Cisco Secure Firewall overview
February 09, 2024
Cisco Secure Firewall overview
Score 7 out of 10
Vetted Review
Verified User
Software Version
Firepower 1140
Overall Satisfaction with Cisco Secure Firewall
We are using Cisco Secure Firewall as our Special network firewall.
The firewall is working without any issues, but the FMC Instance and Virtual machine had a few problems in the past. We opened several Cisco TAC Cases to solve those problems which affected:
-FMC DB reachability (deployment did not worked)
-FMC VM should be reinstalled
The firewall is working without any issues, but the FMC Instance and Virtual machine had a few problems in the past. We opened several Cisco TAC Cases to solve those problems which affected:
-FMC DB reachability (deployment did not worked)
-FMC VM should be reinstalled
- Handle a lot of VLANs, Zones without any issue
- L4 firewalling
- Packet capture, Packet tracert options
- Device management from FMC
- Layer 7 application filtering
- FMC instance
- FMC event logging
- Positive impact to have a great firewall which can host my company critical vlans which should protected by a firewall
- Negative impact the FMC problems, sometimes affect our Engineers daily work with the Cisco Secure Firewall
We using Intrusion policies on critical networks and rules and working great. However, this kind of solutions can exhaust the Cisco Secure Firewall if you use it on all of the rules.
So only the most secure networks should include rules with Allow (Snort) and implement intrusion policy, less secure networks can be protected by trusted rules (without IDS).
So only the most secure networks should include rules with Allow (Snort) and implement intrusion policy, less secure networks can be protected by trusted rules (without IDS).
We using log management only from the listed solutions.
Log management working great on FMC for a number of rules and users, above the recommended rules the log should be forwarded to external log collector, because FMC cannot handle it.
Log management working great on FMC for a number of rules and users, above the recommended rules the log should be forwarded to external log collector, because FMC cannot handle it.
We are using both Panorama and FMC as well.
Different firewalls for different networks but we managing both in the same time.
Both working well, can manage the firewalls from it, Logging working great in both.
Also we using these management centers to store config, backups, logs, event logs and threat logs.
Different firewalls for different networks but we managing both in the same time.
Both working well, can manage the firewalls from it, Logging working great in both.
Also we using these management centers to store config, backups, logs, event logs and threat logs.
Do you think Cisco Secure Firewall delivers good value for the price?
Not sure
Are you happy with Cisco Secure Firewall's feature set?
Yes
Did Cisco Secure Firewall live up to sales and marketing promises?
I wasn't involved with the selection/purchase process
Did implementation of Cisco Secure Firewall go as expected?
I wasn't involved with the implementation phase
Would you buy Cisco Secure Firewall again?
Yes