Cisco AnyConnect vs Next-Generation Firewalls - PA Series

• Autoconnections are seamless for the users. There's nothing for them to do once it's all setup.
• It recognizes security certificates for the PC and user, so you can easily lock down the connectivity to the specific users and/or machines you need for your environment.
• Unless the WIFI is extremely poor, the software can make the connection and allow your users to function on the VPN.

Read full review

• The PA handles VPN connectivity without missing a beat. We have multiple VPN tunnels in use for redundancy to cloud-based services.
• The PA has great functionality in supporting failover internet connections, again with the ability to have multiple paths out to our cloud-based services.
• The PA is updated on the regular with various security updates, we are not concerned with the firewall's ability to see what packets are really flowing across the network. Being able to see beyond just IP and port requests lets you know things are locked down better than traditional firewalls.
• It is a great overall kit, with URL filtering and other services that fill in the gaps between other solutions without breaking the bank.

Read full review

• Next generation features are lacking.
• Split handling scenarios are limited.
• Sensitive to timeouts.
• Auto reconnect features does not work as expected.
• Auto mtu discovery does not work on some cases.
• Not a full featured solution on the client side.
• Detailed reporting is missing.
• Lack of multi device management.
• Application, url based dashboards needs to be enhanced.

Read full review

• Our specific model is a bit slow and outdated and takes up to 10 minutes to commit a configuration change.
• Nested security rules would be helpful instead of a linear approach. But rule creation in general is very simple.
• Documentation gives a very straight forward answer to some items but is very vague in others.
• Support could be a little better. An issue we had a tech was insistent it was the "other guy" and it ended up being the very latest PAN OS upgrade.

Read full review

• We are able to seamlessly work on multiple clients daily, and it allows us to quickly handle more projects at the same time.
• Cisco AnyConnect has allowed our own company's coworkers to remotely connect back to the corporate network, easily assisting work schedules and processes, during the COVID-19 pandemic. Being forced to work remotely, meant our processes still happened quickly and efficiently, by being able to leverage and use Cisco AnyConnect VPN.
• Even prior to the COVID-19 pandemic, I have worked 100% remotely for a few years now. This was always due to the reliable connectivity and ease of use with Cisco AnyConnect VPN. I live 2+ hours from our nearest corporate office, and even further from some of my client locations, and I have always been able to connect to any of my multiple Cisco AnyConnect VPN connections, within seconds.

Read full review

• Overall, even though the device is very expensive (both hardware and licensing), the product does produce a decent ROI, given that one (or HA pair) of devices can do so many things, such as anti-virus, anti-malware, URL filtering, SSL decryption, SSL VPN, routing, etc.
• There will definitely be sticker shock when you're renewal comes up annually (or after 3 years), so be sure to look very carefully at the recurring costs of this product, with respect to licensing and hardware/software maintenance.

Read full review