How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
We use Cisco Sourcefire SNORT for intrusion prevention cases. Within our organization, there are roughly 1,000 people using this solution.
Our primary uses for this solution are URL filtering and malware filtering.
The primary use of this solution is intrusion prevention, for both user-to-server traffic, and server-to-server traffic. Most of our environment is Cisco including ISE, our access control, routers, switches, call center, and TelePresence.
I work directly with clients, such as financial companies like banks, for example. Most of the time they want they're product to be on their premises, only in their local area.
Our primary use case of this solution is as a firewall, as an access control. We don't use it as access detection or as an intrusion prevention system, because we didn't configure it as a detector.
We are a system integrator and this is one of the solutions that we provide to our customers. This solution is for inspecting traffic. It works with the firewall, email, etc. This is for an on-premises deployment.
The main features of the Cisco Sourcefire are that it's a next-generation firewall with new features. It has application security, advanced malware protection, URL filterings, encryption, and decryption. It is also used for email filtration and web application cyber protection. The deployment model we used was on-premises.
We use this solution, in conjunction with the Cisco Firepower 4000 series, for security in our data center. We also use it with a Cisco Firepower 2000 series for our VPN and internet access firewall.
We primarily use the solution as security on either side of the VPN.
Our primary use for the solution is security, mostly in intrusion prevention.
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.