Cisco Firepower 1000 Series Reviews and Ratings

Rating: 8 out of 10

Score

8 out of 10

Community insights

TrustRadius Insights for Cisco Firepower 1000 Series are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Effective Threat Prevention: Users have consistently praised the tool for its successful transition to prevention mode, preventing compromises and blocking malicious actors from accessing data centers. The IDPS has demonstrated accuracy in detecting and stopping threats, showcasing its strong prevention capabilities.

Robust Security Capabilities: Reviewers appreciate the advanced threat protection, network visibility, and flexible security features that enhance overall security measures. The tool's stability, absence of hardware defects or major software issues, and clear dashboard design contribute to its security capabilities.

Ease of Use and Deployment: Multiple users value the tool's simplicity in functionality, throughput efficiency, ease of implementation, quick deployment process, and centralized management capabilities. Features like VPN, IPS, URL filtering along with support availability make it a lightweight yet powerful security solution.

Reviews

34 Reviews

Firepower Review

Rating: 10 out of 10

Incentivized

February 20, 2024

Use Cases and Deployment Scope

We use the IDPS as a tool for entry into all of our data centers, be they the large group ones or individual ones in the local markets. We've got an estate of just under a hundred IDPS devices across the business and they're all Cisco Firepower.

Pros

So what we are finding it's very good at is actually blocking malicious threat actors from getting into our core data centers since we made some changes a couple of years ago going from more of a detection mode into a prevention mode. So the tool, the IDPS name is the clue in the name, it's an intrusion detection and prevention system. For a long time, the tool was being used to detect but not prevent. We spun it to use it to prevent having done a lot of work on making sure that the detections are accurate and correct. And what we've seen since we've done that is hesitate to say it, but we haven't seen a compromise in any of our data centers. As a result of traffic being passed through one of these boxes, they've stopped everything.

Cons

So one of the things that we, well we've been working with Cisco on for improvement on this is because we block so much traffic, there is an enormous amount of information about what the threat actors are trying to do if you just block it and discard it. And so I blocked it. That's good. What you are missing is information about who might've been trying to attack you, what they were trying to achieve, and what their long-term objective might be. It's one of the things we've been doing a lot of work with Cisco to map all of those detections against the Mitra attack framework, which is a framework that allows us to work out what threat actors are trying to get, what they're trying to do and what they're trying to achieve. That's an area where, and I know Cisco's got some plans to take what we've done together further and elaborate on that one key development where the whole thing is going to become very interesting is the use of AI in that space. We're quite excited actually about working together to understand how we can maximize the use of AI for benefit.

Likelihood to Recommend

So it meets the needs that we have for protecting our core data centers. That's where it's best applied. We have a policy within our business of actually segregating firewalls and IDPS. Next-Gen Firewall is a combination of the two device Firepower is very capable of doing that, but at the moment we keep the two segregated. So it's another area that we're looking to move forward in potentially having one device to cover both the firewall and the IDPs functionality.

Verified User

Manager in Information Technology (10,001+ employees)

Vetted Review

6 years of experience

1000 Series is OKAY, not Perfect.

Rating: 7 out of 10

Incentivized

November 18, 2023

Use Cases and Deployment Scope

The Firepower 1010 was our next evolution past the 5506, while we were originally intrigued by the firepower service we ended up lowering the IOS version back to the ASA software due to the stability and ease of use. Once loaded with the ASA firmware everything was smooth and easy outside of enable proper encrytion as you need to register the firewall with Cisco and have to call them to have licensing added to your account.

Pros

Security
Easy of Deployment
Stability

Cons

Price
licensing
updates

Likelihood to Recommend

Any small business/location would benefit from the 1010 and larger branches can benefit from the 1020 an future releases. The catch is you do have to have someone with the technical knowledge to deploy the firewalls.

Verified User

Administrator in Information Technology (201-500 employees)

Vetted Review

5 years of experience

Evaluating Cisco Firepower 1000 for mid-sized business

Rating: 9 out of 10

Incentivized

May 10, 2023

Use Cases and Deployment Scope

These are the main business problems...

1. Implement policies for Internet navigation: restrict sites directly from the firewall, eliminate our proxy

2. Protection against cyber attacks hacking, viruses, and malware.

3. Control of network traffic

4. Protection of confidential information:protect sensitive or confidential information from being accessed by unauthorized users or external threats.

