Cisco Defense Orchestrator vs Palo Alto Networks Panorama comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Cisco Defense Orchestrator and Palo Alto Networks Panorama based on real PeerSpot user reviews.

Find out what your peers are saying about AlgoSec, Tufin, Palo Alto Networks and others in Firewall Security Management.
To learn more, read our detailed Firewall Security Management Report (Updated: March 2024).
765,234 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"I like the upgrade feature. That is pretty valuable to me because I have dual ASAs and when I go through CDO it does it for me pretty well. It's all done in the back-end and I don't really have to be involved. I just initiate, pick the image, and I pick when I want it done and it just does it, whether I have a single ASA or have a dual ASA.""The initial setup was straightforward. We spun up the VM onsite. We generated the key that it needed to talk to the Cloud Orchestrator. After that, as I started adding devices, it was relatively quick and easy.""If our server is blocked, this solution shows us why it is blocked and allows us to update the network routing.""The ability to do operations on multiple firewalls at once is valuable because it saves time and mental effort. The solution's ability to make bulk changes makes it very convenient to manage things at once on multiple targets.""Cisco Defense Orchestrator has useful guides for the steps that need to follow by users.""The bulk changes feature is definitely the most valuable.""If we have a firewall go down, I can hop into CDO, pull the latest configuration off and apply it. That's really good. It helps save time.""The ability to see the uptimes on the different VPNs that we have configured for site-to-site."

More Cisco Defense Orchestrator Pros →

"I like the quality of this product, and it performs. It's the best solution in the IT business.""Technical support is quite helpful.""The telemetry visibility is really good as well as the automated workflows for creating policies. The overall solution is quite intuitive to use.""Networks Panorama has improved our organizational security""The management and the deployment features are most valuable. We can easily deploy and manage the devices. We can do fast deployments without moving from our office and by just providing a short description to the end-user about how to install the physical device.""The solution offers good logging features.""What's most valuable in Palo Alto Networks Panorama is that it allows us to see the status on the network side, particularly on the endpoint, because we also use it for the internal network.""The most valuable aspect of Palo Alto Networks Panorama for me is the centralized management of multiple firewalls."

More Palo Alto Networks Panorama Pros →

Cons
"I'd like CDO to be the one-stop-shop where we could do all the configurations easily. It would be nice, for ASA upgrades, if we could do them from a central repository and not have to reach out to Cisco. That would be a definite plus.""It should have more features to manage FirePOWER appliances.""It would be a better product if it incorporated device control for third-party products easily.""I've found dozens of bugs over the year we've been using it. The more I use it for different things, the more problems I find... Most of the problems have to do with the user interface. A lot of thought and work has gone into the back-end component to make the product do what it's intended to do, but the way it is presented for use hasn't gotten nearly as much thought to make it smart and bug-free.""The dashboard needs to be more customizable to provide better reporting for our network.""CDO doesn't have a report, an official report that I can check daily. It has another module called FTD, but it doesn't have that specifically for ASA. In the reporting, there are a lot of things that aren't there. There is also room for improvement in the daily monitoring.""They can centralize all products and provide a correlation about an incident and the response. They can also provide an on-premises solution. Currently, Cisco Defense Orchestrator is just for cloud deployments, not for on-premises deployments. Customers have to manage it on the cloud. We are based in Vietnam, and most of the customers here prefer to have on-premises deployments. Customers, especially from banking and government sectors, do not prefer to do anything on the cloud. Some of the small enterprises use the cloud.""If I make a change locally to the firewall, CDO gives an alarm or an error message and says there's a change in compliance: "The firewall has this configuration but the last time it was compiled it had that configuration." That view of new changes versus the old could be better... I had to log in manually, locally on the firewall, to check which version, which configuration was actually running. I couldn't see it in CDO."

More Cisco Defense Orchestrator Cons →

"My company's getting whatever it needs from Palo Alto Networks Panorama, but in the cloud, there's an issue with CPU management, and that's an area for improvement. Though the normal data traffic doesn't go through the management interface, whenever there's an increase in the throughput, CPU management becomes high. If you increase the load, CPU management spikes, and it's what needs to be taken care of in Palo Alto Networks Panorama.""It could be easier to manage. In the future, it should be much easier because it's not very easy to manage. So in the next release, I think it should be much easier to manage, especially in the first configuration. It could also be more stable.""In our version, there is no feature to transfer or upload a database of third-party vulnerabilities or signatures so that Panorama can convert them into its own database. This kind of feature might already have come in version 10.""At times we have noticed that we get into issues where Panorama is going too slow or has other little problems. The performance can suffer occasionally.""There is a need to improve the upgrade process. When we are upgrading the solution we are facing some issues with Elasticsearch services. Every time we upgrade it takes a long time to become stable.""The licensing costs are quite high.""The ability to add scheduled jobs would be a significant improvement. Panorama has the ability to push out OS updates, but it would be nice to be able to schedule those updates so not to affect the site during normal business hours.""Reporting might be an area to improve. It can provide reporting or some sort of graphical representation of your environment."

