Compare Cisco Firepower NGFW Firewall vs. Juniper SRX

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Shashidhara B N
Find out what your peers are saying about Cisco Firepower NGFW Firewall vs. Juniper SRX and other solutions. Updated: September 2020.
442,517 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"It is a secure product.""It is scalable and stable.""Cisco ASA is very strong.""It protects our network.""The stability of the product is good.""It is a comprehensive suite and complete package.""The integration and configuration were pretty straightforward.""The transparency of the single UI to ensure security. A product has to be simple so that an administrator can use it."

More Cisco ASA Firewall Pros »

"The architecture of FTD is great because it has an in-depth coverage and because it uses the AVC, (Application, Visibility, and Control) and also rate limits. Also, the architecture of fast paths is great.""Stability is perfect. I haven't had any problems.""We chose Cisco because it had the full package that we were looking for.""Because of the deeper inspection it provides we have better security and sections that allow users broader access.""An eight because it's a good security solution. It's more mature than its competitors.""Cisco Firepower NGFW is really easy to use right now to determine when my file requires a shift from primary to secondary status, and it can be done with automation. Earlier we used to do this with patching.""I like the way Firepower presents the data. It gives you two classifications for the evidence, something based on the priority of the evidence and another classification based on the impact of the evidence in your environment. This makes it very easy to spot the evidence that is most impactful to my environment. Instead of having to go through all the evidence based on that priority, I can focus on the evidence that has the most impact on my environment.""The most valuable feature of the Firepower solution is FireSIGHT, which can be easily managed and is user-friendly."

More Cisco Firepower NGFW Firewall Pros »

"From a protection perspective, it provides a network perimeter security function for our company.""It protects from distributed denial-of-service attacks with Screen Options.""Most of our clients use it as a traditional firewall, blocking Layer 3 and Layer 4, blocking by transport.""The virtualization feature is the most valuable feature. Sometimes customers are requesting a private connection using mobile data when they are connecting to remote sites.""On a scale from one to ten, one being the worst and ten being the best I'd give Juniper SRX an overall rating of eight because of its' competitive price.""There is a lot of flexibility in how you can commit, check, and back out of a configuration.""The most valuable feature is the virtualization because it can be used for customers who are using the mobile data network to request a private connection to a remote site.""The deployment is quite easy and fast."

More Juniper SRX Pros »

Cons
"It is not easy to configure.""The scalability is a bit limiting, to be honest. In terms of when you look to changing landscape in terms of threats, I think to me, my personal it's a bit limiting.""Tech support could not answer all of our questions. I had to do research on the web to solve my issues.""Migration with other appliances is not easy. It has to be done manually, and this takes a long time.""The pricing is a bit high.""Cisco ASA should be easier to use. It is a bit tough to navigate and see what is going on.""Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version.""The artificial intelligence and machine learning (behavioral based threat detection), which I can this will be coming out in another year, these are what we need now."

More Cisco ASA Firewall Cons »

"The license system is also good but it's not very impressive. It's a very regular licensing system. They call it a smart license which means that your device will connect to the internet. This is a little bit of a headache for some customers. It doesn't make the customer happy because most of the customers prefer not to connect their firewall or system to the internet.""I would like for them to develop better integration with other security platforms.""The stability and the product features have to really be worked on.""Cisco should redo their website so it's actually usable in a faster way.""The security features in the URL category need more improvement.""One feature lacking is superior anti-virus protection, which must be added.""Also, they have a Firepower source file that I can work on the ASA device and on Firepower devices. A problem here lies in the way that you manage these devices. Some devices do not support the FMC, and some devices have to be managed through ASDM, and others have to be managed through FMC.""I would like to see the inclusion of more advanced antivirus features in the next release of this solution."

