Cisco IOS Security vs Nmap

Likelihood to Recommend

When it comes to security on the edge of your network (downstream) Cisco's IOS security features provide pretty much everything you need when it comes to securing your network, network devices, and access. I would absolutely recommend Cisco switches due to many reasons, but a big reason is security.

Read full review

Thomas Osborne

Network System Administrator

CentralSquare TechnologiesInformation Technology & Services, 1001-5000 employees

View all 4 answers on this topic

If you're a sysadmin, or anyone who's had to deploy network services, you've almost certainly had to use Nmap at some point or other. Need to see what devices are on your LAN? Nmap can tell you that. Want to check which ports your web server has open to the internet? Nmap is your friend.

Nmap is a powerful command-line tool and has many options that require some reading of documentation to get the best out of (although generally straightforward). If the thought of working at the command-line scares you (presumably not if you're reading this review), then you may want a much simpler tool, or at least check out Zenmap GUI.

Read full review

Verified User

Employee in Information Technology

Information Technology & Services Company, 1-10 employees

View all 20 answers on this topic

Feature Rating Comparison

Cisco IOS Security

Nmap

Automated network device discovery

Network monitoring

Baseline threshold calculation

Alerts

Network capacity planning

Packet capture analysis

Network mapping

Customizable reports

Wireless infrastructure monitoring

Hardware health monitoring

Pros

Authentication.
Access lists.
Port security.

Read full review

Girgis Hady

IT Network Manager

WadiDeglaSports, 1001-5000 employees

View all 4 answers on this topic

NMap provides a very fast and a very thorough network "sweep" that allows you to quickly map out exactly what's on your network.
NMap is highly configurable. The "canned" choices are very good in most instances, but using various switches and options, you can create a very specific scan and get exactly the results you're looking for.
NMap is easy to use. Even a new administrator will be able to use the graphical version (Zenmap) with efficiency right away.

Read full review

Kenneth Hess

Senior Systems Analyst

CymSTAR, LLCDefense & Space, 201-500 employees

View all 20 answers on this topic

Cons

Cisco could provide an initial set up script for those are not used to the CLI (Command Line Interface). With that initial script, people could easily deploy the security features instead of having to learn how to use the commands.
The web interface that Cisco provides with the routers, although it’s useful to set up the security features, it could also have some sort of tutorials to help people understand the main concepts of iOS security.
You have to license iOS security separately from the main OS. For that reason, sometimes it tends to be a little expensive if you have a small business.

Read full review

Eduardo Viero

IT Infrastructure Specialist

RANDON S.AAutomotive, 5001-10,000 employees

View all 4 answers on this topic

exporting, There's a serious lack of ability to export the information in a readable format to present to VPs and such. I always find myself doing a lot of data massaging to get it in a pretty format
some scans can trigger sensitive IDS/IPS
SYN scans can be particularly aggressive and cause problems on remote systems.

Read full review

Mike Nostrom

Senior Systems Software Specialist

Delaware Department of Health & Social ServicesGovernment Administration, 10,001+ employees

View all 20 answers on this topic

Support Rating

Cisco IOS Security 9.0

Based on 2 answers

Cisco has the best Support team that gives us 24/7 support as we need. Cisco has huge detailed documentation for design, implementation, and troubleshooting all areas of the IOS security.There are many communities discussing all Cisco devices and solutions for studying groups and for customers to share their stories, technical problem and solutions.

Read full review

Girgis Hady

IT Network Manager

WadiDeglaSports, 1001-5000 employees

View all 2 answers on this topic

Nmap 8.3

Based on 18 answers

There is a very large support community and a robust selection of add-ons and scripts. Once you get the use down this is one of the most powerful tools and you can find anything you are looking for as far as examples on the web. While not having official support its not lacking by any means.

Read full review

Alan Matson, CCNA:S, MCP

Sr. Network Security Engineer

InsightInformation Technology and Services, 5001-10,000 employees

View all 18 answers on this topic

Alternatives Considered

I also like HP Procurve. It is my choice when the customer cannot afford Cisco. Cisco is better all round but HP is the only other [product] I will use if I have a choice.

Read full review

Steve Davis

Network Engineer

Diamond Technologies, Inc.Information Technology and Services, 11-50 employees

View all 4 answers on this topic

Alternatives to Nmap (other IP scanners) are often much more limited in what they can do; They often only allow you to scan a specific subset of ports or a limited number of IP addresses in one command. Nmap is unrestricted in that regard. What makes Nmap stand out above the rest, is the complete network analysis package you get with it. It allows IP scanner, network deep-dives, hardware analysis, vulnerability analysis, encryption detailing, and so much more, in one free application

Read full review

Dylan Eikelenboom

Security Officer

IXON CloudInformation Technology and Services, 51-200 employees

View all 20 answers on this topic

Return on Investment

Cisco iOS security helped our business deploy a relatively safe solution for a small amount of money.
If you don’t have enough budget to invest in a robust and expensive firewall solution, you can safely use Cisco iOS security to protect your branch or remote office without compromise your network.
Because Cisco iOS security uses a simple command-line based interface, you can deploy standardized scripts and keep the operational costs low.

Read full review

Eduardo Viero

IT Infrastructure Specialist

RANDON S.AAutomotive, 5001-10,000 employees

View all 4 answers on this topic

Positive return as it's open-source (free) on all OS's.
If a person is not used of the command line there are a ton of front ends that make it point-and-click so the learning curve is good. That cuts down on time and manpower.

Read full review

Verified User

Technician in Information Technology

Oil & Energy Company, 11-50 employees

View all 20 answers on this topic

Pricing Details

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

Rating Summary

Cisco IOS Security

Nmap

Cisco IOS Security

Nmap

Cisco IOS Security vs Nmap