We performed a comparison between Cisco Secure Firewall and Trellix Network Detection and Response based on real PeerSpot user reviews.
Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls."The UTM feature is quite good. FortiAP is easy to deploy because both Fortigate and FortiAP are under the same brand. Otherwise, you need to do more work on the configuration."
"The most valuable features of Fortinet FortiGate are the ability to work in proxy mode, which other solutions, such as Palo Alto cannot. There are some features that are better that come at no extra license or subscriptions cost, such as basic SD-WAN. The DLT is useful, other solutions have the same feature too, such as Palo Alto."
"The IPsec tunnels are very easily created, and quite interoperable with devices from other vendors."
"It is simple to manage, and there are a lot of functionalities in the same box."
"It's great for capturing the traffic and troubleshooting it."
"The SD-WAN is the most valuable feature."
"The simplicity of the product is great. It's very easy to use, which is a compliment we get all the time in terms of feedback."
"One of the valuable features is a standardized OS."
"An eight because it's a good security solution. It's more mature than its competitors."
"Being able to determine our active users vs inactive users has led us to increased productivity through visibility. Also, if an issue was happening with our throughput, then we wouldn't know without research. Now, notifications are more proactively happening."
"The most valuable feature is the Intrusion Prevention System."
"Cisco ASA provides us with very good application visibility and control."
"The interface is user-friendly."
"The solution's dashboard is fine, and in terms of support, Cisco is better than other OEMs in the market."
"To be honest, all of the features that are provided, all the other vendor will also have. One feature we did find valuable was the CLI, it is more accurate. Additionally, I was happy with the customization, dashboards, access lists and interface."
"The transparency of the single UI to ensure security. A product has to be simple so that an administrator can use it."
"The most valuable feature is the view into the application."
"The product has helped improve our organization by being easy to use and integrate. This saves time, trouble and money."
"The most valuable feature is MVX, which tests all of the files that have been received in an email."
"The most valuable feature is the network security module."
"The MVX Engine seems to be very capable against threats and the way it handles APTs is impressive."
"If we are receiving spam emails, or other types of malicious email coming from a particular email ID, then we are able to block them using this solution."
"Application categorization is the most valuable feature for us. Application filtering is very interesting because other products don't give you full application filtering capabilities."
"It allows us to be more hands off in checking on emails and networking traffic. We can set up a bunch of different alerts and have it alert us."
"While FortiGate is cheaper than most other solutions, we're seeing increased license renewal costs. Most of our clients are asking for more significant discounts because the price is going up."
"I haven't had a single issue since using Fortinet."
"The room for improvement is about the global delivery time period. Usually I need to wait for almost one month to deliver it overseas. So if you can shorten the deliver time it'd be great."
"Bandwidth usage in reporting could be improved for Fortinet FortiGate."
"The license renewal process, annual renewal price, and the web application firewall features should be improved."
"Stability and technical support are the two major issues I have found with Fortinet."
"Price, of course, can always be more competitive or better."
"There is a lot of improvement needed with SSL-VPN."
"It can probably provide a holistic view of different appliances because many customers do not have only one brand, besides the traditional SNMP protocols, to cover all their devices. There are some specific requirements in terms of configurations or actions that sometimes have to be done in a very manual way because of the different versions or brands in a customer's infrastructure. It could also have some additional analytics capabilities. It has some very interesting ways to monitor the traffic and identify false positives from the architecture and the environment. It would be good if there is a way to patch with some other industry-specific solutions and synchronize some of the information, such as what other customers experience in their operations and probably share some additional information that could be leveraged or shared among the industry. Such information would be something interesting to see. It could have AI capabilities related to how the appliances could benefit from learning the current environment and different exposures."
"I would like the ability to drill down into certain reports because currently, that cannot be done."
"The user interface is a little clunky and difficult to work with. Some things aren't as easy as they should be."
"Migration with other appliances is not easy. It has to be done manually, and this takes a long time."
"ASDM needs to be able to customize applets."
"Report generation is an area that should be improved."
"They should improve their interface."
"Cisco Secure Firewall's integration with cloud providers has room for improvement. We could do more in terms of integration, for example, if we had a tag on an instance."
"Management of the appliance could be greatly improved."
"It would be great if we could create granular reports based on the protocols, types of attacks, regions of attack, etc. Also we would like to easily be able to add exceptions to rules in cases of false positives."
"A better depth of view, being able to see deeper into the management process, is what I'd like to see."
"It is very expensive, the price could be better."
"The initial setup was complex because of the nature of our environment. When it comes to the type of applications and functions which we were looking at in terms of identifying malicious threats, there would be some level of complexity, if we were doing it right."
"If you want to search the hashes in the environment, you need to put in IOCs one by one, making it a very hectic job."
"We'd like the potential for better scaling."
"Certain features in Trellix Network Detection and Response, such as using AL-type commands, may initially pose a challenge for those unfamiliar with such commands. However, once users become accustomed to the system, it becomes easier to use."
More Trellix Network Detection and Response Pricing and Cost Advice →
Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews while Trellix Network Detection and Response is ranked 9th in Advanced Threat Protection (ATP) with 37 reviews. Cisco Secure Firewall is rated 8.2, while Trellix Network Detection and Response is rated 8.4. The top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". On the other hand, the top reviewer of Trellix Network Detection and Response writes "Offers in-depth investigation capabilities, integrates well and smoothly transitioned from a lower-capacity appliance to a higher one". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Palo Alto Networks NG Firewalls, whereas Trellix Network Detection and Response is most compared with Fortinet FortiSandbox, Palo Alto Networks WildFire, Zscaler Internet Access, Vectra AI and Zabbix.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.