Cisco Firepower 1000 Series vs. Snort

Cisco Firepower 1000 Series

Cisco Firepower 1000 Series

84 Reviews and Ratings

Snort

Snort

26 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Cisco Firepower 1000 Series	Score 7.5 out of 10	N/A	The Cisco Firepower® 1000 Series for small to medium-size businesses and branch offices is a family of four threat-focused Next-Generation Firewall (NGFW) security platforms designed to deliver business resiliency through superior threat defense. The vendor provides that they offers exceptional sustained performance when advanced threat functions are enabled. The 1000 Series’ throughput range addresses use cases from the small office, home office, remote branch office to the Internet edge. The…	N/A
Snort	Score 8.4 out of 10	N/A	Sourcefire developed Snort, an open source intrusion prevention system capable of real-time traffic analysis and packet logging. Snort was acquired (and is now supported) by Cisco in 2013.	N/A

Pricing

Cisco Firepower 1000 Series

Snort

Editions & Modules

Firepower 1000: 1,000-5,000
per appliance

No answers on this topic

Offerings

Pricing Offerings
Cisco Firepower 1000 Series	Snort
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

No setup fee

Additional Details

—

—

More Pricing Information

Community Pulse
	Cisco Firepower 1000 Series	Snort
Top Pros	Pro Url filtering Pro Malware protection Pro Advanced malware protection	Pro Malware protection Pro Customizable and easy Pro Add ons
Top Cons	Minus Software bugs Minus Real time Minus Time logging	Minus Upgrade process Minus Version 5 Minus False positives

Features

Cisco Firepower 1000 Series

Snort

Firewall

Comparison of Firewall features of Product A and Product B
	Cisco Firepower 1000 Series 8.4 33 Ratings 2% below category average	Snort - Ratings
Identification Technologies	8.031 Ratings	00 Ratings
Visualization Tools	7.230 Ratings	00 Ratings
Content Inspection	8.330 Ratings	00 Ratings
Policy-based Controls	8.733 Ratings	00 Ratings
Active Directory and LDAP	8.529 Ratings	00 Ratings
Firewall Management Console	7.232 Ratings	00 Ratings
Reporting and Logging	8.333 Ratings	00 Ratings
VPN	9.228 Ratings	00 Ratings
High Availability	9.232 Ratings	00 Ratings
Stateful Inspection	8.928 Ratings	00 Ratings

Best Alternatives
	Cisco Firepower 1000 Series	Snort
Small Businesses	pfSense Score 9.4 out of 10	AlienVault USM Score 7.1 out of 10
Medium-sized Companies	pfSense Score 9.4 out of 10	CrowdStrike Falcon Score 9.1 out of 10
Enterprises	Palo Alto Networks Next-Generation Firewalls - PA Series Score 9.3 out of 10	CrowdStrike Falcon Score 9.1 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Cisco Firepower 1000 Series	Snort
Likelihood to Recommend	8.1 (34 ratings)	8.1 (5 ratings)
Likelihood to Renew	7.0 (2 ratings)	- (0 ratings)
Usability	8.0 (5 ratings)	- (0 ratings)
Availability	8.1 (2 ratings)	- (0 ratings)
Performance	8.3 (29 ratings)	- (0 ratings)
Support Rating	8.6 (34 ratings)	- (0 ratings)
Implementation Rating	9.0 (1 ratings)	- (0 ratings)
Ease of integration	8.1 (2 ratings)	- (0 ratings)