Pros

Advanced threat protection
Network visibility
provides a robust and flexible set of security capabilities
Security automation

Cons

Price: The Cisco Firepower 1000 Series comes with a significant price tag
User interface: The Firepower Management Center (FMC) interface can be complex and overwhelming for some users
Performance impact especially when running multiple security modules

Likelihood to Recommend

If you are not a experienced engineer in Cisco, it could be though to implement, In that case, I would recommend to use Meraki MX Firewall.But if you need to be more flexible in your infrastructure (mid-sized businesses), to implement complex configurations Cisco Firepower 1000 Series is a good startup.

Jaime Martínez

Central America Technology & Infrastructure Manager in Information Technology at Ferretería EPA (1001-5000 employees)

Vetted Review

2 years of experience

View profile

Stores protection

Rating: 7 out of 10

Incentivized

May 5, 2023

Use Cases and Deployment Scope

It implements the firewall cluster in a customer of ours' stores. It implements the perimeter-based security and VPN

Pros

VPN
Perimeter-based security
L7 application visibility

Cons

Configuration tools and portability
Capacity
ACL configuration

Likelihood to Recommend

Good for small and medium business, less for corporate or big plants

Giorgio Vezzaro

Pre sales IT systems engineer in Sales at Axians Italia Spa (201-500 employees)

Vetted Review

Reseller

3 years of experience

Stable workhorse for a secure environment

Rating: 8 out of 10

Incentivized

May 5, 2023

Use Cases and Deployment Scope

In our company we are using the Cisco Firepower 1120 as Firewall between our locations and connected companies.

To maintain a very high security standard we need to secure any long range connection.

We have a multi-level Firewall-System and use devices from different manufacturers to provide a maximum of security against attacks, not only from external attackers but even if they manage to access our network physically and start an attack from the inside.

Pros

Very stable, till now no hardware defects or bigger software problems
Good overview and easy to understand dashboard
The log is very easy to configure to get the information needed
The design of the dashboard (mainly the themes) is pretty good

Cons

The speed - the website can be quite laggy
The search - a lot of sections to configure and sometimes hard to understand
The compatibility - This is a general Cisco-"Thing" - all is made to work perfect with other Cisco devices, but it is a bit more complicated with other solutions. Nothing serious, but improvable.

Likelihood to Recommend

I think it is well suited for smaller companies or (as in our case) extension to a central system with higher performance.

My personal guess is, that it can be quite annoying with those delays in bigger environments, when 20 or more devices needed to be managed.

From the point of security, support and updates it works quite good and seem to have no downsides.

Verified User

Administrator in Information Technology (201-500 employees)

Vetted Review

3 years of experience

FTD makes these hard to love...

Rating: 2 out of 10

Incentivized

May 15, 2022

Use Cases and Deployment Scope

Use for our main firewalls and used to segment certain VLANs off further.

Pros

Single object multi site management.
Multi site deployment

Cons

ACLS in gui are PIA cant see object details
Objects in ACLs dont show IP addresses
Have to renames every object to name+ip to make acl GUI useable
Speed to data can use improvement.
Health warnings should allow you to resolve you have to dig n search in some cases.

Likelihood to Recommend

Forced GUI mode makes using the product at least 3 times slower than normal deployment is easily 100 times slower than old ASA vs current FTD. Save deploys ok. That's how many times u click to deploy a change now wait 5 min for change to hopefully work config rollback is not a rollback its a wipe n restore INSANE. You got a 2 because of single object multi-site deployment otherwise it would be a Fortinet recommend.

Verified User

Director in Information Technology (5001-10,000 employees)

Vetted Review

8 years of experience

Great Support with advance Threat Intelligence

Rating: 9 out of 10

Incentivized

March 29, 2022

Use Cases and Deployment Scope

Very good Firewall for small to mid-size offices. We upgraded from ASA to Cisco Firepower 1000 Series. Great support from Cisco made us choose Cisco Firepower 1000 Series. We use it for VPN, IPS, and URL Filtering. Great product for these services. Previously it was buggy now Cisco has improved its security products and slowly becoming the Market leader. Stable and great support are the two words for it.

Pros

VPN
IPS
URL Filtering

Cons

Costly
GUI

Likelihood to Recommend

It's great for small to mid-size branches to manage loads. One of the best Firewalls in the market in this space with all basic features such as VPN, IPS adding it with URL Filtering. TALOS is also a great solution. Moreover, Cisco support is way above competitors with instant support and a huge partner base from which you can get help instantly.

Verified User

Consultant in Information Technology (1001-5000 employees)

Vetted Review

3 years of experience

Cisco Firepower Threat defense is a great firewall for Small to medium business.

Rating: 9 out of 10

Incentivized

January 18, 2022

Use Cases and Deployment Scope

Migration of current ASA 5505, ASA5540 firewall fleet. The migration steps are to migrate to an new platform recommending Firepower Threat Defense.

