Reviews (1-4 of 4)
Cisco Firepower NGFW (formerly Sourcefire is being used by the entire company since all of our internet traffic flows through it. The IT department is the department that manages Cisco Firepower NGFW (formerly Sourcefire).
Read Cody Plassmeyer's full review
Having the IPS and firewall all on one box is exceptionally nice, especially when deploying updates and new rules. The failover to a secondary firewall is seamless. We are used to using ASDM to manage our firewalls, so I think a lot of the features on Cisco Firepower NGFW (formerly Sourcefire) are just something we haven't gotten used to yet.
January 29, 2020
Score 7 out of 10
Cisco Firepower NGFW (formerly Sourcefire), as we call it, is being used by our Department for managing the security of our campus. The primary reason behind using it is to trigger alerts when there is an intrusion activity on our perimeter or even within our boundaries. Cisco Firepower NGFW (formerly Sourcefire) gives us a detailed report of suspicious packets going through it. These reports provide insight into the daily flow of malicious traffic on our network, university computers that show suspicious behavior, intruders trying to scan our network, users downloading/uploading malicious files, etc. It increases the visibility of our cyberinfrastructure, thereby helping us to secure it.
- Cisco Firepower NGFW (formerly Sourcefire) shows a very detailed report of traffic that it finds as malicious. From Capturing Pcaps to generating analytics corresponding to an incident it makes it very easy for us analysts to decide the next steps.
- Cisco Firepower NGFW (formerly Sourcefire) has search functionality that allows us to go very specific while on the managing window, unlike Palo Alto Panorama.
- The UI in Cisco Firepower formerly Sourcefire) is complicated and entirely redundant. A lot of these features are not useful, and therefore, it can be removed from the main window.
- The interface is very slow, with each operation taking a lot of time. Searching through the logs takes too much time.
Read Kuntal Das's full review
Cisco Firepower NGFW (formerly Sourcefire) is suitable for scenarios where the organization has tonnes of data, i.e., a large scale. It does have lag and slow UI, and therefore it loses to its competitors. However, when the scale of data is enormous, the slow UI becomes less prominent as large data flow affects its competitors as well. Although time-consuming, the detection system of Cisco Firepower NGFW (formerly Sourcefire) is appreciable with very few false positives as it uses "snort" underneath. A good log analyzer like LogRhythm or Splunk, coupled with Cisco Firepower NGFW (formerly Sourcefire), makes it a great duo. But organizations having this IDS and no log analyzer makes it very difficult for the security analysts to do incident response because of its slow UI. Looking at its pricing and shortcomings, it makes less sense for small scale organizations with a limited budget to adopt it.
August 26, 2019
Score 9 out of 10
Currently using Cisco Firepower NGFW in our perimeter networks in 4 datacenters across our whole organization. Layer 7 firewalling and IPS services are utilized to keep our company safe and secure. Cisco Firepower has provided us with deep network and security visibility into the environment and helps prevent any unauthorized access and unwanted threats. Automated threat controls with the Intrusion Prevention System have proven crucial in saving time and reducing complexity.
- Provides solid security of your perimeter network by preventing attacks and unwanted access.
- Great network visibility to readily identify threats or unwanted behaviors.
- Automated policy application and enforcement allow for a much more efficient way of managing your network.
- Implementation of past ASA functions is not integrated well into the new FTD platform.
- Management Gui (FMC) needs speeding up.
- Flex config needs to be worked on to be less buggy.
Read Kenneth Ma's full review
Cisco Firepower NGFW excels in filtering and protecting your perimeter network. Malware detection and threat detection are very robust and provide a deep insight into your network. Cisco Firepower NGFW would be less appropriate at the datacenter level where trusted traffic is moving east-west.
SourceFire NGFWs are used mainly for our outbound internet access, replacing current ASAs, intrusion detection and other anti-malware hardware that is in place today.
Read this authenticated review
- Good for edge (OIA) firewall functions,
- Less suited for internal (segmentation) use
Cisco Firepower NGFW (formerly Sourcefire) Scorecard Summary
Feature Scorecard Summary
About Cisco Firepower NGFW (formerly Sourcefire)
Cisco Firepower NGFW (formerly Sourcefire) Technical Details