No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Meraki MX vs Cisco Secure Firewall comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 5, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
5.2
Cisco Meraki MX provides significant ROI through intuitive management, reduced costs, and streamlined operations despite higher initial costs.
Sentiment score
4.2
Cisco Secure Firewall boosts ROI by enhancing security, reducing costs, and increasing efficiency through simplified management and integration.
I have seen a return on investment with Cisco Meraki MX because of the time saved through cloud management.
Presales System Engineer at Logicom Sales Inc
You can eliminate some positions because it manages itself.
Enterprise Networking Solutions Architect at a computer software company with 51-200 employees
It greatly helps out when I am moving away from the expensive MPLS circuits or MPLS hardware.
Senior Manager Networking at David Yurman
There is always a return on investment because you find you invest heavily, but your environment is secure and then you are at rest; you do not need to panic.
Specialist Datacenter And Server at IHS Towers
The biggest return on investment when using Cisco Secure Firewall is that there's no waste in any infrastructure cost and licensing costs for us.
Assistant Vice President at PLDT Enterprise
From my point of view, the biggest return on investment when using Cisco Secure Firewall is the single pane of glass, which is a huge plus for us.
Network Engineer at a government with 10,001+ employees
 

Customer Service

Sentiment score
8.3
Cisco Meraki MX support is responsive and knowledgeable, highly rated for reliability, though some advanced users face visibility challenges.
Sentiment score
7.2
Cisco Secure Firewall support is praised for its responsiveness and expertise, though some users experience delays in resolution.
When we raise a ticket with Meraki MX, they instantly become available to support us for configurations or troubleshooting.
Managing Director at a manufacturing company with 10,001+ employees
Cisco's TAC support for Cisco Meraki MX is excellent because no other OEM provides support at this level.
Technical Presales at Vcom Technologies
Cisco is one of the best vendors in the market.
Presales System Engineer at Logicom Sales Inc
I have to provide many logs, yet problems remain unresolved, often requiring workarounds rather than solutions.
VSO at a computer software company with 501-1,000 employees
I have been working with them on firewalls, wireless, switching, and routing, and the support is the best.
Principal Consultant at Epitome Infotech Solutions (P) Ltd
They have expertise and provide solutions for the most difficult problems.
Network Security Administrator at a government with 501-1,000 employees
 

Scalability Issues

Sentiment score
6.7
Cisco Meraki MX is scalable, adapting from small to large deployments, with minimal management and straightforward setup.
Sentiment score
6.7
Cisco Secure Firewall effectively scales for different user volumes but faces licensing and hardware challenges, especially in on-premises solutions.
When you have hundreds of thousands of people it is very difficult to scale in Meraki.
Managing Director at a manufacturing company with 10,001+ employees
The scalability of Cisco Meraki MX is rated 10 out of 10; you can scale up and scale down with no effort.
Presales System Engineer at Logicom Sales Inc
Cisco Meraki MX scales with my growing needs for my organization very well because they are easy to deploy.
Network Engineer at a non-profit with 1,001-5,000 employees
When something happens in the device, the failover happens very quickly without any interruption.
Network Unit Head at a comms service provider with 501-1,000 employees
Cisco Secure Cloud now allows us to potentially take the management functions of Cisco Secure Firewall, move it into the cloud, and integrate it with other Cisco security products, managing everything from one single pane.
Senior Network Engineer at a insurance company with 5,001-10,000 employees
I rate the scalability as a number 10.
Cybersecurity Team Leader at EMAK For Computer Manufacturing (ECM)
 

Stability Issues

Sentiment score
8.6
Cisco Meraki MX offers high reliability and compatibility, with praised stability despite occasional content filtering and hardware issues.
Sentiment score
7.6
Cisco Secure Firewall is reliable with minimal downtime, strong stability, and consistent performance through effective updates and support.
There have been no outages, no stability issues, and we have not found any vulnerabilities during security audits.
Technical Presales at Vcom Technologies
I have had zero downtime at all with Cisco Meraki MX.
Enterprise Networking Solutions Architect at a computer software company with 51-200 employees
I assess the stability and the reliability of Cisco Meraki MX as good, and I have experienced no downtime, crashes, or performance issues.
Network Engineer at a non-profit with 1,001-5,000 employees
We have often encountered split-brain scenarios during failover processes and code upgrades, which have been persistent problems for us.
Senior Manager, Network Engineering at TTi Power Equipment
We work with a cluster with high availability, so if something goes wrong, we have it functioning.
Cisco Secure Firewall offers exceptional performance and stability.
Principal Consultant at Epitome Infotech Solutions (P) Ltd
 

