Cisco ASA 5500-X with FirePOWER Services vs. Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series

Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Cisco ASA 5500-X with FirePOWER Services	Score 7.5 out of 10	N/A	Cisco offers a threat-focused next-generation firewall (NGFW), the ASA 5500-X Series. The ASA 5500 Series platforms can run either the Cisco ASA Firewall or Cisco Firepower Threat Defense (FTD). The series features appliances in a variety of form factors, including standalone options for small and midsize businesses, ruggedized appliances for extreme environments, midsize appliances for security at the Internet edge, and high-performance appliances for enterprise data centers.	N/A
Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series	Score 9.2 out of 10	N/A	The VM-Series is a virtualized form of Palo Alto next-generation firewall that can be deployed in a range of cloud environments. The VM-Series natively analyzes all traffic in a single pass to determine the application identity, the content within, and the user identity.	N/A

Pricing

Cisco ASA 5500-X with FirePOWER Services

Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
Cisco ASA 5500-X with FirePOWER Services	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

Cisco ASA 5500-X pricing starts at ~$400 and scales up to $20,000 for higher capacity appliances.

—

More Pricing Information

Pricing Info

Community Pulse
	Cisco ASA 5500-X with FirePOWER Services	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series
Considered Both Products	Cisco ASA 5500-X with FirePOWER Services No answer on this topic	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series Shephered Moyo Systems Engineer Chose Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series The above firewalls are great but the Palo Alto is the king. The Palo Alto does everything from layer 3 to layer 7. It gives visibility to the network, unlike other firewalls. When configured properly it will monitor and report on each and every packet that enters and leaves … Incentivized Helpful?

Features

Cisco ASA 5500-X with FirePOWER Services

Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series

Firewall

Comparison of Firewall features of Product A and Product B
	Cisco ASA 5500-X with FirePOWER Services 8.4 32 Ratings 3% below category average	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series 8.5 8 Ratings 2% below category average
Identification Technologies	6.630 Ratings	8.58 Ratings
Visualization Tools	8.025 Ratings	8.08 Ratings
Content Inspection	7.131 Ratings	8.08 Ratings
Policy-based Controls	8.130 Ratings	8.58 Ratings
Active Directory and LDAP	10.030 Ratings	8.08 Ratings
Firewall Management Console	9.032 Ratings	8.58 Ratings
Reporting and Logging	8.431 Ratings	7.58 Ratings
VPN	10.032 Ratings	9.07 Ratings
High Availability	10.030 Ratings	9.07 Ratings
Stateful Inspection	8.14 Ratings	9.08 Ratings
Proxy Server	7.23 Ratings	9.44 Ratings

Best Alternatives
	Cisco ASA 5500-X with FirePOWER Services	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series
Small Businesses	pfSense Score 8.8 out of 10	pfSense Score 8.8 out of 10
Medium-sized Companies	Quantum Firewalls and Security Gateways Score 9.3 out of 10	Quantum Firewalls and Security Gateways Score 9.3 out of 10
Enterprises	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series Score 9.2 out of 10	Quantum Firewalls and Security Gateways Score 9.3 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Cisco ASA 5500-X with FirePOWER Services	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series
Likelihood to Recommend	8.1 (32 ratings)	9.0 (10 ratings)
Likelihood to Renew	9.7 (3 ratings)	- (0 ratings)
Usability	7.2 (2 ratings)	9.0 (2 ratings)
Availability	10.0 (1 ratings)	- (0 ratings)
Performance	8.5 (28 ratings)	- (0 ratings)
Support Rating	7.3 (30 ratings)	10.0 (1 ratings)
Implementation Rating	10.0 (2 ratings)	- (0 ratings)
Ease of integration	9.0 (1 ratings)	- (0 ratings)

