Cisco Umbrella Reviews

We use Cisco Umbrella for one of our customers, one of Jordan banks. We are using that on the gateways, on the cloud to secure our customer web traffic.

They are happy with the distribution because they know it's straight on the DNS. 

Cisco Umbrella uses the internet’s infrastructure to block malicious destinations before a connection is ever established. By delivering security from the cloud, it will save money and provide more effective security.

Umbrella stops threats over all ports and protocols—even direct-to-IP connections. Stop malware before it reaches your endpoints or network.

Even if devices become infected in other ways, Umbrella prevents connections to an attacker’s servers. Stop data exfiltration and execution of ransomware encryption

We would like to improve nothing in particular on Cisco Umbrella.  They are very good.

I have been using Cisco Umbrella for about two years.

Cisco Umbrella is stable. I have heard no complaints from my customers at all.

Cisco Umbrella is scalable.

Cisco support is one of the best, their response is very fast and they are very supportive.

Yes, we used Bluecoat ASG to block known Malwares.

usually, to complete Sandboxing solution (which used for unknown malwares), we used other solutions like Cisco Umbrella or Bluecoat ASG to block the known malwares on Web GW.

it was very straightforward.

We (BMB company which is a Cisco Gold partner) are familiar with such solution and implementation. 

I have no idea about cost.

No I did not.

On a scale from one to ten, I would rate this product a nine. No one's perfect. They are fine with the interface and the dashboard that they have released.

To replace my original DNS servers and configure more than 50,000 computers through domain name resolution.

It has helped reduce my unit's security events. It possesses a visual graphics table, which enables me to understand the resolution of the blacklisted domain. Sometimes, I can understand which URL is visited most often by reviewing the user's resolution.

• Black list
• Visual graphics table

These can reduce security events and can find out which users have security issues.

• Its DNS service does not support IPv6 query.
  
• Some countries don't have a DNS server leading to a domain resolution IP, not at a local level.

The price could be lower.

Our primary use case is security at the DNS level. This solutions was suggested by our account manager at Insight. 

we didn't implement it in our environment because of the pricing concern. however, I am sure it would have done a great job considering my observations in the trail pack.

Threats never come close to your network with security at the DNS level. Like i said above, i used it for a very short time so I cannot comment on the what would've been valuable for us but I was pretty amazed by the wide variety of security features and reports on a single dashboard. Leveraging Custom API and reasons and visibility for each deep visibility for the network was something that caught my eye.

There should be a way to monitor traffic at the user level. I use Meraki Dashboard and Cisco Firepower to do this for different networks. I understand this tool monitors the network as a whole but adding that information will let us cut the cost for other tools. 

The product is pricey compared to Cisco Firepower.

It is a pretty good product for a small business.

Protection and security provided by using Umbrella are the two top areas that I looked at when considering. With three campuses, Umbrella has proven itself with the detection and blocking of malware, viruses, and preventing users from visiting malicious sites. We have two Umbrella virtual appliances at each campus, with two campuses using Hyper-V, and the primary data center running VMware. 

The reports have given us insight into what the Internet is being used for at all three campuses. They provide insight into internet usage and information helpful in creating QoS rules.

• My favorite feature is the command and control callback blocking. It provides protection from crypto attacks by blocking the connection back to the attacker's server giving an added layer of defense. 
• Policies make the work easier by providing appropriate filters for locations. 
• The interface is simple, easy to navigate and set up.

If the virtual appliances could also gather traffic bandwidth reports, that would be great. 

The customer support is exceptional. 

They have a wealth of articles in their knowledge base. This has given me the freedom to troubleshoot on my own time. 

Cisco Umbrella's interface is easy to use and the visibility of user activity is extremely useful. 

We are in trial mode and use it for a distributed national environment. It provides category and security coverage for endpoints regardless of their location. As a mobile-first workforce, Umbrella always provides DNS-based security, even if endpoints roam in unfriendly waters. 

It provides centralized, device-agnostic management of the Internet experience. It has the ability to quickly block new threats. 

