Skip to main content
TrustRadius
Cisco Adaptive Security Appliance (ASA) Software

Cisco Adaptive Security Appliance (ASA) Software

Overview

What is Cisco Adaptive Security Appliance (ASA) Software?

Cisco Adaptive Security Appliance (ASA) software is the core OS for the ASA suite. It provides firewall functionality, as well as integration with context-specific Cisco security modules. It is scaled for enterprise-level traffic and connections.

Read more
Recent Reviews

Cisco ASA Review.

4 out of 10
August 05, 2022
Incentivized
We have used ASA to interconnect branch offices and also as a gateway. It's been a good product over the past years. Nowadays a lot of …
Continue reading

CiscoASA Firepower

8 out of 10
December 09, 2021
Incentivized
Our business uses ASA'a as firewalls and for routing. We route 2 incoming connections and route them to allow our customers to come in on …
Continue reading

Cisco ASA

7 out of 10
November 24, 2021
Incentivized
We use Cisco ASA as an internal firewall where we configure rules for internal communications and communications between servers also it's …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 11 features
  • VPN (47)
    9.5
    95%
  • Firewall Management Console (46)
    8.9
    89%
  • Active Directory and LDAP (46)
    8.4
    84%
  • Reporting and Logging (47)
    5.5
    55%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is Cisco Adaptive Security Appliance (ASA) Software?

Cisco Adaptive Security Appliance (ASA) software is the core OS for the ASA suite. It provides firewall functionality, as well as integration with context-specific Cisco security modules. It is scaled for enterprise-level traffic and connections.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

51 people also want pricing

Alternatives Pricing

What is pfSense?

pfSense is a firewall and load management product available through the open source pfSense Community Edition, as well as a the licensed edition, pfSense Plus (formerly known as pfSense Enterprise). The solution provides combined firewall, VPN, and router functionality, and can be deployed through…

What is Perimeter 81?

Perimeter 81 is a Zero Trust Network as a Service from the company of the same name in Tel Aviv, designed to simplify secure network, cloud and application access for the modern and distributed workforce.

Return to navigation

Features

Firewall

A firewall is a filter that stands between a computer or computer network and the Internet. Each firewall can be programmed to keep specific traffic in or out

8.2
Avg 8.5
Return to navigation

Product Details

What is Cisco Adaptive Security Appliance (ASA) Software?

Cisco Adaptive Security Appliance (ASA) software is the core operating software for Cisco’s ASA suite. It supports a variety of specialized network security and firewall options, allowing users to modularize to their business needs. It is scaled for enterprises through “clustering” ASAs, enabling 128 Gbps processing load and 50 million concurrent connections.

Cisco ASA provides a robust VPN setup process and integrates with other Cisco security offerings, including Cloud Web security and Trustsec. CWS provides cloud-based systems security across public and private clouds, and Trustsec is a software-defined segmentation product that mitigates the scope of network threats and data breaches. The platform also supports IPv4 and IPv6, enabling a smoother evolution in Internet Protocols for users.

Cisco Adaptive Security Appliance (ASA) Software Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

Cisco Adaptive Security Appliance (ASA) software is the core OS for the ASA suite. It provides firewall functionality, as well as integration with context-specific Cisco security modules. It is scaled for enterprise-level traffic and connections.

Reviewers rate VPN and High Availability highest, with a score of 9.5.

