Skip to main content
TrustRadius
Cisco Firepower 4100 Series

Cisco Firepower 4100 Series

Overview

What is Cisco Firepower 4100 Series?

The Cisco Firepower 4100 Series’ 1-rack-unit size is presented by the vendodr as ideal at the Internet edge and in high-performance environments. They further state that it shows what’s happening on your network, detects attacks earlier so you can act…

Read more
Recent Reviews
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Product Details

What is Cisco Firepower 4100 Series?

Cisco Firepower 4100 Series Technical Details

Deployment TypesOn-premise
Operating SystemsWindows
Mobile ApplicationNo
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(22)

Reviews

(1-3 of 3)
Companies can't remove reviews or game the system. Here's why
Score 10 out of 10
Vetted Review
Verified User
We use two of them, in HA, to monitor and manage our network security for all of our internal network. We were the victim of a ransomware attack in 2021, and needed to upgrade our network's security significantly. We use the firepowers for policy management, VPN security, site-to-site and remote access tunnels, network monitoring, etc... It, in conjunction with several other Cisco products like Umbrella, Stealthwatch ISE and SecureX have significantly impacted our network security, and provided us with incredible visibility of what is going on in our environment.
  • Policy management in the GUI. I'm old-school, and still create ACLs in the CLI, but using the GUI for this is very nice.
  • Event monitoring and reporting is great, and you can get very granular when it comes to what information you are viewing.
  • I really like the troubleshooting features that are built in, especially the packet tracer and the ability to generate and download a troubleshooting package to review or send to TAC.
  • The failover process is clunky. When out FortiGate firewalls failed over, we lost 1 ping. When our Firepowers failover, whether it is on purpose or not, we experience a 2.5 minute complete outage.
  • Cisco could stand to improve their support documentation. I have found it difficult to find good directions for configuring these, especially when it comes to NAT and IPSEC tunnels.
I'm not sure. I think they would be useful in any environment where a powerful, next-gen firewall should be used. The 4100s are quite expensive, with massive capabilities, so I don't think they'd be suitable for small organizations, but for our college, they are perfect.
Firewall (11)
69.0909090909091%
6.9
Identification Technologies
100%
10.0
Visualization Tools
100%
10.0
Content Inspection
80%
8.0
Policy-based Controls
100%
10.0
Active Directory and LDAP
N/A
N/A
Firewall Management Console
100%
10.0
Reporting and Logging
60%
6.0
VPN
70%
7.0
High Availability
50%
5.0
Stateful Inspection
100%
10.0
Proxy Server
N/A
N/A
  • We feel much more confident in our security.
  • Management is easily done, which reduces the amount of time it take to implement new policies.
  • Troubleshooting has become easier because of the GUI and the built-in tools.
As I mentioned before, the Fortigates have better failover. I think the Cisco interface is easier to use that that of the FortiGate. My only criticism would be that with multiple CLIs, it can get a bit confusing when you are trying to configure something or troubleshoot from the CLI.
Score 8 out of 10
Vetted Review
Verified User
Cisco Firepower 4100 Series can support Layer 7 firewall protections when deployed as Firepower Threat Defense. Besides, it is also providing centralized management from Cisco Firepower Management. This can easily simplify the administration tasks and daily operation works. Cisco Firepower 4100 Series is a high-end firewall model which able to cater to high traffic throughput and does not cause any performance issues.
  • Application Control.
  • URL Filtering.
  • Intrusion Prevention.
  • When deployed as Firepower Threat Defense, configurations cannot be made within the device itself.
  • Troubleshooting can be difficult if the Cisco Firepower 4100 Series firewall is managed by the Cisco Firepower Management Center.
  • There are two operating systems in Cisco Firepower 4100 Series, firmware upgrade process will take a long time.
Cisco Firepower 4100 Series can be centralized managed by Cisco Firepower Management Center, this is quite helpful for customers who just want to manage from a single pane of glass. Cisco Firepower 4100 Series allows customers to choose between ASA or FTD images which are quite flexible although different images will cater to different throughputs.
Firewall (11)
74.54545454545455%
7.5
Identification Technologies
70%
7.0
Visualization Tools
30%
3.0
Content Inspection
80%
8.0
Policy-based Controls
70%
7.0
Active Directory and LDAP
80%
8.0
Firewall Management Console
90%
9.0
Reporting and Logging
80%
8.0
VPN
80%
8.0
High Availability
100%
10.0
Stateful Inspection
80%
8.0
Proxy Server
60%
6.0
  • Very stable and does not cause major interruption.
  • Supports most of the business requirements.
  • Enhance security, risk and compliance.
Cisco Firepower 4100 Series deployment is straightforward and easy to implement. It is also can support high availability and able to achieve redundancy. Besides, firmware upgrade is quite simple and the process does not take much effort as the upgrade will be automatically done by itself. Cisco Firepower 4100 Series is also very cost effective compared with other similar ranges of firewalls.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Our Firepower 4120 is being utilized as a main internet connection firewall as a pair of the appliances in high availability mode. It's an upgrade from an existing Cisco ASA firewall that only had the built in firepower module. Having it integrated into a single box makes managing it much easier. It also has more processing power and works faster than the old unit.
  • Lots of expansion modules available for add-ons.
  • SFP ports are fast and plentiful.
  • Well designed hardware blends in with our other modern Cisco equipment.
  • Initial install and configuration can be complex.
  • May need to learn the new interface if coming from ASA.
  • Buggy web interface can at time cause issues.
When we are asked by local partners which security equipment we use we always recommend our Cisco security products. The Firepower firewall is no exception and we can easily recommend this to others who need a fast, secure, and well built system that integrates well with all your existing hardware and software.
Firewall (11)
75.45454545454545%
7.5
Identification Technologies
80%
8.0
Visualization Tools
90%
9.0
Content Inspection
90%
9.0
Policy-based Controls
70%
7.0
Active Directory and LDAP
50%
5.0
Firewall Management Console
90%
9.0
Reporting and Logging
20%
2.0
VPN
100%
10.0
High Availability
100%
10.0
Stateful Inspection
70%
7.0
Proxy Server
70%
7.0
  • Positive impact would be our increased security network wide.
  • Another positive would be the increased processing power, saving us time and [from] needing more equipment.
  • A negative impact would be the increased need for having to learn a new interface.
Cisco 4000 Series Integrated Services Routers (ISR 4000), Dell EMC Networker, Snort
Return to navigation