• Home
  • Cisco Secure Network Analytics vs. Cisco Sourcefire SNORT

Cisco Secure Network Analytics vs Cisco Sourcefire SNORT comparison

Cancel
You must select at least 2 products to compare!
Juniper Logo

Juniper Mist Premium Analytics

Read 1 Juniper Mist Premium Analytics review
389 views|290 comparisons
100% willing to recommend
Cisco Logo

Cisco Secure Network Analytics

Read 57 Cisco Secure Network Analytics reviews
3,059 views|2,389 comparisons
87% willing to recommend
Cisco Logo

Cisco Sourcefire SNORT

Read 18 Cisco Sourcefire SNORT reviews
2,112 views|1,553 comparisons
94% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Cisco Secure Network Analytics vs. Cisco Sourcefire SNORT
January 2020
Executive Summary

We performed a comparison between Cisco Secure Network Analytics and Cisco Sourcefire SNORT based on real PeerSpot user reviews.

Find out in this report how the two Network Monitoring Software solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Cisco Secure Network Analytics vs. Cisco Sourcefire SNORT Report (Updated: January 2020).
Download the complete report
768,415 professionals have used our research since 2012.
Featured Review
Shiva_Prasad
A cloud solution for warehousing with a troubleshooting feature
We focus on management, while the other delves into understanding endpoint issues and their solutions. It provides an add-on value to the solution.... Read more →
Anonymous User
Increased the visibility of what is happening in our network
Cisco Secure Network Analytics has increased the visibility of what is happening in our network, and I think that's the most important reason to... Read more →
Carlos Reis
Offer a convenient and effective way to implement strong security measures
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"We can manage the entire system across the network and troubleshoot the pain points."

More Juniper Mist Premium Analytics Pros →

"Provides easily identifiable anomalies that you can't see with signature detections.""It's easy to set up. The deployment takes one or two days. You need to collect the data from a device and then direct it to the portal.""The solution allowed us to not only get gain insight but also start collaborating with other tools.""The fact that it can identify down to an IP address of a system that is causing problems, or potentially causing problems, is very valuable.""It has improved our internal knowledge of what's going on with the network, and that's helpful.""I value the feature which enables me to detect devices talking to suspect IPs.""The most valuable feature we got out of Stealthwatch is to be able to, while troubleshooting, go deep into one of our interfaces and verify what the bandwidth is and if there's any activity there that's causing problems.""It is a good application, providing for real-time monitoring of the organization of data. It can basically identify points of peak traffic where possible issues are being caused."

More Cisco Secure Network Analytics Pros →

"The whole solution is very good, and stable.""The most valuable feature is the visibility that we have across the virtual environment.""Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly.""The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events.""The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.""The URL filtering is very good and you can create a group for customized URLs.""It is quite an intelligent product.""In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."

More Cisco Sourcefire SNORT Pros →

Cons
"The Wi-Fi side needs improvement."

More Juniper Mist Premium Analytics Cons →

"The visualization could be improved, the GUI is not the best.""The initial setup was straightforward but required a lot of data entry, to begin with building out the server types and network types.""I would like to see interoperability with other Cisco products because we have ThousandEyes, Cisco Prime, and others. The interaction among these is important to us.""We've had problems with element licensing costs so scalability is a concern.""It would be better to let people know, up front, that is doesn't give you nice, clear information, as seen in the demos, without Cisco ISE installed.""Stealthwatch needs improvement when it comes to speed.""The version with the Dell server had iDRAC problems. Often, it reported iDRAC failure.""Initially, I felt Cisco Secure Network Analytics lacked integration with Splunk."

More Cisco Secure Network Analytics Cons →

"The pricing needs to be improved. We have lots of low-budget clients around us. Budget constraints are always a deterrent in our market.""I would like to have analytics included in the suite.""The main dashboard of Cisco Sourcefire SNORT could improve.""With the next release, I would like to see some PBR, so that you can do the configuration with the features.""While the alerts they offer are good, it could improve it in the sense that they should be more detailed to make the alerts more useful to us in general. Sometimes the solution will offer up false positives. Due to the fact that the alerts aren't detailed, we have to go dig around to see why is it being blocked. The solution would be infinitely better if there was just a bit more detail in the alert information and logging we receive.""The customization of the rules can be simplified.""The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment.""If the price is brought down then everybody will be happy."