The most common users of Cisco Adaptive Security Appliance (ASA) Software are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(222)

Attribute Ratings

Reviews

(1-25 of 86)
Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
Incentivized
So we have shared usage of it and for us we really just implement rules and it to block allowed, deny whatever it is, traffic within our network.
  • We typically just use it to block traffic. It does what it is supposed to.
  • We just use it to monitor, block, allow. Blocks at the layer three.
  • Management, I would say a single pane of management that works would be good. Similar to the FTD, the FMC, being able to manage objects and security group objects in one pane. That would be good for the firewall versus having to manually create objects and monitor them across several different firewalls across several different contexts.
Well, it's very suited for up to layer three maybe but it's not suited for layer seven or anything above layer three. So it's not that next-gen smart.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We have several Cisco ASA and FTD firewalls in use within our organization. The ASA name is the legacy platform for the now current FTD firewalls. Both platforms provide security access for both internal networks to communicate and for external to internal network accesses. Cisco does a great job providing firewalls that are easy to manage and configure (by a skilled network administrator). The central management system; FirePower is pretty straight forward to deploy changes needed to any firewall across our network.
  • centralized management via a web based interface
  • easy , one time license setup
  • easy yearly software maintenance renewal process and easy access to tech support when renewed
  • adaptable and performance driven to protect networks
  • excellent analytics engine to detect malware and security events and block them
  • rather expensive to get into for many models
  • working with cisco acct management is not easy and getting into a streamlined renewal process can be problematic
  • some software upgrade require other security changes which mean its a continual upgrading process to stay current. and can be cumbersome
Cisco ASA's are great for internal network connected access between a firewall and the central management server. And, for complex networks where high security requirements with overly strict compliance are necessary. For networks with limited connectivity to the core or for poor network connectivity these are not the best solution. There are other more stand-alone firewall's that do this better. These firewall's are a little more complex to set up to start with so significant knowledge of these devices is required to set them up and ensure they are best practice installed.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Cisco ASA is [our] organization's firewall product, which is used as [a] firewall [and] to support remote VPN connectivity. It secures the perimeter and remote users. With Cisco ASA we have layer 3 and 4 security based on IP addresses and ports. Also with next-generation Cisco ASA antimalware, antispyware, antispam, [and] cloud-based URL filtering are also utilized.
  • Secure the perimeter
  • Secure remote users
  • Secure network from unauthorized connections initiated from outside
  • Secure from zero day attacks
  • Cisco ASA can have better GUI compared with other firewall vendors.
  • Cisco can make its security cloud better.
Well suited when higher network performance is required. When we particularly have high throughput. Cisco ASA is backed by Cisco Inc which provides [the] best support in [the] network market. Cisco ASA is less simple when we compare it with other vendors. Cisco can put more focus on [the] Telecommunication Sector as well on enterprises.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Our employee count was growing and we wanted to have a scalable, easy to administer and cost effective solution for a VPN concentrator. We wanted to support concurrent connections that was 2x our employee count. We chose Cisco's ASA as our VPN concentrator and that allowed us to scale with low administrative cost and a reasonable license/tooling cost. We also wanted to support 4 different entities, which ASA was able to help us achieve.
  • ASA is our VPN concentrator. The client and server are very stable and very easy to use
  • ASA also offers Intrusion Prevention, to an extent. This is also very useful for an improved security posture for a small company
  • ASA allowed us to scale very quickly. We could onboard clients, partners, and consultants and give them a great onboarding experience as well
  • Administrative costs with ASA are low. It's very easy to administer.
  • For small companies that require DLP, ASA could add a basic DLP system
  • ASA has an easy web administration screen. It's look-and-feel could be improved
  • ASA could develop and/or promote agentless VPN access
We moved our operations entirely to the cloud a few years ago. We loved the stability and scalability of the ASA and wanted to, somehow, keep using it. We discovered that ASA was available in the cloud as well and it was branded ASAv. We tested it and noticed that it was equally robust and a perfect fit for us. During the entire migration period, we used ASAv for cloud operations and put a lot of load on it. ASAv performed very well and gave us an easy transition from on-prem to the cloud.
August 05, 2022

Cisco ASA Review.

