We performed a comparison between Cisco Sourcefire SNORT and Trend Micro Deep Discovery based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."
"The solution is rather easy to use."
"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."
"The most valuable feature of this solution is the filtering."
"Solid intrusion detection and prevention that scales easily in very large environments."
"Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly."
"Cisco technical support is unbeatable. It offers a premium service every time."
"The solution can be integrated with some network electors like Cisco Stealthwatch, Cisco ISE, and Active Directory to provide the client with authentication certificates."
"Trend Micro Deep Discovery is a very specific product for threat intelligence with smart protection."
"The HTML file sandboxing is very good."
"Deep Discovery is scalable and compatible with other products. It's crucial to have that compatibility because it's an integral part of our security solution. It integrates smoothly. The interface is user-friendly, so administration is simple."
"The tool's stability and performance are good."
"I like the sales operations testing. and support."
"The most valuable feature of Trend Micro Deep Discovery is its complete end-to-end visibility of threats."
"The most valuable features are the protection and that it is fast."
"One of the most valuable features is the performance, since, so far, we have not faced any issues with Deep Discovery."
"To be frank, the product is not really stable, although they're working on that. Whenever I go to the technical community with an issue, they will usually say that it is not there yet, but the technical team are working on it. The issues are not insolvable. I think they should just keep working on the product to make sure that the product can become very stable. The technical support is great. I appreciate that. We have a lot of communities supporting Firepower now, so you can find help for whatever issue you have."
"I would like to have analytics included in the suite."
"The solution's approach to managing traffic blocking is confusing and impractical."
"With the next release, I would like to see some PBR, so that you can do the configuration with the features."
"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
"I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it."
"There are problems setting up VPNs for some regions."
"I would like the ability to analyze all files in our internal network, at the same time on different operating systems. Not just three of them, but as many as possible."
"Trend Micro Deep Discovery's technical support could be improved, and it could be made more active."
"The solution should support multiple platforms in Windows, Linux, and Mac. Customers can have different software types. The virtual environment should be able to install and analyze them. The tool also gives only a minimum level of extension support. It may not be able to extract files and give details about them. I would also like to see third-party product integration in the tool. The solution's current integration is only with Trend Micro products only."
"Trend Micro can improve the pricing in general. There is nothing else they can add or improve in the solution."
"The product's scalability feature needs to be improved, as it is an area in the product with certain shortcomings."
"The scalability is sometimes limited."
"This solution could be improved with faster technical support and cheaper licensing prices."
"The solution needs improvement in terms of pricing."
Cisco Sourcefire SNORT is ranked 13th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews while Trend Micro Deep Discovery is ranked 8th in Intrusion Detection and Prevention Software (IDPS) with 22 reviews. Cisco Sourcefire SNORT is rated 7.6, while Trend Micro Deep Discovery is rated 8.4. The top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". On the other hand, the top reviewer of Trend Micro Deep Discovery writes "Good threat detection capabilities and offers flexibility for hosting options". Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Check Point IPS, Cisco NGIPS, Palo Alto Networks Advanced Threat Prevention and Darktrace, whereas Trend Micro Deep Discovery is most compared with Darktrace, Trend Micro TippingPoint Threat Protection System, Arista NDR, Vectra AI and Palo Alto Networks Advanced Threat Prevention. See our Cisco Sourcefire SNORT vs. Trend Micro Deep Discovery report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.