More Cisco Firepower NGFW Firewall Cons »

"This solution needs to update for "Next Generation" needs.""The GUI needs to be easier and more helpful for users who don't have security experience.""it would be more powerful if Juniper brought out a security product other than the firewall, like anti-spam, endpoint protection, etc. Customers who want to deploy security solutions are not just thinking about firewalls... Juniper should have an end-to-end solution, from the endpoint to the network level.""The Juniper SRX product needs to improve in terms of innovation.""Improvements can be made to the GUI. The GUI can be improved by creating policies to handle IPS requirements. The configuration should be a one-step process. This would make it easier to complete the setup to register the time of operation.""It's a good stable firewall, but it's nowhere near what it needs to be for a next-generation type firewall.""The Juniper product has to improve in terms of innovation.""The GUI needs improvement."

More Juniper SRX Cons »

Pricing and Cost Advice
"The cost is a bit higher than other competitive solutions on the market.""It is considered on the "high end" of the spectrum.""Cisco recently has become very expensive.""The cost is a bit high compared to other solutions in the market.""Purchasing from the AWS Marketplace was easy. It was just point and click.""It is pay-as-you-go, so it much cheaper than buying in the plants.""Our individual release cycle has been quicker because the entire development and testing environment has been automated because of these virtual instances. It has aligned our development workflow. This is where we have seen the ROI increase.""With the Cisco ASA, you do get what you pay for. What would really be awesome is to see Cisco blow out a real cheap version where you can use the sandbox, but leave it step-wise and go to another product relatively easily, like getting you hooked on candy."

More Cisco ASA Firewall Pricing and Cost Advice »

"Based on the services that you will get, especially the AMP license, the price is very reasonable.""It's more expensive than Fortinet and Juniper. The price is high compared to other vendors. In general, for the license, it's not that expensive.""The Cisco licensing agreement in Bangladesh is different than the one in India and in Dubai. It is not a problem, but if you want to subscribe to the yearly subscription, the original cost is really high. Also, if you go for an anti-virus, you pay for an additional yearly subscription.""The price of this solution is not good or bad.""The Firepower series of appliances is not cheap. I just got a quote recently for six firewalls that was in the range of over half-a-million dollars. That's what could push us to look to other vendors...""Our subscription costs, just for the firewalls, is between $400,000 and $500,000 a year.""Cisco's pricing is high, at times, for what they provide.""The one-time cost is affordable, but the maintenance cost and the Smart Net costs need to be reduced. They're too high."

More Cisco Firepower NGFW Firewall Pricing and Cost Advice »

"In terms of pricing, Juniper is in the middle. The most expensive firewall is Palo Alto. If a customer wants the cheapest price they should go for FortiGate. Juniper is in between these products.""The direct support with Juniper is expensive. When you stop using the solution and miss one year of payments, if you want the support back on a specific node, they ask you to pay for the year that you haven't used the node.""The pricing is perhaps half, probably forty percent, of Cisco.""While the price of support is expensive, the price of the solution, itself, is not.""The price of this solution is more than other products, but it's stable, and the technical support is better than I have seen with others.""There was no additional licensing cost because there were no IPS services. It was just a firewall IP circuit router so they have the default licensing. We just need to renew the support yearly.""Compared to other vendors, the pricing of this solution is good."

More Juniper SRX Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
442,517 professionals have used our research since 2012.
Questions from the Community
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Top Answer: Hello there. That is a valid question many would have when they evaluate a product. However comparison of Wildfire and… more »
Top Answer: Firepower requires significant systems to suit adjacent to an ASA to support IPS and other aspects of the solution… more »
Top Answer: Firepower has been used for quite a few enterprise clients. Most of our clients are Fortune 500 and Firepower is used to… more »
Top Answer: The EEE security controls allow us to make policy restrictions, so I can customize port numbers to allow or limit… more »
Top Answer: When we first tested the serial interface on our model, it did not work. It should be easier to escalate support… more »
Top Answer: We use Juniper for EEE routing and we also use the gateway feature.
Popular Comparisons
Compared 8% of the time.
Compared 5% of the time.
Compared 4% of the time.
Compared 34% of the time.
Compared 6% of the time.
Compared 4% of the time.
Compared 3% of the time.
Also Known As
Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAvCisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWvSRX
Learn
Cisco
Cisco
Juniper
Overview

Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.

Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.

Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.

Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

High-performance security with advanced, integrated threat intelligence, delivered on the industry's most scalable and resilient platform. SRX Series gateways set new benchmarks with 100GbE interfaces and feature Express Path technology, which enables up to 1 Tbps performance for the data center.
Offer
Learn more about Cisco ASA Firewall
Learn more about Cisco Firepower NGFW Firewall
Learn more about Juniper SRX
Sample Customers
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield7-Eleven, AARNet Pty Ltd, Allegro Networks, alltours GmbH, Apollo Hotel Papendrecht, Armstrong Atlantic State University, Atlantech Online, Availity, Bajaj Capital, Baloise Insurance, BancABC, BAS Group, Black Lotus, Blue Box, Borealis, Carilion Clinic, Catholic Health System, CATV, Champlain College, Chinas Ministry of Railways, China University of Mining and Technology (CUMT), Cloud Dynamics, CloudSeeds, Cloudwatt, CODONiS, Colt Technology Services, Cork Internet Exchange, CSS Versicherung AG, CyrusOne, Danish Crown, Deloitte Belgium, Department of Energy, Divona Telecom, DQE Communications, DreamHost, European Government Agency, Expedient, Financial Market Information Services Provider, Fluidata, Fonality, Fox Sports, Global Financial Institution, Global Investment Bank, Global Investment Company, Energy Sciences Network (ESnet), Goethe University, HEAnet, High Performance Networks Inc., Hillenbrand
Top Industries
REVIEWERS
Financial Services Firm19%
Comms Service Provider13%
Manufacturing Company10%
University6%
VISITORS READING REVIEWS
Comms Service Provider27%
Computer Software Company26%
Media Company6%
Government5%
REVIEWERS
Financial Services Firm36%
Comms Service Provider21%
Transportation Company14%
Manufacturing Company14%
VISITORS READING REVIEWS
Comms Service Provider34%
Computer Software Company26%
Government5%
Media Company5%
REVIEWERS
Comms Service Provider53%
Financial Services Firm21%
Energy/Utilities Company11%
Retailer5%
VISITORS READING REVIEWS
Comms Service Provider33%
Computer Software Company30%
Media Company7%
K 12 Educational Company Or School4%
Company Size
REVIEWERS
Small Business35%
Midsize Enterprise24%
Large Enterprise41%
VISITORS READING REVIEWS
Small Business27%
Midsize Enterprise25%
Large Enterprise48%
REVIEWERS
Small Business45%
Midsize Enterprise26%
Large Enterprise29%
REVIEWERS
Small Business41%
Midsize Enterprise18%
Large Enterprise41%
Find out what your peers are saying about Cisco Firepower NGFW Firewall vs. Juniper SRX and other solutions. Updated: September 2020.
442,517 professionals have used our research since 2012.
Cisco Firepower NGFW Firewall is ranked 5th in Firewalls with 20 reviews while Juniper SRX is ranked 11th in Firewalls with 17 reviews. Cisco Firepower NGFW Firewall is rated 8.4, while Juniper SRX is rated 7.8. The top reviewer of Cisco Firepower NGFW Firewall writes "Enables analysis, diagnosis, and deployment of fixes quickly, but the system missed a SIP attack". On the other hand, the top reviewer of Juniper SRX writes "This best in class Next-Gen firewall is elegant in its ease-of-use and architecture". Cisco Firepower NGFW Firewall is most compared with Fortinet FortiGate, Palo Alto Networks WildFire, Meraki MX , Azure Firewall and Sophos UTM, whereas Juniper SRX is most compared with Fortinet FortiGate, Palo Alto Networks WildFire, pfSense, Meraki MX and Sophos UTM. See our Cisco Firepower NGFW Firewall vs. Juniper SRX report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.