Score 4 out of 10
Vetted Review
Verified User
Incentivized
We have used ASA to interconnect branch offices and also as a gateway. It's been a good product over the past years. Nowadays a lot of firewalls have overtaken the product. Especially in terms of user-friendliness. Also, the performance of the product should be improved compared to the other firewalls out there in the market.
  • Vpn
  • Natting
  • Av scan.
  • Web filtering.
  • Definitely when troubleshooting. It should be made simpler.
  • AV scan engines should be improved.
  • Configuration can be made simpler.eg: Fortigate.
It's well suited for the rigid environment. In remote site locations where there is difficulty in accessing it's not a good idea as it's difficult for an end-user to provide remote access to the device. I understand it could be a security issue. But there are other means it can be secured. 2FA should be integrated.
December 09, 2021

CiscoASA Firepower

Score 8 out of 10
Vetted Review
Verified User
Incentivized
Our business uses ASA'a as firewalls and for routing. We route 2 incoming connections and route them to allow our customers to come in on one dedicated SLA provisioned fiber line and a general internet line for internet browsing. We also utilize the failover capability of the ASAs for redundancy. We will utilize the security features when we have completed an upgrade project.
  • Routing
  • Firewall
  • Security
  • Ease of use
  • Cisco's purchase model is difficult
  • Level of skill required
These appliances are great for small or medium business that needs a higher level of security will additional functions able to be purchased. It is a great reliable device for routing and firewall use, I've monitored user activity and utilization of our internet connection bandwidth noted outside attacks, DOS type when we see slowdowns, found infected computers by seeing them communicate with outside systems. A lot of helpful resources in the ASA
Score 8 out of 10
Vetted Review
Verified User
Incentivized
We have been using Cisco ASA as a part of our company for many years. It is used for routing, [dating], site-to-site VPN, remote access to our internal network for our employees when they are not in the office.
  • Allows the users to connect to our office network from outside the office.
  • Straightforward interface for configuration of firewall rules.
  • Support is a little expensive
  • The GUI could use an update
  • NextGen features
If your organization is a small business and you don't require advanced-level security then you can go with the Cisco ASA firewall. However, when you want to use a full L7 with NG capabilities, you should go with firepower.
Score 9 out of 10
Vetted Review
ResellerIncentivized
We use Cisco ASAs in our Datacentre and we deploy these firewalls for our clients, with users mainly working from home, AnyConnect VPN which works with this firewall helps a lot by facilitating a secure remote access connection back to the office. Also, users can [break out] to the internet using [a] secure [VPN] connection when accessing services like O365[.]
  • Easy deployment[.]
  • High availability by deploying a pair[.]
  • Make changes without having to reboot[.]
  • Supports firepower services for IPS and IDS[.]
  • The ASDM software is at times a nightmare to install because of different java versions[.]
  • [The firewall] could do with a power button, just to be able to do a hard reboot when needed[.]
  • It would be nice to manage the firewall via the web on port 443[.]
The Cisco ASA is well suited for data centers, enterprise, and small offices. The fact that there are several models big, medium and small makes it easy to deploy certain models for small offices and bigger models for datacenters. I personally believe this firewall is great for many scenarios, l have deployed a pair to manage internet line failovers and single entry-level ones for small offices with ingle internet lines.
Mst Rahima Khatun | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Cisco Adaptive Security Appliance (ASA) is a powerful software that provides routing, network, and virtual private network (VPN) services. Our organization has implemented it, and our clients have IPSec site-to-site VPN. We use VPN tunnels between locations and use Cisco AnyConnect for VPN connections. For preventing unauthorized access to our managed networks, Cisco ASA devices excel. There are many options in Nat to customize it to our needs. Because it helps us categorize traffic and find problems, we're using it in all departments. ASA is a security device that combines firewall, NAT, intrusion prevention, and virtual private network functionality. It is the best for a firewall, router, and VPN device.
  • Easy to configure and edit Access rules, allowing users to connect to our office network from anywhere.
  • NAT rules and network access protection keep our network safe from unauthorized connections from the outside. We can set them up quickly and easily.
  • Customer service and technical assistance are top-notch with Cisco for this product. User web and application traffic can be easily accessed and monitored.
  • Infrequent rule/setting changes and an outdated Java plug-in for the Web interface.
  • When some appliances and apps don't work, the rules and settings are complex, so GUI-based configuration is not always a better option.
  • There is a lack of a learning curve for the full potential of the ASA and Central management features.
As an infrastructure firewall, Cisco ASA is a good fit for our organizations' needs. In comparison to other solutions on the market, this one is less expensive. It has all of the security and routing features that you could ever want. We don't need to buy routers for our organization and easily configure this firewall's policy and NAT settings. We can easily configure and deploy this product in an existing network, and it will never misbehave or experience any downtime whatsoever. Moreover, the CLI is simple and user-friendly. ASA has many options for routing, nat, and VPN support, and I always recommend it.
November 24, 2021

