Cisco NGIPS vs Palo Alto Networks Advanced Threat Prevention comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Cisco NGIPS and Palo Alto Networks Advanced Threat Prevention based on real PeerSpot user reviews.

Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Cisco NGIPS vs. Palo Alto Networks Advanced Threat Prevention Report (Updated: March 2024).
765,234 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"I like Firepower's automation, and the security intelligence is a powerful feature.""The top features of Cisco NGIPS, which have been working very well, include stateful inspection and the access list-based security configuration. But from my perspective, the best part of Cisco NGIPS is the licensing process, which is very easy and straightforward. It's essentially copy-paste licensing.""The solution is very stable.""We like the Cisco product, the concept, and the tech intelligence.""I configured the system myself and the process was okay.""We have found the IPS detection to be a very valuable feature of this solution. It is easy to use to stop policy violations.""The most valuable feature is its IPS ability. You are able to balance security and connectivity.""The security intelligence in the product is the best feature and give us all the information that we need in our network."

More Cisco NGIPS Pros →

"You can scale the product.""I find the malware protection very handy.""It's a monster, it's got so many beautiful features. We do deal with other firewalls and we've got a better idea of what other firewalls' capabilities are, any comparison with the Palo Alto I liked the quality of service on the applications that you can control the amount of bandwidth an application is allowed to consume. The best feature is the quality of the application quality of service.""It's very easy to use and configure. What is nice about Palo Alto is that even if you don't understand how to use it, you can just click on upload and upload everything that needs to be blocked.""The stability of Palo Alto Networks Threat Prevention is good.""Everything has been okay with the solution. We are using all of the features.""The application control and vulnerability protection are the most valuable features.""With the IP address flag, I was able to see that I was being hacked. The moment there was an interaction between somebody on my network and that IP, the solution was able to flag it, and we were able to protect ourselves."

More Palo Alto Networks Advanced Threat Prevention Pros →

Cons
"The onboarding process could be made a little bit better.""I would like to see Cisco NGIPS to include home office support in one single product.""The user interface needs some improvement, it is a little rudimentary and not very intuitive.""The price of Cisco NGIPS could improve.""They could provide one solution to fit all the use cases.""More flexibility with the dashboards is needed because some of them are not fully developed.""Cisco can do better on their documentation because the product is really hard to understand.""My opinion is that this solution should improve the pricing."

More Cisco NGIPS Cons →

"The price of licenses should be lowered to make it less costly to scale our solution.""In Africa, the technical support is probably not as good as in Europe and the USA because it's a specific premium support, partner-enabled premium support and all of that. But it's really good, I don't really have any complaints, it's fairly good. I'll give them 80%.""The documentation needs to be improved. I need better information about how to configure it and what the best practices are.""The solution needs to improve its local technical support services. There is no premium support offered in our market.""I think they can use some improvement on FID.""Sometimes when you want to group a set of ports, and communicate with Palo Alto, you cannot group TCP and UDP ports together. This needs to be adjusted.""The pricing has improved with the newer generation of their Firewalls, but the price could always be lower. In comparison with other solutions, I believe they're quite competitive.""Generally, to deploy it will take some downtime, about a day."

More Palo Alto Networks Advanced Threat Prevention Cons →

Pricing and Cost Advice
  • "We buy the licensing on a yearly basis, when we renew our contract. It is around $14,000."
  • "The price for additional throughput is the highest in the industry."
  • "Licensing fees for this solution are $3,500 USD, and there are no additional costs."
  • "Cisco products are always expensive, but if you can afford the price then it's a great solution."
  • "Pricing depends on negotiation with the vendor, although I can say that it is moderate."
  • "The cost of the license depends on the level of support that you have with Cisco."
  • "This is an expensive product, with the biggest cost being the license that keeps the service going."
  • "There are licensing fees depending on the features that you are using."
  • More Cisco NGIPS Pricing and Cost Advice →

  • "The pricing and the licensing are pretty competitive at this stage. As a reseller, I would like to see the price come down a little bit so I can compete better against other firewalls because we do that all the time."
  • "It's not too expensive."
  • "It is an expensive solution and I would like to see a drop in price."
  • "If you want to have all of the good features then you have to pay extra for licensing."
  • "The pricing has improved with the newer generation of their Firewalls, but the price could always be lower."
  • "The pricing could be lower."
  • "Palo Alto Networks Threat Prevention could improve by having consistent pricing at system levels."
  • "The cost involves the price of the hardware, which is expensive. However, most of the Palo Alto solutions are expensive."
  • More Palo Alto Networks Advanced Threat Prevention Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
    765,234 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:The product's initial setup phase was easy.
    Top Answer:My company does not use the URL filtering capabilities offered by Cisco NGIPS. My company prefers to use the URL filtering feature offered by a brand other than Cisco since other tools provide an… more »
    Top Answer:Arbor would be the best bid, apart from Arbor, Palo Alto and Fortinet have good solutions. As this is an ISP, I would prefer Arbor.
    Ranking
    Views
    3,001
    Comparisons
    1,836
    Reviews
    25
    Average Words per Review
    329
    Rating
    8.2
    Views
    4,372
    Comparisons
    3,306
    Reviews
    8
    Average Words per Review
    396
    Rating
    8.6
    Comparisons
    Also Known As
    Sourcefire NGIPS, Firepower NGIPS
    Learn More
    Overview

    Cisco NGIPS (Next-Generation IPS) is a highly effective intrusion detection and prevention solution. It is designed to secure a user’s system from end to end and ensure that users are equipped to handle even the most sophisticated threats by offering them a high level of network visibility, threat intelligence, and security automation. Organizations across a wide variety of industries trust IPS to help them prevent unwanted intrusions from harming their networks.

