Cisco Adaptive Security Appliance (ASA) software is the core OS for the ASA suite. It provides firewall functionality, as well as integration with context-specific Cisco security modules. It is scaled for enterprise-level traffic and connections.
Our Palo Altos and Cisco ASAs are pretty comparable. They both seem to work well when used in an HA pair. They can both do IP/Port based ACLs. But the Palos also have APP-ID which helps to make sure that the traffic passing through your firewall is the type of traffic …
Cisco has been in the networking industry for what seems like an eternity. That being said they take what they do and the products they make very seriously. Cisco products are created with the customer in mind, and they are made to be somewhat easy to configure, to the point …
AnyConnect is a mature VPN client solution without any
problems, meeting our requirements easily. Local and international support is very good.
You can find a Cisco expert or engineer very easy. We have several good
Almost every Cisco product I've used has amazing abilities. Like everything in this world, nothing is perfect, but there is constant growth and improvement on abilities, and that resonates with my drive to always provide the very best for the business and end-user alike. …
Palo Alto and Fortinet are good manufacturers but more than 5 years ago when the project was tendered, Cisco ASA was better for the cost, benefit, and approval apart from the fact that we have Cisco ISE, Cisco DUO and all those tools converge quite well when you have the …
Verified User
Technician
Chose Cisco AnyConnect
Personally I think AnyConnect is the best VPN client in the market for PCs and mobile devices. It's globally used by many contractors/consultants, so there is no need to train them. The huge community gives a lot of ready scenarios and helps with finding an issue and fixing it. …
Cisco ASA's are great for internal network connected access between a firewall and the central management server. And, for complex networks where high security requirements with overly strict compliance are necessary. For networks with limited connectivity to the core or for poor network connectivity these are not the best solution. There are other more stand-alone firewall's that do this better. These firewall's are a little more complex to set up to start with so significant knowledge of these devices is required to set them up and ensure they are best practice installed.
It's well suited for the mobile task force we have at Engel for all the information workers, the salespersons, and the salespeople that are abroad and are not often on the Engel premises but are on customer premises. So for them, it's the only really good tool to connect to central IT resources. But when I look to the future way of utilizing cloud resources and having a hybrid approach and having SaaS services like Salesforce, which are running natively in the cloud, then AnyConnect might not be suitable for them because anyway, I have a direct connection via an HTTPS tunnel to run all my SAS applications. I would not see any benefit of using AnyConnect in this case. So the more a company runs in the cloud, the less it needs AnyConnect.
Cisco AnyConnect connects the machine with the VPN very smoothly in a few clicks also provides security with Multi-Factor Authentication.
It Provides the facility of creating Network groups such as Local and Project Network so that user can limit the connectivity options.
The System scan feature is so robust, it Scans the System every time we connect to a new network and remembers the older Network and does not Scans while we connect to usual Netwroks.
Manual Administrative Config: The Enrollment requires the user to enroll from their end and can't just be "Setup" for the user unless you act as the user. For things like SMS text, it would be nice just to put it in place and have it work without a "Setup/Enrollment" process. This does, however ensure the user understands the process.
Active Directory Sync and Azure Sync Did not automatically match up accounts and duplicate, so I had to do it manually, to be fair the account usernames do not match the Email Address which is used for Azure so it would be difficult.
Duo Support and Cisco Support seem to have not been integrated with each other well, most support tickets end up with a Duo expert and a Cisco Firewall Expert on at the same time, though this has improved dramatically.
They did not force my Admin to use an NTP Server off the bat, which would have fixed a few issues we had that persisted for a while until he started using one. (A bit old fashioned)
To be honest there has been now great products out in the market compared to Cisco ASA. I beleieve Cisco has to do a lot of improvement in this area. The other defeiniete factors is the cost when it comes to renewals which is always a premium on Cisco products
This is software is easy to use, easy to maintain, easy to support, cost effective, and extremely secure. We will continue to use it for all employees well into the future. We have already renewed our licenses for another 5 years - that's how confident we are that this software will remain a primary security solution for our firm.