Cisco ASA

Score 7 out of 10
Vetted Review
Verified User
Incentivized
We use Cisco ASA as an internal firewall where we configure rules for internal communications and communications between servers also it's very robust and easy to use and configure the rules.
  • Firewall rules.
  • Internal communication.
  • Integrate with other vendors.
  • Pricing.
  • Additional license.
  • Encryption feature.
Providing role-based access with an easy setup is a good experience with Cisco ASA.
Kevin Medeiros | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Incentivized
We use several Cisco ASAs for our egress firewalls and VPN firewalls. We are slowly migrating away from these to Palo Altos, but for the time being, they are still rock-solid and function well, even though they are dated. One Cisco ASA serves about 200 users for VPN services and another is used for our internet egress.
  • Configuring of basic firewall rules is easy
  • Easy to use
  • Reliability is good for these 5505 and 5545 Cisco ASAs
  • Cisco ASA is aging and Cisco wants you to migrate to FirePower, which I think is still awful
  • Java clients are still needed to access [Cisco] ASA functionality
  • Hardware is all EOL
Cisco ASAs have been around forever and are fairly reliable, but are showing their age [in my opinion]. Therefore, I'd recommend Cisco ASAs only to small businesses that need something cheap and affordable to get the job done. You aren't getting next-generation firewalls here, but you're definitely getting a product that has been tested for a long time.
sitaram gurjar | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Cisco ASA is one of the best security devices for routing, nat, and VPN. We are using this device for NAT and site-to-site VPN for secure communication between all my sites. I am working on this device for the last three years and we have connected all the sites through IPsec site to site VPN and work from home users using Cisco AnyConnect for access to the internal website and servers.
  • You can easily configure a site-to-site VPN to connect multiple sites securely and also configure a remote VPN for home users.
  • You can easily deploy the firewall in your existing network.
  • You can easily manage and troubleshoot the issue.
  • 24/7/365 technical support helps you to configure the new firewall.
  • Lots of technical support documentation available on site.
  • You can configure the ASA through ASDN. It is very difficult to configure and manage.
I always recommended the Cisco Asa for a small and middle-sized organization that doesn't need deep-level security. You can easily configure this firewall and the price of this firewall is very low. Everyone can easily purchase and configure and manage the firewall very easily. The logging is also very easy to understand and helps you to troubleshoot the issue.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Cisco ASA sits between our company and the Internet. With it, we keep out all the bad traffic that we don't want and allow the traffic that we do. On the flip side, we only allow what we want from the inside to go out. It can easily edit access rules, NAT rules, DMZ, etc.
  • Access rule, it's easy to edit them.
  • NAT rules, very easily to quickly set up.
  • Upgrading, you just point to the new image. It's a fairly simple process.
  • It only inspects traffic passing through it. Some other next-gen firewalls are able to inspect internal/lateral traffic as well.
  • While the ASDM GUI is great to use, it's a little finicky in terms of the version corresponding to what ASA version.
I think it's highly effective at what it does. I haven't even mentioned VPN access yet which certainly is extremely relied upon in these times of remote working. That being said, it's not the only security appliance that you need. Once an attacker gets inside your network, the [Cisco] ASA is virtually non-existent. Also, they are quite pricey so for some smaller offices that don't need quite a robust system, there are other options, such as Meraki, that might be suited better.
Score 5 out of 10
Vetted Review
Verified User
Incentivized
We are using Cisco ASA in our branch offices because the user count is less than or between 30-35. Our major use case is branches connected with HO through P2P and MPLS, which Cisco ASA solves the puzzle for. Also, with [Cisco] ASA we are able to form Site to Site IPSEC tunnels with ease and create a backup line in case the primary link (MPLS or P2P) fails.
  • Connectivity of branches with HO, over MPLS, P2P, and IPSEC with failover configuration.
  • Easily able to monitor user web and application traffic.
  • Prevention of intruders and attacks from the Internet to harm users' systems in the branch network.
  • Stability
  • Simple GUI is required
  • Reporting
Cisco ASA is well suited for small businesses where the company is more focused on operational efficacy like routing, basic integration, cheaper than other vendors, and high user and load capacities.
Michael Kerzner | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
ResellerIncentivized
We deploy Cisco ASA devices for our clients. We are an MSP (managed service provider) and use Cisco ASA devices for about 90% of our clientele. We deploy Cisco AnyConnect for VPN connections and use VPN tunnels between locations. Cisco ASA devices are very efficient at keeping unwanted traffic out of our managed networks.
