We just raised a $30M Series A: Read our story
2019-03-28T08:19:00Z

What is your primary use case for Cisco Firepower NGFW Firewall?

4

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

ITCS user
Guest
3838 Answers

author avatar
Top 20Reseller

It's deployed in multiple ways, depending on the use case. Generally speaking, we have them as edge firewalls, but I have some customers who use them as data center firewalls, and some customers who use them as VPN firewalls. And in some places, they're the east-west firewalls, as they would be called in a core network. We do have some that are for cloud firewalling, that we're using in Azure and AWS. But generally speaking, they're deployed as edge firewalls and on-prem.

2021-09-14T14:27:00Z
author avatar
Top 20Real User

We are using it for firewall and intrusion prevention. I have deployed it into different environments: retail, commercial, law, real estate, and the public sector. Retail is the biggest environment that I have deployed this firewall into, with 43 different sensors and a range up to 10 GbE throughput. I am using up to version 7.0 across the board as well as multiple models: 1000 Series or 2100 Series.

2021-08-25T17:02:00Z
author avatar
Top 5Real User

They were placed in a company on the perimeter near the ISP. There were two clusters. One cluster was at the front, and one cluster was near the data center to filter the traffic from the users to the data center and from the data center to the users and outside.

2021-08-24T04:48:00Z
author avatar
Real User

Telindus, our company, is an integrator. We sell Firepower and we do use it ourselves. I use all the different versions of the product. We either replace our customers' other brands of firewalls with Firepower, or we upgrade their old Cisco ASA Firewalls to the new Firepower firewalls. The type of device we advise them to install depends on the customer's requirements and the throughputs needed. Our primary use case for Firepower is for big networks.

2021-07-05T14:06:00Z
author avatar
Top 20Real User

We are currently using this solution as a VPN and an internet firewall in some locations. In our data center, we are still using FortiGate as an internet firewall but we are evaluating other options.

2021-06-27T09:39:30Z
author avatar
Top 20Real User

We are a large company in the country in which we operate. We are a government agency dealing with taxes and we provide services for all taxpayers within the country. We have services for internal users, as well as services for public users. The main reason we use these firewalls is to protect our environment and to provide our services efficiently so that we are up and running 24/7. Our solution is deployed in a private cloud. Everything is hosted in our environment and provided as cloud services. We are in the process of moving our infrastructure from the previous environment to the new environment where Cisco firewalls are installed. In terms of our security maturity as an organization, we are young. In fact, we are young as a country. We have been providing electronic services for more than 10 years for our clients. We have a huge number of clients, with over 120,000 users who subscribe to our system and who access our services on a daily basis or, at a minimum, three to four times per year. We use a few tools for security in terms of management, both internal and external, but we are mainly relying on Cisco. Our network is based on Cisco, and we also protect our mail system with Cisco. Previously, and in parallel, we used Sophos next-generation firewalls.

2021-04-13T13:39:00Z
author avatar
Top 5Real User

The primary use case is mainly around perimeter security at the HQ and the branch. This will include using the Next-Generation Intrusion Prevention System (NGIPS), using advanced malware protection for networks on the firewall, and remote access VPN as well as site-to-site VPN. I work for a Cisco partner and managed service provider. We have a number of customers. Typically, the standard setup that we have is a Firepower Management Center Virtual, running in VMware, with physical FTD appliances (as the firewalls) on-premises. We work with more mid-size organizations who typically have email security, web security, endpoint security, and perimeter security. In terms of products, that would be: * Cisco Umbrella * Cisco Cloud Email Security * Cisco Secure Endpoint * Firepower, for the perimeter. That would be a typical technology mix. Sometimes, some customers will consume something like Duo Security for multi-factor authentication. We are primarily running ASA Firewalls with the FTD image. We are also running some Firepower 1000 Series.

2021-02-22T20:01:00Z
author avatar
Top 5Real User

It is for defense, protecting workloads from a distributed type of an environment. On-premises, we are hosting several different distributed user session type environments. In our case, it is remote desktop services, which enable users to go out and browse the Internet, in some cases to do legitimate services, and in other cases, it is more of a personal browsing session. In this case, the primary purpose is to protect those user sessions when they are accessing the Internet. The secondary use case is to protect these services and applications from inbound threats, e.g., Internet scanning, Internet exploit attempts, any sort of attack, reconnaissance, or anything of that nature coming from the public Internet. Firepower is an add-on to Cisco ASAs that enables intrusion prevention detection and some additional advanced functionalities. We have both. We have two on-premise data centers where Firepower is deployed.

2021-02-09T01:25:00Z
author avatar
Top 5Real User

We use it to configure the perimeter firewalls. In FireSIGHT, we have two firewalls in a cluster with high ability, then we have five firewalls in Offices. We use those firewalls as a perimeter for Offices. We have all the devices in the Firepower Management Center system. We always work with Firepower devices in Firepower Management Center. We have offices around the world. We are in Europe, the USA, and South America.