Room For Improvement

Cisco Meraki MX faces challenges with port control, VPN connectivity, interface usability, pricing, and integration, prompting user concerns.
Cisco Secure Firewall needs improvements in UI, integration, management, pricing, configuration stability, and overall performance to remain competitive.
It should automatically remediate and find out the issue and then resolve it on its own without interrupting the work of the employees.
Managing Director at a manufacturing company with 10,001+ employees
Data is the only path, so optimization is essential.
Chief Commercial Officer at InnovAge Home Care
An improvement would be to use Cisco Meraki MX as a software solution as well, which might reduce the cost.
Technical Presales at Vcom Technologies
My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time.
Senior Manager, Network Engineering at TTi Power Equipment
The GUI is useless for me and frustrates me to a very high degree, which led me to switch to the CLI for configuration.
Network Engineer at a logistics company with 10,001+ employees
Firewall as a Service can scale to a very large extent because it is a cloud-based offering that can scale up to a very large number, which is not a problem.
Chief Technology Officer at Binary Global Limited
 

Setup Cost

Cisco Meraki MX offers flexible licensing and high value but can involve significant initial costs and annual fees.
Cisco Secure Firewall is often seen as high-priced, but offers robust features and support, justifying the expense.
I get it for $25,000, a device that can connect up to 75-100 users, whereas in Meraki MX, it goes to 75,000-80,000 per access point.
Managing Director at a manufacturing company with 10,001+ employees
The price could be reduced by around 30% to make it more comfortable.
Technical Presales at Vcom Technologies
If Cisco can make the pricing less, customers can purchase more licenses.
Presales System Engineer at Logicom Sales Inc
It's good to have them, however, it costs us a lot.
It Administration at Dilcon Community School
Basically, the license for the VPNs is for all the interfaces, and that is the thing that is really expensive compared with Palo Alto.
Technical Account Manager at a tech vendor with 5,001-10,000 employees
It's considered a premium, but people pay that price for Cisco.
Principal Consultant at Epitome Infotech Solutions (P) Ltd
 

Valuable Features

Cisco Meraki MX provides cloud management, SD-WAN, advanced security, and ease of use, making it ideal for scalable networks.
Cisco Secure Firewall offers robust features like VPN termination, powerful threat prevention, and seamless integration, ensuring effective network security.
Meraki MX is among those top solutions in their exceptional approach towards VPN-less, Zero Trust client access to office private networks.
Managing Director at a manufacturing company with 10,001+ employees
Advanced security is the second tier of Cisco Meraki MX. It brings you the main next-generation firewalling features such as URL filtering, advanced malware protection, and threat protection.
Presales System Engineer at Logicom Sales Inc
Cisco Meraki MX API makes it really easy for me to automate a lot of changes over several thousand devices.
Technology Engineer at a computer software company with 201-500 employees
What stands out positively about Cisco is their training and support, which has effectively prepared engineers to work with their products.
Senior Manager, Network Engineering at TTi Power Equipment
This is very important to my organization, as we work extensively with security because we are a bank, so we can keep the data safe.
Network Security Administrator at a government with 501-1,000 employees
Cisco Secure Firewall allows me to safeguard Layer 7 or Layer 3 and manage the security rules with the business needs of my organization.
 

Categories and Ranking

Cisco Meraki MX
Ranking in Firewalls
9th
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
75
Ranking in other categories
Unified Threat Management (UTM) (6th)
Cisco Secure Firewall
Ranking in Firewalls
3rd
Average Rating
8.2
Reviews Sentiment
6.9
Number of Reviews
464
Ranking in other categories
Cisco Security Portfolio (2nd)
 

Mindshare comparison

As of July 2026, in the Firewalls category, the mindshare of Cisco Meraki MX is 3.5%, up from 3.4% compared to the previous year. The mindshare of Cisco Secure Firewall is 7.6%, up from 6.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls Mindshare Distribution
ProductMindshare (%)
Cisco Secure Firewall7.6%
Cisco Meraki MX3.5%
Other88.9%
Firewalls
 