    Cisco NGIPS Benefits

    Some of the ways that organizations can benefit by choosing to deploy Cisco NGIPS include:

    • Increased visibility. Cisco NGIPS enables users to gain a real-time view of all of the events that are taking place in their network. It gathers data from all corners of the network and uses it to provide organizations with context that can aid them in both proactively keeping themselves safe from harm and reactively addressing potential issues.
    • Increased threat protection. NGIPS’ backbone is the core open Snort technology. This is the most widely used intrusion prevention software on the planet. It leverages this software to search for and detect vulnerabilities and anomalies that might otherwise go unnoticed. IPS is 99.7% effective at stopping threats.
    • Flexibility. NGIPS can be customized so as to fit an organization’s specific security needs. Users can set the system so that it recognizes and seeks out threats that the organization defines as being of the highest level of concern.

    Cisco NGIPS Features

    • Security automation. NGIPS offers users a variety of powerful automation tools that can be leveraged to maximize a network’s protection. Analytics tools automatically examine intrusions and correlate them with known vulnerabilities in a user’s network.
    • Integration suite. NGIPS enables users to integrate their security with many different cloud and application security services. Organizations can seamlessly combine the features that NGIPS offers with other platforms to bolster their effectiveness. This gives users the option to plug any feature hole that they might perceive.
    • URL filter. NGIPS comes with a built-in filter that allows businesses to specify sources that the system should flag and block. This prevents known threats from causing significant harm to an organization’s network.

    Reviews from Real Users

    Cisco NGIPS is a highly effective solution that stands out when compared to many of its competitors. Two major advantages are its easy-to-use GUI interface and the highly effective technical support that it offers users.

    Aankit G., a consultant at Pi DATACENTERS, said, “The FTD has a GUI interface, which is very easy to work around with all the configurations. It is a client-based software based on Java. Now we have the GUI web interface, and it's very interactive and easy to navigate.”

    Gebremichael T., a networking and security engineer at IE Network Solutions PLC, says, “The other aspect that I like is the technical support, who are highly capable. They were very good to us during the times that we used them and they tend to reply immediately to queries, even though you might not get the right engineer to help you right away. Tickets are usually assigned to junior staff at first but they do have escalation procedures, so if the support member can't solve the issue then they will immediately escalate it to higher management.”

    Palo Alto Networks Advanced Threat Prevention is a cloud-based security service that combines cutting-edge technologies, including machine learning, artificial intelligence, and expert human monitoring, to effectively thwart advanced threats like malware, zero-day attacks, and command-and-control threats. It offers inline protection, scrutinizing all network traffic irrespective of port, protocol, or encryption. An integral component of Palo Alto Networks' security platform, it enjoys widespread adoption across diverse organizations. With its robust security capabilities, it's an ideal choice for entities of all sizes, particularly those in high-risk sectors such as finance, healthcare, and government agencies, seeking to safeguard their networks from a broad spectrum of advanced threats.

    Sample Customers
    American Electric Power, Huntington Bank, Keycorp, Nationwide, Transunion, Marriott, Inova Health, Ford, Thomson Reuters, Dow Chemical, Equifax, Chevron, Walmart, Coca Cola
    University of Arkansas, JBG SMITH, SkiStar AB, TRI-AD, Temple University, Telkom Indonesia
    Top Industries
    REVIEWERS
    Financial Services Firm19%
    Computer Software Company14%
    Government11%
    Manufacturing Company8%
    VISITORS READING REVIEWS
    Computer Software Company19%
    University10%
    Government9%
    Financial Services Firm9%
    REVIEWERS
    Comms Service Provider27%
    Financial Services Firm27%
    Computer Software Company13%
    Aerospace/Defense Firm7%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm9%
    Manufacturing Company8%
    Government8%
    Company Size
    REVIEWERS
    Small Business38%
    Midsize Enterprise27%
    Large Enterprise35%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise17%
    Large Enterprise64%
    REVIEWERS
    Small Business23%
    Midsize Enterprise18%
    Large Enterprise59%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise18%
    Large Enterprise61%
    Buyer's Guide
    Cisco NGIPS vs. Palo Alto Networks Advanced Threat Prevention
    March 2024
    Find out what your peers are saying about Cisco NGIPS vs. Palo Alto Networks Advanced Threat Prevention and other solutions. Updated: March 2024.
    765,234 professionals have used our research since 2012.

    Cisco NGIPS is ranked 5th in Intrusion Detection and Prevention Software (IDPS) with 62 reviews while Palo Alto Networks Advanced Threat Prevention is ranked 6th in Intrusion Detection and Prevention Software (IDPS) with 24 reviews. Cisco NGIPS is rated 8.2, while Palo Alto Networks Advanced Threat Prevention is rated 8.6. The top reviewer of Cisco NGIPS writes "Very effective for malware and signature-based anomalies but stability needs improvement". On the other hand, the top reviewer of Palo Alto Networks Advanced Threat Prevention writes "A good amount of granularity and advanced URL filtering capabilities". Cisco NGIPS is most compared with Check Point IPS, Fortinet FortiGate IPS, Trend Micro TippingPoint Threat Protection System, Cisco Sourcefire SNORT and Trellix Intrusion Prevention System, whereas Palo Alto Networks Advanced Threat Prevention is most compared with Check Point IPS, Fortinet FortiGate IPS, Arista NDR, Forcepoint Next Generation Firewall and Cisco Secure Network Analytics. See our Cisco NGIPS vs. Palo Alto Networks Advanced Threat Prevention report.

    See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.

    We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.