Compared to other products that I have used, Cisco gives me more information and it is easy for me to understand what's happening from the application, which is Cisco AnyConnect, which other vendors don't. It's very hard for me if I have to work with other applications, I have to get support from the application owner vendor. But in Cisco, I myself can read through and get this thing. Now with that being very comfortable, I mean very, very useful. I would like to get to more detail in a more simplified way. There are plenty of things. It is also where there is something it gives me in a simplified way. This is what has happened that would help me in some cases. But always there is a scope for improvement in any product. I never rate any product to 10, even if it's better because there is always room for improvement. So I personally feel we can still make this better. It is a good product, but we can still make it better
I generally have not noticed the outages, however since it's a machine it can malfunction, we need to implement the firewall infrastructure in such a way that it is highly available with device failure, region failure etc. Else any solution will be having the issues if they are not build with resiliency.
Thus far, I have not encountered any outages to Cisco AnyConnect. Any firmware updates are completed infrequently and efficiently such that the users don’t experience noticeable downtime. I have not encountered any errors running the platform at any time of day or night , or from any geographical location. Provided a hard-wired or WiFi internet connection is available, expect Cisco AnyConnect to run without unexpected interruption.
Cisco AnyConnect is usually a speedy, reliable, and efficient tool for the creation of your own VPN whatever location that you've brought your laptop. I have run into a few scenarios that have caused the connection to be considerably slower. However, in thise instances, I am linking a poor Wi-Fi connection as the root cause of slow implimentation.
The support is usually very good and gets back to you very quickly. However I had some instances of when two engineers will give me wildly different answers to what I thought was a simple question. Overall however I do rate the support highly and they are generally always very good.
Their support team is extraordinary and quick responding. All support team members have great product knowledge and takes very minimum time for query resolution. Support is available on phone, emails, etc. As per my experience with their support team, I will rate them with 10 stars here because it was truly exceptional.
It was quite a good one, how ever requires an expertise to deploy hence the SMB segment would be finding it difficult to implement this product. The one good reason is that there are lot of ASA certified engineers in compared to the other certified engineers. Hence this resembles positively on the deployment as you have quite a lot of experienced engineer on your deployment
We are quite satisfied with the deployment. We might extend our deployment. My suggestion to everyone will be utilizing Cisco cloud infra as well. As it will give you some nice features like cloud based firewall, DNS Security and threat intelligence. Threat intelligence was a key decision maker for us and people should not ignore it.
We were using [pfSense] before in our environment but we regularly facing difficulties over it due to software bugs & downtime. After implementing Cisco ASA, it resolved our availability issue & provides us a reliable solution with the best security features & easy to understand GUI.
I have tried the above too. I have noticed that the consistency and reliability that connect provides are way better than theirs. Integration with 2-factor authentication apps is something extremely important, and I am not sure if this two software provide such functionality. Network stability and speed are also not as good as Cisco Anyconnect.
Cisco AnyConnect has been a speedy, reliable, and efficient tool for the creation of your own VPN whatever location that you've brought your laptop. Customer support is consistently top-notch, coming up with quick fixes to whatever difficulties are thrown your way. I would not hesitate to reccommend Cisco AnyConnect to any business that needs connected employees throught the world.
We are able to seamlessly work on multiple clients daily, and it allows us to quickly handle more projects at the same time.
Cisco AnyConnect has allowed our own company's coworkers to remotely connect back to the corporate network, easily assisting work schedules and processes, during the COVID-19 pandemic. Being forced to work remotely, meant our processes still happened quickly and efficiently, by being able to leverage and use Cisco AnyConnect VPN.
Even prior to the COVID-19 pandemic, I have worked 100% remotely for a few years now. This was always due to the reliable connectivity and ease of use with Cisco AnyConnect VPN. I live 2+ hours from our nearest corporate office, and even further from some of my client locations, and I have always been able to connect to any of my multiple Cisco AnyConnect VPN connections, within seconds.