More Cisco Sourcefire SNORT Cons →

Pricing and Cost Advice
Information Not Available
  • "It is worth the cost."
  • "Licensing is done by flows per second, not including outside>in traffic."
  • "Pricing is much higher compared to other solutions."
  • "​Licensing is done by flows per second, not including outside (in traffic)."
  • "Today, we are part of the big Cisco ELA, and it is a la carte. We can get orders for whatever we want. At the end of the day, we have to pay for it in one big expense, but that is fine. We are okay with that."
  • "NetFlow is very expensive."
  • "One of the things which bugs me about Lancope is the licensing. We understand how licensing works. Our problem is when we bought and purchased most of these Lancope devices, we did so with our sister company. Somewhere within the purchase and distribution, licensing got mixed up. That is all on Cisco, and it is their responsibility. They allotted some of our sister company's equipment to us, and some of our equipment to them. To date, they have never been able to fix it."
  • "The licensing costs are outrageous."

    • More Cisco Secure Network Analytics Pricing and Cost Advice →

  • "We have a three-year license for this solution."
  • "Licensing for this solution is paid on a yearly basis."
  • "I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."
  • "The cost is per port and can be expensive but it does include training and support for three years."

    • More Cisco Sourcefire SNORT Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Network Monitoring Software solutions are best for your needs.
    See Recommendations
    768,415 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Juniper Mist Premium Analytics?
    Top Answer:We can manage the entire system across the network and troubleshoot the pain points.
    What is your experience regarding pricing and costs for Juniper Mist Prem...
    Top Answer:The product is not expensive. I rate the product’s pricing a seven out of ten, where one is cheap and ten is expensive.
    What needs improvement with Juniper Mist Premium Analytics?
    Top Answer:The Wi-Fi side needs improvement. In most warehouse environments, there are shortfalls in such conditions. We often face… more »
    What do you like most about Cisco Stealthwatch?
    Top Answer:The most valuable feature of Cisco Secure Network Analytics is the Threat Intelligence integration.
    Read all 48 answers   →
    What is your experience regarding pricing and costs for Cisco Stealthwatch?
    Top Answer:I would rate Cisco SNA as a nine out of ten in terms of costliness.
    Read all 18 answers   →
    What needs improvement with Cisco Stealthwatch?
    Top Answer:Initially, I felt Cisco Secure Network Analytics lacked integration with Splunk. However, with Cisco's recent… more »
    Read all 43 answers   →
    What do you like most about Cisco Sourcefire SNORT?
    Top Answer:The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.
    Read all 17 answers   →
    What is your experience regarding pricing and costs for Cisco Sourcefire ...
    Top Answer:The product is inexpensive compared to leading brands such as Palo Alto or Fortinet. It is cheaper than Palo Alto and… more »
    Read all 5 answers   →
    What needs improvement with Cisco Sourcefire SNORT?
    Top Answer:The solution has some stability issues. Also, it's complicated compared to other products like FortiGate.
    Read all 17 answers   →
    Comparisons
    Also Known As
    Cisco Stealthwatch, Cisco Stealthwatch Enterprise, Lancope StealthWatch
    Sourcefire SNORT
    Learn More
    Juniper
    Cisco
    Video Not Available
    Cisco
    Overview

    Juniper Mist Premium Analytics is a comprehensive network analytics solution that provides organizations with valuable insights into their network performance and user experience. The primary use case of this product is to enable IT teams to proactively monitor, troubleshoot, and optimize their network infrastructure.

    The most valuable functionality of Juniper Mist Premium Analytics is its AI-driven insights and recommendations. Leveraging machine learning algorithms, it analyzes vast amounts of network data to identify anomalies, predict potential issues, and suggest remediation actions. This proactive approach helps organizations minimize network downtime, improve user experience, and optimize network performance.

    By providing real-time visibility into network performance, Juniper Mist Premium Analytics helps organizations quickly identify and resolve network issues. It offers detailed analytics on network traffic, application performance, and user behavior, allowing IT teams to pinpoint the root cause of problems and take immediate action. This not only reduces troubleshooting time but also enhances overall network reliability.

    Furthermore, Juniper Mist Premium Analytics enables organizations to optimize their network infrastructure. It provides insights into network capacity utilization, application usage patterns, and user behavior, allowing IT teams to make informed decisions about network design, resource allocation, and capacity planning. This helps organizations to ensure that their network is efficiently utilized and can support the growing demands of their users.

    Cisco Secure Network Analytics is a highly effective network traffic analysis (NTA) solution that enables users to find threats in their network traffic even if those threats are encrypted. It turns an organization’s network telemetry into a tool that creates a complete field of vision for the organization’s administrators. Users can find threats that may have infiltrated their systems and stop them before they can do irreparable harm.

