We performed a comparison between Cisco NGIPS and Cisco Sourcefire SNORT based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."IPS is a valuable function, because they update the signatures all the time and it's very granular."
"The most valuable features are the intrusion detection ones."
"We are satisfied with the technical support."
"I like Firepower's automation, and the security intelligence is a powerful feature."
"We have found the product to be quite stable."
"The technical support is impressive."
"Ir's signature-based. We are also using the anomaly baseline formation, where it links the network, then anything that goes away from the norm is also flagged. Those are the two most valuable features."
"I like how NGIPS has everything in one console."
"The solution is stable."
"The URL filtering is very good and you can create a group for customized URLs."
"I like most of Cisco's features, like malware detection and URL filtering."
"The solution can be integrated with some network electors like Cisco Stealthwatch, Cisco ISE, and Active Directory to provide the client with authentication certificates."
"In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."
"The most valuable feature of this solution is the filtering."
"It simplifies the configuration process by offering pre-defined base configurations, including security and connectivity settings."
"The solution is rather easy to use."
"We have a separate management controller for Cisco NGIPS. If they have not done it already they should integrate Cisco NGIPS with the Cloud Portal."
"The only thing I think they may need to improve on a little bit is identifying software more correctly when you do network discovery."
"The biggest problem with most Cisco products is that the interface is lagging behind the competition. The user interface could be updated and improved."
"I think the part of IPS and everything else needs to be better equated to the real needs or current needs of the business compared to the other manufacturer, because it is not straightforward, a way to configure it compared to the other competitors."
"There is room for improvement in the policy documentation."
"Multi-internet line load balancing should be supported."
"The solution would be better if it offered customers more integrations and more signatures."
"The feedback from some of our customers is that they weren't interested in Cisco because it was too complicated to deploy, especially in cloud-related areas."
"The pricing needs to be improved. We have lots of low-budget clients around us. Budget constraints are always a deterrent in our market."
"There are problems setting up VPNs for some regions."
"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."
"The cloud can be improved."
"The solution's approach to managing traffic blocking is confusing and impractical."
"Performance needs improvement."
"The implementation could be a bit easier."
"Integration with other components — even Cisco's own products — can be enhanced to improve administrative experience."
Cisco NGIPS is ranked 5th in Intrusion Detection and Prevention Software (IDPS) with 62 reviews while Cisco Sourcefire SNORT is ranked 13th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews. Cisco NGIPS is rated 8.2, while Cisco Sourcefire SNORT is rated 7.6. The top reviewer of Cisco NGIPS writes "Very effective for malware and signature-based anomalies but stability needs improvement". On the other hand, the top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". Cisco NGIPS is most compared with Check Point IPS, Fortinet FortiGate IPS, Trend Micro TippingPoint Threat Protection System, Palo Alto Networks Advanced Threat Prevention and Trellix Intrusion Prevention System, whereas Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention, Darktrace and Trend Micro TippingPoint Threat Protection System. See our Cisco NGIPS vs. Cisco Sourcefire SNORT report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
