Cisco ASA Firewall Primary Use Case
Cisco Security Specialist at a tech services company with 10,001+ employees
The ASAs are a defense solution for companies. Many of them use the AnyConnect or the VPN licenses. They also use it to have a next-generation firewall and to be compliant with GDPR.
The majority of our usage of the solution is on-prem or hybrid. The culture, here in Portugal — even knowing that the future is full cloud, in my opinion — is to only be on the way to full cloud.
The first time I deployed Cisco ASA was for one of our clients. This client had a Palo Alto firewall and he wanted to migrate. He bought an ASA 2505, and he wanted us to come in and deploy it and, after that, to put in high-availability. We deployed it and the high-availability means that in case one fails, there is a second one to take over.
I have deployed Cisco ISE and, in the same environment, we had a Cisco FTD. In that environment, we were using the ASA for VPN, and we were using the FTD like an edge device. The ASA was deployed as VPN facilitator and for the wireless part too, so that the wireless network was under the ASA firewall.View full review »
We use the Cisco firewall for a number of things. We've got VPN tunnels, IPsec tunnels. We also use it for basic network layer filtering for our internal service, because we have a number of services that we offer out to clients, so that is the first device that they come across when they get into the network.
We have a network of six remote sites and we use proxy to go to the internet, and from the internet Cisco is the first line of defense. We have internet banking services that we offer to our clients, and that also makes use of the Cisco firewall as the first line of defense. And we've got a number of servers, a Hyper-V virtual environment, and we've got a disaster recovery site.
We had VAPT (vulnerability assessment and pen testing) done by external people to see our level of security from inside and outside and they managed to find some deficiencies inside. That's when they recommended that we should put in network access control. By integrating the ASA with Cisco ISE, that is what we are trying to achieve.
The whole idea is to make sure that any machines that are not on our domain should not be able to connect to the network. They should be blocked.
We also have Cisco switches deployed in our environment. All our active switches are Cisco. The ASA is integrated with them. This integration was done by a combination of our Cisco partner and in-house, because we did this at the time of setting up the infrastructure in 2016.
We primarily use it for our clients. We have one or more at each client site - or multiple locations if they have multiple locations.
Typically our clients are up to about 500 users. Most of them are smaller than that, but they go as large as 500. They're using the solution for the full next-gen firewall stacks - intrusion protection, URL filtering, advanced malware protection, or so-called AMP. Those are the three subscription services that Cisco sells. All of our clients have those subscription services enabled at their main location. Typically, they're just protecting users that are behind the firewall. We also use it for site-to-site VPN, and we use it for client-to-site VPN.View full review »
We are primarily using the solution for VLAN implementations and also for remote VPN capability - basically it's used for connecting to remote offices securely.View full review »
CSD Manager at BTC
We are a Cisco partner and we implement solutions for our customers who are generally in the banking sector and other private sectors.
They are using it as a data center firewall and to secure their internet connections. Our customers usually integrate the firewall with ISE, with a Firepower module for IPS, and there are some NAC solutions.View full review »
We were using ASA 5585 without firepower. We were using it just as a stateful firewall. We also had an IPS module on it. So, we were also using it for network segmentation and network address translations for hosting some of the services or giving access to the internet for our end users.View full review »
We are using it as a firewall for our data center and headquarter. We are also using it for DR. We are using Cisco ASA 5500 Series.View full review »
We primarily use the solution to operate that LAN environment over the internet and use the public and private networks separately. It's a very good firewall in terms of security, in terms of certain scenarios, and also from an ethical hacking point of view. Both are available in our environment. Both are doing great.View full review »
Cyber Security Consultant at a tech services company with 51-200 employees
Most of our use cases revolve around the basic firewall features. Our client is also leveraging on Anyconnect, which is serving the client-based VPN. Sometimes they will establish a VPN connection from one firewall with another. It's the type-for-type VPN. In terms of Cisco, typically, these are just some of the legacy features, that's what we use. In terms of a next-gen firewall, I feel that our customers would prefer to use other brands like Palo Alto, Check Point, and FortiGate.
