We performed a comparison between Cisco Sourcefire SNORT and Trellix Intrusion Prevention System based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."
"It has a huge rate of protection. It's has a low level of positives and a huge rate of threat protection. It's easy to deploy and easy to implement. It has an incredible price rate compared to similar solutions."
"In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."
"Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly."
"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."
"The solution can be integrated with some network electors like Cisco Stealthwatch, Cisco ISE, and Active Directory to provide the client with authentication certificates."
"It is quite an intelligent product."
"Cisco technical support is unbeatable. It offers a premium service every time."
"There's a good dashboard you can drill down into. It helps you easily locate intrusions and the source of attacks."
"The threat intelligence updates are very accurate."
"The most valuable features in Trellix for me are the automated signature updates. It is a great and convenient feature."
"Great monitoring feature."
"It has a lot of functions, such as firewall. We are administrators, and we create some rules to protect our network. We also monitor the traffic in and out and have disk encryption on-premises. When we detect malware, we scan for the virus on the PC. We can then delete or block the malware."
"Overall the solution is very good. It offers great protection and gives us a good overview of what is on the network."
"The initial setup is straightforward."
"The most valuable features are the customization of the signature and the unlimited amount of signatures in IPS."
"If the price is brought down then everybody will be happy."
"With the next release, I would like to see some PBR, so that you can do the configuration with the features."
"The cloud can be improved."
"I would like to have analytics included in the suite."
"Performance needs improvement."
"To be frank, the product is not really stable, although they're working on that. Whenever I go to the technical community with an issue, they will usually say that it is not there yet, but the technical team are working on it. The issues are not insolvable. I think they should just keep working on the product to make sure that the product can become very stable. The technical support is great. I appreciate that. We have a lot of communities supporting Firepower now, so you can find help for whatever issue you have."
"There are problems setting up VPNs for some regions."
"I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it."
"The management console needs to be less complex and easier to navigate."
"We would like to have a simpler version. Some settings and functions on the McAfee console are complex and complicated. I want the management console to be simpler."
"Some of the documentation is not as straightforward as it could be."
"The Network Security Managers could be more stable, agile, and work faster. When it comes to instability, there is room for improvement."
"The technical support must be improved."
"The solution could improve some aspects of detection."
"There are limited resources for configuration guidance."
"Integration with Global Thereat Intelligence could be better. Also, I think management solutions are end of life now at McAfee. Network threat analyzer may be used for endpoint quarantines. Integration between these sides, as well as endpoint APO, will help you quarantine the risky endpoints."
More Trellix Intrusion Prevention System Pricing and Cost Advice →
Cisco Sourcefire SNORT is ranked 13th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews while Trellix Intrusion Prevention System is ranked 14th in Intrusion Detection and Prevention Software (IDPS) with 14 reviews. Cisco Sourcefire SNORT is rated 7.6, while Trellix Intrusion Prevention System is rated 8.4. The top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". On the other hand, the top reviewer of Trellix Intrusion Prevention System writes "Protects from attacks in real-time and provides accurate threat intelligence updates". Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention and Splunk User Behavior Analytics, whereas Trellix Intrusion Prevention System is most compared with Trend Micro TippingPoint Threat Protection System, Cisco NGIPS, Palo Alto Networks Advanced Threat Prevention, Check Point IPS and ExtraHop Reveal(x). See our Cisco Sourcefire SNORT vs. Trellix Intrusion Prevention System report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