    Cisco Secure Network Analytics Benefits

    A few ways that organizations can benefit by choosing to deploy Cisco Secure Network Analytics include:

    • Security scaling. Secure Network Analytics makes it easy for organizations to scale up their level of network protection to match the growth that their business is experiencing. It can be deployed on whatever type of system is necessary. Users will have their growth needs met at every stage of their business journey because the solution offers users the ability to use it on-premises or in the cloud and it can be consumed as a SaaS-based or license-based solution. Whenever any kind of device is added, Secure Network Analytics can automatically classify that device so that it is seamlessly integrated into its network protection system.
    • Detects threats as they appear. Users gain the ability to scan their network traffic for even the most advanced threats at all times. Secure Network Analytics easily identifies the early warning signs that are typically initiated before attacks are conducted by bad actors. Once these signs are found, users are warned so that they can take steps to prevent those threats from escalating. This also enables users to determine the source of the threat and whether it might have spread further than initially thought.
    • Eliminate blind spots. Organizations that use Secure Network Analytics can view their network traffic across both private networks and public cloud environments. The scanning power of the solution allows users to gain complete visibility with a fewer number of sensors than their competitors require to achieve a similar level of protection.

    Cisco Secure Network Analytics Features

    Some of the many features that Cisco Secure Network Analytics offers include:

    • Centralized security management. Secure Network Analytics’ Identity Services Engine feature enables users to control their network from a single graphical user interface. Administrators can simplify their jobs by controlling profiler, posture, guest, authentication, and authorization services from a single pane of glass.
    • Machine learning tools. Secure Network Analytics uses machine learning to generate alerts when malicious or suspicious activity is detected. It also analyzes the threat so that users gain insight into the nature of the dangers that confront them. Additionally, it examines the threats to determine whether they are actual threats or false alarms. This significantly reduces the number of false alarms that administrators have to spend time attempting to resolve.
    • Automation. Users can automate routine tasks that users would otherwise have to handle manually. This automation feature frees administrators and employees to handle other more critical tasks.

    Reviews from Real Users

    Cisco Secure Network Analytics is a solution that stands out even when compared to many other comparable products. Two major advantages that it offers are the way that it enables users to define the threshold at which the solution will issue a warning to administrators and the predefined alerts that it offers straight out of the box.

    Gerald J., the information technology operations supervisor at Aboitiz Equity Ventures, Inc., writes, “StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk.”

    A senior security engineer at a tech services company, says, “Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box.”

    Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds.

    Sample Customers
    Information Not Available
    Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF
    CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company18%
    Financial Services Firm12%
    Manufacturing Company9%
    Government8%
    REVIEWERS
    Healthcare Company23%
    Financial Services Firm16%
    Comms Service Provider9%
    Government7%
    VISITORS READING REVIEWS
    Computer Software Company27%
    Financial Services Firm11%
    Government9%
    Manufacturing Company5%
    REVIEWERS
    Computer Software Company27%
    Financial Services Firm18%
    Comms Service Provider18%
    Government9%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Government9%
    Financial Services Firm8%
    Comms Service Provider7%
    Company Size
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise15%
    Large Enterprise63%
    REVIEWERS
    Small Business15%
    Midsize Enterprise9%
    Large Enterprise76%
    VISITORS READING REVIEWS
    Small Business16%
    Midsize Enterprise10%
    Large Enterprise74%
    REVIEWERS
    Small Business22%
    Midsize Enterprise39%
    Large Enterprise39%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise12%
    Large Enterprise63%
    Buyer's Guide
    Cisco Secure Network Analytics vs. Cisco Sourcefire SNORT
    January 2020
    Free Report: Cisco Secure Network Analytics vs. Cisco Sourcefire SNORT
    Find out what your peers are saying about Cisco Secure Network Analytics vs. Cisco Sourcefire SNORT and other solutions. Updated: January 2020.
    DOWNLOAD NOW
    768,415 professionals have used our research since 2012.

    Cisco Secure Network Analytics is ranked 24th in Network Monitoring Software with 57 reviews while Cisco Sourcefire SNORT is ranked 13th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews. Cisco Secure Network Analytics is rated 8.2, while Cisco Sourcefire SNORT is rated 7.6. The top reviewer of Cisco Secure Network Analytics writes "Increased the visibility of what is happening in our network". On the other hand, the top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR, whereas Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention and Palo Alto Networks URL Filtering with PAN-DB. See our Cisco Secure Network Analytics vs. Cisco Sourcefire SNORT report.

    We monitor all Network Monitoring Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.