Most Helpful Review
Researched Palo Alto Networks NG Firewalls but chose Cisco ASA Firewall: The technical support is good, but there are issues with managing the client
Researched Palo Alto Networks NG Firewalls but chose Palo Alto Networks VM-Series: An excellent solution for the right situations and businesses
Find out what your peers are saying about Palo Alto Networks NG Firewalls vs. Palo Alto Networks VM-Series and other solutions. Updated: September 2020.
441,672 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"At this point, we find that this product has high productivity and high availability and there is no need for improvement."
"It is a highly stable product. We rarely receive any serious outdates, so it works quite well."
"It is a secure product."
"It is scalable and stable."
"Cisco ASA is very strong."
"It protects our network."
"The stability of the product is good."
"It is a comprehensive suite and complete package."
"We standardized on the product and got rid of several other types of firewalls from different vendors."
"It is very scalable."
"The most valuable feature is the ability to deeply analyze the connection or connection type."
"One of the things I really like about it is that we have the same features and functions available on the entry-level device (PA-220), as do large corporations with much more costly appliances."
"One of the best firewalls on the market."
"Good functionality and features."
"The basic configuration will only take 15 minutes to set up"
"The solution is very stable."
"It has the ability to create Palo Alto VM-series using software."
"It is nice to have a rock solid security platform that we can count on."
"AWS has improved our agility to apply firewall rules. It has reduced the amount of time that it takes to apply firewall rules because everything is based in the cloud."
"It offers a single pane of glass for all the different types of installations."
"It gives us the ease that we are secure. We have set up the proper things that help make our data safe."
"It allows us to see all our traffic to properly secure it and only allow what is needed through the firewall."
"You already can scale it if you put it in Auto Scaling groups. If you put it in a load balancer, it should already be able to scale."
"It provides complete security posture from end-to-end. This has given us better visibility into what our security aspects are."
"<p>If there is old hardware, or appliances, it does not necessarily work with the new Cisco generation firewalls."
"It is not easy to configure."
"The scalability is a bit limiting, to be honest. In terms of when you look to changing landscape in terms of threats, I think to me, my personal it's a bit limiting."
"Tech support could not answer all of our questions. I had to do research on the web to solve my issues."
"Migration with other appliances is not easy. It has to be done manually, and this takes a long time."
"The pricing is a bit high."
"Cisco ASA should be easier to use. It is a bit tough to navigate and see what is going on."
"Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version."
"I would like integration with Evident.io and RedLock."
"The data loss prevention (DLP) capabilities need to be beefed up."
"Overall it is good. It is reliable and easy to understand. However, the monitoring feature could be improved."
"The initial configuration is complicated to set up."
"The user interface is a bit clumsy and not very user-friendly."
"Could also use better customer support."
"Customers don't want to buy extra things for extra capabilities"
"Generating reports is not so easy."
"In the next release, I would like to see better integration of multi-factor authentication vendors."
"We have run into some issues with scaling and limitations associated with some of the configurations."
"We don't know how it will scale once we start putting more load on it."
"I would like a way to do everything programmatically, or be able to copy the configs from different prices at different levels."
"AWS doesn't integrate well with third-party firewalls."
"On the cloud side, they need to come up with more HA solutions to support the multi-region."
"The product could provide protection above Layer 3, which gets into the application layer and provides better visibility into those aspects of application security."
"It can definitely improve on the performance."
Pricing and Cost Advice
"The cost is a bit higher than other competitive solutions on the market."
"It is considered on the "high end" of the spectrum."
"Cisco recently has become very expensive."
"The cost is a bit high compared to other solutions in the market."
"Purchasing from the AWS Marketplace was easy. It was just point and click."
"It is pay-as-you-go, so it much cheaper than buying in the plants."
"Our individual release cycle has been quicker because the entire development and testing environment has been automated because of these virtual instances. It has aligned our development workflow. This is where we have seen the ROI increase."
"With the Cisco ASA, you do get what you pay for. What would really be awesome is to see Cisco blow out a real cheap version where you can use the sandbox, but leave it step-wise and go to another product relatively easily, like getting you hooked on candy."
"Annually, the licensing costs are too much."
"Pricing is yearly, but it depends. You could pay on a yearly basis, or every three years. If you want to add a device or two, there would be an additional cost. Also, if you want to do an assessment, or other similar add-on, you have to pay accordingly for the additional service."
"It will be worth your time to hire a contractor to set it up and configure it for you, especially if you are not very knowledgeable with PA firewalls."
"Don't buy a device with more power than you really need, because licensing depends on the cost of the box you have."
"The licensing is annual, and there aren't any additional fees on top of that."
"The price of this product should be reduced."
"The pricing is competitive in the market."
"This is an expensive product, which is why some of our customers don't adopt it."
"Some parts of purchasing through AWS Marketplace are good, such as this product was easy to find and launch. Some of the other parts could be clearer in the AWS Marketplace, e.g., how to properly do an annual subscription."
"The pricing and licensing are reasonable."
"We found purchasing process the product on the AWS Marketplace to be very good."
"The price is not bad. They have a yearly renewal fee, and the pricing is exactly where we expect it to be."
"Purchasing on the AWS Marketplace was simple, effective, and easy."
"AWS is available as a AMI that you can purchase from the AWS Marketplace. Therefore, you need to purchase the licensing, since it is per AMI. Then, you deploy it on a regular EC2. Then, for on-premise, you can use both Palo Alto's software and hardware."
"Because the solution was getting deployed on AWS, it was the best place to go and it was available there."
"One of the factors for selecting Palo Alto was they had flexible pricing. They had a pay-as-you-go model. Comparable to other products, such as Check Point, the price point was definitely a plus."
Answers from the Community
Questions from the Community
Top Answer: Fortinet FGs: Great devices, relatively easy to deploy and maintain. Cheaper than most devices of their kind. If you're… more »
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Top Answer: You can choose Palo Alto as one of the best security product lines. For a hybrid network use central management to get a… more »
Top Answer: This is arguably the best security protection that you can buy.
Top Answer: Palo Alto is a little expensive compared to every other solution, but you get what you pay for. The question I have been… more »
Top Answer: The most valuable features are web control and IPS/IDS.
Top Answer: The price of this solution is very high for some parts of Africa, which makes it a challenge. If it were lowered then it… more »
Top Answer: I would like to have automatic daily reporting, such as how many users have connected via SSL VPN. As it is now, we have… more »
Compared 34% of the time.
Compared 15% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 5% of the time.
Compared 24% of the time.
Compared 16% of the time.
Compared 13% of the time.
Compared 11% of the time.
Compared 1% of the time.
Compared 39% of the time.
Compared 13% of the time.
Compared 7% of the time.
Compared 5% of the time.
Compared 3% of the time.
Also Known As
|Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv||Palo Alto NGFW, Palo Alto Networks Next-Generation Firewall, Palo Alto Networks PA-Series|
|Cisco||Palo Alto Networks||Palo Alto Networks|
Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.
Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.
Palo Alto Networks' next-generation firewalls secure your business with a prevention-focused architecture and integrated innovations that are easy to deploy and use. Now, you can accelerate growth and eliminate risks at the same time.
The VM-Series is a virtualized form factor of our next-generation firewall that can be deployed in a range of private and public cloud computing environments based on technologies from VMware, Amazon Web Services, Microsoft, Citrix and KVM.
The VM-Series natively analyzes all traffic in a single pass to determine the application identity, the content within, and the user identity. These core elements of your business can then be used as integral components of your security policy, enabling you to improve your security efficacy through a positive control model and reduce your incident response time though complete visibility into applications across all ports.
In both private and public cloud environments, the VM-Series can be deployed as a perimeter gateway, an IPsec VPN termination point, and a segmentation gateway, protecting your workloads with application enablement and threat prevention policies.
Learn more about Cisco ASA Firewall
Learn more about Palo Alto Networks NG Firewalls
Learn more about Palo Alto Networks VM-Series
|There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.||SkiStar AB, Ada County, Global IT Services PSF, Southern Cross Hospitals, Verge Health, University of Portsmouth, Austrian Airlines, The Heinz Endowments||Warren Rogers Associates|
Financial Services Firm20%
Comms Service Provider13%
Computer Software Company27%
Comms Service Provider26%
Financial Services Firm22%
Computer Software Company22%
Computer Software Company29%
Comms Service Provider22%
K 12 Educational Company Or School5%
Financial Services Firm18%
Computer Software Company34%
Comms Service Provider14%
K 12 Educational Company Or School5%
See our list of best Firewalls vendors.