Cisco Umbrella vs Webroot DNS Protection vs Zscaler Internet Access comparison

The compared Cisco and OpenText solutions aren't in the same category. Cisco is ranked #1 in DS , with an average rating of 9.1, and holds a 22.2% mindshare in the category. OpenText is ranked #12 in DS , with an average rating of 8.5, and holds a 1.0% mindshare. Additionally, 97% of Cisco users are willing to recommend the solution, compared to 100% of OpenText users who would recommend it.

Cisco Umbrella

Read 113 Cisco Umbrella reviews

5,207 Views
3,418 Comparison Views

97% willing to recommend

Webroot DNS Protection

Read 5 Webroot DNS Protection reviews

280 Views
166 Comparison Views

100% willing to recommend

Zscaler Internet Access

Read 53 Zscaler Internet Access reviews

9,760 Views
6,535 Comparison Views

98% willing to recommend

Cisco Umbrella

Webroot DNS Protection

Zscaler Internet Access

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cisco Umbrella, Webroot DNS Protection, and Zscaler Internet Access based on real PeerSpot user reviews.

Find out what your peers are saying about Cisco, Infoblox, Palo Alto Networks and others in Domain Name System (DNS) Security.

To learn more, read our detailed Domain Name System (DNS) Security Report (Updated: May 2025).

Buyer's Guide

Domain Name System (DNS) Security

May 2025

Download the complete report

Helped 851,491 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Mindshare comparison

Domain Name System (DNS) Security

Secure Web Gateways (SWG)

Featured Reviews

Rohan Singh

Consultant at KRS Systems

Protects endpoints wherever they are, always pushing people to the right locations to avoid malicious intent

The most valuable thing is how easy it is to deploy. We did it with 9,000 users at my last job, and it took a week to get to all the endpoints. Doing that without having to physically touch all those endpoints was very simple. The single pane of glass management makes it very easy to manage your rollout. We get a lot of "single panes of glass" and, eventually, you need a pane of panes of glass. But it's always good to have a clear and graphical view, and Umbrella's is nice and easy to read. Definitely, of the panes of glass that we do have, it's one of the easiest to use. The single pane of glass is good to group users together and separate people out. Some people need different types of security. Some people are more vulnerable. Some have more highly valuable assets, like C-suite people. It's really good to be able to have end-users defined inside of that. You don't have to jump around. You don't have to figure out who's who. It's all done through one pane of glass. What most people don't realize is that it's running in the background, which is a really nice aspect when it comes to security. Often, when you deploy a security tool, it takes up CPU performance. Everything slows to a grind. But Umbrella is so simple and easy and it doesn't affect the end-user experience. It's the best of all worlds. It's nice when people realize that they're being protected when they go to the wrong site. I think people are happy that they're protected, but it's nice that they rarely notice it. It's generally easy to maintain network connectivity, but with Umbrella, the nice part is that whichever connectivity you're on, you're always secure. With Umbrella, as long as you're online, you're going to be protected.

Read full review

James Selby

Manager Security Division at Virtual-IT

Offers reasonable pricing and solid scalability in the enterprise context

In my limited experience with Webroot, it has shown good scalability, particularly in the enterprise context. When it comes to Webroot DNS, I find it to be a nice solution but prefer a more comprehensive approach. I lean towards XDR vendors that can integrate DNS protection into a unified dashboard, especially as traditional anti-malware solutions like Webroot face challenges with evolving threat actors. Currently, I have around 60,000 Webroot users for anti-malware, but for DNS protection, it is a fraction—about one or two percent—since some clients opt for other solutions. Traditional anti-malware technology is becoming less effective against sophisticated threats.

