Cisco Secure IPS vs. Snort

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Cisco Secure IPS
Score 10.0 out of 10
N/A
Cisco Secure IPS (formerly Firepower Next-Generation Intrusion Prevention System, or NGIPS) is an intrusion detection response system that produces security data and enhances the analysis by InsightOps. The technology replaces the former Sourcefire 3D IPS. Cisco acquired Sourcefire in 2013.N/A
Snort
Score 8.4 out of 10
N/A
Sourcefire developed Snort, an open source intrusion prevention system capable of real-time traffic analysis and packet logging. Snort was acquired (and is now supported) by Cisco in 2013.N/A
Pricing
Cisco Secure IPSSnort
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cisco Secure IPSSnort
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details——
More Pricing Information
Community Pulse
Cisco Secure IPSSnort
Considered Both Products
Cisco Secure IPS
Chose Cisco Secure IPS
Sourcefire 3D is Snort on steroids. Snort is a great free open source tool but Sourcefire adds a lot of functionality on top of the Snort engine. It opens a whole new world when it comes to detecting and blocking malicious traffic if you decide to place it inline. We needed to …
Snort
Chose Snort
Snort was chosen mainly for the ease and cost. With Snort we was able to set up in a matter of minutes without any professional services needed. If you are used to packet tracing the old fashion way, this is the product for you.
Top Pros
Top Cons
Best Alternatives
Cisco Secure IPSSnort
Small Businesses
AlienVault USM
AlienVault USM
Score 8.0 out of 10
AlienVault USM
AlienVault USM
Score 8.0 out of 10
Medium-sized Companies
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Enterprises
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Cisco Secure IPSSnort
Likelihood to Recommend
9.1
(6 ratings)
8.1
(5 ratings)
Likelihood to Renew
9.0
(1 ratings)
-
(0 ratings)
Usability
10.0
(1 ratings)
-
(0 ratings)
Support Rating
9.0
(2 ratings)
-
(0 ratings)
User Testimonials
Cisco Secure IPSSnort
Likelihood to Recommend
Cisco
Cisco Secure IPS is required for every organization and it gives us all the advanced security features for more visibility and control on our incoming and outgoing network traffic. We can easy to configure and management is also very easy. You can deploy in the existing network very easily. The price is very low and performance is very high and it works very quickly on threats and takes the necessary action.
Read full review
Cisco
If a colleague was looking to tighten down their network I can easily recommend Snort to them. It gives you some more peace of mind knowing that its always scanning traffic for malicious looking code. Even things your major firewalls and security hardware might miss, Snort has picked up. Its an easy recommendation for me.
Read full review
Pros
Cisco
  • The option to deploy it as a virtual machine in a UCS-E inside a Cisco Router is something to consider a lot. It simplifies a lot the deployment in places where you need to optimize resources and keep things simple. It also saves some money on unnecessary hardware.
  • Having the most complete license, we can have in the same box IPS, inspection for malware and URL filtering. As Cisco uses Talos Intelligence network to mitigate and evaluate risks, having this complete set of security features turns the box into a powerful resource to protect our remote locations. Considering the hyper-connected business we have today, it's almost impossible to think that we can run a business without this kind of protection.
  • The integration between Firepower NGIPS and other products, like Cisco ISE and Splunk, is also a key feature for this solution. In both cases, you can integrate the product to have the best of both. As a security appliance, it's very important for us to have all the logs centralized in Splunk and this is done simply connecting FMC (Firepower Management Console) to the Splunk collector.
Read full review
Cisco
  • IPS detection.
  • DoS detection.
  • Packet logging.
Read full review
Cons
Cisco
  • Wish additional modules were included such as FireAmp.
  • Wish it was easier to include customized signatures if needed. Required to know how to code with Snort in order to add real customization.
Read full review
Cisco
  • At times can be unstable with Cisco bugs, require frequent upgrading.
  • FTD images that are being pushed for ASAs are less efficient from an administration standpoint, no CLI.
Read full review
Likelihood to Renew
Cisco
We are in the middle of outsourcing and may not be able to keep this product.
Read full review
Cisco
No answers on this topic
Usability
Cisco
Very easy to navigate GUI in the FMC and very effective at performing the intending duties.
Read full review
Cisco
No answers on this topic
Support Rating
Cisco
We didn't have any major issues that let us need support. Only, for this reason, I think Cisco Firepower deserves the rating. Even for small issues, the partner that helped us during the project could solve it quickly. There are also tons of documents and other online resources to help maintain, administer and support the product.
Read full review
Cisco
No answers on this topic
Alternatives Considered
Cisco
Cisco Secure IPS is our first product. We were not using any other tools before. We are very happy with the Cisco Secure IPS features and customer support
Read full review
Cisco
For our organization, the Cisco defense in depth concept works the best. While Cisco can be made to work with other vendors, we have found the best in depth protection by integrating Cisco products for maximum visibility. We had a Barracuda Web Filter, but it was difficult to maintain when you had limited scope on what you could block, so we created a whitelist only setup which required a lot of additional manpower. This wouldn't have covered new threats with DNS spoofing and the like. Sourcefire also integrated with our anti-malware platform (Cisco AMP) for even better visibility on what may be happening on the end users workstation. We are planning on adding in Cisco ISE to complete the approach and possibly stealthwatch to cover our bases in the future. The Palo Alto gear was interesting, but it was priced far out of our range.
Read full review
Return on Investment
Cisco
  • Has made it much easier to determine when incidents have occurred
  • Has been effective in reducing false positives and making solution management more efficient and cost effective
Read full review
Cisco
  • Being open source, ROI on free is hard to beat for something that works.
  • I believe it greatly enhances the security of my network.
Read full review
ScreenShots