Featured Reviews

SG
Technical Presales at Vcom Technologies
Cloud-based solution simplifies network management with excellent support
There have been no issues with stability after deployment. There have been no complaints. For stability, I would suggest that Cisco Meraki MX is the most stable device from the security processor. Regarding content filtering features, we are using content filtering and malware access, along with all security features in Cisco Meraki MX9500. We have received good feedback from customers because since installing Cisco Meraki MX9500, we have not received any complaints. There have been no outages, no stability issues, and we have not found any vulnerabilities during security audits. It is compatible with all different OEMs, and for VPN, site-to-site VPN has been configured with other firewalls as well. We are getting very good responses from customers as there have been no complaints where we have deployed Cisco Meraki MX9500.
RajeshKumar - PeerSpot reviewer
Network Consultant at a outsourcing company with 1,001-5,000 employees
Unified policies have strengthened zero-trust demos and automate rapid threat containment
Feedback and Improvement Areas – Cisco Secure Firewall (Customer Perspective) From a customer point of view, there are a few improvement areas observed while positioning Cisco Secure Firewall in competitive scenarios. 1. Dashboard & Visibility Enhancements Customers often compare firewall dashboards across different OEMs during evaluation. * Competing vendors typically provide more feature-rich and visually detailed dashboards. * There is a perception that Cisco dashboards still require enhancement in terms of visualization, consolidated reporting, and built-in analytics. * Some OEMs advertise additional security capabilities clearly within their publicly available data sheets, making competitive positioning easier. In comparison, Cisco sometimes references separate documentation or explains how certain capabilities (such as anti-spam or antivirus functionality) can be achieved through integration or ecosystem components rather than native, built-in features. This creates a perception gap during customer discussions. Improvement Opportunity: * Enhance dashboard capabilities. * Clearly articulate feature availability in public documentation and data sheets. * Reduce dependency on cross-referenced documentation for commonly compared features. 2. Virtual Firewall / Multi-Instance Capabilities in Lower Models Another competitive challenge relates to virtual firewall capabilities. * Several OEMs provide virtual firewall (VDOM-like) functionality in lower-end models. * In Cisco’s portfolio, multi-instance capability typically starts from higher-end platforms such as the 3K series or higher. * Customers looking for smaller deployments with logical segmentation are often forced to consider higher models, resulting in a price jump. Competitors also offer: * Compact hardware models * Dongle-based firewall appliances * Smaller entry-level products with virtual segmentation In Cisco’s case: * To achieve similar multi-instance functionality, customers must opt for higher-tier models. * This creates a significant pricing gap in entry-level or SMB deployments. This pricing difference becomes a key factor when customers compare solutions. If competitors offer a lower-cost model with virtual segmentation, and Cisco requires a higher platform investment, customers may lean toward alternative OEMs. 3. Documentation Gaps – OT Protocol Visibility In our lab environment, we have deployed Cisco Secure Firewall and are using Application Visibility and Control (AVC) for OT network monitoring. Observations: * OT protocols are clearly visible within application visibility. * The firewall successfully identifies and classifies OT traffic. However: * This capability is not clearly mentioned in publicly available documentation. * When a feature is available and functional, it should be explicitly documented in data sheets and feature guides. The need for third-party integration depends on what we are looking for. Here I am saying that the integration with Cisco NAC can be done because RTC functionality is only available with Cisco ISE and the firewall integration. For other ecosystems, if we use a NAC solution that is not Cisco, we can still integrate it for user authentication, such as with VPN user authentication. But in that case, we don't achieve the same functionality, such as RTC with other NAC solutions. This is one aspect. Another part is that if we are using it, it always happens with some NAC solutions because we have Cisco NAC and Cisco firewall; we want consistent policy across the network, whether the user is on-prem or using VPN services. If this is a unified OEM solution, in that case, we require an agent, such as the Cisco Secure Client. That allows us to easily check the posture status of the remote user and connect to the network effortlessly. But if we are using a third-party solution, we can't achieve that. From a SIEM perspective, certain prerequisites must be fulfilled before integration with Cisco Secure Firewall can be completed. The feasibility of integration depends on the capabilities of the SIEM platform. If the SIEM solution supports the required APIs and event handling mechanisms, similar functionality can be achieved. Therefore, integration itself is generally not the challenge; the key consideration is the desired security outcome within the overall ecosystem. If the customer does not have a SIEM solution and intends to automate quarantine actions or enforce restricted access for users, a Network Access Control (NAC) solution becomes mandatory. In this scenario, the recommended NAC solution is Cisco Identity Services Engine (Cisco ISE). Automated quarantine and dynamic access control workflows are dependent on NAC capabilities. From a feature enhancement perspective for Cisco Secure Firewall, deeper NAC-driven integration adds significant value. 1. TrustSec / Tag-Based Policy Enforcement Cisco ISE supports Cisco TrustSec, which enables Security Group Tag (SGT)-based segmentation. * In traditional (legacy) networks, firewall policies are created based on IP addresses. * With TrustSec, policies are defined based on user identity, group membership, and security tags instead of IP subnets. * When users authenticate to the network, Cisco ISE assigns Security Group Tags (SGTs). * These tags are shared with Cisco Secure Firewall. * The firewall then enforces policies based on SGT-to-SGT rules rather than IP-to-IP rules. Benefits: * Significant reduction in the number of firewall rules * Simplified policy management * Improved scalability * Easier implementation of role-based access control This integration enhances operational efficiency and security posture. 2. Rapid Threat Containment (RTC) Another key capability is Rapid Threat Containment (RTC). If Cisco Secure Firewall detects malicious activity—such as malware download attempts identified via signature-based or advanced threat detection—it can notify Cisco ISE about the compromised endpoint. Based on this input: * Cisco ISE can automatically quarantine the user * The endpoint can be moved to a restricted VLAN * Access can be dynamically limited without manual intervention This automated workflow ensures faster response time and reduces the risk of lateral movement within the network. 3. VPN and Posture Assessment This functionality is not limited to wired or LAN users. For VPN users: * Authentication can be integrated with third-party NAC solutions. * However, if posture assessment (device compliance checking) is required in addition to authentication, Cisco ISE integration with Cisco Secure Firewall becomes essential. Cisco ISE enables: * Endpoint posture validation * Dynamic policy assignment * Automated remediation workflows
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Security Consultant at Webernetz.net - Network Security Consulting
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
 

