Most Helpful Review
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
For us, the most valuable features are the IPX and the Sourcefire Defense Center module. That gives us visibility into the traffic coming in and going out, and gives us the heads-up if there is a potential outbreak or potential malicious user who is trying to access the site. It also helps us see traffic generated by an end device trying to reach out to the world.
The information coming from Talos does a good job... I like the fact that Cisco is working with them and getting the information from them and updating the firewall.
The firepower sensors have been great; they do a good job of dropping unwanted traffic.
Unfortunately in Cisco, only the hardware was good.
The most important point is the detection engine which is now part of the next-generation firewalls and which is supported by Cisco Talos.
The most valuable feature of this solution is AMP (Advanced Malware Protection), as this is really needed to protect against cyber threats.
I like the Cisco ASDM (Adaptive Security Device Manager), which is the configuration interface for the Cisco firewall.
The technical team is always available when we have problems.
For business purposes, it's a very detailed solution, which is it's greatest benefit, as you can get almost any piece of information you need from the solution. It allows for admins to be able to troubleshoot pretty easily.
A stable and solid solution for protection from external threats and for VPN connections.
The best solutions for our company are those we have yet to implement so it will be even better in the future for us than it already is.
The stability is good. Very simple. Upgrades are great.
The feature I find most valuable is the Cisco VPN Interconnection.
What I like about Cisco is the security zone. By default when you configure it, it gives you a security zone, which other firewalls don't have.
We are using the Cisco AnyConnect for our end-user VPN with the ASA.
The basic setup is fine. We're just one person. It's only when you want to do some more sophisticated setup like channeling and stuff like that that it's more complicated.
It handles our current load with ease, and I think it can handle a bit more. It definitely can handle a lot more capacity than we currently use.
It is very useful to make lists for rules and prepare firewall rules.
The customer care center of Fortinet is good. For all the requests that we have done, they work as fast as possible, so this is a good point for Fortinet.
There is an interesting possibility of building a tunnel to a firewall from access points. We use this feature for small branch offices with one to two employees with access to central RDP servers.
One top feature is the ability to use the appliance as a WLAN controller for up to 10 access points with the new 5.6 firmware.
A top feature is the really good web interface and the classic Fortinet features, such as IPS, IDS, AV scanner, and spam filter.
Initial setup was quite straightforward, as we can simply head to the required sections to apply the planned network.
We use it to ensure that our network is properly protected from viruses and malware.
We were also not too thrilled when Cisco announced that in the upcoming new-gen ASA, iOS was not going to be supported, or if you install them, they will not be able to be managed through the Sourcefire. However, it seems like Cisco is moving away from the ASA iOS to the Sourcefire FireSIGHT firmware for the ASA. We haven't had a chance to test it out.
Our latest experience with a code upgrade included a number of bugs and issues that we ran into. So more testing with their code, before it hits us, would help.
The software was very buggy, to the point it had to be removed.
In NGFW, Cisco should be aligned with the new technology and inspection intelligence because Cisco is far behind in this pipeline.
Most users do not have awareness of this product's functionality and features. Cisco should do something to make them aware of them. That would be quite excellent and useful to organizations that are still using legacy data-center-security products.
I have found that Cisco reporting capabilities are not as rich as other products, so the reporting could be improved.
The Sandbox and the Web Censoring in this solution need to be improved.
It will be nice if they had what you traditionally would use a web application scanner for. If the solution could take a deeper look into HTTP and HTTPS traffic, that would be nice.
I'm working on a slightly older version, but what it needs is a better alert management. It's pretty standard, but there's no real advanced features involved around it.
It is not the newest, cutting-edge technology
The user interface is too complex for people who are not trained to or certified to engage with the product. The interface should be easier to use.
They really need support for deployment.
They should allow customers to talk to them directly instead of having to go through the reseller.
I wish the Cisco interface was not so granular. Check Point was easier to create specific rules than with ASAv.
I would like to see them release a patch for ASAv with cross-platform FirePower integration.