  • AnyConnect Remote VPN
  • NAT functionality
  • Site-to-Site VPN tunnels
  • DHCP
  • LDAPS support
  • ASDM is still based on Java, not easy to install on newer operating systems
  • Not very user friendly for beginners
  • ASDM can be difficult to navigate
Cisco ASA devices lead the way for small and medium-sized businesses. Once you get the hang of the ASDM, they are very easy to configure. They provide NAT, VPN, firewall rules, routing, DHCP, and many other features. Very easy to establish VPN tunnels between sites with other brand firewalls--AWS, Azure, etc.
Arpit Singh | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Cisco ASA is a useful firewall for small and middle-sized organizations that need a firewall and router together. They provide us VPN, NAT, [and] routing features that help us to create secure connections with clients. We have multiple sites and clients across the [organization] so we created the IPSec Site to Site VPN for secure data transfer from one side to another side. We are using this firewall on our all sites.
  • Unified communications capabilities
  • Support both IPSec and SSL VPN
  • Multi-node clustering
  • High-performance
  • IPV6 support
  • Support advaced routing protocols
  • Support policy based routing
  • Easy packet flow
  • Command line is very simple
  • Cisco AnyConnect
  • Beginner can't configure ASA through ASDM
  • Very slow GUI
  • Lots of vulnerabilities in Cisco IOS
According to my experience, Cisco is very useful and [their firewall] has good features. It provides you security with router functionality so you don't need to buy additional routers if you have a small network. It provides lots of options in NAT and features in VPN so you can configure it your own way.
Aryan chahal | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We are using Cisco ASA 5525 Security for our organization. We have installed this firewall on two sites. Cisco ASA firewall is easy to configure and manage. Additionally, it provides a bundle of security features like VPN, NAT, Remote VPN, ACL, etc. We have configured IPSec Site to Site VPN on both sites and created a tunnel for secure communication. We have been using this firewall for the last 2 years and have yet to face any issues like downtime, unwanted policy misbehaving, etc.
  • Cisco provides a lot of options and ways in the Network Address Translation (NAT), so you can modify it as per your requirement
  • Cisco blocks all of the untrusted connections from outside of the network
  • Cisco supports AAA
  • Cisco supports both IKEv1 and IKEv2
  • Site to Site VPN
  • Cisco can connect to any remote VPN
  • Stateful firewall
  • Cisco support quality of service
  • Cisco supports modular policy framework
  • ACL
  • Routing protocols
  • Cisco should work on the GUI platform.
Cisco ASA is a well-suited firewall for startup and middle-sized organizations. If you have a very low budget for a firewall then you should buy this firewall. It provides all the security features, as well as routing features too. You don't need to buy router hardware for your organization. You can easily configure the policy and NAT in this firewall. CLI is very easy and user-friendly as well. You can easily import and export the report and log in [to] this.
Richa Chahal | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Cisco ASA is a security device that combines firewall, network address translation(NAT), intrusion prevention, and virtual private network (VPN) capabilities. It is the best to use for small and middle-sized businesses that need a firewall and all the router and VPN device functionalities. We have implemented this device on our two sites and we connected both sites through the site-to-site VPN. This firewall is based on a stateful firewall, so it blocks traffic from outside the untrusted world to inside a trusted area.
  • Site-to-site VPN
  • SSL VPN
  • NAT functionality
  • Reverse proxy
  • High availability
  • Routed and transparent mode
  • Static and dynamic routing protocols
  • DHCP
  • Fwo factor authentication
  • Cisco any connect remote vpn
  • Less security feature available for layer 7
  • ASDM is not user friendly
Cisco ASA is very helpful for small and middle-sized organizations. It provides nat, VPN, firewall features, etc. You don't need to buy the router if you have a small organization, you can also configure the remote VPN Cisco AnyConnect for work from home model. Cisco ASA provides you [with] lots of options in nat so you can configure the nat functionality as per your organization's requirements.
Bhupesh Pant | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Cisco ASA is a basic but good firewall. The main function of this firewall is to block every connection from an untrusted network to a trusted network. We have a [Cisco] 5525 Series Firewall in our organization and we [have been] using this for the last 3 years. We have suggested one of [our] clients implement [it] in their organization. The main features of this firewall are nat, routing, VPN, etc. We have configured ikv1 and ikev2 IPsec site to site VPN with our client to create secure communication.
