Skip to main content
TrustRadius
Cisco Firepower 1000 Series

Cisco Firepower 1000 Series

Overview

What is Cisco Firepower 1000 Series?

The Cisco Firepower® 1000 Series for small to medium-size businesses and branch offices is a family of four threat-focused Next-Generation Firewall (NGFW) security platforms designed to deliver business resiliency through superior threat defense. The vendor provides that they offers exceptional…

Read more
Recent Reviews

Firepower Review

10 out of 10
February 20, 2024
Incentivized
We use the IDPS as a tool for entry into all of our data centers, be they the large group ones or individual ones in the local markets. …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 10 features
  • High Availability (32)
    9.2
    92%
  • Policy-based Controls (33)
    8.6
    86%
  • Reporting and Logging (33)
    8.0
    80%
  • Firewall Management Console (32)
    7.0
    70%

Reviewer Pros & Cons

View all pros & cons

Video Reviews

1 video

Cisco Firepower Review
08:03
Return to navigation

Pricing

View all pricing

Firepower 1000

1,000-5,000

On Premise
per appliance

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.cisco.com/c/en/us/solutions…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services
Return to navigation

Features

Firewall

A firewall is a filter that stands between a computer or computer network and the Internet. Each firewall can be programmed to keep specific traffic in or out

8.3
Avg 8.5
Return to navigation

Product Details

What is Cisco Firepower 1000 Series?

Cisco Firepower 1000 Series is built to allow users to simplify security. With 1000 Series firewalls and Cisco Defense Orchestrator, the vendor states that users get class-leading security while saving time on firewall administration while Defense Orchestrator upgrades firewalls with one tough, automatically de-conflicts overlapping security policies and centralizes the management of AWS VPC image security rules.

Cisco Firepower 1000 Series Features

Firewall Features

  • Supported: Identification Technologies
  • Supported: Visualization Tools
  • Supported: Content Inspection
  • Supported: Policy-based Controls
  • Supported: Active Directory and LDAP
  • Supported: Firewall Management Console
  • Supported: Reporting and Logging
  • Supported: VPN
  • Supported: High Availability
  • Supported: Stateful Inspection

Cisco Firepower 1000 Series Video

Watch NGFW Demo

Cisco Firepower 1000 Series Technical Details

Deployment TypesOn-premise
Operating SystemsWindows
Mobile ApplicationNo

Frequently Asked Questions

The Cisco Firepower® 1000 Series for small to medium-size businesses and branch offices is a family of four threat-focused Next-Generation Firewall (NGFW) security platforms designed to deliver business resiliency through superior threat defense. The vendor provides that they offers exceptional sustained performance when advanced threat functions are enabled. The 1000 Series’ throughput range addresses use cases from the small office, home office, remote branch office to the Internet edge. The 1000 Series platforms run Cisco Firepower Threat Defense (FTD) and Cisco® Adaptive Security Appliance (ASA) software.

Reviewers rate High Availability highest, with a score of 9.2.

The most common users of Cisco Firepower 1000 Series are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(81)

Attribute Ratings

Reviews

(1-25 of 34)
Companies can't remove reviews or game the system. Here's why
February 20, 2024