More Palo Alto Networks Panorama Cons →

Pricing and Cost Advice
  • "It is about a $100 per year for an ASA 5506 firewall, and from there it keeps going up if you have a bigger box. For example, the 5516 is $200 to $300 per year."
  • "It's around £500 per unit for a three-year license."
  • "After our free trial was done we got a subscription for three years and it was under $3,000 or so. It's part of the EA we already paid for, so I don't know what it would be if it was a la carte."
  • "It is covered under the CIsco Enterprise License Agreement (ELA). So, it is licensed and ours."
  • "If you compare to what is available on the market, they are in the same range with respect to pricing."
  • "I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well."
  • More Cisco Defense Orchestrator Pricing and Cost Advice →

  • "Pricing is high compared to other vendors in the same space. Licensing is also fairly high for different functions to be added on."
  • "With the URL filtering, we probably went down from around four hours in response time to about five minutes."
  • "The licensing is not cheap. There are always hidden costs. You have support costs, or maybe you need to buy more optics on how the solution fits into the rest of your environment. It is possible some of the rest of your environment will need to change too."
  • "It has freed up staff time, which is where we are seeing ROI."
  • "Initially, Palo Alto looks expensive, but if you dig deeper then you will find that it is very comparable, or even cheaper than other solutions."
  • "You only pay for the license and there are no additional costs."
  • "We pay approximately $3,000 a year in order to use the product."
  • "The pricing model is reasonable for this class of solutions."
  • More Palo Alto Networks Panorama Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
    765,234 professionals have used our research since 2012.
    Questions from the Community
    Ask a question

    Earn 20 points

    Top Answer:The most valuable aspect of Palo Alto Networks Panorama for me is the centralized management of multiple firewalls.
    Top Answer:In terms of pricing, Palo Alto Networks Panorama is moderate. It is very affordable when compared to more expensive firewalls. The license is yearly, and the price typically includes the initial… more »
    Top Answer:In the future, it would be beneficial if Panorama could include a firewall assurance feature similar to Skybox. While each firewall has its policy optimizer, a consolidated policy optimizer in… more »
    Ranking
    Views
    1,131
    Comparisons
    343
    Reviews
    1
    Average Words per Review
    204
    Rating
    7.0
    Views
    6,924
    Comparisons
    3,479
    Reviews
    26
    Average Words per Review
    412
    Rating
    8.0
    Comparisons
    Also Known As
    CDO
    Learn More
    Cisco
    Video Not Available
    Interactive Demo
    Overview

    Cisco Defense Orchestrator (CDO) is a cloud-based management solution designed to ensure streamlined and consistent security policies across the Cisco security portfolio. Specifically tailored to manage all Cisco Secure Firewall form factors (running either ASA or Firepower Threat Defense (FTD) software), CDO offers real-time visibility and troubleshooting capabilities, effectively enhancing overall network security.

    CDO addresses the challenges of migration, supporting transitions from on-premises to cloud environments and facilitating the shift from ASA to FTD configurations. As organizations embark on their cloud adoption journey, CDO simplifies provisioning workflows for remote branches, reduces operational expenditures related to inventory management, and offers scalability for multi-cloud deployments.

    Panorama network security management provides static rules and dynamic security updates in an ever-changing threat landscape. Reduce administrator workload and improve your overall security posture with a single rule base for firewall, threat prevention, URL filtering, application awareness, user identification, file blocking and data filtering.

    Sample Customers
    Insurance Company of British Columbia, Shawmut
    University of Arkansas, JBG SMITH, Temple University, Telkom Indonesia
    Top Industries
    REVIEWERS
    Manufacturing Company43%
    University14%
    Consumer Goods Company14%
    Healthcare Company14%
    VISITORS READING REVIEWS
    Computer Software Company43%
    Manufacturing Company7%
    Financial Services Firm5%
    Government5%
    REVIEWERS
    Computer Software Company19%
    Financial Services Firm14%
    Media Company7%
    Pharma/Biotech Company7%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm12%
    Manufacturing Company8%
    Government7%
    Company Size
    REVIEWERS
    Small Business43%
    Midsize Enterprise21%
    Large Enterprise36%
    VISITORS READING REVIEWS
    Small Business11%
    Midsize Enterprise5%
    Large Enterprise83%
    REVIEWERS
    Small Business35%
    Midsize Enterprise16%
    Large Enterprise49%
    VISITORS READING REVIEWS
    Small Business16%
    Midsize Enterprise14%
    Large Enterprise70%
    Buyer's Guide
    Firewall Security Management
    March 2024
    Find out what your peers are saying about AlgoSec, Tufin, Palo Alto Networks and others in Firewall Security Management. Updated: March 2024.
    765,234 professionals have used our research since 2012.

    Cisco Defense Orchestrator is ranked 14th in Firewall Security Management while Palo Alto Networks Panorama is ranked 3rd in Firewall Security Management with 80 reviews. Cisco Defense Orchestrator is rated 8.2, while Palo Alto Networks Panorama is rated 8.4. The top reviewer of Cisco Defense Orchestrator writes "Provides visibility into entire infrastructure and bulk changes save time and resources". On the other hand, the top reviewer of Palo Alto Networks Panorama writes "Built-in proxy with the ability to maintain your own policies". Cisco Defense Orchestrator is most compared with Tufin Orchestration Suite, AlgoSec, Azure Firewall Manager and FireMon Security Manager, whereas Palo Alto Networks Panorama is most compared with AWS Firewall Manager, AlgoSec, Fortinet FortiGate Cloud, Tufin Orchestration Suite and Cisco Secure Firewall Management Center.

    See our list of best Firewall Security Management vendors.

    We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.