  • Network address translation
  • IPSec support
  • Cisco AnyConnect remote vpn support
  • QOS
  • Policy based routing
  • Support all routing protocols
  • Stateful firewall
  • Transparent firewall
  • Support authentication, authorization, and accounting
  • Load balancing
  • Failover support
  • Easy to export and understand reporting and logging
  • Many bugs in ASDM platform
  • Very less application layer security features support
  • Complicated configuration through UI
Cisco ASA is well suited in every organization that needs easy configuration and a trusted firewall. We always recommend Cisco ASA to our all clients because of lots of options in routing, nat, and support the site to site and remote VPN. You can easily configure and deploy in an existing organization network and [it] will never misbehave [or] face any downtime.
Himani Deol | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Cisco Adaptive Security Appliance is an effective product for routing, Nat, and VPN services. We have implemented [it] in our organization and we have configured IPSec site-to-site VPN with all our clients and also configured [Cisco Adaptive Security Appliance] AnyConnect remote VPN for our work from users. There are lots of options in Nat so you can easily modify the nat as per requirement.
  • Failover Feature
  • IPsec VPN
  • Cisco AnyConnect VPN
  • NAT
  • Quality of service
  • Policy based routing
  • Support all routing protocols
  • Both IPV4 & IPv6 support
  • Load balancing
  • Very easy CLI commands
  • ACL
  • GUI is not user friendly
[Cisco ASA] is the best firewall for small and middle-sized organizations. We have a startup and have a very limited budget for network security so we decided to purchase [the] Cisco ASA firewall. [Cisco ASA] is very easy to configure and manage. Technical support is really good. If you have Cisco ASA then you don't have to purchase the router for your organization. It has all the router functionality.
Anjali Nair | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
In our organization, we have been using the [Cisco] ASA 5525 Series Firewall for the last 5 years and we have never faced any issues [or] downtime. We are using nat, routing, and site-to-site VPN features. We have connected our all sites through the site-to-site VPN and also provided Cisco AnyConnect remote VPN to home users.
  • IKEV1 and IKEV2 ipsec site to site vpn
  • Nat
  • Routing
  • QOS
  • Easy to configure
  • Easy packet flow
  • User friendly
  • Easy to configure through CLI
  • ACL
  • Cisco AnyConnect remote vpn
  • Ssl vpn
  • Reporting
  • Logging
  • GUI is not good, needs to improve
  • Layer 7 security features are missing
Cisco ASA is well suited for a small-sized organization that needs a firewall for nat, routing, and basic security. Cisco ASA provides you [with] lots of options in nat so you can configure as per your requirement. You can easily configure the IPSec site to site VPN both versions IKEV1 and IKEV2. Lots of security features are missing so Cisco should work and improve on those points.
Arjun Deol | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Cisco ASA is one of the best firewalls for any organization. We have been using this firewall for the last 4 years and we have connected all the sites through site-to-site VPN and some of our users who are [working] from home have provided Cisco AnyConnect remote VPN to access our internal servers.
  • IKEV1 and IKVE2 supported ipsec site to site vpn
  • SSL and ipsec remote vpn
  • Many options in network address translation
  • Authentication, authorization, and accounting support
  • Supports IPv6
  • Routing
  • Load balancing in VPN
  • Modular policy framework
  • Cisco ASA should improve in layer 7 security and deep scanning
  • Very difficult to manage and configure the policy through ASAM
Cisco ASA is a good, low-cost firewall and it is well suited for small and medium organizations. If you have a limited budget and your focus is on routing, VPN, and nat then you should purchase this firewall. [However,] some advanced features are missing in this firewall like layer 7 security [and] deep packet scanning for malware and virus attacks. Cisco introduced the firepower for these features but that is very costly.
Mohit Singh | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We are using Cisco ASA for remote VPN in our environment as well as for Routing. We have configured a remote VPN for connecting the remote office branches so that they can easily access the sharable resource as well. Cisco ASA helps us to configure the VLANs and block unauthorized access from outside in our network.
  • High Availability
  • Remote VPN
  • Easy to configure & Manage because of the GUI
  • Cisco ASA doesn't have advance security features such Deep scanning , Sandboxing
  • Routing doesn't work properly sometime
Cisco ASA is well suited for Small & Medium size organizations that need basic network security & firewall for the infrastructure. Cisco ASA's cost is less as compared to another market available solution & also it provides easy logging & reporting feature that helps easy monitoring things. It also provides easy integration with Active Directory & LDAP.
July 23, 2021