Firepower Review

Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use the IDPS as a tool for entry into all of our data centers, be they the large group ones or individual ones in the local markets. We've got an estate of just under a hundred IDPS devices across the business and they're all Cisco Firepower.
  • So what we are finding it's very good at is actually blocking malicious threat actors from getting into our core data centers since we made some changes a couple of years ago going from more of a detection mode into a prevention mode. So the tool, the IDPS name is the clue in the name, it's an intrusion detection and prevention system. For a long time, the tool was being used to detect but not prevent. We spun it to use it to prevent having done a lot of work on making sure that the detections are accurate and correct. And what we've seen since we've done that is hesitate to say it, but we haven't seen a compromise in any of our data centers. As a result of traffic being passed through one of these boxes, they've stopped everything.
  • So one of the things that we, well we've been working with Cisco on for improvement on this is because we block so much traffic, there is an enormous amount of information about what the threat actors are trying to do if you just block it and discard it. And so I blocked it. That's good. What you are missing is information about who might've been trying to attack you, what they were trying to achieve, and what their long-term objective might be. It's one of the things we've been doing a lot of work with Cisco to map all of those detections against the Mitra attack framework, which is a framework that allows us to work out what threat actors are trying to get, what they're trying to do and what they're trying to achieve. That's an area where, and I know Cisco's got some plans to take what we've done together further and elaborate on that one key development where the whole thing is going to become very interesting is the use of AI in that space. We're quite excited actually about working together to understand how we can maximize the use of AI for benefit.
So it meets the needs that we have for protecting our core data centers. That's where it's best applied. We have a policy within our business of actually segregating firewalls and IDPS. Next-Gen Firewall is a combination of the two device Firepower is very capable of doing that, but at the moment we keep the two segregated. So it's another area that we're looking to move forward in potentially having one device to cover both the firewall and the IDPs functionality.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
The Firepower 1010 was our next evolution past the 5506, while we were originally intrigued by the firepower service we ended up lowering the IOS version back to the ASA software due to the stability and ease of use. Once loaded with the ASA firmware everything was smooth and easy outside of enable proper encrytion as you need to register the firewall with Cisco and have to call them to have licensing added to your account.
  • Security
  • Easy of Deployment
  • Stability
  • Price
  • licensing
  • updates
Any small business/location would benefit from the 1010 and larger branches can benefit from the 1020 an future releases. The catch is you do have to have someone with the technical knowledge to deploy the firewalls.
Jaime Martínez | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
These are the main business problems...
1. Implement policies for Internet navigation: restrict sites directly from the firewall, eliminate our proxy
2. Protection against cyber attacks hacking, viruses, and malware.
3. Control of network traffic
4. Protection of confidential information:protect sensitive or confidential information from being accessed by unauthorized users or external threats.
  • Advanced threat protection
  • Network visibility
  • provides a robust and flexible set of security capabilities
  • Security automation
  • Price: The Cisco Firepower 1000 Series comes with a significant price tag
  • User interface: The Firepower Management Center (FMC) interface can be complex and overwhelming for some users
  • Performance impact especially when running multiple security modules
If you are not a experienced engineer in Cisco, it could be though to implement, In that case, I would recommend to use Meraki MX Firewall.But if you need to be more flexible in your infrastructure (mid-sized businesses), to implement complex configurations Cisco Firepower 1000 Series is a good startup.
May 07, 2023

Stores protection

Score 7 out of 10
Vetted Review
ResellerIncentivized
It implements the firewall cluster in a customer of ours' stores. It implements the perimeter-based security and VPN
  • VPN
  • Perimeter-based security
  • L7 application visibility
  • Configuration tools and portability
  • Capacity
  • ACL configuration
Good for small and medium business, less for corporate or big plants
Score 8 out of 10
Vetted Review
Verified User
Incentivized
In our company we are using the Cisco Firepower 1120 as Firewall between our locations and connected companies.
To maintain a very high security standard we need to secure any long range connection.
We have a multi-level Firewall-System and use devices from different manufacturers to provide a maximum of security against attacks, not only from external attackers but even if they manage to access our network physically and start an attack from the inside.
  • Very stable, till now no hardware defects or bigger software problems
  • Good overview and easy to understand dashboard
  • The log is very easy to configure to get the information needed
  • The design of the dashboard (mainly the themes) is pretty good
  • The speed - the website can be quite laggy
  • The search - a lot of sections to configure and sometimes hard to understand
  • The compatibility - This is a general Cisco-"Thing" - all is made to work perfect with other Cisco devices, but it is a bit more complicated with other solutions. Nothing serious, but improvable.
I think it is well suited for smaller companies or (as in our case) extension to a central system with higher performance.
My personal guess is, that it can be quite annoying with those delays in bigger environments, when 20 or more devices needed to be managed.

