Edge firewall with limited capacities
May 07, 2021

Edge firewall with limited capacities

Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Software Version

Firepower 1120

Overall Satisfaction with Cisco Firepower 1000 Series

I implemented Cisco Firepower 1000 Series firewalls on more than 10 clients all over France. It's used generally for small and medium businesses as an edge firewall for uses like internet surfing, routing, traffic filtering, VPN hub, etc. Generally, it's used by the whole organization if it's well sized for it.
  • Application filtering
  • IDS/IPS
  • Remote access VPN based on AnyConnect
  • Management console
  • Commit deployment success ratio
  • Hit count
  • Remote working possible thanks to RA VPN
  • Site-to-site communication possible thanks to IPSEC VPN
  • Security enhanced thanks to Talos
FDM is a very simplified management solution but not complete, and FMC needs an additional machine to be installed, so any client could use FDM but they need to have a spare virtual machine. It's better to install FMC, but the weak point is that both FMC and FDM could bug on configuration deployments.
It's using Snort IPS, which is one of the best. Basically, they brought Snort from Sourcefire when Cisco bought the company but I think that they still have much work to improve it. Moreover I think they need to implement SSL decryption for better threat management.
Cisco support is acceptable, but we still need to ask case escalation to get real advanced technicians handling support. the positive point is that you can call Cisco support by phone immediately after opening a ticket and get real level 2-3 support. But sometimes you need to wait a lot on hold to get someone with a really advanced technical level.
Cisco Firepower 1000 Series is a challenger; it still needs improvement to become a leader like Checkpoint or Palo Alto. I installed Palo Alto firewalls, Checkopoint firewalls, and FortiGate, which are much more efficient for now than Cisco Firepower 1000 Series. I also had to work on legacy firewalls like Cisco ASA and SonicWall.

Firepower is an improvement of cisco ASA and stills better than meraki but some ASA functions like any-connect are still to improve
Sophos Central Device Encryption (formerly SafeGuard), Cisco Umbrella, Cisco Secure Email (formerly Cisco Email Security)
The Cisco Firepower 1000 Series is suited for small to medium businesses with basic security needs. It's less appropriate for bigger companies with advanced technologies and needs like multicast networking, SDWAN, etc. In fact, SDWAN is not yet possible to configure (in this case, you need Meraki as another Cisco product), and for multicast I recommend FortiGate.

Cisco Firepower 1000 Series Feature Ratings

Identification Technologies
7
Visualization Tools
6
Content Inspection
8
Policy-based Controls
8
Active Directory and LDAP
4
Firewall Management Console
6
Reporting and Logging
7
VPN
Not Rated
High Availability
5
Stateful Inspection
9