Cisco Sourcefire SNORT vs Forcepoint Next Generation Firewall comparison

Intrusion Detection and Prevention Software (IDPS)

Download the complete report

Helped 859,579 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Sourcefire SNORT

Average Rating

7.6

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (14th)

Forcepoint Next Generation ...

Average Rating

7.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

Firewalls (24th), Software Defined WAN (SD-WAN) Solutions (10th), WAN Edge (9th)

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Cisco Sourcefire SNORT is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 3.6%, down 3.8% compared to last year.
Forcepoint Next Generation Firewall, on the other hand, focuses on Firewalls, holds 0.5% mindshare, up 0.3% since last year.

Intrusion Detection and Prevention Software (IDPS)

Firewalls

Featured Reviews

Jack Poon

Treasury Specialist at Dah Sing Bank

Offers ease of setup and good documentation

When it comes to the product's deployment phase, we have a lot of vendor support. We have a lot of skills here in Hong Kong. Our company doesn't find any problem deploying Cisco solutions. The solution is deployed on an on-premises version. Speaking about the time required to deploy the solution, I would say that we have quite a lot of previous experience with deploying Cisco products. We have our company's standard design document, which we need to follow. We have a standard testing procedure for all those features. We just take out some appropriate parts and then compile them into one document for an individual project. It is actually quite easy for us to do the documentation, so it just takes one or two hours, and we can do the implementation because all the materials and testing procedures are already in our company standard documents, so it is not that difficult for us.

Read full review

OusaidAbaz

Security Network Architect at Inmac

Provides decent protection for the LAN but complicated interface

We had some licensing issues with its web filtering capabilities. That's why we migrated our web filtering to Cisco Umbrella. Moreover, the interface is complicated. It's difficult to locate all the necessary menus and functions. For example, one of the many issues is with SSH. Even now, we haven't successfully opened the port to connect using SSH mode when we want to change the configuration. It's like a black box—not very open to changes and customization. It's simply not easy to configure. There are other problems, too. For example regarding Forcepoint's Websense component. We had a lot of problems managing the web settings within Websense. That's why we migrated to Cisco Umbrella for cloud-based web filtering. It's not that Forcepoint is inherently bad. The issue is that it's not user-friendly. It is not easy to use. The developers need to redesign the interface (GUI) for better management. It is very difficult to manage. For example, simple actions require too many clicks compared to FortiGate or Palo Alto. That's the main problem.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The whole solution is very good, and stable."

"The solution is rather easy to use."

"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."

"Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly."

"I like most of Cisco's features, like malware detection and URL filtering."

"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."

"The URL filtering is very good and you can create a group for customized URLs."

"Cisco technical support is unbeatable. It offers a premium service every time."

More Cisco Sourcefire SNORT pros

"With Forcepoint, this process is simplified compared to others like Fortinet."

"One of the most valuable features is having the ability to cluster multiple firewalls even if they are different versions."

"The blocking, based on the signal provided, is the solution's most valuable aspect."

"I found the initial setup process to be very simple and straightforward."

"It is a scalable solution."

"The most valuable feature is SD-WAN."

"The people we deal with is a local partner in Cambodia and we can get good support from them."

"I like the Firewall and the IPS."

More Forcepoint Next Generation Firewall pros

Cons

"The implementation could be a bit easier."

"If the price is brought down then everybody will be happy."

"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."

"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."

"To be frank, the product is not really stable, although they're working on that. Whenever I go to the technical community with an issue, they will usually say that it is not there yet, but the technical team are working on it. The issues are not insolvable. I think they should just keep working on the product to make sure that the product can become very stable. The technical support is great. I appreciate that. We have a lot of communities supporting Firepower now, so you can find help for whatever issue you have."

"The cloud can be improved."

"Integration with other components — even Cisco's own products — can be enhanced to improve administrative experience."

"There are problems setting up VPNs for some regions."

More Cisco Sourcefire SNORT cons

"Management could be better. They can improve the management. I think all our customers can't accept firewalls that have standalone management. So, they prefer Fortinet or Palo Alto. But overall, inspection and other features are working fine."

"They should have a GUI on the product itself, not a separate management tool to be used on the management server or on a server to be used to manage the file. It should be all in one device. The device should be controlled through its own GUI. They also have to improve the learning center and the documents as the documents don't really help."

"They should provide more details on potential cyber threats."

"It is really hard to work with their customer support. For example, unlike Fortinet where you can escalate an issue and quickly get responses from the development team, Forcepoint's process seems slow and challenging."

"My experience with this Forcepoint Next Generation Firewall wasn't very pleasant due to its complexity. For example, the firewall loses some features when working in a cluster, which is a huge challenge. It caused me several weeks to solve an issue to make the VPN work, even after opening several cases with support. Also, the debug, which should provide essential knowledge about everything going on, the flow of traffic, and how the engine works, wasn't very informative in identifying the issue."

