Cisco Secure Firewall vs. WatchGuard XTM - Discontinued Product

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Cisco Secure Firewall
Score 7.0 out of 10
N/A
Cisco Secure Firewall (formerly Cisco Firepower NGFW) is a firewall product that integrates with other Cisco security offerings. It provides Advanced Malware protection, including sandboxing environments and DDoS mitigation. Cisco also offers a Next Generation Intrusion Prevention System, which provides security across cloud environments using techniques like internal network segmentation. The firewall can be managed locally, remotely, and via the cloud. The product is scalable to the scope of…N/A
WatchGuard XTM - Discontinued Product
Score 8.2 out of 10
N/A
WatchGuard XTM is a firewall option, from WatchGuard Technologies.N/A
Pricing
Cisco Secure FirewallWatchGuard XTM - Discontinued Product
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cisco Secure FirewallWatchGuard XTM - Discontinued Product
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Cisco Secure FirewallWatchGuard XTM - Discontinued Product
Top Pros
Top Cons
Features
Cisco Secure FirewallWatchGuard XTM - Discontinued Product
Firewall
Comparison of Firewall features of Product A and Product B
Cisco Secure Firewall
6.3
45 Ratings
30% below category average
WatchGuard XTM - Discontinued Product
10.0
2 Ratings
16% above category average
Identification Technologies6.440 Ratings10.02 Ratings
Visualization Tools5.441 Ratings9.92 Ratings
Content Inspection7.443 Ratings10.02 Ratings
Policy-based Controls7.044 Ratings10.02 Ratings
Active Directory and LDAP7.539 Ratings10.02 Ratings
Firewall Management Console5.844 Ratings10.02 Ratings
Reporting and Logging5.545 Ratings9.92 Ratings
VPN7.539 Ratings10.02 Ratings
High Availability6.343 Ratings10.02 Ratings
Stateful Inspection6.342 Ratings9.92 Ratings
Proxy Server4.925 Ratings9.92 Ratings
Best Alternatives
Cisco Secure FirewallWatchGuard XTM - Discontinued Product
Small Businesses
WatchGuard Network Security
WatchGuard Network Security
Score 9.2 out of 10
WatchGuard Network Security
WatchGuard Network Security
Score 9.2 out of 10
Medium-sized Companies
Cisco Firepower 4100 Series
Cisco Firepower 4100 Series
Score 9.3 out of 10
Cisco Firepower 4100 Series
Cisco Firepower 4100 Series
Score 9.3 out of 10
Enterprises
Next-Generation Firewalls - PA Series
Next-Generation Firewalls - PA Series
Score 9.3 out of 10
Next-Generation Firewalls - PA Series
Next-Generation Firewalls - PA Series
Score 9.3 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Cisco Secure FirewallWatchGuard XTM - Discontinued Product
Likelihood to Recommend
6.2
(45 ratings)
10.0
(5 ratings)
Likelihood to Renew
4.5
(1 ratings)
-
(0 ratings)
Usability
8.2
(2 ratings)
-
(0 ratings)
Availability
9.1
(1 ratings)
-
(0 ratings)
Support Rating
7.3
(7 ratings)
-
(0 ratings)
Implementation Rating
7.3
(1 ratings)
-
(0 ratings)
User Testimonials
Cisco Secure FirewallWatchGuard XTM - Discontinued Product
Likelihood to Recommend
Cisco
If you are already using [a] Cisco product like the Cisco ASA Series and you need more security on layer 7 then you can upgrade with firepower. This is well suited for middle and big organizations. If your company deals with credit card information then you should buy this firewall. It provides you all the features to stop any type of advanced attack on your organization
Read full review
WatchGuard Technologies
WatchGuard XTM comes in different models, so you can choose the model best suited for your company size. I think it works well in small as well as very large networks. I have not used this feature, but you can create a "FireCluster" to connect member devices of the same model if you need to put multiple WatchGuard XTMs in your environment. Coming from command line, it took a little adjusting to learn which screen to use to set up the different rules. Once you understand how to set up policies, it is simple to create more. New firewall administrators would appreciate the ease of creating policies, and expert administrators should find everything they need plus extra features.
