Cisco AnyConnect vs Next-Generation Firewalls - PA Series | TrustRadius

What users are saying about

Score 8.7 out of 10

Based on 113 reviews and ratings

Score 9.3 out of 10

Based on 102 reviews and ratings

Feature Rating Comparison

Cisco AnyConnect

Next-Generation Firewalls - PA Series

Identification Technologies

Visualization Tools

Content Inspection

Policy-based Controls

Active Directory and LDAP

Firewall Management Console

Reporting and Logging

VPN

High Availability

Stateful Inspection

Proxy Server

Pros

Autoconnections are seamless for the users. There's nothing for them to do once it's all setup.
It recognizes security certificates for the PC and user, so you can easily lock down the connectivity to the specific users and/or machines you need for your environment.
Unless the WIFI is extremely poor, the software can make the connection and allow your users to function on the VPN.

Read full review

Technology Systems Manager

Gentry Locke Rakes & MooreLaw Practice, 51-200 employees

View all 52 answers on this topic

AppID is able to see what the actual internet traffic is. For instance instead of port 443 just being "Internet traffic" we can define access to Facebook-base or all the other facets of facebook.
UserID allows us to define policies based on group or user access and integrates with our Active Directory. This helps to configure a least access privilege and if we find misuse of the network we can tighten specific users to a stricter policy.
GlobalProtect VPN connection helps our employee's connect from home remotely. This provides a very secure connection with minimal configuration.
Wildfire provides very up-to-date information regarding global attack mitigations and stopping techniques.

Read full review

Christopher St.Amand

Senior Network Security Engineer

PeoplesBankBanking, 201-500 employees

View all 29 answers on this topic

Cons

Next generation features are lacking.
Split handling scenarios are limited.
Sensitive to timeouts.
Auto reconnect features does not work as expected.
Auto mtu discovery does not work on some cases.
Not a full featured solution on the client side.
Detailed reporting is missing.
Lack of multi device management.
Application, url based dashboards needs to be enhanced.

Read full review

Verified User

Supervisor in Information Technology

Banking Company, 10,001+ employees

View all 52 answers on this topic

The CLI is a bit confusing, and it's difficult to find what you're looking for. Takes a lot of practice. Definitely not as good as the Cisco CLI.
Updating the firmware is often a very dangerous process, especially when jumping minor or major releases. More QA should be done to validate and ensure no issues during upgrades. I'll admit it's gotten better over time, but there is still room for improvement.

Read full review

Verified User

Engineer in Information Technology

Financial Services Company, 201-500 employees

View all 29 answers on this topic

Likelihood to Renew

Cisco AnyConnect 9.1

Based on 1 answer

We are most likely to renew, in the case that our contract expires, as this application made us able to continue our day-to-day operations.

Read full review

Verified User

Employee in Customer Service

Information Technology & Services Company, 501-1000 employees

View all 1 answers on this topic

Next-Generation Firewalls - PA Series 10.0

Based on 1 answer

The PA5220s have far exceeded what we have expected out of them. It was a bit of a learning curve coming from another vendor, but everything falls into place now with ease. The capabilities of the solution still surprise us, allowing us to remove other costly hardware and providing a single point of management needed

Read full review

Verified User

Administrator in Information Technology

Higher Education Company, 201-500 employees

View all 1 answers on this topic

Usability

Cisco AnyConnect 8.7

Based on 29 answers

Deployment was easy. On the end user side, it is also easy to use. They just install an app on their mobile device or computer, fill the VPN address and their credentials, and they can work remotely as they are located in company premises.

Read full review

Cyber Security Analyst

Nation FarmChemicals, 51-200 employees

View all 29 answers on this topic

Next-Generation Firewalls - PA Series 10.0

Based on 2 answers

In my opinion, the Palo Alto Firewall is the simplest firewall in terms of management interfaces; though it has more advanced options that apply to more advanced use cases. Configuring basic features on the firewall is nearly self-explanatory; configuring more advanced features can be met with very thorough vendor documentation.

Read full review

Verified User

Engineer in Information Technology

Government Administration Company, 1001-5000 employees

View all 2 answers on this topic

Support Rating

Cisco AnyConnect 8.7

Based on 57 answers

Only needed most when onboarding users. That too was streamlined with a detailed documentation on setting up VPN connections. Next use came when the implementation team needed to set up auto updating software when teams who didn't connect to VPNs while working remotely had repeated reminders about software licenses expiring. Connecting to VPN seamlessly updated all software, performed security checks and re-established trusted user relationship.

Read full review

Verified User

Analyst in Information Technology

Education Management Company, 10,001+ employees

View all 57 answers on this topic

Next-Generation Firewalls - PA Series 8.5

Based on 12 answers

We've run into a couple undocumented bugs, but that seems to happen with every brand and technology. Any time we've had to engage Palo Alto support they've always been professional, knowledgeable and prompt. In almost all cases we've been able to resolve our issues without having to escalate our tickets.

Read full review

Network Engineer

Kentucky Administrative Office of the CourtsGovernment Administration, 1001-5000 employees

View all 12 answers on this topic

Alternatives Considered

We selected Cisco AnyConnect because we needed a quick solution when we took our company remote and we'd already used Cisco AnyConnect in a limited manner for on call tooling. It was an excellent solution for taking our company fully remote. We also use OpenVPN for one specific team that is VPN'ing directly to our cloud infrastructure, again, specifically for on call tooling.

Read full review

Verified User

Professional in Information Technology

Human Resources Company, 51-200 employees

View all 52 answers on this topic

I have used Cisco & Sonicwall primarily in most of my 23+ years of network security experience. Over the years all of these platforms have matured, but Palo Alto beats them all in terms of user interface.

The ability to run reports, get access to data immediately, and have the data be extremely accurate and granular is what sets Palo Alto apart from the others. Deployment of the VPN client(s) on multiple platforms is simple to manage and doesn't break other applications like many other VPN client software does. The performance of the firewall from a throughput and monitoring standpoint is second to none.

Read full review

Verified User

C-Level Executive in Information Technology

Consumer Goods Company, 201-500 employees

View all 29 answers on this topic

Return on Investment

AnyConnect has allowed business operations to continue uninterrupted during the pandemic, which has been key to maintaining business continuity with customers and stakeholders.
AnyConnect has played a part in allowing for downsizing of some physical office sites. At least 4 office buildings within the organization have now been sold as employees haven proven the ability to work effectively remotely indefinitely.
AnyConnect has also facilitated globalization within the wider organization. Productive meetings with colleagues around the world at various times of day are possible with continuous access to company virtual resources.

Read full review

Verified User

Analyst in Quality Assurance

Medical Device Company, 10,001+ employees

View all 52 answers on this topic

Utilizing Panorama to manage all of our Firewalls Policies by creating device groups is a real time saver. We only need to configure policies once and push them to the appropriate firewalls saving a lot of time.
Having the added security feature protection is good peace of mind in an ever-increasing threat landscape.
Monitoring traffic by IP, URL or username provides excellent insight into our traffic.

Read full review

Verified User

Analyst in Finance and Accounting

Financial Services Company, 1001-5000 employees

View all 29 answers on this topic

Pricing Details

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

Rating Summary

Cisco AnyConnect

Next-Generation Firewalls - PA Series

Cisco AnyConnect

Next-Generation Firewalls - PA Series

Cisco AnyConnect

Next-Generation Firewalls - PA Series

Cisco AnyConnect

Next-Generation Firewalls - PA Series

Add comparison