From the point of security, support and updates it works quite good and seem to have no downsides.
Score 6 out of 10
Vetted Review
Verified User
Incentivized
I implemented Cisco Firepower 1000 Series firewalls on more than 10 clients all over France. It's used generally for small and medium businesses as an edge firewall for uses like internet surfing, routing, traffic filtering, VPN hub, etc. Generally, it's used by the whole organization if it's well sized for it.
  • Application filtering
  • IDS/IPS
  • Remote access VPN based on AnyConnect
  • Management console
  • Commit deployment success ratio
  • Hit count
The Cisco Firepower 1000 Series is suited for small to medium businesses with basic security needs. It's less appropriate for bigger companies with advanced technologies and needs like multicast networking, SDWAN, etc. In fact, SDWAN is not yet possible to configure (in this case, you need Meraki as another Cisco product), and for multicast I recommend FortiGate.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Migration of current ASA 5505, ASA5540 firewall fleet. The migration steps are to migrate to an new platform recommending Firepower Threat Defense.
  • Simplicity of functionality
  • Throughput of traffic
  • Ease of implimentation
  • Real time logging to FMC
  • Option for web interface for real time logging even if you are FMC controlled
Small business implementation where IT support are not as well verse in firewall technology.
Score 2 out of 10
Vetted Review
Verified User
Use for our main firewalls and used to segment certain VLANs off further.
  • Single object multi site management.
  • Multi site deployment
  • ACLS in gui are PIA cant see object details
  • Objects in ACLs dont show IP addresses
  • Have to renames every object to name+ip to make acl GUI useable
  • Speed to data can use improvement.
  • Health warnings should allow you to resolve you have to dig n search in some cases.
Forced GUI mode makes using the product at least 3 times slower than normal deployment is easily 100 times slower than old ASA vs current FTD. Save deploys ok. That's how many times u click to deploy a change now wait 5 min for change to hopefully work config rollback is not a rollback its a wipe n restore INSANE. You got a 2 because of single object multi-site deployment otherwise it would be a Fortinet recommend.
Score 9 out of 10
Vetted Review
Verified User
Very good Firewall for small to mid-size offices. We upgraded from ASA to Cisco Firepower 1000 Series. Great support from Cisco made us choose Cisco Firepower 1000 Series. We use it for VPN, IPS, and URL Filtering. Great product for these services. Previously it was buggy now Cisco has improved its security products and slowly becoming the Market leader. Stable and great support are the two words for it.
  • VPN
  • IPS
  • URL Filtering
  • Costly
  • GUI
It's great for small to mid-size branches to manage loads. One of the best Firewalls in the market in this space with all basic features such as VPN, IPS adding it with URL Filtering. TALOS is also a great solution. Moreover, Cisco support is way above competitors with instant support and a huge partner base from which you can get help instantly.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Cisco Firepower is an excellent solution that works in tandem with our EDR solution. Talos is an industry leading organization that integrates seamlessly with the CF1000 and provides really solid firewall management and administration, reducing the time it takes to upgrade, organize rules, or perform weekly change management duties on our current security infrastructure.
  • Firewall Administration
  • Network Security
  • AWS VPC Rules
  • Azure Integration
Provides incredible value to an open security architecture, with minimal downsides. It integrates very well with our current AWS solutions, but has work to do before we use it with any production Azure environment. I have personally used it weekly since implementation and the learning required to become fluent with its intricacies was minimal.
Rajesh Singh | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Cisco Firepower 1000 Series is a true next-generation firewall designed for more visibility, more control, and protection of layer 7 attacks on your organization. This is one of the best firewalls providing all the advanced features like advanced malware protection, URL filtering, advanced IPS, threat prevention, etc. I have been managing the Cisco Firepower 1000 Series for the last 2 years. It gives me more visibility of my network and more control on layers 3 and 4. It also allows me to control the incoming and outgoing network traffic of my organizations.
  • More visibility on network traffic
  • Advanced malware protection
  • Advanced IPS
  • URL filtering
  • Threat prevention
  • It can prevent any DNS attack
  • Site-to-site VPN
  • Cisco AnyConnect remote VPN
  • SSL encryption
  • Access list
  • NAT
  • Sandbox
  • Centralized management
  • Anti-spam
  • It can stop any phishing attack
  • Easy to generate the report and logs
  • It takes time to push the policy through ASDM
Cisco Firepower 1000 Series is a next-generation firewall that is designed to detect and prevent any cyber attack on your organization. It is well suited for every organization that needs deep packet scanning. You can sandbox scan every packet and remove any malware. Cisco Firepower provides advanced malware protection by keeping an eye on incoming and outgoing traffic then blocking any suspicious activity.
Basant Gupta | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
[Cisco Firepower 1000 Series is] specially designed for layer 7 security. It provides all advanced features like advanced malware protection, advanced Intrusion Prevention Systems, URL filtering, etc. We can control users' incoming and outgoing traffic and we will get more visibility of traffic. We are using this series firewall on one of my sites and it is fully secure and protected from any cyber-attacks. We are very happy with all the features and Cisco support.
  • IPSEC site to site VPN
  • Advanced malware protection
  • Intrusion Prevention Systems
  • SSL Cisco AnyConnect remote VPN
  • URL filtering
  • Sandbox
  • Email security
  • Anti-spam
  • Phishing control
  • ASDM is not user friendly
Cisco Firepower 1000 Series is best and required for every organization. It will give you more control [over] incoming and outgoing traffic and more visibility on user traffic. Sandbox is one of the best features [that] provides you [with] deep-level packet scans and gives you multilayered security. It can stop any malware attack on your organization. The support of Cisco is very fast and lots of documentation are available on the Cisco website.
September 30, 2021