Answers from the Community

NC
Content Manager at PeerSpot
Nov 24, 2021
Nov 24, 2021
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports network security and firewall options. We researched both Meraki and ASA. We liked that ASA provides a solid VPN setup and integrates with other Cisco security offerings. Cisco ASA is great for routing and accessing remote office locations via the remote VPN. We also liked the high ...
See 2 answers
Nov 8, 2021
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports network security and firewall options. We researched both Meraki and ASA. We liked that ASA provides a solid VPN setup and integrates with other Cisco security offerings. Cisco ASA is great for routing and accessing remote office locations via the remote VPN. We also liked the high availability and customizable nating (Network Access Translation). It is very reliable and easy to use. You can easily configure a site-to-site VPN to connect multiple sites. The support is great - they respond 24/7/365 and there is a lot of documentation available. The downside is that ASAs are aging. Therefore, Cisco ASAs are best suited to small businesses. If you need something affordable that gets the job done, ASA is a good option. We chose Cisco Meraki, because, in our opinion, it is a step forward from ASA. The level of security and intrusion detection is great, and because it is cloud-based, it is easy to change the configuration without downtime. Logging is very comprehensive, and management is very simple. The best feature is content filtering with granular control. Cisco Meraki offers advanced malware protection, including traffic shaping. Another feature we really like is that you can pre-configure devices before they arrive at the installation. It doesn’t work with DMVPN, which is a downside. Another feature that could use some improvement is reporting, which is not real-time. The price can get expensive but if you can afford it, a full-stack Cisco Meraki system does a great job keeping your network secure. Conclusions: If you want a robust but basic firewall, ASA is your best choice. Cisco Meraki is a better choice if you are looking for a next-generation firewall with advanced security features and easy management.
FT
IT Adviser/Manager with 51-200 employees
Nov 24, 2021
Meraki is designed for zero deployments and no in-house firewall specialist personnel. Best to secure Networks like remote offices, branches or home offices. Also to protect Internet Access (your computer accesses the internet). Cisco ASA is more of a professional firewall, not only protecting internet access but also providing security for publishing services like web servers, data centers, central services. They will need a specialist to install and support them. Therefore offer much more sophisticated protection features. So you can't really compare these solutions, as they are targeting different markets. You might compare Cisco to Sophos, but again, these are different protection solutions, one for network protection, the other for client protection. If you look only at the firewall part, you miss a lot in the total protection approach with Sophos.
 

Top Industries

By visitors reading reviews
Computer Software Company
12%
Construction Company
9%
Manufacturing Company
8%
Financial Services Firm
7%
Construction Company
10%
Manufacturing Company
9%
Financial Services Firm
9%
Computer Software Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business43
Midsize Enterprise22
Large Enterprise19
By reviewers
Company SizeCount
Small Business192
Midsize Enterprise130
Large Enterprise236
 

Questions from the Community

Fortigate 60d vs. Meraki MX67 for a small company without a dedicated IT Department
We have Meraki Mx devices now, we are looking to replace them. But that is because the Meraki MX platform lacks SSL Inspection, Granular Firewall rules (Block only, no allow setting), client vpn re...
Which is better - Meraki MX or Cisco ASA Firewall?
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports network security and firewall options. We researched both Meraki and ASA. We liked t...
What is your experience regarding pricing and costs for Meraki MX?
My experience with pricing, setup cost, and licensing is that we went through a third party who negotiated all the prices with Cisco for us.
Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage at large. In my opinion, Fortinet would be the best option and l use Fortinet too...
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fortigate is very stable, reliable, and consistent. We like that we can manage the e...
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco ecosystem, it is very simple to handle. This solution has traffic inspection ...
 

Also Known As

MX64, MX64W, MX84, MX100, MX400, MX600
Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall, Cisco Secure Firewall ASA Virtual - BYOL
 

Overview

 

Sample Customers

Hyatt, ONS
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
Find out what your peers are saying about Cisco Meraki MX vs. Cisco Secure Firewall and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.