We performed a comparison between Cisco Sourcefire SNORT and Lumu based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I like most of Cisco's features, like malware detection and URL filtering."
"The product is inexpensive compared to leading brands such as Palo Alto or Fortinet."
"The solution can be integrated with some network electors like Cisco Stealthwatch, Cisco ISE, and Active Directory to provide the client with authentication certificates."
"The most valuable feature of this solution is the filtering."
"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."
"In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."
"It has a huge rate of protection. It's has a low level of positives and a huge rate of threat protection. It's easy to deploy and easy to implement. It has an incredible price rate compared to similar solutions."
"It is quite an intelligent product."
"The context provided by the tool is very complete, it includes the miter matrix, playbooks, links, hashes, and much more."
"You can access external links, playbooks, MITRE Matrix, and a lot of information."
"Lumu protects against threats immediately and handles them in time."
"It's been helpful for overall extended network visibility."
"Most of it is automated, so I do not have to watch it to get alerts."
"The customization of the rules can be simplified."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
"Performance needs improvement."
"I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it."
"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."
"There are problems setting up VPNs for some regions."
"Integration with other components — even Cisco's own products — can be enhanced to improve administrative experience."
"While the alerts they offer are good, it could improve it in the sense that they should be more detailed to make the alerts more useful to us in general. Sometimes the solution will offer up false positives. Due to the fact that the alerts aren't detailed, we have to go dig around to see why is it being blocked. The solution would be infinitely better if there was just a bit more detail in the alert information and logging we receive."
"It would be good if we could access the physical logs."
"I am happy with the current features. However, one important one is to improve the reports."
"The reports need improvement."
"The integration with different vendors and endpoints could be improved."
"Nothing so far needs to be improved."
Cisco Sourcefire SNORT is ranked 12th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews while Lumu is ranked 14th in Intrusion Detection and Prevention Software (IDPS) with 5 reviews. Cisco Sourcefire SNORT is rated 7.6, while Lumu is rated 9.8. The top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". On the other hand, the top reviewer of Lumu writes "Protects against threats and handles it in time with moderate pricing". Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention and Darktrace, whereas Lumu is most compared with ExtraHop Reveal(x), Darktrace, Stellar Cyber Open XDR, LogRhythm NDR and Fortinet FortiGate IPS. See our Cisco Sourcefire SNORT vs. Lumu report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.