Read full review

ShanavasVK

Consultant at Essentra PIC

Helps maintain a consistent posture of internet security while getting rid of VPN and hovering into zero trust

There could be a better way for the tool to categorize the traffic. For example, the tool does exceptions and everything overall. If I want to give guest access or provide access to guest users or any other internet access and if it does not go through the SSL inspection because, in our company, we can't have the root certificate on a device that we don't manage, which can be called out as an exception or an exclusion, but that doesn't provide a proper reflection of the picture of what is happening in the environment. There are granularities bringing it down. The tool I used or still have is Zscaler Cloud Connector to protect the cloud environment, which can have a bit more user-friendly installation and setup, and it would help a lot. The deployment process of Zscaler Cloud Connector needs to be more user-friendly. Improvements are required in the exception category. For example, suppose I report on a monthly basis what the breaches and traffic violating the SSL inspection area are coming from. In that case, I may find that half of them may be coming through some guest network, meaning the tool doesn't differentiate between the guest or normal networks or the corporate networks. Having options to differentiate different networks would be ideal so that it can show a true picture of things to users, as half of the things in the tool are not in our control and are not of our concern.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is its ability to detect if a URL has malware or is vulnerable."

"Meraki features and cloud-based functionality are advanced and easy to manage centrally."

"The most valuable features are the protection against ransomware and phishing."

"The solution is very easy to manage. We found the initial setup, for example, to be quite simple."

"The weekly reportings are great. The investigation is super and the application management is equally great."

"Using this solution has meant that we've needed to make fewer firewall changes."

"Any time someone went off the network, the AnyConnect client had the Umbrella agent built in, and it would realize when their computer connected that they were not on the corporate network. It would monitor and they would have pretty close to the same rules that they had to follow when they were in the office, regarding what kind of website browsing they could do."

"Its simplicity is most valuable. I can install it and get it up and running, and it can be pervasive across my business within a business day. It is pretty simple and straightforward to install and configure. Its remit is reasonably clearly defined. When you look at solutions like Darktrace and Carbon Black, the mission objective isn't as clearly defined. Cisco Umbrella, Sophos Central, or some of the other solutions have a more standardized approach to antivirus, which includes enhanced response from the machine learning or deep learning perspective."

More Cisco Umbrella pros

"Webroot excels in DNS protection, particularly in blocking malicious sites and phishing."

"DNS protection is valuable."

"When compared with other products, Webroot DNS Protection is the best to secure the end users."

"The installation is easy and doesn't take long. The program speedy and doesn't crash. It doesn't consume computer hardware or software."

"Almost everyone who uses it is happy about the product. I don't get any types of complaints from my clients."

"The product's initial setup phase is a bit easy, as one doesn't need high technical expertise."

"One on the main benefits is protection all time from anywhere."

"The solution replaces multiple vendor technologies with one which makes it worth the cost."

"The solution is scalable and stable."

"We use ZIA for outbound internet connectivity. The internet traffic of on-prem users will be directed to the ZIA cloud for security checks and web filtering."

"I like the granularity of the control of all the traffic, including SSL inspection. I also like the fact that the user interface is intuitive. The latencies with Zscaler are minimal compared to those of any other competitor. Other competitors do not really have the global scale that Zscaler has and cannot promise low latencies."

"The cloud proxy and integration are some of the key features. Since there is cloud waste, we can quickly provision it and start working on the configuration. On top of that, they have added a few more features. They have integrated CASB, and file sandboxing is part of it."

"The solution's most valuable features are its reliability and availability, measured by the number of ports it offers."

More Zscaler Internet Access pros

Cons

"There is room for improvement in the dashboard. It could stand to be a bit more detailed. I would also like to be able to customize the dashboard to focus more on what is important for my company."

"The pricing changes too fast. We get the license and we need to relicense it because they already made changes to it. We always need to be on top of the licenses because they're always changing."

"Having ready-to-go templates with best practices is definitely something that would be an improvement. Deployment, from day one, is something that definitely needs to be improved for Cisco customers."

"Data reporting could be improved."

"One of the issues with Umbrella is as you get into endpoint detection and response, such as EDR point solutions, some of them will not integrate well with Umbrella. Sometimes when you want to use technology, such as Always On VPN, it will not work. There are some looming issues as one type of technology starts to crossover with Umbrella. That is the challenge and Umbrella should find a way to be more compatible with some of the endpoint response solutions that are coming out on the market."

"Some countries don't have a DNS server leading to a domain resolution IP, not at a local level."

