We changed our name from IT Central Station: Here's why
ZhulienKeremedchiev
Lead Network Security Engineer at TECHNOCORE LTD
Real User
Top 5
Flexible, scalable, and stable, but needs more intuitive interface
Pros and Cons
  • "In the virtual deployment, you have a couple of choices depending on your needs and how much bandwidth you have that needs to be inspected."
  • "Cisco can do better on their documentation because the product is really hard to understand."

What is our primary use case?

The solution works on a base set of rules to detect malicious traffic or certain exploits, which can be done from both the outside and inside network.

What is most valuable?

In the virtual deployment, you have a couple of choices depending on your needs and how much bandwidth you have that needs to be inspected. It is quite flexible because it can be deployed on the cloud as well. All the kinks which were in the previous versions were fixed.

What needs improvement?

I do not think that Cisco has official documentation regarding use cases. They can do better on their documentation because the product is really hard to understand. You need a lot of time to change around things to understand how it works exactly and fine-tune it. If they make it less complicated, I think it will really help all the customers.

They could make the user interface of the management center more user friendly and customizable in the next release. I think they can take some pointers from Palo Alto because their user interface is really intuitive and really customizable.

For how long have I used the solution?

I have been using the solution for approximately five years.

What do I think about the stability of the solution?

The solution is stable.

What do I think about the scalability of the solution?

The solution is scalable. The management center, which controls the sensors, you can deploy it. You have two different virtual appliances, one is for managing up to 25 sensors and the bigger one is up to 300 sensors. The hardware list of the products ranges from, I think, 20 sensors and up to 500. Depending on your needs, you can scale it.

We have three administrators working on the solution and the whole organization is being protected by it.

How are customer service and technical support?

Cisco support is really great. Especially when you have a priority case, when everything is down, you can get an engineer in 15 minutes.

How was the initial setup?

The setup is easy, you do not need hardware. You can just sign up for AWS or Azure and you can deploy it there.

What's my experience with pricing, setup cost, and licensing?

There are licensing fees depending on the features that you are using.

Which other solutions did I evaluate?

I have evaluated Palo Alto in the past.

What other advice do I have?

Before this version of the solution, it was like a normal IPS. The source for IPS was bought by Cisco, and now it is integrated into the Firepower Threat Defense. The Firepower Defense is a unified image of both the previous firewall which Cisco had, the ASA, and the source for IPS. Currently, the FTD is like a UTM device, a unified threat management device, because it has firewall capabilities and IPS capabilities.

I am going to continue using this solution even though I enjoyed using their main competitors product from Palo Alto. I would recommend this solution to others.

I rate Cisco NGIPS a seven out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
DGM IT Infra & Facility at a tech services company with 1-10 employees
Real User
Top 5
Good DDoS protection and IPS/IDS functionality, and it is easy to set up
Pros and Cons
  • "The features that I find most valuable are the DDoS protection, IPS/IDS, and Firepower for web application filtering."
  • "Better integration with other products, such as a SIEM tool, would provide better peer visibility about your security posture."

What is our primary use case?

We have a data center and we need security products such as Cisco NGIPS to protect us from attacks that are going to impact our organization. For the purpose of completing our compliance audit and VAPT process, we have these kinds of security solutions in place.

What is most valuable?

The features that I find most valuable are the DDoS protection, IPS/IDS, and Firepower for web application filtering. These three things are pretty good and each is valuable as per the different needs of my business operations.

What needs improvement?

I would like to see better support for preventing cross-scripting and brute-force attacks that may originate from our homegrown applications. This is needed because the applications that we are developing for internal use do not go through the heavy security check that we have in place. If there is some flaw in an application, which happens every now and then, then there will be a huge cost that I may have to pay. I would like to know that if I have a security solution in place then I am at least 99% confident that problems will be prevented. As it is now, I cannot say that I am 80% secure against my applications being attacked.

Better integration with other products, such as a SIEM tool, would provide better peer visibility about your security posture. Adding this type of functionality would make this product unbeatable.