2021-02-02T22:07:00Z
author avatar
Real User

We helped a customer to configure a new data center network. We provided the core firewalling. Between virtual routing instances, or virtual networks, we had two Firepower 2130s in HA. We did the routing and firewalling between the VRS and, in the same data center, we have an internet edge firewall also set in HA that provided the routing and firewalling to the internet and to Azure. In the same data center we had two ASAs for out-of-band management. If an error occurred in the data center, we could VPN into the ASA and troubleshoot the routing issues in the data center.

2021-02-01T19:29:00Z
author avatar
Top 20Real User

We use it for the actual firewall and also site-to-site VPN. Our company is always growing. Every day's a new day and there is always something new to learn. We are a mature organization, but we can never sit still. We have two company locations and we use Cisco Firepower as our main firewall at both locations. Overall, for security, we use about seven tools. Within our company, there are just two people that maintain this solution. Myself and the IT manager. I'm the network administrator.

2021-02-01T15:40:00Z
author avatar
Top 20MSP

I often work with financial sector companies such as banks as well as retail organizations.

2021-01-31T06:58:30Z
author avatar
Top 20MSP

We are using the solution for airports.

2021-01-30T11:43:23Z
author avatar
Top 5LeaderboardReal User

We use this solution for our firewall and intrusion prevention system.

2021-01-29T19:23:57Z
author avatar
Top 5LeaderboardReseller

We use the platform to provide secure perimeter internet access for customers and also to provide secure networks or secure SANs for customers. We have a global partnership with Cisco and I'm a re-sales and security manager of IT services.

2021-01-25T20:39:42Z
author avatar
Top 5LeaderboardReal User

This is a product that is used at the infrastructure level to protect the network from outside traffic.

2021-01-14T15:25:12Z
author avatar
Real User

We use the solution to monitor the connections as part of our parameter protection for our network. We restrict what kind of traffic comes in and out, we use it basically for traffic management.

2021-01-07T20:30:30Z
author avatar
Top 5LeaderboardReal User

Cisco Firepower NGFW Firewall has a lot of environment to use for your network to see what kind of critical threats are coming or going. I use it to find out what this threat is and then formulate a strategy for it. I use it a lot on my simple network to see how it works, inspect the network traffic, and so on.

2020-12-19T23:58:40Z
author avatar
Top 20Real User

The way we've installed Firepower was for the migration process. For example, there was a data center consolidation, and therefore we had to move everything. We offer data center products to our customers across VPN funnels. We had to move away from older ASAs, so it's a lift and shift. We move older ASAs, which were dispersed in many sites, and we consolidated a couple of services in a single site. Firepower was left there in place. I came in and I took over the administration duties, and now I'm trying to put everything together in a way that it makes sense. With Firepower, they have better hardware. It's fitted for more throughput, more load. I'm trying to centralize service delivery on this high-availability pair and move all the remote access to Firepower. Then, it's all part of a transition process from a hybrid cloud to a full cloud deployment on a cloud provider. It's mostly just a necessary pain, until we move away from our on-prem deployments. Currently, I'm working with Azure, etc. and I try to look at the main design of the whole process, even though it's going to take two years. COVID has also made everything very, very slow for us as we try to move away from our initial plan.

2020-11-27T17:49:41Z
author avatar
Top 10MSP

I am a pre-sales engineer, and I do comparisons based on my customer's requests.

2020-11-25T18:49:00Z
author avatar
Consultant

We are a service provider and we work on a variety of different projects for many customers. We do not use this product ourselves. Rather, we deploy it for different customers. The primary use case is to protect the organization from unauthorized use.

2020-11-20T12:21:55Z
author avatar
Top 20Consultant

The solution is primarily used for protecting the environment, or the cloud environments for our customers.

2020-11-18T18:04:57Z
author avatar
Top 5LeaderboardReal User

We are a solution provider and Cisco NGFW is one of the products that we implement for our clients. My clients use it for internet access within the enterprise.

2020-11-12T17:12:29Z
author avatar
Top 20Real User

I use it to protect my DMZ from external attacks.

2020-11-12T15:44:25Z
author avatar
Top 5Real User

Our primary use case is as a data center firewall for internet firewalls and also as a VPN concentrator. I'm the chief technology officer and we are partners of Cisco.

2020-11-10T15:08:05Z
author avatar
Top 20Real User

My primary use case with Cisco Firepower NGFW is implementing, configuring, maintaining, and troubleshooting lab and customer devices in both lab and production environments. Using best practices for configuration, as well as fine-tuning intrusion policies and utilizing as many of the features that the firewall has to offer, which are feasible in said environment. Overall, I am confident to say that I have worked with every flavor of Cisco Firepower NGFW, be it their older IPS-only sensors, ASA with Firepower services, as well as the FTD sensor itself.