Ideal for small business

Score 9 out of 10
Vetted Review
Verified User
Incentivized
Used by [the] networking team.
  • Intrustion prevention and detection
  • Access control policy
  • LDAP and radius integration
  • The GUI management could be improved
  • Features are missing in on box management compared to management center
  • Reporting could be improved
Comparatively, it provides [a] better experience and security than other vendor devices.
Ryan Dettmer, CCNA, CCNPc | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Quick deployment for Covid testing sites to VPN back to hospitals. This creates a VPN and split tunnels for hospital wifi and local guest network to allow a patient to stay connected as well as clinicians.
  • Easy of use and training
  • Support is readily available
  • Deployment is quick
  • Lightweight with big power behind it
  • When searching through some menus there are times where a search bar could be implemented to assist.
  • VPN log files are cumbersome. Streamlining those when getting into details of 1 site to site is difficult but overall not a deal-breaker.
SOHO, remote clinics, small branch offices, if the price were cheap anywhere a firewall is warranted for consumers as well as small businesses.
sitaram gurjar | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Cisco Firepower 1000 Series is a next-generation firewall series designed to protect your organization from external threats and cyber-attacks. Cisco Firepower is mainly focused on Layer 3 and 4 security control and Layer 7 application visibility and security, to control advanced threats and cyber attacks. I am handling the Cisco Firepower Series for one of my clients. It provides a bundle of security features to prevent any type of cyber-attack.
  • Advanced malware protection
  • Advanced IPS
  • Sandbox
  • ACL
  • QOS
  • Application control
  • URL filtering
  • Content filtering
  • Sometimes there is slowness on ASDM
If you want to protect your organization from Layer 7 attacks and want more control on Layer 4 and Layer 5, then this firewall is best for your organization. [Cisco Firepower 1000 Series] is well suited for all organization sizes. The cost of this firewall is much less compared to other vendors and you will get a lot of advanced features like advanced malware protection, IPS, etc.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
It has been used by our organization as a network edge security platform. It also has the purpose of offering protection and visibility of layer 7 traffic. We have rules and acls in place to provide greater protection for the internal network and to prevent attacks by external attackers. In total there are two Firepower 1150 appliances and the second is to have a redundancy only where it is on standby. Along with the appliances, malware protection licenses and url filters were purchased.
  • Full network protection with ngfw licenses
  • Ssl vpn allowing the home office and access to network folders.
  • Protection against ransomware.
  • Web content filter and proxy for certain users and times.
  • Firewall is overloaded a lot when activating all licenses available at certain times.
  • Lack of documentation in Portuguese.
The firewall not only offers protection to our network, but also the possibility of making a home office and connecting with an ipsec or ssl vpn from home. The network is protected against malware, hackers and data attacks. URL filtering features help reduce viruses and protect against inappropriate websites. It is recommended for smaller scenarios and with few users. For scenarios with a higher density of people, the Firepower 2100 line is better.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We use the Cisco firepower 1000 for routing, firewall functions, and security intelligence features. We replaced our older ASAs which had been failing with these. They offer better throughput and more security than the old ASAs. We provide website hosting and remote access for clients. Utilizing 2 incoming lines for dedicated fiber line with SLA and standard coble line for browsing. The Cisco with all the additional port offerings allows us to configure everything we need.
  • Routing
  • Firewall functions
  • Additional security features
  • These devices don't always take changes without a reboot, which can be hard in a production device.
  • Cisco is no always clear in how to configure things.
  • Routing features can be confusing, we even had a consultant a bit confused over setup.
This device is great for an SMB to secure its perimeter and allow the function of the business. With all the ports available and all the configurations, we are able to be flexible in our delivery of services to our clients. The security features are a big plus as everyone in today's world is being constantly attacked.
April 22, 2021

