Likelihood to Recommend Cisco ASA's are great for internal network connected access between a firewall and the central management server. And, for complex networks where high security requirements with overly strict compliance are necessary. For networks with limited connectivity to the core or for poor network connectivity these are not the best solution. There are other more stand-alone firewall's that do this better. These firewall's are a little more complex to set up to start with so significant knowledge of these devices is required to set them up and ensure they are best practice installed.
Read full review Trellix (FireEye + McAfee)
It provides great web security and will protect your devices against viruses and malware when paired with other security software and hardware. For instance, we have multiple layers of security set up so if McAfee misses something then one of our other barriers will catch the infection or intrusion before it reaches the network. I would not suggest using this product as a standalone agent because I do not think it will be as effective when working by itself. The dashboard also makes it convenient to manage devices, policies, and settings from wherever you are so it's an ideal solution for any IT department to use. I would just suggest using something else as a backup so your network isn't left vulnerable.
Read full review Pros ASA is our VPN concentrator. The client and server are very stable and very easy to use ASA also offers Intrusion Prevention, to an extent. This is also very useful for an improved security posture for a small company ASA allowed us to scale very quickly. We could onboard clients, partners, and consultants and give them a great onboarding experience as well Administrative costs with ASA are low. It's very easy to administer. Read full review Trellix (FireEye + McAfee)
Provides high fidelity alerting. Allows CSOC analysts to perform forensic triage and alert investigations through containment from a single pane of glass. Provides alert telemetry across on-disk and in-memory attacks. Supports many additional 'bolt-on' modules to provide additional alert context or capabilities. Read full review Cons The ASDM software is at times a nightmare to install because of different java versions[.] [The firewall] could do with a power button, just to be able to do a hard reboot when needed[.] It would be nice to manage the firewall via the web on port 443[.] Read full review Trellix (FireEye + McAfee)
The amount of false detections especially the negative ones needed to be reduced. It requires more optimization. It tends to make the PCs slower. It almost doesn't have the ability to heal. This is very important as we need our sensitive data to be recoverable. It doesn't have any free scanning functionality. Our users using personal machines cannot scan in case of an incident. This could be added like Malwarebytes. Read full review Likelihood to Renew To be honest there has been now great products out in the market compared to Cisco ASA. I beleieve Cisco has to do a lot of improvement in this area. The other defeiniete factors is the cost when it comes to renewals which is always a premium on Cisco products
Read full review Trellix (FireEye + McAfee)
Reliability and Availability I generally have not noticed the outages, however since it's a machine it can malfunction, we need to implement the firewall infrastructure in such a way that it is highly available with device failure, region failure etc. Else any solution will be having the issues if they are not build with resiliency.
Read full review Trellix (FireEye + McAfee)
Support Rating The support is usually very good and gets back to you very quickly. However I had some instances of when two engineers will give me wildly different answers to what I thought was a simple question. Overall however I do rate the support highly and they are generally always very good.
Read full review Trellix (FireEye + McAfee)
The support of product was very good when we initially implemented the solution. We were getting fats replies and could see the customer approach. After a while the level of support was not following the SLA's and the replies were getting very confusing and late.
Read full review Implementation Rating It was quite a good one, how ever requires an expertise to deploy hence the SMB segment would be finding it difficult to implement this product. The one good reason is that there are lot of ASA certified engineers in compared to the other certified engineers. Hence this resembles positively on the deployment as you have quite a lot of experienced engineer on your deployment
Read full review Trellix (FireEye + McAfee)
Alternatives Considered We were using [
pfSense ] before in our environment but we regularly facing difficulties over it due to software bugs & downtime. After implementing Cisco ASA, it resolved our availability issue & provides us a reliable solution with the best security features & easy to understand GUI.
Read full review Trellix (FireEye + McAfee)
Unlike Trellix Endpoint Security Symantec Endpoint provides less information about events on the user side. Trellix give an opportunity to see information about virus detection on a user machine as quick as it possible, so we were able to catch the signs of virus propagation early and prevent the spread of damage
Read full review Return on Investment Most network engineers have worked with ASA, so there is no need for re-training when adding or turning over staff Current configs from older devices plug in easily, and are operational on larger devices if an upgrade is required Many support options available Read full review Trellix (FireEye + McAfee)
From an auditing standpoint, we can show that our workstations/servers are protected. Even though it cant identify more advanced/targeted malware, it is still good to identify the more obvious malware which occurs daily in my enterprise. Since it can be easily deployed, the products can easily get deployed on all systems in the environment for optimal anti-malware protection. Read full review ScreenShots Trellix Endpoint Security ENS Screenshots