For how long have I used the solution?

We have been using Cisco NGIPS for more than five years.

What do I think about the stability of the solution?

This is a stable product.

What do I think about the scalability of the solution?

Cisco NGIPS is scalable and we have about 600 users.

How are customer service and technical support?

Technical support is outsourced and it is good.

Which solution did I use previously and why did I switch?

I did not work with another solution before this one.

How was the initial setup?

The initial setup is straightforward and the deployment took about three weeks.

What about the implementation team?

I have ten people who take care of maintenance.

What's my experience with pricing, setup cost, and licensing?

Pricing depends on negotiation with the vendor, although I can say that it is moderate. I would not say that it is very high or low, but rather, average.

What other advice do I have?

I am now trying to implement a more rigorous web application firewall because I don't want to manage the bugs or attacks that are going to come from the outside. I would prefer it is managed by somebody who is an expert in web application firewalls. I want to couple it with additional software for load-balancing to improve speed. Allowing somebody else to manage this will free up my time to run my business, which is better for generating revenue for the company.

I would rate this solution a nine out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Learn what your peers think about Cisco NGIPS. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
564,599 professionals have used our research since 2012.
IT Manager at a financial services firm with 51-200 employees
Real User
Top 10
Useful filters, reliable, and customer support helpful
Pros and Cons
  • "I have found the filter and the antivirus to be most valuable."
  • "The user interface needs some improvement, it is a little rudimentary and not very intuitive."

What is our primary use case?

We use the solution for traffic filtering, security, and antivirus capabilities.

What is most valuable?

I have found the filter and the antivirus to be most valuable.

What needs improvement?

The user interface needs some improvement, it is a little rudimentary and not very intuitive. If you are not very technical inclined you may need to be assisted or might struggle to set it up.

The newer version tends to use a lot of system resources. For example, your processor and RAM.

For how long have I used the solution?

I have been using the solution for approximately four years.

What do I think about the stability of the solution?

The solution is stable and reliable, it does the job well.

What do I think about the scalability of the solution?

The scalability is excellent, they can support a large environment. However, a large size organization will need its own dedicated appliance.

How are customer service and technical support?

The customer support is very good.

Which solution did I use previously and why did I switch?

We have used and still use Darktrace. We do not use it to replace Cisco's NGIPS solution but we use it predominantly as an in-network snooper.

How was the initial setup?

The installation is complex.

What about the implementation team?

We used an in-house team to do the deployment and it takes roughly a day and a half depending on the size of your organization and the configuration. Setting up the rules, all the features, and the licensing takes time.

To do the maintenance you need somebody familiar with Cisco and networking technologies.

What was our ROI?

By using this solution we have received a return on our investment. 

What's my experience with pricing, setup cost, and licensing?

Cisco products are not cheap and this solution is no different. However, the price of all of the Firepower is part of a bundle when you buy the actual firewall, the Cisco firewall. It is part of the whole bundle package, but Firepower IPS itself has its own costs.

We are on a yearly license and the price depends on the environment, we pay approximately $33,000. The solution has additional components, and each one of the components cost extra.

What other advice do I have?

For those wanting to implement this solution, I was advice before deploying the solution, understand exactly what you want it to do for you. The product has a couple of different capabilities, do you want to expand, or you may not want to expand. These are scenarios that you have to take into account. I would not recommend the solution for small organizations, it would be too time-consuming for that.

I rate Cisco NGIPS an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Muhammad Aneel
Distribution officer at Wilshirelabs
Real User
Top 5
Provides very good IPS and VirtualBox features
Pros and Cons
  • "Good IPS and VirtualBox features."
  • "Should include additional security features."

What is our primary use case?

At present, we are using different policies against which we gather logs. Logs that have been deleted on a first in, first out basis. The logs are only available for three to four hours max. I work in the IT department of a pharmaceutical company and we are customers of Cisco. 

What is most valuable?