"Looking at the full umbrella suite in the light of SASE, Secure Access Service Edge, they are clearly lacking in the inline CASB."

"Cisco Umbrella is difficult to manage and needs to include a dashboard. It needs to improve pricing as well."

More Cisco Umbrella cons

"The reporting system needs improvement. They should make is that we can customize it so we can add, remove or change its interface but they use a template. The reports cannot be changed."

"It addresses a specific risk related to malicious sites but doesn't cover broader security aspects."

"It needs to be more secure for production environments."

"Reporting is not done in real-time. Rather, it is done in 15-minute intervales. This is something that should be configurable by the admin."

"The price could be improved."

"The deployment process of Zscaler Cloud Connector needs to be more user-friendly."

"Sometimes it's not easy to use during large deployments of workstations."

"Sometimes, support isn't available."

"Zscaler should provide adjacent services, which would be complementary to their current offering that could to be more pragmatic for a customer. For example, if you take Akamai, you get multiple sets of services, all depending on the customer and the strategy and the complexity and the problems. In some areas, they are more varied in terms of coverage."

"The price of the solution could be improved."

"If they can also integrate with the multi-factor authentication to prompt users to do another, second-factor authentication, that would be ideal."

"We'd like to have more plugins and integration."

"They should enhance the audit reporting feature."

More Zscaler Internet Access cons

Pricing and Cost Advice

"We have a security Enterprise Agreement with Cisco, so the pricing is good."

"The solution’s pricing is reasonable."

"Our costs were negotiated, and they are okay."

"Cisco has a model called ELA. With ELA, if you buy the solution you will have the complete security portfolio and you can pay it yearly or after three years, it depends on the contract."

"There is a one-time cost of approximately $800 USD per user, and then a yearly support fee of about $50 per user."

"When talking about Cisco solutions in general there pricing model is horrible. For example, you can sell a Meraki-based solution, but if the customer starts shopping around, someone is going to have access to the pricing at a level that you cannot compete because they do not have uniform pricing. Not everybody gets fair pricing. Unless you are one of the real major corporations selling the solution your ability to compete is impossible. Cisco will acknowledge the situation and assure you next time it will be in your favor but it never becomes favorable for you. Cisco is not very good in this regard. However, Umbrella is good."

"It needs a better price point."

"Cisco Umbrella is expensive and could be cheaper."

More Cisco Umbrella pricing and cost advice

Information not available

"If we need any extra features, the price will increase."

"Our monthly fee is around R3000."

"It is a few pounds per user per month."

"We pay around 6,500 INR per user per year, which is very expensive. I would rate Zscaler's pricing one out of five."

"The price is competitive. It's not cheap and it's not expensive."

"Zscaler is transparent about its pricing model."

"Price-wise, the tool is reasonable compared to the other products in the market but it is not a very low-priced tool. The solution does provide value for money."

"The pricing is an issue. It is expensive compared to other firewalls on the market."

More Zscaler Internet Access pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Domain Name System (DNS) Security solutions are best for your needs.

See recommendations

851,491 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

23%

Computer Software Company

18%

Financial Services Firm

Manufacturing Company

Computer Software Company

31%

Comms Service Provider

11%

Wellness & Fitness Company

11%

Non Profit

Educational Organization

19%

Computer Software Company

14%

Financial Services Firm

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Which is the better security solution - Cisco Umbrella or Zscaler?

Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried. Zs...

See all answers

Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?

Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-nat...

See all answers

What do you like most about Cisco Umbrella?

Cisco Umbrella is easy to monitor, manage, and deploy.

See all answers

What do you like most about Webroot DNS Protection?

DNS protection is valuable.

See all answers

What is your experience regarding pricing and costs for Webroot DNS Protection?

I rate the pricing a five out of ten.

See all answers

What needs improvement with Webroot DNS Protection?

The price could be improved.

See all answers

Which is better, Zscaler internet access or Netsckope CASB?

We researched Netskope but ultimately chose Zscaler. Netskope is a cloud access security broker that helps identify ...

See all answers

What do you like most about Zscaler Internet Access?

