"The most valuable features of this solution are the integrations and IPS throughput."
"The most important feature is the intensive way you can troubleshoot Cisco Firepower Firewalls. You can go to the bit level to see why traffic is not handled in the correct way, and the majority of the time it's a networking issue and not a firewall issue. You can solve any problem without Cisco TAC help, because you can go very deeply under the hood to find out how traffic is flowing and whether it is not flowing as expected. That is something I have never seen with other brands."
"Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch."
"The most valuable feature would be ASDM. The ability to go in, visualize and see the world base in a clear and consistent manner is very powerful."
"One of the most valuable features of Firepower 7.0 is the "live log" type feature called Unified Event Viewer. That view has been really good in helping me get to data faster, decreasing the amount of time it takes to find information, and allowing me to fix problems faster. I've found that to be incredibly valuable because it's a lot easier to get to some points of data now."
"The feature set is fine and is rarely a problem."
"The most valuable feature is the Intrusion Prevention System."
"The integration of network and workload micro-segmentation helps a lot to provide unified segmentation policies across east-west and north-south traffic. One concrete example is with Cisco ACI for the data center. Not only are we doing what is called a service graph on the ACI to make sure that we can filter traffic east-west between two endpoints in the same network, but when we go north-south or east-west, we can then leverage what we have on the network with SGTs on Cisco ISE. Once you build your matrix, it is very easy to filter in and out on east-west or north-south traffic."
"The dashboard, customization, API, and pricing are good."
"The most valuable features are application filtering, content filtering, the intrusion prevention system (IPS), and definitely the application firewall."
"The initial setup is pretty simple."
"I'm told the solution is the fastest, and, so far, I do find that to be the case."
"It's basic functionality is probably the most valuable feature."
"It's a very powerful solution and the firewalls offer high performance"
"This solution works well. Their switches and firewall are good."
"Juniper is more flexible with the commit check and the commit confirmed command. The design of the forwarding and contract plan in the operating system is very important for the performance when we have very big traffic."
"Report generation is an area that should be improved."
"I would like it to have faster deployment times. A typical deployment could take two to three minutes. Sometimes, it depends on the situation. It is better than it was in the past, but it could always use improvement."
"Implementations require the use of a console. It would help if the console was embedded."
"We're getting support but there's a big delay until we get a response from their technical team. They're in the USA and we're in Africa, so that's the difficulty. When they're in the office, they respond."
"They need a VTI. I know it's going to be available in the next software version, which is the 6.7 version. However, the problem with that is that the 6.7 is going to deprecate all the older IKEv1 deployment tunnels. Therefore, the problem is that we have a lot of customers which are using older encryptions. If I do that, update it, it's not going to work for me."
"The initial setup can be a bit complex for those unfamiliar with the solution."
"The initial setup was a bit complex. It wasn't a major challenge, but due to our requirements and network, it was not very straightforward but still easy enough."
"My team tells me that other solutions such as Fortinet and Palo Alto are easier to implement."
"Fortinet is more user friendly than Juniper. In terms of remote access, I actually prefer using Fortinet. It's much easier to configure."
"We worked with Cisco's support and Juniper's support and there are some differences, to be honest, Cisco is more available and is more competent at addressing our cases."
"The GUI really needs a lot of work, and it has got worse with successive version updates."
"Some people complain that the solution tends to have a steep learning curve. It could be because most people have basic familiarity with Cisco or other similar products and maybe have never worked closely with Juniper products."
"I would like to see an activity sensor for malicious content or sensor for viruses and malware."
"There are too many types of licenses, which can be confusing."
"It could use more tutorials."
"VPN access is an area that needs improvement."
More Cisco Firepower NGFW Firewall Pricing and Cost Advice →
Cisco Firepower NGFW Firewall is ranked 4th in Firewalls with 48 reviews while Juniper vSRX is ranked 25th in Firewalls with 10 reviews. Cisco Firepower NGFW Firewall is rated 8.2, while Juniper vSRX is rated 7.6. The top reviewer of Cisco Firepower NGFW Firewall writes "The ability to implement dynamic policies for dynamic environments is important, given the fluidity in the world of security". On the other hand, the top reviewer of Juniper vSRX writes "Fast with good usability and fairly scalable". Cisco Firepower NGFW Firewall is most compared with Fortinet FortiGate, Cisco ASA Firewall, Meraki MX, Palo Alto Networks WildFire and Check Point NGFW, whereas Juniper vSRX is most compared with Juniper SRX, Azure Firewall, Fortinet FortiGate-VM, Palo Alto Networks VM-Series and Cisco ASA Firewall. See our Cisco Firepower NGFW Firewall vs. Juniper vSRX report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.