Our clients who use this solution are typically small businesses. I think there's a Gartner chart that says that Palo Alto is actually the foreleader, followed by Check Point, then FortiGate. Cisco is not anywhere near. From a cybersecurity standpoint, they are quite weak.View full review »
Data Analyst at a hospitality company with 201-500 employees
We primarily use the solution in order to create access rules. That's what I use it for mostly. Sometimes, if I need to do some mapping, I may also leverage this product.View full review »
Tier 2 Network Engineer at a comms service provider with 1,001-5,000 employees
We are an ISP, so it's primarily for customer firewalls that we help customers setup and maintain. While we do use Cisco ASA in our company, we mostly configure it for customers. Our customers use it as a company firewall and AnyConnect VPN solution.View full review »
Our business requirements are URL filtering and threat protection. We're using the Cisco 5525 and 5510 series. We have eight to 10 firewalls.
Our company is looking for vendors who can protect from the current, advanced technologies. We are looking for any technology that protects from the most threats, and that covers things like DDoS protection, spyware, and SSL.View full review »
I have used the Cisco ASA 5585-X Series hardware. The software was probably version 9. We implemented a cluster of two firewalls. In these firewalls, we had four virtual firewalls. One firewall was dedicated for Edge, near ISP, and one firewall was for the data center. One firewall was for the application dedicated to that company, and one firewall was dedicated only to that application.
We primarily use the solution for the various firewalls.View full review »
Network Specialist at a financial services firm with 501-1,000 employees
Some are being used as edge firewalls and others are for our server-farm/data center. So some are being used as transparent firewalls and others are used as a break between the LAN and WAN.
In addition to the firewalls, we have Mimecast for email security as we're using Office 365. We're also using IBM's QRadar for SIEM. For antivirus we're just using Microsoft Windows Defender. We also have an internet proxy for content and for that we're using NetScaler.View full review »
Technical Specialist, consultant at a computer software company with 10,001+ employees
We are an IT integrator. We include parts of the infrastructure as part of our services, which includes firewalls, routers, switches, and even some end-user devices. We are deploying Cisco, Palo Alto, and Aruba. We are a very big company, and we have probably about 300,000 employees all over the world.
We use this solution for security and for enabling site-to-site VPN. We have on-premises and cloud deployments, and we are using the latest version of this solution. It is 5500 or something like that.View full review »
In general, we support more public fiscal entities. Most of them are quite sizeable at 5,000-6,000 employees. We use it mostly for remote access.View full review »
We primarily use the solution as a firewall for our data centers. We have a medium-sized data center right now. It's about six or seven servers. We actually store the data for students and schools and need to protect it.
One of the things that we have solved the most with this solution is the P2P connection that we have with different clients. It gives us greater connection security with good management of the configured rules.
Likewise, it has made it easier for us to have this type of equipment under monitoring, and, since we have implemented them, we have not been presented with any performance problems in the equipment as they have not presented CPU or RAM saturation or that for some reason it fails without any cause. We all have them managed and monitored. We always receive an email notifying us if there's something that the equipment has detected as well.View full review »
Network Consulting Engineer at a comms service provider with 201-500 employees
The primary use case is to have full visibility over our Web & Application behavior on the local network and over the internet. On the other hand, reporting is one of the main needs so that we can monitor and evaluate our consumption and according to that, build up our policies and security.View full review »
We primarily use the solution for basic firewall configurations such as NAT, FORWARD PORT and Block TCP-UDP Port.
View full review »
We tend to use the solution as it's forced on us by corporate. Our company wants us to use it.View full review »
I am using Cisco ASA 5525 for netting, routing, and site-to-site VPN. We have two sites. I am using Cisco ASA Firewall on one site and Check Point Next-Generation Firewall on another site.
Network Security Engineer at a tech services company with 201-500 employees
I primarily use the solution for the IPsec only.View full review »
Our primary use case is for perimeter security.
We are using the enterprise version. Cisco has many versions. Maybe we are using the old version of ASA because it needs to be the freeware. In each freeware, there are different types of things. Maybe it is the standard version because the other version cost a lot. I need to combine it with another solution like an open source standard solution of the ASA firewall from Cisco.