Read full review
Pros
Cisco
  • Cisco Firepower NGFW (formerly Sourcefire) shows a very detailed report of traffic that it finds as malicious. From Capturing Pcaps to generating analytics corresponding to an incident it makes it very easy for us analysts to decide the next steps.
  • Cisco Firepower NGFW (formerly Sourcefire) has search functionality that allows us to go very specific while on the managing window, unlike Palo Alto Panorama.
Read full review
WatchGuard Technologies
  • Proxy filter.
  • Link redundancy.
  • Security.
Read full review
Cons
Cisco
  • Support for native VXLAN
  • CLI support on the FTDs
  • Support for all the BGP features, there are commands that show issues with network subnets being received or advertised.
  • Show BGP neighbor x.x.x.x received-routes
  • This shows an issue that soft-inbound is not applied when it is applied.
Read full review
WatchGuard Technologies
  • Support can be hard to work with. While they are typically knowledgeable, there can be a language barrier. Also, most troubleshooting seems intrusive which is a problem in a production environment.
  • The throughput of the cheaper models leaves something to be desired.
  • Have had some issues running VOIP behind these, but have not been able to narrow down the issues to the phone provider or WatchGuard yet.
Read full review
Likelihood to Renew
Cisco
There are other vendors on the market with highly complimented solutions and based on the feedback received by fellow engineers using them in production in their organizations it sounds like something worth paying attention to. Proof of concept and feature comparison with Cisco Secure Firewall will would be the next potential step. Overall, the user experience with ease of management of solutions might be the key here.
Read full review
WatchGuard Technologies
No answers on this topic
Usability
Cisco
Solution is highly effective, offers a lot of features with constant improvements and additions of new features over time. It's relatively easy to get familiar with the system, especially if transitioning from adaptive security appliances. If this is not the case, as for learnability there's a learning curve but once learned it is relatively easy to remember the details about the system even after a period of non-use
Read full review
WatchGuard Technologies
No answers on this topic
Reliability and Availability
Cisco
As for the availability, in general we did not experience any issues with it, neither in situations where there's only one physical device implemented nor when there's and High Availability pair. Failover works like a charm, no complaints here, it works as it should and so far it has been highly reliable.
Read full review
WatchGuard Technologies
No answers on this topic
Support Rating
Cisco
Customer service has been great. TAC has been mostly able to identify and fix problems that we may have and have been very responsive. If for some reason something isn't fixed right away, they have been adamant on staying with us and working the issues out before things get escalated up the chain.
Read full review
WatchGuard Technologies
No answers on this topic
Implementation Rating
Cisco
In the beginning transition from Adaptive Security Appliance to Cisco Secure Firewall did not look like the best choice. Solution was new, there were a lot of bugs and unsupported features and the actual execution in the form of configuration via Firepower Management Center was extremely slow. Compare configuring a feature via CLI on ASA in a manner of seconds (copy/paste) to deployment via FMC to Secure Firewall which took approx. 10 mins (no exaggeration). Today, situation is a bit different, overall solution looks much more stable and faster then it was but there's still room for improvement.
Read full review
WatchGuard Technologies
No answers on this topic
Alternatives Considered
Cisco
We've selected the Cisco Secure firewall as there is full Layer 7 functionality. You get more features out of the box so to speak with full application visibility and control, Intrusion Prevention, SI (Security Intelligence), Adavanced Malware Protection and a whole host of other feature. Although some of these are available in Meraki, the Cisco Secure Firewall goes into the next level.
Read full review
WatchGuard Technologies
Again, WatchGuard is priced much lower than other vendors in its space. It may not have some of the bigger features such as Layer 7 awareness. It's more simple to manage and provides IT staff the time to work on other tasks versus time spent to create complex rule sets.
Read full review
Return on Investment
Cisco
  • Cisco Secure Firewall has provided a single management interface for all of our devices.
  • We have had issues implementing 1010 in HA where a site was using a dynamic IP previously.
  • Lack of DHCP options has slowed deployment to our smaller sites.
Read full review
WatchGuard Technologies
  • Easy to set up and connect firewalls
  • Easy to set up branch tunnels
  • Less time spent training
Read full review
ScreenShots