Likelihood to Recommend Cisco Secure IPS is required for every organization and it gives us all the advanced security features for more visibility and control on our incoming and outgoing network traffic. We can easy to configure and management is also very easy. You can deploy in the existing network very easily. The price is very low and performance is very high and it works very quickly on threats and takes the necessary action.
Read full review Palo Alto Networks Wildfire is well suited for pretty much anywhere that you need the latest and greatest network security. It is extremely good at protecting you from the latest malware threats that might pose a potential problem for your network/endpoints. We've been very please since we installed it and I would say cost of the Palo Altos is the only drawback. If money were no object I'd go with a Palo Alto with Wildfire every time. But unfortunately in some smaller branches it just doesn't make financial sense.
Read full review Pros The option to deploy it as a virtual machine in a UCS-E inside a Cisco Router is something to consider a lot. It simplifies a lot the deployment in places where you need to optimize resources and keep things simple. It also saves some money on unnecessary hardware. Having the most complete license, we can have in the same box IPS, inspection for malware and URL filtering. As Cisco uses Talos Intelligence network to mitigate and evaluate risks, having this complete set of security features turns the box into a powerful resource to protect our remote locations. Considering the hyper-connected business we have today, it's almost impossible to think that we can run a business without this kind of protection. The integration between Firepower NGIPS and other products, like Cisco ISE and Splunk, is also a key feature for this solution. In both cases, you can integrate the product to have the best of both. As a security appliance, it's very important for us to have all the logs centralized in Splunk and this is done simply connecting FMC (Firepower Management Console) to the Splunk collector. Read full review This is could base and easily manageable for our collocation. While working within the could can review in live time potential treats that it has reported from other devices. Worked very well with existing Palo Alto devices. Another huge plus is the simplicity of managing and ease of scalability. Its cost is competitive with similar/like products available. Read full review Cons Wish additional modules were included such as FireAmp. Wish it was easier to include customized signatures if needed. Required to know how to code with Snort in order to add real customization. Read full review WildFire, like other sandboxes, has to stay up with malware sandbox evasion techniques, which necessitates larger file size limits. More file formats should be able to be submitted and scanned by WildFire, which needs improved initial administration and setup. It's quite pricey, and there's no warning choice for performance on the cloud. Read full review Likelihood to Renew We are in the middle of outsourcing and may not be able to keep this product.
Read full review It works very well and takes care of protecting us from threats new and well-known. It's been a game changer in terms of threat detection & prevention.
Read full review Usability Very easy to navigate GUI in the FMC and very effective at performing the intending duties.
Read full review Easy to use and works well. For the most part it's set it and forget it, but there's also some flexibility for high security environments and those with extra privacy concerns.
Read full review Support Rating We didn't have any major issues that let us need support. Only, for this reason, I think Cisco Firepower deserves the rating. Even for small issues, the partner that helped us during the project could solve it quickly. There are also tons of documents and other online resources to help maintain, administer and support the product.
Read full review PAN support is very good. You can get the reasonable and timely support on any conditions. When the product is already integrated with the PAN firewalls, you can choose the severity levels based on the effect. The customer service/TAC is very helpful, they even have additional recommendations of advises for product usability. Local partners are also assisting the cases and give their expertise.
Read full review Alternatives Considered Cisco Secure IPS is our first product. We were not using any other tools before. We are very happy with the Cisco Secure IPS features and customer support
Read full review We wanted a single device to handle numerous jobs, such as antivirus, antimalware, vulnerability detection, url filtering, etc. Palo Alto provides this, while
TippingPoint IPS is a more dedicated product. Caveat: I used
TippingPoint over 5 years ago, so things may have changed.
Read full review Return on Investment Has made it much easier to determine when incidents have occurred Has been effective in reducing false positives and making solution management more efficient and cost effective Read full review As we all know the product of Palo Alto is little bit expensive but its performance is far better than any of its competitors. So as I previously mentioned, Palo Alto should not sell WildFire Licence seperately. If the firewall is internet facing then only we should buy WildFire Licence. WildFire Licence is not necessary for internal firewall. If you are planning to buy a firewall for internal network where your traffic is not going towards internet so no need to buy WildFire Licence. Read full review ScreenShots