We performed a comparison between Cisco Defense Orchestrator and ManageEngine Firewall Analyzer based on real PeerSpot user reviews.
Find out what your peers are saying about AlgoSec, Tufin, Palo Alto Networks and others in Firewall Security Management."With Cisco Defense Orchestrator, we can manage the complete Cisco Security solution. It provides a simple and centralized way to manage all products."
"The ability to do operations on multiple firewalls at once is valuable because it saves time and mental effort. The solution's ability to make bulk changes makes it very convenient to manage things at once on multiple targets."
"The most valuable feature is being able to do centralized upgrades on the ASAs. We can select all of those ASAs, and say, "Upgrade these ASAs at this scheduled time." It will copy down the ASA image, ASDM image, and then do the upgrade and failovers, and then put it all back into service as required at a scheduled time. It automates that process for us."
"The most valuable feature is the Intrusion prevention."
"When we're looking to the policies, it identifies the shadow rules. It notifies us about anything that will supersede other rules."
"We use a lot of image upgrades. We take some 20 devices and then we update everything at once, including the policies. We apply policies for groups. For certain groups, like anti-viruses, we send out policies and apply them to every single device. It's really easy and simple."
"The bulk changes feature is definitely the most valuable."
"For this product, they are very uncharacteristically interested in resolving whatever issue the customer reports. They're really attentive, and they address whatever we bring up as quickly as they can. That's been a very positive aspect of the product."
"Overall the solution does a good job."
"The most valuable features of the ManageEngine Firewall Analyzer are the monitoring of the full management of the network elements and the inventory of the infrastructure."
"I found the reporting to be useful because not only can I go back months, but it lists the individual URLs and the time that a particular person visited."
"Firewall Analyzer helps our organization to fulfill the compliance requirement as per ISO 27001, managing the network security effectively."
"Firewall Analyzer is easy to work with."
"I've found dozens of bugs over the year we've been using it. The more I use it for different things, the more problems I find... Most of the problems have to do with the user interface. A lot of thought and work has gone into the back-end component to make the product do what it's intended to do, but the way it is presented for use hasn't gotten nearly as much thought to make it smart and bug-free."
"They need to work on the user interface. It needs to be improved to make it more user-friendly."
"I'd like CDO to be the one-stop-shop where we could do all the configurations easily. It would be nice, for ASA upgrades, if we could do them from a central repository and not have to reach out to Cisco. That would be a definite plus."
"If I make a change locally to the firewall, CDO gives an alarm or an error message and says there's a change in compliance: "The firewall has this configuration but the last time it was compiled it had that configuration." That view of new changes versus the old could be better... I had to log in manually, locally on the firewall, to check which version, which configuration was actually running. I couldn't see it in CDO."
"CDO doesn't have a report, an official report that I can check daily. It has another module called FTD, but it doesn't have that specifically for ASA. In the reporting, there are a lot of things that aren't there. There is also room for improvement in the daily monitoring."
"It would be a better product if it incorporated device control for third-party products easily."
"The main thing that would useful for us would the logging and monitoring. I have to check it out, to get the beta, because I don't have access to them... I wanted CDO to be a central place so where I could do everything but right now I don't think that's possible. I really don't want to go back and forth between this and FMC. Maybe the logging portion, when I look at it, will give me some similarities."
"Cisco Defense Orchestrator can improve by providing more support for third-party security components."
"It would be awesome if the product could monitor services for applications."
"The solution lacks a lot of features that other products have in the marketplace."
"ManageEngine Firewall Analyzer can improve by having better monitoring of all features from firewalls. We are using Kibana in order to monitor parts that this solution does not record. For example, having more correlation and proactive monitoring in some activity or scenario."
"The stability is so-so. There are always memory issues, but the solution is working great apart from that."
More ManageEngine Firewall Analyzer Pricing and Cost Advice →
Earn 20 points
Cisco Defense Orchestrator is ranked 14th in Firewall Security Management while ManageEngine Firewall Analyzer is ranked 11th in Firewall Security Management with 6 reviews. Cisco Defense Orchestrator is rated 8.2, while ManageEngine Firewall Analyzer is rated 8.2. The top reviewer of Cisco Defense Orchestrator writes "Provides visibility into entire infrastructure and bulk changes save time and resources". On the other hand, the top reviewer of ManageEngine Firewall Analyzer writes "I found the reporting to be useful because not only can I go back months, but it lists the individual, URLs, and the time that a particular person visited". Cisco Defense Orchestrator is most compared with AlgoSec, Palo Alto Networks Panorama, Tufin Orchestration Suite, Azure Firewall Manager and Cisco Secure Firewall Management Center, whereas ManageEngine Firewall Analyzer is most compared with AlgoSec, FireMon Security Manager, Tufin Orchestration Suite, Palo Alto Networks Panorama and Skybox Security Suite.
See our list of best Firewall Security Management vendors.
We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