"The interface is complicated. It's difficult to locate all the necessary menus and functions."

"It's a complicated firewall. Until you come to know the firewall inducers, most people don't like the firewall because the components for the firewall are a little bit complex. User-friendliness is a little bit tough. It needs to be user-friendly when creating policies, and pushing policies. Committing takes more time compared to Palo Alto."

"The initial setup of the Forcepoint Next Generation Firewall has areas that are difficult."

More Forcepoint Next Generation Firewall cons

Pricing and Cost Advice

"Licensing for this solution is paid on a yearly basis."

"The cost is per port and can be expensive but it does include training and support for three years."

"We have a three-year license for this solution."

"If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five."

"I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."

"The cost is fair, but it could be improved."

"The solution is expensive."

"Everything in Forcepoint comes with an individual license, which is kind of a problem. In our last meeting, they said that it may change at the beginning of 2021, and they will try to merge some licenses together. Customers will get more features than what they got previously. We will wait and see."

"We have found the price could be reduced. It is a little expensive."

"It requires a yearly subscription."

"Forcepoint is very expensive but it's really secure."

"Forcepoint Next Generation Firewall is reasonable, it is priced the same as other firewalls."

"We would love to take other solution from Forcepoint, but unfortunately the price is too high. That's why we are not considering using Forcepoing for our proxy and DLB. They have a very good DLB, but the matter in the end is the cost."

More Forcepoint Next Generation Firewall pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

859,579 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Financial Services Firm

12%

University

Manufacturing Company

Computer Software Company

18%

Manufacturing Company

11%

Government

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Cisco Sourcefire SNORT?

The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.

What is your experience regarding pricing and costs for Cisco Sourcefire SNORT?

If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five. There are some other tools in the market that are more expensive than Cisco. There are no additional c...

What needs improvement with Cisco Sourcefire SNORT?

Cisco offers the Cisco DNA Center, which is a source that provides crucial information for us to monitor performance, and see whether there is any trouble. We are using Cisco DNA center, but again,...

What do you like most about Forcepoint Next Generation Firewall?

The product's initial setup phase is easy.

What is your experience regarding pricing and costs for Forcepoint Next Generation Firewall?

The licensing model is dependent on negotiation skills, but there is room for improvement. The costs can be high since additional features require separate licenses.

What needs improvement with Forcepoint Next Generation Firewall?

The licensing model should be more flexible. I recommend that additional features be included in a single license to avoid the need for extra licensing costs. Additionally, there are performance li...

Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT

Comparisons

Compared 20% of the time

Fortinet FortiGate IPS vs Cisco Sourcefire SNORT

Compared 20% of the time

Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT

Compared 16% of the time

Vectra AI vs Cisco Sourcefire SNORT

Compared 9% of the time

Trend Micro TippingPoint Threat Protection System vs Cisco Sourcefire SNORT

Compared 8% of the time

More Cisco Sourcefire SNORT Competitors

Fortinet FortiGate vs Forcepoint Next Generation Firewall

Compared 33% of the time

Palo Alto Networks Advanced Threat Prevention vs Forcepoint Next Generation Firewall

Compared 21% of the time

Check Point NGFW vs Forcepoint Next Generation Firewall

Compared 12% of the time

Sophos XG vs Forcepoint Next Generation Firewall

Compared 6% of the time

OPNsense vs Forcepoint Next Generation Firewall

Compared 4% of the time

More Forcepoint Next Generation Firewall Competitors

Product Reports

Cisco Sourcefire SNORT

Download Cisco Sourcefire SNORT product report

Forcepoint Next Generation Firewall

Download Forcepoint Next Generation Firewall product report

Forcepoint Next Generation Firewall report

Also Known As

Sourcefire SNORT

Forcepoint NGFW, Stonesoft Next Generation Firewall, McAfee Network Security Platform, Intel Security Network Security Platform

Overview

Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds.

Cisco

Forcepoint Next Generation Firewall is a versatile and comprehensive solution for perimeter security, offering features such as SD-WAN, IPS, VPN, and cloud or on-premises subscription keys. It is preferred by many clients over Cisco and is used for obligation redundancy, VPN access, and as the main point of security in infrastructure.

The product is praised for its simplicity, flexibility, complete feature set, scalability, and central management capabilities. Other valuable features include IPS, firewall, sandbox, application control, filtering, security management center, connectivity, and integration capabilities.

Forcepoint

Sample Customers

CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia

California Department of Corrections and Rehabilitation (CDCR)

Intrusion Detection and Prevention Software (IDPS)