We are looking for cybersecurity threats, like Pinterest and this solution has a good IPS feature as well as it's VirtualBox which helps us to time and for the QD, our daily routine tasks or issues. The solution provides a clear picture of what a user is doing at a specified time.

What needs improvement?

Because of cybersecurity threats, other security features should be available in Cisco devices. Sangfor IAM is good because this provides the logging IAM feature which you can retain for up to 12 months. But Cisco does not provide this type of logging because no third-party logging server is supported with the Cisco firewall.

For how long have I used the solution?

I've been using this solution for three years. 

What do I think about the stability of the solution?

The stability is fine. We manage to resolve general bugs by updating the software or VirtualBox as well as in the hardware. That is not a big deal for us.

What do I think about the scalability of the solution?

The scalability is fine for us, we currently have 50 users. 

How are customer service and technical support?

Their technical support is good. We have SLA with Cisco, which will be renewed next year.

How was the initial setup?

We have a somewhat complicated environment over here. We have also implemented SSG Juniper, SSG140, so basically their firewall is working as a router.

What's my experience with pricing, setup cost, and licensing?

The price is a little high in comparison to other similar solutions. If we talk about Sophos Firewall with IBM software, it's cheaper in comparison to Cisco and their VirtualBox.

What other advice do I have?

I recommend this latest model of Cisco firewall. In terms of the wide logging, it gives us as much as we need. We have implemented 30 to 35 policies in which loggings are gathered. 

I would rate this solution an eight out of 10. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Cyber Security Engineer at a tech company
Real User
Top 20
Easy to use and simple to set up but could offer more integration capabilities
Pros and Cons
  • "We have found the product to be quite stable."
  • "The solution would be better if it offered customers more integrations and more signatures."

What is our primary use case?

We primarily use the solution as a firewall. It's for company security.

What is most valuable?

The solution is easy to use.

We have found the product to be quite stable. 

The installation process is not difficult.

What needs improvement?

The solution would be better if it offered customers more integrations and more signatures.

For how long have I used the solution?

I've been using the solution for around four years. It's been a while. It's useful for anomaly detection, impact inspection, signatures, and stuff like that.

What do I think about the stability of the solution?

The stability of the product is very good. There are no bugs or glitches. It doesn't crash or freeze. the performance is good and we consider it reliable. 

What do I think about the scalability of the solution?

We have around 2,000 users in our organization using the solution.

How are customer service and technical support?

We have contacted Cisco technical support in the past. Their support is the best in the market. We are very satisfied with the level of service they provide to their clients. 

Which solution did I use previously and why did I switch?

We are using both Cisco and Fortinet.

How was the initial setup?

It's very straightforward and very easy to set yo the solution. It's not overly complex. 

It took us one to two days at a maximum to install everything and to get everything going. 

We have two technicians and three engineers that can handle any deployment or maintenance tasks.

What about the implementation team?

We handled the setup ourselves. We did not require the assistance of any integrators or consultants. It was all done in-house. 

What's my experience with pricing, setup cost, and licensing?

We have a subscription for the signatures and footprints. 

What other advice do I have?

We are a customer and an end-user.

We always use two older versions than the latest in case the latest has bugs or issues.

I'd rate the solution at a seven out of ten.

I would recommend this product to other users and companies. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Networking Security Consultant at a tech services company with 51-200 employees
Consultant
Top 10
Good support, stable, and has a lot of advanced security features
Pros and Cons
  • "The integration with the Cisco portfolio is very helpful."
  • "Multi-internet line load balancing should be supported."

What is our primary use case?

I work for a system integrator and Cisco NGIPS is one of the products that we implement for our clients. This is a solution for enterprise networks and it has a lot of advanced features including security intelligence feeds and DNS security.

What is most valuable?

This product can be integrated with other solutions from the Cisco portfolio including Cisco ISE and SecureX. The integration with the Cisco portfolio is very helpful. Cisco ISE will give full control in any network and it can be used to isolate any infected or misbehaving users automatically.

What needs improvement?

Multi-internet line load balancing should be supported. It is available from other vendors and should be included with this product.

