No more typing reviews! Try our Samantha, our new voice AI agent.
Cisco Sourcefire SNORT Logo

Cisco Sourcefire SNORT pros and cons

Vendor: Cisco
3.9 out of 5
Leave a review

Pros & Cons summary

Cisco Sourcefire SNORT delivers robust intrusion detection and prevention with high threat protection and low false positives. Despite its seamless integration with Cisco Stealthwatch and ISE, pricing and ease of rule customization need improvement, especially for budget-conscious buyers. Setting up VPNs and managing traffic blocking can be challenging. Cisco's technical support remains reliable, but integration enhancements could refine the administrative experience. Cost-effectiveness remains a strength against competitors like Palo Alto and Fortinet.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Cisco Sourcefire SNORT offers solid intrusion detection and prevention that scales easily in large environments.
Cisco's technical support is considered unbeatable, offering premium service.
The integration capabilities with Cisco Stealthwatch, Cisco ISE, and Active Directory enhance authentication and security features.
Its ability to automatically learn traffic patterns and adjust recommendations accordingly is highly valuable.
Cisco Sourcefire SNORT provides excellent threat detection and logging features, allowing for centralized storage and monitoring.

CONS

Integration with other components, including Cisco's products, can be improved to enhance the administrative experience.
Pricing needs improvement to accommodate low-budget clients, as budget constraints often deter purchases in the market.
Performance requires enhancement, and more detailed alerts would improve overall utility, reducing false positives and unnecessary investigations.
Implementation and initial setup can be difficult and time-consuming, especially during migrations in complex environments.
The approach to managing traffic blocking is considered confusing and impractical.
 

Cisco Sourcefire SNORT Pros review quotes

reviewer2772102 - PeerSpot reviewer
reviewer2772102
Cloud Architect at a consultancy with 1-10 employees
Oct 28, 2025
The logging is mainly what I consider one of the best features with Cisco Sourcefire SNORT; being able to log and store it in a file allows you to push it to a centralized repository.
Read full review
Jack Poon - PeerSpot reviewer
Jack Poon
Treasury Specialist at Dah Sing Bank
Jul 31, 2024
The tool's most valuable feature is threat detection, which is important because we have multiple layers not only in Cisco.
Read full review
Syed Shahnawaz Hussain - PeerSpot reviewer
Syed Shahnawaz Hussain
Sr. Executive Design Engineering Team at Wateen Telecom (pvt.)
Mar 20, 2024
The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.
Read full review
Buyer's Guide
Cisco Sourcefire SNORT
May 2026
Free Report: Cisco Sourcefire SNORT Reviews and More
Learn what your peers think about Cisco Sourcefire SNORT. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
893,221 professionals have used our research since 2012.
Sherwin De Claro - PeerSpot reviewer
Sherwin De Claro
Sr. Manager - Infosec at PAGCOR
Dec 7, 2022
The most valuable feature is the visibility that we have across the virtual environment.
Read full review
Osereme Osobase - PeerSpot reviewer
Osereme Osobase
Director at Baverianvine
Oct 11, 2022
The solution is stable.
Read full review
Netwrkengin67 - PeerSpot reviewer
Netwrkengin67
Network Engineer at Arab Islamic Bank
Mar 9, 2023
The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events.
Read full review
reviewer1420032 - PeerSpot reviewer
reviewer1420032
Lead Program Manager at a computer software company with 10,001+ employees
Mar 18, 2021
It is quite an intelligent product.
Read full review
Carlos Reis - PeerSpot reviewer
Carlos Reis
Network Security Engineer at a computer software company with 501-1,000 employees
Feb 27, 2024
It simplifies the configuration process by offering pre-defined base configurations, including security and connectivity settings.
Read full review
Art Astafiev - PeerSpot reviewer
Art Astafiev
Information Systems, Manager - Network at a government with 1,001-5,000 employees
Jan 1, 2023
Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly.
Read full review
reviewer1200357 - PeerSpot reviewer
reviewer1200357
Team Lead Manager with 501-1,000 employees
Jul 22, 2020
The solution is rather easy to use.
Read full review
Show 10 more reviews (out of 20)
 

