We performed a comparison between Cisco NGIPS and Cisco Sourcefire SNORT based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The features that I find most valuable are the DDoS protection, IPS/IDS, and Firepower for web application filtering."
"The top features of Cisco NGIPS, which have been working very well, include stateful inspection and the access list-based security configuration. But from my perspective, the best part of Cisco NGIPS is the licensing process, which is very easy and straightforward. It's essentially copy-paste licensing."
"Good IPS and VirtualBox features."
"It has good intelligence. It does a great job at stopping threats."
"The most valuable features of Cisco NGIPS are protection and reporting."
"The integration with the Cisco portfolio is very helpful."
"You can do zero-day prevention and detection. It's quite useful."
"Technical support is quite good. With firewalls, the last cases I had with Cisco were professionally handled quite quickly and it was great."
"The solution is rather easy to use."
"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."
"I like most of Cisco's features, like malware detection and URL filtering."
"Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly."
"The most valuable feature is the visibility that we have across the virtual environment."
"The whole solution is very good, and stable."
"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."
"The URL filtering is very good and you can create a group for customized URLs."
"I would like to see Cisco NGIPS to include home office support in one single product."
"Should include additional security features."
"The product's high price is an area of concern where improvements are required."
"My opinion is that this solution should improve the pricing."
"The attack patterns and payloads go undetected in Cisco. We would like to see a new solution with more effective detection of attack patterns. There should be more data analyzing patterns as well which provides useful information."
"More flexibility with the dashboards is needed because some of them are not fully developed."
"The integration can be more secure."
"Better integration with other products, such as a SIEM tool, would provide better peer visibility about your security posture."
"There are problems setting up VPNs for some regions."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
"The implementation could be a bit easier."
"The main dashboard of Cisco Sourcefire SNORT could improve."
"To be frank, the product is not really stable, although they're working on that. Whenever I go to the technical community with an issue, they will usually say that it is not there yet, but the technical team are working on it. The issues are not insolvable. I think they should just keep working on the product to make sure that the product can become very stable. The technical support is great. I appreciate that. We have a lot of communities supporting Firepower now, so you can find help for whatever issue you have."
"I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it."
"While the alerts they offer are good, it could improve it in the sense that they should be more detailed to make the alerts more useful to us in general. Sometimes the solution will offer up false positives. Due to the fact that the alerts aren't detailed, we have to go dig around to see why is it being blocked. The solution would be infinitely better if there was just a bit more detail in the alert information and logging we receive."
"With the next release, I would like to see some PBR, so that you can do the configuration with the features."
Cisco NGIPS is ranked 5th in Intrusion Detection and Prevention Software (IDPS) with 62 reviews while Cisco Sourcefire SNORT is ranked 15th in Intrusion Detection and Prevention Software (IDPS) with 17 reviews. Cisco NGIPS is rated 8.2, while Cisco Sourcefire SNORT is rated 7.6. The top reviewer of Cisco NGIPS writes "Very effective for malware and signature-based anomalies but stability needs improvement". On the other hand, the top reviewer of Cisco Sourcefire SNORT writes "The solution provides visibility across virtual environments, protects internal networks, and is scalable to meet organizational needs". Cisco NGIPS is most compared with Check Point IPS, Fortinet FortiGate IPS, Trend Micro TippingPoint Threat Protection System, Palo Alto Networks Advanced Threat Prevention and Trellix Intrusion Prevention System, whereas Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention, Darktrace and Trend Micro TippingPoint Threat Protection System. See our Cisco NGIPS vs. Cisco Sourcefire SNORT report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.