The solution has reduced cyberattacks.

See all answers

What is your experience regarding pricing and costs for Zscaler Internet Access?

Zscaler Internet Access is less expensive than competitors like Palo Alto, offering a premium service justified by se...

See all answers

Comparisons

Prisma Access by Palo Alto Networks vs Cisco Umbrella

Compared 9% of the time

Infoblox Advanced DNS Protection vs Cisco Umbrella

Compared 8% of the time

Cisco Secure Access vs Cisco Umbrella

Compared 6% of the time

Microsoft Defender for Cloud Apps vs Cisco Umbrella

Compared 6% of the time

Palo Alto Networks DNS Security vs Cisco Umbrella

Compared 5% of the time

More Cisco Umbrella Competitors

No data available

Netskope vs Zscaler Internet Access

Compared 14% of the time

Microsoft Defender for Cloud Apps vs Zscaler Internet Access

Compared 11% of the time

Prisma Access by Palo Alto Networks vs Zscaler Internet Access

Compared 8% of the time

FortiSASE vs Zscaler Internet Access

Compared 7% of the time

Forcepoint Secure Web Gateway vs Zscaler Internet Access

Compared 3% of the time

More Zscaler Internet Access Competitors

Product Reports

Buyer's Guide

Cisco Umbrella

May 2025

Download Cisco Umbrella product report

Buyer's Guide

Domain Name System (DNS) Security

May 2025

Download Webroot DNS Protection product report

Buyer's Guide

Zscaler Internet Access

March 2025

Download Zscaler Internet Access product report

Also Known As

OpenDNS

SecureAnywhere DNS Protection

ZIA

Overview

Cisco Umbrella delivers rapid DNS security with over 30,000 customers, providing outstanding threat protection and handling more than 600 billion requests daily. It's recognized for high threat efficacy in the SSE domain and integrates elements like SWG, ZTNA, CASB, and more.

Cisco Umbrella is renowned for its effective DNS-layer security against ransomware and phishing. It offers flexible content filtering and integrates seamlessly with existing networks while providing single-pane-of-glass management for centralized monitoring. Its robust threat intelligence and customizable policies are central to its appeal. Users highlight room for improvement in areas like WHOIS data inclusion, malware enhancement, and reporting analytics. Integration with other threat feeds and better client support are requested for more comprehensive coverage.

What are the key features of Cisco Umbrella?

DNS-Layer Security: Blocks malicious domains, preventing ransomware attacks.
Web Content Filtering: Allows users to manage lists for strict content control.
Seamless Integration: Blends with systems like Active Directory and Meraki.
Remote Protection: Keeps remote users safe across different locations.
Single-Pane Management: Facilitates effective monitoring and reporting.

What should users expect in reviews about Cisco Umbrella?

Threat Intelligence: Provides comprehensive malware and attack data.
Customizable Policies: Enables tailored security measures for users.
Integration Options: Works with diverse systems for holistic security.
Ease of Use: Offers a straightforward experience for administrators.
Remote Worker Security: Ensures protection outside traditional networks.

Industries implement Cisco Umbrella primarily for DNS-level security, web filtering, and protecting remote employees. It strengthens cybersecurity frameworks by blocking malware and avoiding access to harmful sites. The tool is widely integrated with Active Directory and Cisco Meraki, providing consistent internet security for employees.

Cisco

Webroot DNS Protection is a cloud-based security solution that protects businesses from online threats by blocking malicious websites and preventing data exfiltration.

It offers real-time protection against phishing attacks, malware, and ransomware, ensuring a safe browsing experience for users.

With its easy deployment and management, Webroot DNS Protection is an effective solution for businesses of all sizes.

OpenText

Zscaler Internet Access is a cloud-native security service edge (SSE) platform. Its main purpose is to provide AI-powered protection for all users, all applications, and all locations. The solution replaces other legacy network security solutions to stop advanced attacks and prevent data loss by using a comprehensive zero trust approach.