Cisco Sourcefire SNORT Cons review quotes

reviewer2772102 - PeerSpot reviewer
reviewer2772102
Cloud Architect at a consultancy with 1-10 employees
Oct 28, 2025
Cisco Sourcefire SNORT can scale, but if you have too much, you could fill up your log files, which I consider when discussing scalability.
Read full review
Jack Poon - PeerSpot reviewer
Jack Poon
Treasury Specialist at Dah Sing Bank
Jul 31, 2024
I want to see a better dashboard for the product. The dashboard can be a bit modified or enhanced.
Read full review
Syed Shahnawaz Hussain - PeerSpot reviewer
Syed Shahnawaz Hussain
Sr. Executive Design Engineering Team at Wateen Telecom (pvt.)
Mar 20, 2024
The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment.
Read full review
Buyer's Guide
Cisco Sourcefire SNORT
May 2026
Free Report: Cisco Sourcefire SNORT Reviews and More
Learn what your peers think about Cisco Sourcefire SNORT. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
893,221 professionals have used our research since 2012.
Sherwin De Claro - PeerSpot reviewer
Sherwin De Claro
Sr. Manager - Infosec at PAGCOR
Dec 7, 2022
I would like to have analytics included in the suite.
Read full review
Osereme Osobase - PeerSpot reviewer
Osereme Osobase
Director at Baverianvine
Oct 11, 2022
The cloud can be improved.
Read full review
Netwrkengin67 - PeerSpot reviewer
Netwrkengin67
Network Engineer at Arab Islamic Bank
Mar 9, 2023
The main dashboard of Cisco Sourcefire SNORT could improve.
Read full review
reviewer1420032 - PeerSpot reviewer
reviewer1420032
Lead Program Manager at a computer software company with 10,001+ employees
Mar 18, 2021
The implementation could be a bit easier.
Read full review
Carlos Reis - PeerSpot reviewer
Carlos Reis
Network Security Engineer at a computer software company with 501-1,000 employees
Feb 27, 2024
The solution's approach to managing traffic blocking is confusing and impractical.
Read full review
Art Astafiev - PeerSpot reviewer
Art Astafiev
Information Systems, Manager - Network at a government with 1,001-5,000 employees
Jan 1, 2023
I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it.
Read full review
reviewer1200357 - PeerSpot reviewer
reviewer1200357
Team Lead Manager with 501-1,000 employees
Jul 22, 2020
While the alerts they offer are good, it could improve it in the sense that they should be more detailed to make the alerts more useful to us in general. Sometimes the solution will offer up false positives. Due to the fact that the alerts aren't detailed, we have to go dig around to see why is it being blocked. The solution would be infinitely better if there was just a bit more detail in the alert information and logging we receive.
Read full review
Show 10 more reviews (out of 20)

Product Categories

Product Categories
Intrusion Detection and Prevention Software (IDPS)