Pros

Simplicity of functionality
Throughput of traffic
Ease of implimentation

Cons

Real time logging to FMC
Option for web interface for real time logging even if you are FMC controlled

Likelihood to Recommend

Small business implementation where IT support are not as well verse in firewall technology.

John Babio

Cyber Security Engineer in Information Technology at Air Products and Chemicals inc (10,001+ employees)

Vetted Review

2 years of experience

High Performance Threat Defense in a Pretty Box

Rating: 8 out of 10

Incentivized

November 8, 2021

Use Cases and Deployment Scope

Cisco Firepower is an excellent solution that works in tandem with our EDR solution. Talos is an industry leading organization that integrates seamlessly with the CF1000 and provides really solid firewall management and administration, reducing the time it takes to upgrade, organize rules, or perform weekly change management duties on our current security infrastructure.

Pros

Firewall Administration
Network Security
AWS VPC Rules

Cons

Azure Integration

Likelihood to Recommend

Provides incredible value to an open security architecture, with minimal downsides. It integrates very well with our current AWS solutions, but has work to do before we use it with any production Azure environment. I have personally used it weekly since implementation and the learning required to become fluent with its intricacies was minimal.

Verified User

Analyst in Information Technology (5001-10,000 employees)

Vetted Review

2 years of experience

Cisco's best next-generation firewall

Rating: 10 out of 10

Incentivized

October 13, 2021

Use Cases and Deployment Scope

Cisco Firepower 1000 Series is a true next-generation firewall designed for more visibility, more control, and protection of layer 7 attacks on your organization. This is one of the best firewalls providing all the advanced features like advanced malware protection, URL filtering, advanced IPS, threat prevention, etc. I have been managing the Cisco Firepower 1000 Series for the last 2 years. It gives me more visibility of my network and more control on layers 3 and 4. It also allows me to control the incoming and outgoing network traffic of my organizations.

Pros

More visibility on network traffic
Advanced malware protection
Advanced IPS
URL filtering
Threat prevention
It can prevent any DNS attack
Site-to-site VPN
Cisco AnyConnect remote VPN
SSL encryption
Access list
NAT
Sandbox
Centralized management
Anti-spam
It can stop any phishing attack
Easy to generate the report and logs

Cons

It takes time to push the policy through ASDM

Likelihood to Recommend

Cisco Firepower 1000 Series is a next-generation firewall that is designed to detect and prevent any cyber attack on your organization. It is well suited for every organization that needs deep packet scanning. You can sandbox scan every packet and remove any malware. Cisco Firepower provides advanced malware protection by keeping an eye on incoming and outgoing traffic then blocking any suspicious activity.

Rajesh Singh

CEO & MD in Corporate at Gurjartech Pvt Ltd (1-10 employees)

Vetted Review

2 years of experience

View profile

Loading Reviews List....

Home
,
Firewall
,
Cisco Firepower 1000 Series
,
Reviews and Ratings

Firepower Review

Rating: 10 out of 10

Incentivized

February 20, 2024

Use Cases and Deployment Scope

Pros

So what we are finding it's very good at is actually blocking malicious threat actors from getting into our core data centers since we made some changes a couple of years ago going from more of a detection mode into a prevention mode. So the tool, the IDPS name is the clue in the name, it's an intrusion detection and prevention system. For a long time, the tool was being used to detect but not prevent. We spun it to use it to prevent having done a lot of work on making sure that the detections are accurate and correct. And what we've seen since we've done that is hesitate to say it, but we haven't seen a compromise in any of our data centers. As a result of traffic being passed through one of these boxes, they've stopped everything.

Cons

So one of the things that we, well we've been working with Cisco on for improvement on this is because we block so much traffic, there is an enormous amount of information about what the threat actors are trying to do if you just block it and discard it. And so I blocked it. That's good. What you are missing is information about who might've been trying to attack you, what they were trying to achieve, and what their long-term objective might be. It's one of the things we've been doing a lot of work with Cisco to map all of those detections against the Mitra attack framework, which is a framework that allows us to work out what threat actors are trying to get, what they're trying to do and what they're trying to achieve. That's an area where, and I know Cisco's got some plans to take what we've done together further and elaborate on that one key development where the whole thing is going to become very interesting is the use of AI in that space. We're quite excited actually about working together to understand how we can maximize the use of AI for benefit.

Likelihood to Recommend

Verified User

Manager in Information Technology (10,001+ employees)

Vetted Review

6 years of experience