• Holistic approach
• DNS fronts most traffic.
• Quick console
• Instant management across platform
• Reporting is simplistic.  

• It needs better integration with external threat feeds to improve scoring. 
• I would like it to automatically feed to the customer's SIEM. 

It needs a better price point. 

My customers would like to protect users in company and outside their companies.

Improves security through DNS visibility, which can block malware, phishing, C&C, etc.

It is easy to implement.

If I want to see which users access a website, I need an Active Directory registered on Umbrella's cloud.

No stability issues.

No scalability issues.

I would rate technical support as an eight out of 10.

We did not switch solutions. We just added an extra layer of defense.

The initial setup is straightforward.

The pricing is fair.

You can request an evaluation license.

No.

We needed the product to enable a whitelist-only browsing mode for certain computers for a client. After that was implemented, I was able to configure a virtual appliance (which became the DNS server) to connect to a local AD server and relate traffic to an AD user name. From there, we could track and monitor where users were going and perform web content filtering to prevent video streaming and certain social media sites. This in turn positively affected productivity.

I don’t remember the specific examples of data I was trying to filter out but it was related to ads being hosted by a CDN such as Akamai. Links and images were being hosted there for quicker localized delivery yet the users were not actually going to those sites. Due to that it was showing that those sites were being visited the most, which wasn’t the case.

There was a positive effect on productivity because we could track and confront the users that were frequently using social media or streaming video during the work day. They weren’t wasting as much time after OpenDNS was implemented.

It gave us new capabilities and made users accountable for their browsing while at work.

I would like to have the ability to prevent certain sites/data from showing on the reports. I have had this feature request open for a couple of years. It would be useful to have for filtering out unuseful data.

I have been using this solution for the past two years. I previously used the free solution 6-8 years ago.

I did not encounter any issues with deployment, stability or scalability. I had a Sales Engineer assist with the setup for one portion, but was able to figure out the rest with no issues.

No

Excellent

Excellent, their Sales Engineer was very helping in getting the AD sync setup.

No

Initial setup was straightforward. Any questions I had were already answered on the forums.

A vendor team was only needed for one small portion, which was setting up the virtual appliance. I would recommend trying to figure out the setting on your own first before reaching out to support. I found it very simple.

We were able to resell the service for a 100-200% profit.

Due to past experience, I knew it would do what we needed and the website has an intuitive interface, so there was no reason to research alternatives.

It has the ability to block malware threats in the cloud and control web content access from inside or outside the office.

It has significantly reduced the threat of virus/malware infections, CryptoLocker infections and has made our client’s networks more secure.

Improvement could be made in the area of detailed reporting analytics broken down by client name for individual custom reporting.

I have been using it for about three years.

I have not encountered any deployment, stability or scalability issues. The installer can be scheduled and rolled out using our set of Managed Services tools.

Customer service and technical support is excellent. I give it a 9.5.

We have used Websense, Barracuda and iPrism in the past. The flexibility of OpenDNS supporting a high-performance cloud infrastructure and not requiring any hardware or software cost was a major factor. The monthly pricing model fits into our company’s core services as a Managed Services provider and eliminates the need for annual renewal licenses.

Initial setup was straightforward for the most part, but it can become complex depending on the granular content filtering features that need to be implemented for each client.

In-house implementation. I would recommend an automated procedure on a domain network instead of a manual remote install. I recommend a default of blocking malware, phishing and pornography only, and allowing the client to determine if any additional categories need to be blocked on their network.

ROI benefits both the reseller and the client in Managed Services because of its proactive approach to network security. Our technicians aren’t spending hours of wasted time removing malware and viruses from desktops and notebooks. Customers appreciate the productive benefit of multi-layered protection that builds upon their legacy firewall and spam prevention. The pricing for the subscription is minimal (literally a few cents a day). The price is based on content management and security of client networks, as a bundled solution with an existing service.

Try it before you buy it, to test it out. Test the content filtering categories.