved, but this is the problem of all the solutions in the market. This isn't just a problem specific to Check Point."
"It is a very expensive program and there are additional costs despite the standard licensing fees."
"The management console can be simplified because at the moment, it is a bit of a challenge to use."
"The only complaint that we receive from our customers is in regards to the price."
"In the future, I would like to see more automation in the reporting."
"The price of WildFire should be reduced in order to make it more affordable for our customers."
"The deployment model could be better."
"It's not really their problem, it's a problem across the board. There will always be problems with interrupted traffic. We have to set it up where we're playing a middle man game where we're stripping it out, looking at it, and then putting it back together and sending it on its way. That requires CPU cycles. And there's some overhead with that."
"When you contact support, there is no guarantee that they will be available to help you tackle the issue that you are facing."
"It would be nice if there was an easier way to install and deploy it, such as through the inclusion of wizards."
"The size of Palo Alto's cloud is big but it could be easier to use from a product management perspective."
Pricing and Cost Advice
"We pay about $200 yearly and we have two firewalls."
"It's very competitive with other products."
"Cisco is considered to be an expensive solution."
"Always consider what you might need to reduce your wasted time and invest it in other solutions."
"The licensing is a bit off because the physical firewall is cheaper than the virtual one. We only have the physical ones as they are cheaper than the virtual ones. We only use the physical firewalls because of the price difference."
"There is room for improvement in the pricing when compared to the market. Although, when you compare the benefits of support from Cisco, you can adjust the value and it becomes comparable, because you usually need very good support. So you gain value there with this device."
"When it comes to Cisco, the price of everything is higher. Cisco firewalls are expensive, but we get support from Cisco, and that support is very active."
"It's a brilliant firewall, and the fact that it comes with a perpetual license really does go far in terms of helping the organization in not having to deal with those costs on an annual basis. That is a pain point when it comes to services like the ones we have on Fortigate. That's where we really give Cisco firewalls the thumbs up."
"We pay approximately €150,000 ($166,000 USD) per year."
"It is more expensive than other solutions and would be more competetive in the market if it came down in price."
"On average, it is normally on the lower end, being less expensive than Palo Alto or Cisco."
"This is an expensive product and the market for Palo Alto in Poland could be much bigger if the pricing was comparable to Fortinet."
"The pricing is highly expensive."
"I think they should lower the price of this solution"
"This solution is very pricey and it depends on the package that you implement."
"We pay between $3,000 and $4,000 CAD ($2,200 - $3,000 USD) per year to maintain this solution."
"The licensing fees are on an annual basis, and there are no costs in addition to the standard fees."
"It's pretty expensive but with respect to value for money, it's okay."
"It is a reasonable price compared to other solutions on the market."
Questions from the Community
Top Answer: Fortinet FGs: Great devices, relatively easy to deploy and maintain. Cheaper than most devices of their kind. If you're… more »
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Ask a question
Earn 20 points
Top Answer: Palo Alto was the first company to tackle perimeter protection via applications instead of port blocking their install… more »
Top Answer: The way that the solution quickly updates to adjust to threats is the solution's most valuable aspect. When there's a… more »
Top Answer: The pricing of the solution is a bit higher, but it's worth the extra money you will spend because of the protection… more »
Compared 34% of the time.
Compared 15% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 1% of the time.
Compared 43% of the time.
Compared 12% of the time.
Compared 7% of the time.
Compared 6% of the time.
Compared 4% of the time.
Compared 19% of the time.
Compared 12% of the time.
Compared 9% of the time.
Compared 7% of the time.
Compared 3% of the time.
Also Known As
|Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv||Check Point VSX|
|Cisco||Check Point||Palo Alto Networks|
Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.
Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.
Check Point Virtual Systems taps the power of virtualization to consolidate and simplify security for private clouds while delivering a lower total cost of ownership. It enables customized security against evolving network threats with the extensible Software Blade Architecture. Virtual Systems is supported on Check Point Appliances, including the 61000 Security System as well as open servers.
Learn more about Virtual systems
|WildFire™ cloud-based threat analysis service is the industry’s most advanced analysis and prevention engine for highly evasive zero-day exploits and malware. The cloud-based service employs a unique multi-technique approach combining dynamic and static analysis, innovative machine learning techniques, and a groundbreaking bare metal analysis environment to detect and prevent even the most evasive threats.|
Learn more about Cisco ASA Firewall
Learn more about Check Point Virtual Systems
Learn more about Palo Alto Networks WildFire
|There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.||Bentley Systems, Almaviva TSF S.p.A, Yankuang Group, Mitsubishi Heavy Industries Ltd.||Novamedia, Nexon Asia Pacific, Lenovo, Samsonite, IOOF, Sinogrid, SanDisk Corporation|
Financial Services Firm19%
Comms Service Provider13%
Computer Software Company28%
Comms Service Provider23%
Financial Services Firm25%
Computer Software Company39%
Comms Service Provider21%
Comms Service Provider15%
Computer Software Company31%
Comms Service Provider18%
See our list of .