Popular Comparisons

Popular Comparisons
Fortinet FortiGate vs Cisco Sourcefire SNORT Logo
Fortinet FortiGate vs Cisco Sourcefire SNORT
Darktrace vs Cisco Sourcefire SNORT Logo
Darktrace vs Cisco Sourcefire SNORT
WatchGuard Firebox vs Cisco Sourcefire SNORT Logo
WatchGuard Firebox vs Cisco Sourcefire SNORT
Vectra AI vs Cisco Sourcefire SNORT Logo
Vectra AI vs Cisco Sourcefire SNORT
KerioControl vs Cisco Sourcefire SNORT Logo
KerioControl vs Cisco Sourcefire SNORT
Splunk User Behavior Analytics vs Cisco Sourcefire SNORT Logo
Splunk User Behavior Analytics vs Cisco Sourcefire SNORT
TrendAI Tipping Point vs Cisco Sourcefire SNORT Logo
TrendAI Tipping Point vs Cisco Sourcefire SNORT
ExtremeCloud IQ vs Cisco Sourcefire SNORT Logo
ExtremeCloud IQ vs Cisco Sourcefire SNORT
Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT Logo
Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT
Lumu vs Cisco Sourcefire SNORT Logo
Lumu vs Cisco Sourcefire SNORT
Check Point IPS vs Cisco Sourcefire SNORT Logo
Check Point IPS vs Cisco Sourcefire SNORT
Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT Logo
Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT
Trellix Intrusion Prevention System vs Cisco Sourcefire SNORT Logo
Trellix Intrusion Prevention System vs Cisco Sourcefire SNORT
Palo Alto Networks URL Filtering with PAN-DB vs Cisco Sourcefire SNORT Logo
Palo Alto Networks URL Filtering with PAN-DB vs Cisco Sourcefire SNORT
Fortra's Tripwire Enterprise vs Cisco Sourcefire SNORT Logo
Fortra's Tripwire Enterprise vs Cisco Sourcefire SNORT
See all alternatives

Product Categories

Product Categories
Intrusion Detection and Prevention Software (IDPS)

Popular Comparisons

Popular Comparisons
Fortinet FortiGate vs Cisco Sourcefire SNORT Logo
Fortinet FortiGate vs Cisco Sourcefire SNORT
Darktrace vs Cisco Sourcefire SNORT Logo
Darktrace vs Cisco Sourcefire SNORT
WatchGuard Firebox vs Cisco Sourcefire SNORT Logo
WatchGuard Firebox vs Cisco Sourcefire SNORT
Vectra AI vs Cisco Sourcefire SNORT Logo
Vectra AI vs Cisco Sourcefire SNORT
KerioControl vs Cisco Sourcefire SNORT Logo
KerioControl vs Cisco Sourcefire SNORT
Splunk User Behavior Analytics vs Cisco Sourcefire SNORT Logo
Splunk User Behavior Analytics vs Cisco Sourcefire SNORT
TrendAI Tipping Point vs Cisco Sourcefire SNORT Logo
TrendAI Tipping Point vs Cisco Sourcefire SNORT
ExtremeCloud IQ vs Cisco Sourcefire SNORT Logo
ExtremeCloud IQ vs Cisco Sourcefire SNORT
Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT Logo
Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT
Lumu vs Cisco Sourcefire SNORT Logo
Lumu vs Cisco Sourcefire SNORT
Check Point IPS vs Cisco Sourcefire SNORT Logo
Check Point IPS vs Cisco Sourcefire SNORT
Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT Logo
Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT
Trellix Intrusion Prevention System vs Cisco Sourcefire SNORT Logo
Trellix Intrusion Prevention System vs Cisco Sourcefire SNORT
Palo Alto Networks URL Filtering with PAN-DB vs Cisco Sourcefire SNORT Logo
Palo Alto Networks URL Filtering with PAN-DB vs Cisco Sourcefire SNORT
Fortra's Tripwire Enterprise vs Cisco Sourcefire SNORT Logo
Fortra's Tripwire Enterprise vs Cisco Sourcefire SNORT
See all alternatives
Related questions
  • 274
What are the threats associated with using ‘bogus’ cybersecurity tools?
  • 80
When evaluating Intrusion Detection, what aspect do you think is the most important to look for?
  • 200
What is your recommended cost-effective solution to detect and prevent APT attacks?
  • 49
What product do you recommend for a Campus IPS appliance implementation?
  • 182
How do you use the MITRE ATT&CK framework for improving enterprise security?
  • 270
What are the pros and cons of Darktrace vs CrowdStrike Falcon vs alternative EPP solutions?
  • 227
Which alternative solutions (other than Darktrace) do you recommend for an SMB?
  • 49
Which is the best intrusion detection and prevention solution?
  • 42
What is the best IDPS security tool and why?
  • 435
What is Cognitive Cybersecurity and what is it used for?