The user interface is old fashioned.
The GUI could be improved.
The price is sometimes very expensive.
In the first two releases of FortiOS 5.6, we had some trouble with the SSL VPN service. Sometimes it stopped working, and the IPS daemon too.
Improvements are needed for the responsive UI and JIT traffic reporting.
The management tools should be more user-friendly.
We encountered scalability issues in IPSec Module. The tunnels freeze sometimes.
There were challenges during setup, and many of them were self-inflicted.
The user interface (UI) and the performance of interface both need improvement.
Pricing and Cost Advice
Pricing varies on the model and the features we are using. It could be anywhere from $600 to $1000 to up to $7,000 per year, depending on what model and what feature sets are available to us.
We used Check Point and the two are comparable. Cost was really what put us onto the ASAs... the price tag for Check Point was exorbitantly more than what it is for the ASA solution.
Always consider what you might need to reduce your wasted time and invest it in other solutions.
We are in the process of renewing our three-year license, which costs approximately $24,000 USD for the thirty-six months.
The pricing for Cisco products is higher than others, but Cisco is a very good, strong, and stable technology.
The program is very expensive.
The cost of this solution is high.
Some of our customers would be more likely to standardize on Cisco equipment if the cost was lower because a lot of people install cheap equipment.
It would be nice if pricing could do more to reflect the economy of the country where the product is being implemented.
This solution might be expensive, but it is economical in the long run.
With AnyConnect, it depends on your license. It depends on the number of concurrent users you want to connect.
I bought a license for three years and it was really affordable.
We are partners with Cisco. They are always one call away, which is good. They know how to keep their customers happy.
With the Cisco ASA, you do get what you pay for. What would really be awesome is to see Cisco blow out a real cheap version where you can use the sandbox, but leave it step-wise and go to another product relatively easily, like getting you hooked on candy.
Purchasing from the AWS Marketplace was easy. It was just point and click.
It is pay-as-you-go, so it much cheaper than buying in the plants.
The price: It is a bit higher than the other competitors. This is why I started to look at other brands.
The basic pricing in Austria is OK, but asking for special offers, e.g., NPOs, NGOs, trade up, and/or trade in, is always useful.
The price is expensive compared with other vendors, like Cisco and Huawei.
The best part of Fortinet is the license is bundled together, so it is easy to use and apply.
The pricing and licensing are not as expensive as its competitors.
It is on par with what you receive. It can be expensive upfront.
It would be nice to have the ability to extend FortiGuard subscriptions at a reasonable yearly cost versus a bulk three year pricing.
It is an expensive solution if you are migrating from an open source solution.
Compared 38% of the time.
Compared 11% of the time.
Compared 9% of the time.
Compared 31% of the time.
Compared 30% of the time.
Compared 11% of the time.
Compared 30% of the time.
Compared 16% of the time.
Compared 13% of the time.
Also Known As
|Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls||Adaptive Security Virtual Appliance||FortiGate Virtual Appliance|
Adaptive Security Appliance (ASA) is Cisco's end-to-end software solution and core operating system that powers the Cisco ASA product series. This software solution provides enterprise-level firewall capabilities for all types of ASA products, including blades, standalone appliances and virtual devices. Adaptive Security Appliance provides protection to organizations of all sizes, and allows end-users to access information securely anywhere, at any time, and through any device.
Adaptive Security Appliance is also fully compatible with other key security technologies, and so provides organizations with an all-encompassing security solution.
Block more threats and quickly mitigate those that do breach your defenses with the industry’s first threat-focused NGFW.
FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.
Learn more about Cisco ASA NGFW
Learn more about Cisco ASAv
Learn more about FortiGate-VM
|There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.||Bluelock||Security7 Networks, COOPENAE|
Financial Services Firm20%
Comms Service Provider9%
Software R&D Company29%
Comms Service Provider16%
Financial Services Firm27%
Comms Service Provider20%
No Data Available
No Data Available