Zscaler Internet Access Features

Zscaler Internet Access has many valuable key features. Some of the most useful ones include:

Proxy (native SSL)
IPS and advanced protection
Cloud sandbox
DNS security
Cloud firewall
URL filtering
Bandwidth control
DNS filtering
Cloud DLP w/EDM and IDM
Cloud access security broker (CASB)
Cloud security posture management (CSPM)
CloudBrowser isolation
Cloud secure web gateway (SWG)
Zero trust network access (ZTNA)
Digital experience monitoring

Zscaler Internet Access Benefits

There are several benefits to implementing Zscaler Internet Access. Some of the biggest advantages the solution offers include:

Fast access with zero infrastructure: Zscaler Internet Access creates a fast, seamless user experience because of its direct-to-cloud architecture. With no infrastructure, Zscaler Internet Access helps you eliminate backhauling, which improves performance and simplifies network administration.

Threat intelligence: By using threat intelligence, Zscaler Internet Access can stop ransomware, zero-day malware, and advanced attacks via Inline inspection of all internet traffic, including SSL decryption, and a suite of AI-powered cloud security services.

Consistent security: With Zscaler Internet Access, your security policy goes everywhere your users go. When you move security to the cloud, all users, applications, devices, and locations remain protected and secure based on identity and context.

Hybrid workforce: Zscaler Internet Access enables secure access to all external and internal apps from anywhere, so remote work is not an issue. You can also enforce business policies that follow the user, making security identical regardless of location.

Reviews from Real Users

Below are some reviews and helpful feedback written by Zscaler Internet Access users.

A Service Manager at a construction company says, "There are a bunch of different capabilities that are valuable within the platform. We use quite a lot of them, but not everything. The ones that are most important to us are the URL Filtering and the application control. For our needs, the cloud-native proxy architecture is a very good solution. This architecture helps with cyber threats because we inspect most of the traffic and we can see that a lot of threats are stopped directly in the secure web gateway."

Owen N., Security Architect at Claro Enterprise Solutions, explains that the solution’s most valuable features include “The integration of the gateway that inspects all ports and protocols. So, there is threat prevention; The cloud sandbox; VNS security; Access control that will protect URL filtering and the cloud firewall; Data protection that will protect your gateway, like your CASB or your cloud DLP; The capabilities of this will point your traffic to Zscaler Cloud.”

An Architecture Senior Manager at an insurance company mentions, "The data loss prevention feature is the most valuable. It stops our users from inadvertently leaking our customers' data to the Internet or anywhere else it shouldn't go." He also adds, “The solution provides quick access to cloud services, securing our data and allowing us to inspect all our traffic.”

Zscaler

Sample Customers

Chart Industries, City of Aspen, Eastern Mountain Sports, FLEXcon, George Washington University, Jackson Municipal Airport Authority, Ohio Public Library Information Network, PTC, Richland Community College, Smart Motors, Tulane University, VeriClaim

1. Cisco 2. Dell 3. HP 4. IBM 5. Microsoft 6. Oracle 7. Symantec 8. McAfee 9. Trend Micro 10. Palo Alto Networks 11. Fortinet 12. Check Point Software Technologies 13. Juniper Networks 14. F5 Networks 15. Citrix Systems 16. VMware 17. FireEye 18. Splunk 19. Proofpoint 20. Carbon Black 21. Barracuda Networks 22. SonicWall 23. WatchGuard Technologies 24. Sophos 25. Kaspersky Lab 26. Bitdefender 27. Avast 28. AVG Technologies 29. ESET 30. Malwarebytes 31. Webroot (the company itself) 32. OpenDNS (now part of Cisco)

Ulster-Greene ARC, BanRegio, HDFC, Ralcorp Holdings Inc., British American Tobacco, Med America Billing Services Inc., Lanco Group, Aquafil, Telefonica, Swisscom, Brigade Group

Buyer's Guide

Domain Name System (DNS) Security

May 2025

Download Free Report

Find out what your peers are saying about Cisco, Infoblox, Palo Alto Networks and others in Domain Name System (DNS) Security. Updated: May 2025.

DOWNLOAD NOW

851,491 professionals have used our research since 2012.