![]() Some other vendors, such as Fortinet, already offer this type of capability. It should support real-time checks and real-time status of threats. pfSense should support real-time features for handling the latest viruses and threats. That's an area I've struggled with a little bit at the moment and it could be a bit easier to set up." "There is more demand for UTMs than a simple firewall. That service should be improved." "It could use a little bit of improvement in the reporting." "We are at the moment looking to use it as a proxy service so that we can limit what websites people go and view and that sort of thing. It's a good idea to continue to work on security features and capabilities in order to ensure they can keep clients safe." "ClamAV AntiVirus can cause some crashes. So, more documentation would be awesome." "The solution could always work at being more secure. You have to really spend a lot of time understanding them. "More documentation would be great, especially on new features because sometimes, when new features come out, you don't get to understand them right off the bat. More Cisco Firepower NGFW Firewall Cons → It would be good to see Cisco accelerate some of those configurations that you can only do in FlexConfig into the platform, so that they are there natively." It is recommended that you configure FlexConfig policies with Cisco TAC. There are still quite a few complex things, like policy-based routing, that have to be done in FlexConfig, and it doesn't always work perfectly. There is still some work that needs to be done around FlexConfig. It is a way of allowing you to be able to configure things that wouldn't otherwise be possible until the development team can add them into Firepower's native capability. It is better than it was in the past, but it could always use improvement." "FlexConfig is there as a bridge for features that are not yet natively integrated into Firepower. A typical deployment could take two to three minutes. ![]() So, I would like to see a lot of improvements here." "I would like it to have faster deployment times. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. The most impactful feature when you're using it is the user interface and the user experience." "I believe that the current feature set of the device is very good and the only thing that Cisco should work on is improving the user experience with the device." "Deploying configurations takes longer than it should." "Report generation is an area that should be improved." "I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. It wasn't a major challenge, but due to our requirements and network, it was not very straightforward but still easy enough." "It's mainly the UI and the management parts that need improvement. The ease of use for non-expert staff is very good." "We like the fact that the product is open-source. So, you can download plugins to protect your network." "At our peak time, we have reached more than 5,000 concurrent connections." "I'm the expert when it comes to Linux systems, however, with the pfSense, due to the web interface, the rest of the staff can actually make changes to it as required without me worrying about whether they've opened up ports incorrectly or not. There are more than one million printers that are in danger, and everybody knows that hackers are using them to enter the network. Did you forget a printer port? Most attacks at the moment are happening through printers, and they can tell you immediately that you forgot to close the port of the printer. You can also remote and monitor your network and see where the gap is. Sometimes, they are free of charge, and sometimes, you have to pay for them, but you can purchase or download very valuable plugins or add-ons to perform internal testing of your network and simulate a denial-of-service attack or whichever attack you want to simulate. We like the OpenVPN clients that can be deployed using pfSense very much." "The initial setup was simple and fast." "Technical support is perfect, excellent." "The plugins or add-ons are most valuable. "The most valuable features of pfSense are the reports, monitoring, filtration, and blocking incoming and outgoing traffic." "My technicians find the pfSense's web interface very useful.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |