Most Helpful Review
Researched Palo Alto Networks VM-Series but chose Cisco ASA Firewall: Good stability, excellent technical support, and powerful intrusion detection
Use Zscaler Cloud Firewall? Share your opinion.
Find out what your peers are saying about Palo Alto Networks VM-Series vs. Zscaler Cloud Firewall and other solutions. Updated: November 2020.
446,626 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"It is a comprehensive suite and complete package."
"The integration and configuration were pretty straightforward."
"The transparency of the single UI to ensure security. A product has to be simple so that an administrator can use it."
"It provides security for our company and users."
"Among the top features are integrated threat defence and the fact that each virtual appliance is separate so you get great granular control."
"Its VPN and ASN features are very stable."
"The setup was straightforward. I was happy with the configuration and deployment of the solution, as it was quick."
"This solution has good security, and it's a good product. You can trust Cisco, and there's support as well, which is really good."
"It has the ability to create Palo Alto VM-series using software."
"It is nice to have a rock solid security platform that we can count on."
"AWS has improved our agility to apply firewall rules. It has reduced the amount of time that it takes to apply firewall rules because everything is based in the cloud."
"It offers a single pane of glass for all the different types of installations."
"It gives us the ease that we are secure. We have set up the proper things that help make our data safe."
"It allows us to see all our traffic to properly secure it and only allow what is needed through the firewall."
"You already can scale it if you put it in Auto Scaling groups. If you put it in a load balancer, it should already be able to scale."
"It provides complete security posture from end-to-end. This has given us better visibility into what our security aspects are."
"The solution offers good sandboxing."
"Once you have Zscaler running you have access to configure it however you want."
"Includes advanced tech protection."
"Cisco ASA should be easier to use. It is a bit tough to navigate and see what is going on."
"Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version."
"The artificial intelligence and machine learning (behavioral based threat detection), which I can this will be coming out in another year, these are what we need now."
"The initial setup was complex."
"There are always vulnerabilities that come up and there was one in early 2018 but this was patched with software updates."
"In terms of next-generation capabilities, Cisco is a little behind, and it is way behind the market leaders."
"The phishing emails could be improved."
"There may have been one or two incidences of malicious threats."
"In the next release, I would like to see better integration of multi-factor authentication vendors."
"We have run into some issues with scaling and limitations associated with some of the configurations."
"We don't know how it will scale once we start putting more load on it."
"I would like a way to do everything programmatically, or be able to copy the configs from different prices at different levels."
"AWS doesn't integrate well with third-party firewalls."
"On the cloud side, they need to come up with more HA solutions to support the multi-region."
"The product could provide protection above Layer 3, which gets into the application layer and provides better visibility into those aspects of application security."
"It can definitely improve on the performance."
"The issue right now is probably that Zscaler is not providing web browser isolation. Another solution, Menlo, offers this. For one customer, we had to send traffic to Menlo to do the isolation for us. It was requested by the customer so that they could integrate any iframe. Zscaler needs to add this type of feature in their next release."
"Because it's on cloud, it doesn't allow application of extra settings."
"Data Leak Prevention is only for web filtering and there is no protection for email."
Pricing and Cost Advice
"Purchasing from the AWS Marketplace was easy. It was just point and click."
"It is pay-as-you-go, so it much cheaper than buying in the plants."
"Our individual release cycle has been quicker because the entire development and testing environment has been automated because of these virtual instances. It has aligned our development workflow. This is where we have seen the ROI increase."
"With the Cisco ASA, you do get what you pay for. What would really be awesome is to see Cisco blow out a real cheap version where you can use the sandbox, but leave it step-wise and go to another product relatively easily, like getting you hooked on candy."
"We are partners with Cisco. They are always one call away, which is good. They know how to keep their customers happy."
"Pricing is high, but it is essentially a corporate decision."
"Licensing is expensive compared to other solutions."
"The cost is a big factor for us. This is why we are using it only in our restricted area. They are very much higher than their competitors in the market."
"Some parts of purchasing through AWS Marketplace are good, such as this product was easy to find and launch. Some of the other parts could be clearer in the AWS Marketplace, e.g., how to properly do an annual subscription."
"The pricing and licensing are reasonable."
"We found purchasing process the product on the AWS Marketplace to be very good."
"The price is not bad. They have a yearly renewal fee, and the pricing is exactly where we expect it to be."
"Purchasing on the AWS Marketplace was simple, effective, and easy."
"AWS is available as a AMI that you can purchase from the AWS Marketplace. Therefore, you need to purchase the licensing, since it is per AMI. Then, you deploy it on a regular EC2. Then, for on-premise, you can use both Palo Alto's software and hardware."
"Because the solution was getting deployed on AWS, it was the best place to go and it was available there."
"One of the factors for selecting Palo Alto was they had flexible pricing. They had a pay-as-you-go model. Comparable to other products, such as Check Point, the price point was definitely a plus."
Information Not Available
Questions from the Community
Top Answer: Cisco FW for peace of mind
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Top Answer: I have been working with Palo Alto for more than 5 years now and I think I have worked with almost every other firewall… more »
Top Answer: The most valuable features are web control and IPS/IDS.
Top Answer: The price of this solution is very high for some parts of Africa, which makes it a challenge. If it were lowered then it… more »
Top Answer: Once you have Zscaler running you have access to configure it however you want.
Top Answer: Cost is about the same whether it's on-prem or on cloud. Initial cost is higher with an on-prem solution and with cloud… more »
Top Answer: The only thing that might be improved would be to enable application of different settings. It's really the difference… more »
Compared 34% of the time.
Compared 15% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 39% of the time.
Compared 13% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 4% of the time.
Compared 43% of the time.
Compared 31% of the time.
Compared 26% of the time.
Also Known As
|Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv|
|Cisco||Palo Alto Networks||Zscaler|
Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.
Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.
The VM-Series is a virtualized form factor of our next-generation firewall that can be deployed in a range of private and public cloud computing environments based on technologies from VMware, Amazon Web Services, Microsoft, Citrix and KVM.
The VM-Series natively analyzes all traffic in a single pass to determine the application identity, the content within, and the user identity. These core elements of your business can then be used as integral components of your security policy, enabling you to improve your security efficacy through a positive control model and reduce your incident response time though complete visibility into applications across all ports.
In both private and public cloud environments, the VM-Series can be deployed as a perimeter gateway, an IPsec VPN termination point, and a segmentation gateway, protecting your workloads with application enablement and threat prevention policies.
Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud first world. Its flagship services, Zscaler Internet Access and Zscaler Private Access, create fast, secure connections between users and applications, regardless of device, location, or network. Zscaler services are 100% cloud-delivered and offer the simplicity, enhanced security, and improved user experience that traditional appliances or hybrid solutions are unable to match. Used in more than 185 countries, Zscaler operates the world’s largest cloud security platform, protecting thousands of enterprises and government agencies from cyberattacks and data loss.
Check more details: https://www.zscaler.com/produc...
Learn more about Cisco ASA Firewall
Learn more about Palo Alto Networks VM-Series
Learn more about Zscaler Cloud Firewall
|There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.||Warren Rogers Associates||Zenith Live, Azure, Carlsberg Group|
Financial Services Firm19%
Comms Service Provider13%
Comms Service Provider30%
Computer Software Company24%
Financial Services Firm18%
Computer Software Company33%
Comms Service Provider16%
K 12 Educational Company Or School5%
No Data Available
No Data Available
See our list of best Firewalls vendors.