What do I think about the stability of the solution?

This is one of the most stable solutions in the firewall world. 

What do I think about the scalability of the solution?

Cisco takes scalability into consideration. My clients vary in size from small and medium-sized businesses to enterprises.

How are customer service and technical support?

The best support that I have ever dealt with is from Cisco. I am very satisfied with their service.

Which solution did I use previously and why did I switch?

I have experience with a lot of network security products. These include solutions by Cisco, Palo Alto, Fortinet, and Forcepoint.

How was the initial setup?

The initial setup is very simple and in one or two hours, it can be up and running.

What's my experience with pricing, setup cost, and licensing?

The licensing can be billed annually or in multi-year contracts such as three, four, or five years.

What other advice do I have?

I would rate this solution a nine out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner, integrator
Network engineer at a manufacturing company with 201-500 employees
Real User
Top 5
IPS ability enables you to balance security and connectivity
Pros and Cons
  • "The most valuable feature is its IPS ability. You are able to balance security and connectivity."
  • "The CLI, the console line interface, of the FTD could be improved. It's very complex, so without a GUI, it doesn't work well. I would like it to be more simple."

What is our primary use case?

Our primary use case is securing the network. It has a deep learning intelligence ability to filter packages and traffic coming to networks and to different workstations in networks. 

This solution is deployed on-premises. 

What is most valuable?

The most valuable feature is its IPS ability. You are able to balance security and connectivity. 

What needs improvement?

The CLI, the console line interface, of the FTD could be improved. It's very complex, so without a GUI, it doesn't work well. I would like it to be more simple. 

As far as additional features or next releases, I think the price could be cheaper. 

For how long have I used the solution?

We have been using this solution for more than eight years. 

What do I think about the stability of the solution?

This product is stable. 

What do I think about the scalability of the solution?

This product is very scalable. 

How are customer service and support?

Cisco's technical support is very, very fast. 

Which solution did I use previously and why did I switch?

Before implementing Cisco, we used Fortigate and Check Point. 

How was the initial setup?

The installation is straightforward. You have to install the device, but if you want to actually manage it, you need a GUI for it. For deployment, you will need two engineers, maximum. 

What about the implementation team?

We implemented this solution through an in-house team and deployed it ourselves. 

What's my experience with pricing, setup cost, and licensing?

We pay for the IPS license to use this solution. 

What other advice do I have?

I rate this product a nine out of ten, and would recommend this product to others who are considering using it. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Hozaifa Samad
Networking & Security Consultant at LayerZoom
Consultant
Top 5
Great all-in-one integration with valuable IPS function
Pros and Cons
  • "IPS is a valuable function, because they update the signatures all the time and it's very granular."
  • "The GUI user interface could be improved and the login is not very user friendly."

What is our primary use case?

We replaced an ASA with Firepower managed by FMC with NGIPS, and we're also using it for advanced security, like anti-malware protection and IPS. 

How has it helped my organization?

We used to have different solutions integrated together between Cisco and non-Cisco, or Cisco and a third party. We now have an all-in-one which is kind of nice. 

What is most valuable?

I believe the IPS is a valuable function, because they update the signatures all the time and it's very granular. This is a good, stable solution and it's always up to date with all the security features.

What needs improvement?

I think the GUI user interface could be improved and the login is not very user friendly. They could maybe improve on that. 

What do I think about the stability of the solution?

The stability is good, we haven't had any problems. 

What do I think about the scalability of the solution?

I think scalability is good although we only have a couple of people in our company that use it - the IT Manager and myself.  

How are customer service and technical support?

The technical support is very good. I've never had issues with Cisco support, they're the best. 

How was the initial setup?

The initial setup is straightforward, it took a few hours. As the consultant, I deployed the solution. 

What's my experience with pricing, setup cost, and licensing?

I'm not sure of the licensing costs, I know we have a three-year subscription. 

What other advice do I have?

Compared with other solutions, this is very good. 

I rate this product a nine out of 10. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Flag as inappropriate