Sr Network Administrator at Orient Petroleum Inc
We are primarily using the solution to protect our network.View full review »
We are using Cisco ASA Firewall 5525 for network security. We needed a network security solution that can take care of the network security and URL filtering. We also wanted to create site-to-site VPNs and have remote VPNs. For all these use cases, we got Cisco ASA, and we are pretty happy with it.View full review »
Network Administrator at Novabase
We currently have this solution hosted in a service provider's premises. They give us the link for our infrastructure and that is how we manage our equipment. We use the VPN feature to connect with our clients.View full review »
We use it for intrusion prevention and in our VPN that is connected to our head office. It provides protection and security and node clustering. It gives us all the security features that we need within our environment.View full review »
Network & Systems Administrator at T-Systems
We primarily use the solution for configuring the firewall.View full review »
Network Administrator at a manufacturing company with 10,001+ employees
We utilize the solution for our IT security.View full review »
CEO at a security firm with 1-10 employees
My primary use case is to have as VPN hardware. I have 2,000 providers. I am a reseller and as such, I am connected to telcos. I use ASA because our providers use Cisco in their core network as well.View full review »
We are using the ASA in our network to create a VPN between six places. We also use it for servers and data synchronization.View full review »
Information Security Manager at a financial services firm with 501-1,000 employees
We are using this product to filter network traffic.View full review »
Lead Network Engineer at a tech services company with 51-200 employees
We mostly use it for remote access. We also use this firewall between different segments of our enterprise network.
We have legacy models of this solution. We are using models 5510 and 5520.View full review »
Network Security Engineer at a tech services company with 51-200 employees
I use it for VPNs, remote-access VPNs, environment issues, and failover issues. I also use the
content mode, NAT, and PAT in this firewall. We always use ASA for VPN sites and firewall sites. We use the edge for internet access for data center servers or company customers' internet access.
We primarily provide implementation and maintenance services to our clients.View full review »
Principal Network Engineer at a manufacturing company with 501-1,000 employees
I am a consultant and when clients ask for white papers or studies, I do the research. At that point, they do whatever change processes they have; I give them all of the numbers and other relevant data, but that's the extent of what we do in my organization.
They are just using it as a stateful packet inspection firewall, traditional firewalling.View full review »
Senior Information Security Analyst at a manufacturing company with 10,001+ employees
I am using this solution for monitoring incoming and outgoing network traffic. This includes many types of traffic, such as VPN users.View full review »
We are using Cisco ASAv in our company and have deployed it for many of our customers. They are in both government and the private sector.
The deployment method varies depending on the customer's needs. For the government, it's through the government cloud while others are on-premises.View full review »
Network Security Engineer at a tech services company with 1,001-5,000 employees
We are using it to manage our environment.View full review »
Administrator at a university with 1,001-5,000 employees
I am doing research on the product and testing it for security.View full review »
ICT Systems Engineer at a insurance company with 11-50 employees
The number one use for this product is security.View full review »
I am using Cisco ASA as my firewall. I use it for security purposes to block access and for VPN. It is on the perimeter, so basically, it secures my network.View full review »
Gerente de Unidad at Redescomm, C.A.
We are a Cisco implementor in Venezuela.
Our primary use is to deal with incoming access. We open ports for web servers or special applications that our clients have inside their network. We also use it to provide site-to-site VPN access.View full review »
Consulting Engineer at IV4
Our company sells Cisco Firewalls and the ASA is one of the products that we implement for our clients. The primary use cases are internet access, AnyConnect, and VPN.View full review »
Lead System Engineer at a comms service provider with 201-500 employees
We are using this solution for the site-to-site VPN tunnels and VPN Connections.View full review »
IT Consultant at Hostlink IT Solutions
We provide IT solutions. We provide solutions to our customers based on their requirements. We support them from the beginning and do the installation and configuration in the head office and front office.
We installed Cisco ASA to support a customer in a WAN environment. They used it for site-to-site VPN and remote VPN. They used it for accessing remote office locations via the remote VPN feature. They had Cisco ASA 5500.View full review »
Sr. Network Engineer at a construction company with 10,001+ employees
We use Cisco ASAv as a firewall.View full review »
Group Information Technology Manager at a mining and metals company with 201-500 employees
I'm the group information technology manager and we are customers of Cisco.View full review »
Jr. Engineer at a computer software company with 5,001-10,000 employees
In our organization, we are using it as an internal firewall.View full review »
I use Cisco ASA Firewall at my company for network security.View full review »
System Engineer at a tech services company with 501-1,000 employees
We use Cisco ASA for traffic control.View full review »
IT Administration at a manufacturing company with 11-50 employees
It provides the firewall and security for our edge network.
We are using a really old ASA device that is at end-of-life, so we're replacing it.View full review »
Network Engineer at a pharma/biotech company with 1,001-5,000 employees
Our primary use case of Cisco ASA Firewall is to protect our environment. We are customers of Cisco and I'm a network engineer.View full review »
Consultor at a government with 201-500 employees
I am using the solution as a firewall.View full review »