Cisco ASA Review

Ezequiel Peralta | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
We use ASA for VPN remote users only. The integration with Cisco ISE and Anyconnect APX license makes connections more secure because [we are] able to manage rules and policies compliance. Cisco ASA resolves the problem with the remote users connection in the time of the pandemic. In our organization, ASA is the principal firewall for the internet perimeter and datacenter.
  • VPN connection
  • Integration with Cisco ISE
  • Anyconnect with APX license and AMP4e
  • Umbrella roaming client
  • VPN SSL without client
  • DLP integrated on Anyconnect
  • Management on-premise
Internet is the best scenario. [You can] implement it virtually, or on-premise is easy to deploy. Today ASA permits integration with SecureX and works fine with Cisco ISE and Umbrella.
Ankit Singh | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We are using Cisco ASA 5525 for Routing & Natting in our organization & we have connected two sites with site-to-site VPN & our remote users are using Cisco Anyconnect. We have configured Cisco ASA in a way so that our remote users can access the internal resources. We have also configured VLANs for our departments to route the traffic.
  • Routing & lots of options in Natting to customize as per the requirement
  • Site to Site VPN & Remote VPN for secure communication
  • Easy to configure & manage
  • Easy to configure the QoS ( Quality of Service )
  • ASDN Should be improved
  • Need More security for Layer 7
Cisco ASA is well suited for small & medium-scale organizations providing basic security & connectivity. Cisco ASA cost is low as compared to another market available firewall so no such need to improve the network security budget for the same. Also, it is easy to configure so that beginner-level network engineers also can handle it.
Return to navigation