Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Cisco Secure Firewall ASA Virtual - PAYG with 30-Day Free Trial

Cisco Systems, Inc. | 9.22.1.1

Linux/Unix, Other 9.22.1.1 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

17 AWS reviews

    Ryan P.

We need the product to have HA pairs, so we can failover. It is relatively stable.

  • December 09, 2018
  • Review verified by AWS Marketplace

It's our firewall for our AWS VPC on the internal side that connects our VPC to headquarters.
I have been using the product for two years, but it has been installed in my company for four years.
What needs improvement?
Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version. We needed the ability to failover to one of the others to do maintenance, and this is a glaring issue. However, it is one of their cheaper products, so its understandable. It is just that we would hope by now, because it has been in use in a lot of different environments, for even moderately sized companies, the ability to have HA pairs would be extremely useful.
For how long have I used the solution?
One to three years.
What do I think about the stability of the solution?
It has been relatively stable, in the sense that it stays up. It doesn't die on us.
What do I think about the scalability of the solution?
Scalability has been a pain point for us.
It's great for what it does. Just make sure you know whatever environment you are using it in is not going to have to scale. Just use it for sandbox. As long as they stay competitive, use the ASA, but make sure you have a plan to grow out of it.
How is customer service and technical support?
We have definitely made some calls to Cisco regarding issues. While it is time consuming, they are thorough. Sometimes depending on the urgency, if there is a real P1 problem going on, it would be more helpful to go straight to the chase than to have to go through troubleshooting steps that are mandated. A lot of times, it is understandable why they're there, but I wish they had a different, expedited process, especially when they're dealing with our senior network engineer who has already ruled out some things. Cisco tends to make you go through the steps, which is part of any normal troubleshooting. However, when you're dealing with an outage, it can be very frustrating.
How was the initial setup?
The integration and configuration were pretty straightforward.
What's my experience with pricing, setup cost, and licensing?
We purchased the product through the AWS Marketplace. While I wasn't part of the buying process for Cisco ASA, I have used it to purchase AMIs.
The AWS Marketplace been great, but it could be a bit more user-friendly from an aesthetic perspective. It is fully functional and easy to figure out once you are in it. However, the layout of the AMIs has a lot missing, e.g., you have to side click to find the area for community AMIs. It would be awesome if AWS Marketplace would put up a wider range of AMIs.
With the Cisco ASA, you do get what you pay for. What would really be awesome is to see Cisco blow out a real cheap version where you can use the sandbox, but leave it step-wise and go to another product relatively easily, like getting you hooked on candy. The problem is that we already paid for the ASAs, and we grew quickly. Now, we have found ourselves in a situation where we have to wait for next year's budget and everyone is using it. We've gone from a sandbox model to full production. If Cisco was a bit more on the ball with this type of thing, such as pay a smaller lump sum, then scale as a pay by use or have an option to switch models. This would be good because then we could actually leverage this type of model.
Right now, we want to go to the rocket stuff, and our people who make the decisions financially will just have a heart attack. They will choke on it. However, if we can roll it into our AWS bill, and slowly creep it in, it is usually more palatable. As crazy as that sounds, even if its more expensive to do it this way.
Which other solutions did I evaluate?
Our network guy looked at alternatives and settled on Cisco ASA. It was the cheapest available option, virtualized, and he was familiar with Cisco, like many people are because it's a great company. It made the most sense at the time, because our VPC was a sandbox at first. Now, it has grown, which is where the pain point is: the scalability of the ASA. We have sort of wedged ourselves into a corner.

    Reading_is_fundamental

default password - read the directions

  • September 28, 2018
  • Review verified by AWS Marketplace

Folks the inquiries about the default password... Sigh- read the directions. https://www.cisco.com/c/en/us/td/docs/security/asa/asa99/asav/quick-start/asav-quick/asav-aws.html
Here is how to make it work... BEFORE you launch the AMI you must click advanced details and ADD a zero day configuration via text entry. Once you do connect via SSH and the username is admin. That said I was a victim too on the first try.

    medisappointed

Told it's free for 5 days

  • March 22, 2018
  • Review verified by AWS Marketplace

Yet I was charged $45 and no way to get refund. I contacted AWS and they said to contact Cisco. It states clearly no Cisco subscription charges, but yet.. still charged for cisco and the cost of the instance.

    Mohammad S.

Easy to Use

  • December 09, 2017
  • Review provided by G2

What do you like best about the product?
Very easily configurable. If licensed correctly, can do well in corporate environment.
What do you dislike about the product?
Cost of licensing is a bit on the extreme side
What problems is the product solving and how is that benefiting you?
Hybrid cloud services

    LameSauce

No information on default password?

  • October 18, 2016
  • Review verified by AWS Marketplace

Would love to have actually used this product properly but at the moment the usage details for the standard ASAv AMI on AWS say to use an ssh username of 'admin' but despite creating and using a key-pair any connection will prompt for a password ... which isn't listed anywhere in the doco or usage notes. Come on guys...

    PouchCotato

Really close to the physical rackmount version

  • October 13, 2016
  • Review verified by AWS Marketplace

Using these for work for most of the year now with a site-to-site tunnel from an asa-v in us-east-1 to an asa-v in us-west-2 as well as several incoming site-to-site tunnels and remote access VPN on both 9.5.2.204 and 9.5.2.207. Make sure you know what you're doing...you're comfortable with Cisco config via user data (and later ASDM if needed), you have compared what ASA-v doesn't provide, etc. otherwise you'll give undeserved 1-star reviews like those before. Only issue seen so far is Syslog can die with lots of traffic around a month in (204) or several months in (207) which requires a restart of the appliance. I'm hoping 9.6.2.1 fixes that. Other than that a ChangeLog for each AMI version would be nice to see.

    Baptiste Sadoul

Do you even test your AMI ?

  • March 09, 2016
  • Review verified by AWS Marketplace

After creating an instance, I am asked a password when I connect with admin user. How am I supposed to log into this new instance ?

    Cloud vLab Inc.

Nice to have

  • February 25, 2016
  • Review verified by AWS Marketplace

It's easy to manage because ASA OS is same as appliances.
I think ASAv is supported via a Smart License model.

    Azuretx

This product sucks

  • February 05, 2016
  • Review verified by AWS Marketplace

Cisco is not supporting this product
You need to buy a service contract with this appliance first there is no support from Cisco

showing 11 - 19