Most Helpful Review
Researched Fortinet FortiGate but chose Cisco ASA Firewall: A flexible and easy to manage solution for segregating our servers from the rest of the environment
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"It is a comprehensive suite and complete package."
"The integration and configuration were pretty straightforward."
"The transparency of the single UI to ensure security. A product has to be simple so that an administrator can use it."
"It provides security for our company and users."
"Among the top features are integrated threat defence and the fact that each virtual appliance is separate so you get great granular control."
"Its VPN and ASN features are very stable."
"The setup was straightforward. I was happy with the configuration and deployment of the solution, as it was quick."
"This solution has good security, and it's a good product. You can trust Cisco, and there's support as well, which is really good."
"It has improved our security capabilities."
"It is a good source for firewall protection."
"It's a firewall that secures our internal network. I have been using it since 2013, and I find that most of the features are advanced, and very user friendly."
"The most valuable feature is the bundled subscription, which is IPS, TV and web filtering."
"It is easy to use and performs very well."
"We use a southern institution that's audited for IT security and the reporting that automatically comes off the unit makes it much easier to meet compliance standards and makes it easier as far as the amount of time that has to be spent to compile that information. If you get your reporting set up correctly when you initially set it up, you just select the one you want and hit print. The auditing trail on it is the best feature."
"We can use our devices to check all of the perimeters. It secures email websites."
"I really like the captive portal feature for our guest network. It has nice VLAN features in terms of separating our network. The anti-virus is also good."
"We can open a new VPN connection easily. It's much easier than with Fortinet in our experience."
"I find the solution to be user-friendly. It has a lot of reports and easy settings."
"The feature I find most valuable, is that the program helped me to realize all the requested functionality that was needed."
"The initial setup is easy. It only takes 15-30 minutes to deploy."
"The graphic user interface is very good and it is user-friendly which makes the product easy-to-use."
"The solution is good for a basic firewall for a small business or for home use."
"The interface and the dashboard are the most valuable features of this solution."
"The most valuable features in OPNsense are reporting and visibility."
"Cisco ASA should be easier to use. It is a bit tough to navigate and see what is going on."
"Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version."
"The artificial intelligence and machine learning (behavioral based threat detection), which I can this will be coming out in another year, these are what we need now."
"The initial setup was complex."
"There are always vulnerabilities that come up and there was one in early 2018 but this was patched with software updates."
"In terms of next-generation capabilities, Cisco is a little behind, and it is way behind the market leaders."
"The phishing emails could be improved."
"There may have been one or two incidences of malicious threats."
"There were quite a few problems with the stability of the system."
"The UTM filtering needs improvement."
"The web-cache feature which was previously on the FortiGate device, but was deleted with the recent upgrade should be returned. It was a very valuable feature for us."
"I think they need to improve more in order to be a competitor with the leaders of the field."
"There could be more integration between the logging and analytical platforms to make it more seamless and integrated."
"They should make the rule sets more understandable for the end user. When you're trying to explain to somebody how a computer network is secured, sometimes it's difficult for an end user or customer to understand. If there was a way to make the terminology more accessible to the end user, the set up could be easier. They should translate the technical jargon to an easily relatable and understandable conversation for the end user, the customer, that would be brilliant. Particularly in an environment where the IT structure is audited regularly, there's always pressure from the auditor to up the standards and up the security and you get your USCERT's that come out and there's a warning about this and the customer will want to lock out so much and when you apply it they run into issue where they can't search the internet or print to their remote office. Of course they can't print to your remote office, they just locked it up. They should make the language more understandable for the customer. If there's a product out there that made the jargon understandable to John Q. Public, I would buy that."
"They need to improve their technical support."
"Some of the filtering is not robust, you can escape it with a VPN. Some of the users bypass some of the filters. It catches some but it also misses some, that area could be improved. It's functioning reasonably but there's room for improvement in that area."
"OPNsense showed me some problems when using it in different environments. The problem is integration with a virtual server."
