Cisco Secure Firewall Management Center (formerly Firepower Management Center) are a firewall policy and intrusion detection appliance management system, providing an administrative nerve center for managing critical Cisco network security solutions. It provides complete and unified management over firewalls, application control, intrusion prevention, URL filtering, and advanced malware protection. Easily go from managing a firewall to controlling applications to investigating and remediating…
N/A
ManageEngine Firewall Analyzer
Score 9.0 out of 10
N/A
ManageEngine offers Firewall Analyzer, a firewall security and policy management option supporting change and compliance of network security devices.
FMC is feature-rich and user-friendly. Cisco firewalls can run on standalone mode (FDM) but fewer features are supported on FDM. FMC is a must when working with Cisco Firewall. Migration from Cisco ASA to Cisco FTD is easy. There is a tool (FMT) that converts and imports the cisco IOS configuration file to FMC. FMC runs in VM or can be purchased as a physical appliance. The downside is that FMC is not quite fast and has bugs, especially when running in the older version 5x. and 6x.
Offering enhanced network security, performance, and connectivity, it is well as used in a business setting. Features including application control, web content filtering, firewall, IP address, application control, VPN, and good advanced threat protection. With enhanced features and advanced threat protection you get an awesome performance cost effective firewall device.
Live traffic monitor: Firewall Analyzer lets us monitor traffic as it flows through the firewalls. It also breaks it down according to what type of traffic (e.g., web, mail, FTP, etc.) it is. It lists the tops hosts, the top users from traffic, and a lot of other useful statistics, all in a very visual format.
Security Monitoring: Another good visual graph Firewall Analyzer provides is the security one, which shows us if we're being attacked, from where, by what, how many, etc. It will also send us alerts when there's an alarm of any kind on the firewall.
Reporting: We can run all sorts of custom reports, and that helps us both with compliance and informing management as to what's going on. It would be difficult to describe all the various kinds of things we can include in these reports, but they are extensive.
Stability when managing firewalls, we're having issues with Firewall 01 and Firewall 02 remaining in sync
Reporting when it comes to access control policy rules - there is no way to export a report of the rules easily. Using a custom Python script on the Cisco forums is the only way to easily export a CSV.
Support for policy and route-based site-to-site VPN was not available until 6.6.0 and later. This forced us to purchase ASAs to bridge that gap.
Dashboard reporting - when clicking a link for more information, nothing displays. Currently working with Cisco on the support case, which has been escalated.
We are very satisfied with SecureX and it's adaptive, active nature in protecting or data and systems. It's easy to administer, update, review notifications and update when necessary. Cisco's security practice fits into our needs and continues to evolve as global cyber events change. SecureX is easy to migrate to new cisco gear as we upgrade to newer models when supports ends on older gear. Enabling fast ROI during these capital expenditure projects.
Overall usability is an eight for me because it is easy to manage the firewall policies and monitor the devices' health. The configurations are all done in the GUI which makes it more convenient and hassle free. You can also see the devices' health and the progress of the task thru its taskbar.
It is fast to download the test software and implement. It takes some sometime to understand the ways you have to on board your firewalls into it. It is nice to buy and just activate the product that you have already installed. Maybe some wizards could be improved in order to accelerate these tasks.
Since moving to Cisco secure management center from firepower management center we've had no application issues, outages or any other problems. It's always been there for us and always provides us the necessary protection and notification when we need it. Been very happy with all of our Cisco systems over our tenure to date.
We have the direct support of the manufacturer through its service channels, the attention is 24/7, and the response time is acceptable. The support for this tool is almost nil. It all depends on the level of implementation is carried out so that it can fail and request collaboration. Anyway, the manufacturer backs the entire Cisco Firepower Management Center (FMC series appliances) solution.
Cisco secure firewall management center is easy to install, moderate to setup in conjunction with firewall hardware, and administration of policy changes afterwards is pretty straight forward. And flexible to add more advanced security configurations as needed. Cisco support website is pretty good for researching how to documentation too. Cisco secure firewall management center enables integration to SecureX - the cloud security protection service. And AMP which protects packet flow with real time analysis. Cisco secure fmc is the evolved name for cisco firepower management center so for those customers who have firepower this is a simple migration.
We are managing multiple customers having a large number of Cisco devices that need to be managed by a single platform. For that reason, we have selected the Cisco Firewall Management Center than checkpoint firewall management. It simplifies and automates newly bought cisco firewalls at remote branch offices to manage, configure and troubleshoot them.
ManageEngine was chosen over the use of AlgoSec as it slotted nicely with other Manage engine services we use for services such as active directory management. Other benefits include how lightweight and easy to install and set up it is. You can install it inside your network and start testing within 20 minutes.
It's a very straightforward and user-friendly tool that has enhanced the total detection of malware and other threats t from intrusion into our network.
Provides stable deep network scanning, security visibility, and protection from unauthorized access.
The platform modular allows us to deploy across multiple budget cycles.
Firewall Analyzer has definitely freed up a lot of IT's time, by congregating logs and displaying them in a more useful, visual way.
The cost for licenses and proactive alerting, compared to the man-hours spent reactively through data, paid for itself in a few months.
There was no negative impact to users, and only some to IT staff who had to train on the software, which mostly consisted of videos and playing around with the software.