RA

Score 9 out of 10
Vetted Review
ResellerIncentivized
Cisco Firepower 1000 Series is being used across the entire company, which is being used as the Internet firewall. It controls access to the Internet and provides content filtering for all corporate users. Guest users also have managed access through the firewall. It is also being utilized for VPN tunneling between branches and other remote sites.
  • My organization is all Cisco and wants to stay in the Cisco life cycle, Firepower 1000 series is great for small to medium-size office.
  • Very robust enterprise-grade security solution with updated threat features to handle any current and upcoming threats. The solution is backed by Cisco to ensure constant security updates. Integrated AnyConnect remote client VPN is a big plus to allow for secure remote workers access. Easier to set up a site to site VPN due to the large user base and case studies published on integrating to other manufacturer solutions.
  • We have a few remote sites that connect via a metro-E link that needed a way back to the network via a more secure route than we were using before. Using the Cisco Firepower 1120 and 1140 we were able to successfully get those sites back onto the network over a VPN link with a much better/safer protocol and connection type.
  • We user the Cisco Firepower 1120 in a variety of use cases across our division. We typically use it in a high-availability configuration, both in the same room together and separated via some distance. The Cisco Firepower 1000 Series has been a nice upgrade from our previous models of Cisco Firewalls.
[Cisco Firepower 1000 Series] helps our client to who is a small scale NGO. Firepower acts as primary security along with the ASA firewall. This is highly compatible with a small industry or a branch just like our client for who we are providing network and security support. It performs really well in load balancing the firewall environment.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
It fills in the gap as Cisco Anyconnect remote access solution.
  • Single pane of glass management using FMC
  • Great as remote access VPN Solution
  • Saves a lot of headaches with URL and FQDN based policies
  • It is stable now, and Cisco TAC is great at troubleshooting if any issues occur
  • Great product but at this price point there is a lot of competition
  • Some implementations maxed out NGIPS throughput and Strained CPU
If your organisation is all Cisco and wants to stay in the Cisco life cycle, Firepower 1000 series is great for small to medium-size office.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We user the Cisco Firepower 1120 in a variety of use cases across our division. We typically use it in a high-availability configuration, both in the same room together and separated via some distance. The Cisco Firepower 1000 Series has been a nice upgrade from our previous models of Cisco Firewalls.
  • Reliability
  • Rulesets
  • Cost performance
  • GUI
  • Licensing ease
  • Central management
The Cisco Firepower 1000 Series is well suited to simplified firewall solutions where you want to get reliable performance for a great price point. We use this Cisco Firepower 1000 Series platform for small VPN sites as well as for guest firewalls, among other solutions that you can use this product for.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We have a few remote sites that connect via a metro-E link that needed a way back to the network via a more secure route than we were using before. Using the Cisco Firepower 1120 and 1140 we were able to successfully get those sites back onto the network over a VPN link with a much better/safer protocol and connection type.
  • Uses the latest high security protocols
  • Lots of other great firewalling tools and abilities
