We performed a comparison between Cisco Secure Network Analytics and Cisco Sourcefire SNORT based on real PeerSpot user reviews.
Find out in this report how the two Network Monitoring Software solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We can manage the entire system across the network and troubleshoot the pain points."
"Provides easily identifiable anomalies that you can't see with signature detections."
"It's easy to set up. The deployment takes one or two days. You need to collect the data from a device and then direct it to the portal."
"The solution allowed us to not only get gain insight but also start collaborating with other tools."
"The fact that it can identify down to an IP address of a system that is causing problems, or potentially causing problems, is very valuable."
"It has improved our internal knowledge of what's going on with the network, and that's helpful."
"I value the feature which enables me to detect devices talking to suspect IPs."
"The most valuable feature we got out of Stealthwatch is to be able to, while troubleshooting, go deep into one of our interfaces and verify what the bandwidth is and if there's any activity there that's causing problems."
"It is a good application, providing for real-time monitoring of the organization of data. It can basically identify points of peak traffic where possible issues are being caused."
"The whole solution is very good, and stable."
"The most valuable feature is the visibility that we have across the virtual environment."
"Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly."
"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."
"The product is inexpensive compared to leading brands such as Palo Alto or Fortinet."
"The URL filtering is very good and you can create a group for customized URLs."
"It is quite an intelligent product."
"In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."
"The Wi-Fi side needs improvement."
"The visualization could be improved, the GUI is not the best."
"The initial setup was straightforward but required a lot of data entry, to begin with building out the server types and network types."
"I would like to see interoperability with other Cisco products because we have ThousandEyes, Cisco Prime, and others. The interaction among these is important to us."
"We've had problems with element licensing costs so scalability is a concern."
"It would be better to let people know, up front, that is doesn't give you nice, clear information, as seen in the demos, without Cisco ISE installed."
"Stealthwatch needs improvement when it comes to speed."
"The version with the Dell server had iDRAC problems. Often, it reported iDRAC failure."
"Initially, I felt Cisco Secure Network Analytics lacked integration with Splunk."
"The pricing needs to be improved. We have lots of low-budget clients around us. Budget constraints are always a deterrent in our market."
"I would like to have analytics included in the suite."
"The main dashboard of Cisco Sourcefire SNORT could improve."
"With the next release, I would like to see some PBR, so that you can do the configuration with the features."
"While the alerts they offer are good, it could improve it in the sense that they should be more detailed to make the alerts more useful to us in general. Sometimes the solution will offer up false positives. Due to the fact that the alerts aren't detailed, we have to go dig around to see why is it being blocked. The solution would be infinitely better if there was just a bit more detail in the alert information and logging we receive."
"The customization of the rules can be simplified."
"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."
"If the price is brought down then everybody will be happy."
More Cisco Secure Network Analytics Pricing and Cost Advice →
Cisco Secure Network Analytics is ranked 24th in Network Monitoring Software with 57 reviews while Cisco Sourcefire SNORT is ranked 13th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews. Cisco Secure Network Analytics is rated 8.2, while Cisco Sourcefire SNORT is rated 7.6. The top reviewer of Cisco Secure Network Analytics writes "Increased the visibility of what is happening in our network". On the other hand, the top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR, whereas Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention and Palo Alto Networks URL Filtering with PAN-DB. See our Cisco Secure Network Analytics vs. Cisco Sourcefire SNORT report.
We monitor all Network Monitoring Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.