2020-10-09T08:56:00Z
author avatar
Top 5Real User

I use Firepower for all kind of customers; healthcare, government, banks etc. All all of them have different use cases and requirements. In most cases, I would mostly end up with enterprises or government organizations. If you are already have all Cisco gears, I would suggest to consider it as it will allow you to have a more integrated approach toward other network components.

2020-05-25T08:21:00Z
author avatar
Top 20Real User

I protect my two servers with the help of Firepower. Both servers are connected to the Firepower and I monitor the traffic to both servers with it. I block traffic from all countries except the USA, for security purposes.

2020-05-18T07:50:00Z
author avatar
Top 5Real User

We have an offshore development center with around 1,400 users (in one location) where we have deployed this firewall. The maturity of our organization’s security implementation is a four out of five (with five being high). We do have NOC and SOC environments along with in-built access to our systems. We use Acunetix as one of our major tools. We do have some open source. There are a couple of networks where we are using the Tenable tool. We have implemented an SIEM along with a Kaspersky at the cloud level. In the Cisco firewall, we installed Kaspersky in the firewall logs which upload to Kaspersky for us to review back.

2020-05-17T07:17:00Z
author avatar
Top 5Real User

Our primary use case for this solution is to improve network security. The maturity of our company's security implementation depends on our clients. Some of our clients really need a lot of work but some of them are advantaged. We are major implementors for Cisco. We implement it for our clients and we also use it internally. Our security maturity is advanced. We have been in IT business for over 75 years. We have major netowrk firewall experts in the company, so we know what to do. Our company uses more than thirty security tools. Ideally, we would use an end to end unified tool. But network security is far from that so we need to use multiple tools.

2020-03-23T06:14:00Z
author avatar
Real User

These are our primary edge firewalls at two data centers.

2019-10-28T06:34:00Z
author avatar
Real User

Currently, we have 16 remote sites. Some of them are sales offices and some of them are industrial plants. And we have a centralized IT department here in Brazil. The business asked me to support those remote sites. We started using the Firepower Threat Defense, which is one of the versions of next-gen firewalls from Cisco, at some of the sites. We have them operating at five sites, and we are deploying at a sixth site, in Mexico, with the same architecture. That architecture has the firewall running on the site's router, and we manage them all from here in Brazil.

2019-10-24T04:52:00Z
author avatar
Real User

The primary use case of for Cisco firewalls is to segment our network. We're using them on the perimeter network for traffic filtering. Since deploying them, we have seen a maturing of the security in our organization. We're using both the FTD 2100 and 4100. We have about 40 sites that are using our approximately 80 FTDs. We have about 2,000 users.

2019-10-15T05:02:00Z
author avatar
Real User

Our primary use cases for FTD are IPS, intrusion detection, and to get visibility into the network and the traffic that is going on in some sites. We always have them in-line, meaning that they're between two networking connections, and we analyze the traffic for the purposes of internal detection. In production, from the FTD line, we mostly have 2110s and 2130s because we have a lot of small sites, and we are starting to put in some 4110s. We only have FirePOWER here, but we don't use them most of the time as next-gen firewalls but more as an IPS. Everything is on-premises. We don't use public clouds for security reasons.

2019-10-15T05:02:00Z
author avatar
Real User

We use them in multiple places on our network. We use them on the edge of our network, in more of the traditional sense for inbound and outbound filtering. We also use them as a center of our network between all of our users and servers, so that all user traffic going through our servers is IPS and IDS as well. We have multiple Cisco 5000 Series firewalls and we also have a 4110 Series firewall, all running the FireSIGHT threat detection image. We keep that up to date within three months. If a new release comes out within three months, we're updating. The software deployment is on-prem.

2019-09-27T04:38:00Z
author avatar
Real User

We are a reseller and system integrator, and this is one of the solutions that we provide for our end users. We have experience with many firewall products from different vendors. The specific use case depends on the customer and their environment. They design the firewalls, and we supply the appropriate equipment. The majority of deployments are on private networks.

2019-08-28T09:52:00Z
author avatar
Top 5LeaderboardReal User

Our primary use case is whatever is best for our customer. I'm the service provider. The customer's main purpose is to use the malware services protection and the firewall itself, as well as the application awareness feature.

2019-05-13T08:56:00Z
author avatar
Real User

Cisco has a new general firewall: the Firepower NGFW. If you take a look at the Cisco Firepower product line, they have three models available: * A low-scale model: the 2000 series * A high-end model: the 4000 series * The carrier-grade model: the 9000 series We have already used the 4000 and 2000 series over here. We've been using this solution in Bangladesh for some customers over the last eight months. We've been using FPR 2110, 2120, 2130, & 2140. We also employ the FPR 4130 and 4140. We have been using this equipment on our last few projects. We used it as a transfer and for firewalling. The most recent one we are using for firewall support as well.

2019-03-28T08:19:00Z
Learn what your peers think about Cisco Firepower NGFW Firewall. Get advice and tips from experienced pros sharing their opinions. Updated: November 2021.
552,305 professionals have used our research since 2012.