"On the customer-side, because I'm a small business, I need a cheaper or free solution option."
"The ability to set the VPN IP address would be a welcome addition."
"The solution would not be suitable for anything large-scale."
"There should be more technical documentation."
"There are issues with stability and reliability."
"The only thing that I would like to see improved is the Insight or the NetFlow analysis part. It would be good to have the possibility to dig down on the Insight platform. Right now, we can easily do only a few analyses. If this page becomes more powerful, it surely will be a well-adopted platform."
Pricing and Cost Advice
"Purchasing from the AWS Marketplace was easy. It was just point and click."
"It is pay-as-you-go, so it much cheaper than buying in the plants."
"Our individual release cycle has been quicker because the entire development and testing environment has been automated because of these virtual instances. It has aligned our development workflow. This is where we have seen the ROI increase."
"With the Cisco ASA, you do get what you pay for. What would really be awesome is to see Cisco blow out a real cheap version where you can use the sandbox, but leave it step-wise and go to another product relatively easily, like getting you hooked on candy."
"We are partners with Cisco. They are always one call away, which is good. They know how to keep their customers happy."
"Pricing is high, but it is essentially a corporate decision."
"Licensing is expensive compared to other solutions."
"The cost is a big factor for us. This is why we are using it only in our restricted area. They are very much higher than their competitors in the market."
"We find the most valuable aspect of this solution is the price. It is affordable, and cheaper than other firewalls."
"It is an inexpensive solution."
"It is cost-effective, and provides a good value for your money. The pricing, and license renewal, is very reasonable for us."
"They need to be competitive with other solutions."
"It is a good product from a price perspective versus functionality."
"Price-wise, it's at a good price point for our market."
"The initial setup is super straight forward and as far as the licensing goes for the small product that we have, the pricing was pretty competitive. It wasn't as simple and as cheap as a SonicWall but for the service we would get it was a good price."
"Compared to Palo Alto, which we have used in the past, pricing and licensing are okay."
"We are not paying any licensing fees. OPNsense is completely free for us."
"It costs about $1000."
"There are no licensing costs for OPNsence."
"OPNsense is open source software so at this time it is free for us to use."
"OPNsense is a well known open-source tool."
"It is not an expensive product. Basically, I deployed it because it was the fastest solution to satisfy our needs in open source."
Questions from the Community
Top Answer: Cisco FW for peace of mind
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Top Answer: From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
Top Answer: In my opinion and as a result of years of experience: - Both are great firewalls with excellent performance and a… more »
Top Answer: The difference is the poor performance that Fortigate has when it has all its services in use. Compare which customers… more »
Top Answer: The interface and the dashboard are the most valuable features of this solution.
Top Answer: We are using a free version of the solution.
Compared 15% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 5% of the time.
Compared 4% of the time.
Compared 10% of the time.
Compared 9% of the time.
Compared 7% of the time.
Compared 6% of the time.
Compared 6% of the time.
Compared 53% of the time.
Compared 16% of the time.
Compared 9% of the time.
Compared 5% of the time.
Compared 1% of the time.
Also Known As
|Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv||FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate|
Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.
Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.
The FortiGate family of NG firewalls provides proven protection with unmatched performance across the network, from internal segments, to data centers, to cloud environments. FortiGates are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.
OPNsense is an open source, easy-to-use and easy-to-build FreeBSD based firewall and routing platform. OPNsense includes most of the features available in expensive commercial firewalls, and more in many cases. It brings the rich feature set of commercial offerings with the benefits of open and verifiable sources.
Learn more about Cisco ASA Firewall
Learn more about Fortinet FortiGate
Learn more about OPNsense
|There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.||Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here||CompuNet Systems GmbH,|
Financial Services Firm19%
Comms Service Provider12%
Comms Service Provider31%
Computer Software Company24%
Comms Service Provider17%
Financial Services Firm10%
Comms Service Provider31%
Computer Software Company23%
Comms Service Provider46%
Computer Software Company20%
See our list of best Firewalls vendors.