User Testimonials
	Cisco Firepower 1000 Series	Snort
Likelihood to Recommend	Cisco I think it is well suited for smaller companies or (as in our case) extension to a central system with higher performance. My personal guess is, that it can be quite annoying with those delays in bigger environments, when 20 or more devices needed to be managed. From the point of security, support and updates it works quite good and seem to have no downsides. Incentivized Verified User Anonymous Read full review	Cisco If a colleague was looking to tighten down their network I can easily recommend Snort to them. It gives you some more peace of mind knowing that its always scanning traffic for malicious looking code. Even things your major firewalls and security hardware might miss, Snort has picked up. Its an easy recommendation for me. Incentivized Verified User Anonymous Read full review
Pros	Cisco My organization is all Cisco and wants to stay in the Cisco life cycle, Firepower 1000 series is great for small to medium-size office. Very robust enterprise-grade security solution with updated threat features to handle any current and upcoming threats. The solution is backed by Cisco to ensure constant security updates. Integrated AnyConnect remote client VPN is a big plus to allow for secure remote workers access. Easier to set up a site to site VPN due to the large user base and case studies published on integrating to other manufacturer solutions. Incentivized Verified User Anonymous Read full review	Cisco IPS detection. DoS detection. Packet logging. Incentivized Verified User Anonymous Read full review
Cons	Cisco ACLS in gui are PIA cant see object details Objects in ACLs dont show IP addresses Have to renames every object to name+ip to make acl GUI useable Speed to data can use improvement. Health warnings should allow you to resolve you have to dig n search in some cases. Verified User Anonymous Read full review	Cisco At times can be unstable with Cisco bugs, require frequent upgrading. FTD images that are being pushed for ASAs are less efficient from an administration standpoint, no CLI. Incentivized Alan Matson, CCNA:S, MCP Senior Network Security Engineer Read full review
Likelihood to Renew	Cisco It is quite good, robust and reliable but not always so easy to manage and configure. The tools could be improved and the price is not low for an entry level firewall Incentivized GV Giorgio Vezzaro Pre sales IT systems engineer Read full review	Cisco No answers on this topic
Usability	Cisco Firepowers are secure, reliable, central management and configuration is easy and they fit in well with our existing Cisco infrastructure. Good feature set and support. Good management and control with chassis manager and central control with additional Firepower Management Centre. Incentivized Verified User Anonymous Read full review	Cisco No answers on this topic
Reliability and Availability	Cisco Has not let me down yet. Incentivized JB John Babio Cyber Security Engineer Read full review	Cisco No answers on this topic
Performance	Cisco Great performance even on the lower end model of the series. You can push a lot of traffic through these devices without much performance impact. If you decide you want to inspect encrypted traffic however, you may take a big hit on the cpu and memory of the box, but they still manage to keep up even with all the bells and whistles turned on. Incentivized Verified User Anonymous Read full review	Cisco No answers on this topic
Support Rating	Cisco I have had troubles with Firepower Management Center and the FTD's in the past. Sticking to a Gold Star image and upgrading when the "bugs" are fixed is great. That still doesn't mean you are left vulnerable though. The extra features are just not enabled yet. Great product and calling support is readily available for any issue. Incentivized Ryan Dettmer, CCNA, CCNPc Sr. Network Architect Read full review	Cisco No answers on this topic
Implementation Rating	Cisco Utilize the new FMC cloud which is available in Cisco Defense Orchestrator. Incentivized JB John Babio Cyber Security Engineer Read full review	Cisco No answers on this topic
Alternatives Considered	Cisco Cisco Meraki MX is much more simple to configure it if you compare to Cisco Firepower 1000, but it is more limited to pur some complex configurations. The Cisco Firepower 1000 Series is typically deployed as a physical appliance, while the Meraki MX can be deployed as a physical or virtual appliance.The Firepower 1000 Series has a more complex user interface, with a steeper learning curve, but offers more customization and configuration options. The Meraki MX has a simpler, more intuitive interface, Incentivized Jaime Martínez Central America Technology & Infrastructure Manager Read full review	Cisco For our organization, the Cisco defense in depth concept works the best. While Cisco can be made to work with other vendors, we have found the best in depth protection by integrating Cisco products for maximum visibility. We had a Barracuda Web Filter, but it was difficult to maintain when you had limited scope on what you could block, so we created a whitelist only setup which required a lot of additional manpower. This wouldn't have covered new threats with DNS spoofing and the like. Sourcefire also integrated with our anti-malware platform (Cisco AMP) for even better visibility on what may be happening on the end users workstation. We are planning on adding in Cisco ISE to complete the approach and possibly stealthwatch to cover our bases in the future. The Palo Alto gear was interesting, but it was priced far out of our range. Incentivized DM David Myers Network Administrator Read full review
Return on Investment	Cisco We have seen improved throughput on our internet. It took several attempts with Cisco engineers to configure the device; it requires a deep set of knowledge to set up in a more complicated environment. This will allow us to move forward with a more stable and configurable environment with security available we didn't have before. Incentivized Verified User Anonymous Read full review	Cisco Being open source, ROI on free is hard to beat for something that works. I believe it greatly enhances the security of my network. CD Curt Dickman Owner Read full review
ScreenShots