User Testimonials
	Cisco ASA 5500-X with FirePOWER Services	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series
Likelihood to Recommend	Cisco This firewall is best suited for the network edge/perimeter deployment. The next gen features works very well and the remote access VPN is also very much suitable for the organizations which have a huge user base working remotely. The Remote Access VPN is very much customizable and the authentication integration option like LDAP and RADIUS provides and addon. Incentivized Vinayak Mishra Senior MS Security Engineer Read full review	Palo Alto Networks PaloAlto VM-200 is a virtualized firewall with high processing power and network edge protection. The great advantage is being able to implement in a VMware environment without worrying about hardware, rack space, physical network connections and others. It can be easily managed via the web and remotely to create protection, access and reporting rules. The VM-200 firewall can be used by any company, small or large because it has several models available according to the real needs of each one. Incentivized Verified User Anonymous Read full review
Pros	Cisco The Cisco ASA with FirePOWER Services model works perfectly for network edge protection scenarios. It allows for the creation and connection of sites through site-to-site VPN configuration. It enables remote connection and home office with remote SSL or IPSEC VPN. It has layer 7 traffic protection and visibility. It has anti-malware protection from start to finish. The configuration is easy to perform. Incentivized Verified User Anonymous Read full review	Palo Alto Networks Decrypt internet traffic daily reporting of top internet users classify internet traffic in real-time to allow us to understand the organization needs. Strong AI capabilities Incentivized RB Ronald Barrett Director of Information Technology Read full review
Cons	Cisco URL Filtering feature could be easier to utilize for beginners I'd like to see a visual of VPN networks setup and show the functioning or malfunctioning status to assist in making troubleshooting easier Recommendations on ACLs for beginners based on their account creation date Incentivized AS Andrew Sparks Network System Administrator Read full review	Palo Alto Networks High Availability can be improved to allow active-active deployment All command line documentation to provide and support automation It will be nice to have link aggregation just like in the hardware firewall models. Incentivized Shephered Moyo Systems Engineer Read full review
Likelihood to Renew	Cisco Ever since we installed Cisco ASA 5500-X with FirePOWER Services we have never had to deal with an attack. We can see in the logs almost every day hackers attempting to break into our networks and failing. We also have the ability to blacklist every IP address that attempts to break into our firewalls Incentivized Shephered Moyo Systems Engineer Read full review	Palo Alto Networks No answers on this topic
Usability	Cisco Cisco firepower provides automatation for an organisations security operations to detect and stop the most advanced threats fast. It also assists in preventing attacks in using intelligence and innovative solutions. Incentivized Zakarieya Abderoef Solutions Architect Read full review	Palo Alto Networks It is very easy to use, even for those with little experience in this particular firewall. Some of the advanced content filtering and content-based policies are difficult to pick up; however, almost all required decoders are built in. Built-in logging and rule testing make rule definition easy, and labels/tags allow filtering, grouping, and categorisation of rules. Updates are easy, and high availability is also reliable. Incentivized Verified User Anonymous Read full review
Reliability and Availability	Cisco We have never had an outage caused by firewall failure. We have had a few outages caused by the internet failing or cloud applications going offline but never a firewall breaking down. When making changes we have a very strong change control, major software updates are always carried out out of working hours. At places where we have two firewalls in HA, we are able to do upgrades in working ours and the users will never know that an upgrade is taking place, that how great these firewalls are Incentivized Shephered Moyo Systems Engineer Read full review	Palo Alto Networks No answers on this topic
Performance	Cisco The Cisco ASA 5500X with Firepower performance needs consideration before deploying. Although the solution is Pay as you grow, adding additional features to the system has a negative impact on overall throughput. I would more like now only to deploy the Cisco FPR units as they have better performance and will last the test of time. Incentivized Simon Watkins Senior Network Architect Read full review	Palo Alto Networks No answers on this topic
Support Rating	Cisco I would recommend the purchase of the Smartnet 24x7 service in the case of a unit and the Smartnet 8x5NBD in the case of only one appliance installed on site. This service is important to always have the latest firmware updates, corrective updates and especially the hardware warranty and maintenance service in case of problems. The service is done by phone or on the official Cisco website and I can say that it is very good and efficient. Incentivized Flavio Pereira Analista de sistemas Read full review	Palo Alto Networks Palo Alto VM series are best selling and industry's top-selling security product which customers prefer while securing their public cloud environment Incentivized Verified User Anonymous Read full review
Implementation Rating	Cisco We implemented a centralized management of all our Cisco ASA 5500-x with FirePOWER Services so that we can have a holistic view of all our sites in London and other European countries. This also helps when making changes, instead of login on to each firewall we can use Firepower Management Center (FMC) to central deploy changes across all devices Incentivized Shephered Moyo Systems Engineer Read full review	Palo Alto Networks No answers on this topic
Alternatives Considered	Cisco Previous],] I was using the [pfSense] in my organization but when i switched to [Cisco ASA 5500-X with FirePOWER Services] I realized there are lots of issue and missing security features in [pfSense]. The deployment and configuration is very easy as compare to [pfSense]. I highly recommend this product to everyone. Incentivized Basant Gupta Executive System Admin Read full review	Palo Alto Networks palo alto firewalls are application-oriented systems. They can beat other product which are based on layer 3/4 inspection. Vm series are also quickly available and could be useful in urgent deployment needs . other vendors like Fortinet and cisco could take much more time to provide the VM and in some cases installation and license validation are complicated Incentivized Verified User Anonymous Read full review
Return on Investment	Cisco Working of remote workforce made easy Security was enhanced on the data traffic shared with the vendors due to the use of VPNs Inbound attacks were mostly blocked on the edge and saved a lot of resources (which could had been used in case of attacks getting successful on the application servers) Incentivized Vinayak Mishra Senior MS Security Engineer Read full review	Palo Alto Networks ROI has been achieved quickly through lack of security incidents. Inline filtering happens at line rate, unline Sourcefire from Cisco. Great incentives from PAN to switch made a difference in the choice to change. Incentivized Verified User Anonymous Read full review
ScreenShots