  • Fairly priced for a NGFW
  • Good technical support
  • Must upgrade to the higher end models in the series to add sfp ports
  • Racking the smaller units can be difficult due to reduced size/non standard racking type
  • Price of an 1150 is almost comparable to the 2000 series
Getting Cisco into your network is never a bad proposition. If I was asked by a friend, then Cisco's name would always be in the top 5. Now if you're needing something that is going to cover more than just a small site, or handling your main internet connection, [then] going up a rung to the 2000 series would be my next recommendation.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
[Cisco Firepower 1000 Series] is use as IPS and Firewall System. This help with the monitoring and log on use behavior
  • Geo-Blocking
  • Malware Detection
  • License model is a nightmare
  • For time to time is too complex to configure
  • Needs other tools to get the result you are looking
In a medium to large organization that needs IPS solutions, and has the budget to acquire the licenses need it to have those functionalities.
[Cisco Firepower 1000 Series] is not suitable for small organization that need IPS solution as the license can be expensive.
Score 5 out of 10
Vetted Review
Verified User
The licence price was costy using every year
  • Simple to manage
  • Highly security and filter malicious activity
  • High prformance
  • Defend against BOTs
  • easy to manage logs
Cisco Firepower 1000 series is for our medium organization's client is not selected because of complicated functionality to troubleshoot and also not easy to security engineer. For the financial sector, I would be recommended
Score 10 out of 10
Vetted Review
ResellerIncentivized
Cisco Firepower 1000 Series is being used across the entire company, which is being used as the Internet firewall. It controls access to the Internet and provides content filtering for all corporate users. Guest users also have managed access through the firewall. It is also being utilized for VPN tunneling between branches and other remote sites.
  • Secure high-end solution, protects the business
  • Updates threat licensing--constant updates allow ease of management
  • Cost of add-on features
  • Cost of Smartnet
  • Complexity of installation process

Pros

  • Small form factor
  • Threat mitigation
  • Threat licensing

Cons

  • Complexity of install
  • Cost of add-on features
  • Cost of Smartnet
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Purchased [Cisco] Firepower [1000 Series] appliances to replace legacy ASA 5500X series with [Cisco] Firepower modules. Used for AnyConnect employee RAS, IPSEC site to site VPNs and local internet access breakout from sites. Firepowers allowed us to scale from ~100 remote users a day to almost 1500 in response to COVID work from home restrictions.
  • Secure employee remote access in conjunction with AnyConnect client
  • Logging with high level of connection, application and user visibility
  • Reliable and secure as you would expect from Cisco
  • Cloud based Firepower Management Centre doesn't support stateful HA of multiple management consoles
  • Would be great to have embedded extensible objects for ever-changing Office 365 address ranges and CDN URLs
Good edge device for branch sites integrating firewall, application visibility & control, intrusion detection & prevention and remote access services with exceptional control and visibility. Not the cheapest option but do what they're supposed to reliably and consistently. Having Firepowers deployed on multiple sites allowed us to ramp up our AnyConnect RAS capacity from having ~ 100 AnyConnect VPN users a day to the entire company working remotely almost overnight in response to COVID restrictions this year.
Return to navigation