• Home
  • Netgate pfSense vs. Palo Alto Networks PA-Series

Netgate pfSense vs Palo Alto Networks PA-Series comparison

Cancel
You must select at least 2 products to compare!
Fortinet Logo
Fortinet FortiGate
Read 306 Fortinet FortiGate reviews
117,316 views|85,923 comparisons
90% willing to recommend
Netgate Logo
Netgate pfSense
Read 128 Netgate pfSense reviews
135,984 views|115,540 comparisons
92% willing to recommend
Palo Alto Networks Logo
Palo Alto Networks PA-Series
Read 28 Palo Alto Networks PA-Series reviews
306 views|251 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Netgate pfSense vs. Palo Alto Networks PA-Series
May 2024
Executive Summary

We performed a comparison between Netgate pfSense and Palo Alto Networks PA-Series based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Netgate pfSense vs. Palo Alto Networks PA-Series Report (Updated: May 2024).
Download the complete report
772,679 professionals have used our research since 2012.
Featured Review
Taimoor Khan
Helpful support, good UI, and provides excellent visibility
The solution has helped our clients secure their network efficiently. It offers security across multiple sites and helps monitor traffic effectively.
Glenn Ace Tenorio
User-friendly, easy to manage the firewall, rule-wise and interface-wise
Netgate pfSense has been utilized to create and manage VPNs within our organization. So we're running pfSense with VPN on one of our private cloud... Read more →
Serkan Tok
Easily adds new functions to existing hardware without any performance degradation and offers good network visibility...
We use it for threat prevention in our networks. Check permission, advanced URL filtering, and DNS security. There are different subscriptions, and... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The virtual firewall feature is the most valuable. We have around 1,500 firewalls. We did not buy individual hardware, and the virtual firewalls made sense because we don't have to keep on buying the hardware. FortiGate is easier to use as compared to Checkpoint devices. It is user friendly and has a good UI. You don't need much expertise to work on this firewall. You don't need to worry much about DCLA, commands, and things like that.""The response is very quick and they can visually resolve our problems in a short period.""Web filtering and two-factor authentication are great features.""This is a quality product with ok support, and it is better than the competition we've tried.""The web filtering feature and the intrusion protection system are the most valuable. It is a resilient appliance. I never had an issue with it in terms of any security breaches.""The features that I have found most valuable are the SD-WAN and their IP4 policy.""The threat prevention is the solution's most valuable aspect.""The signature database and zero-day detection are Fortinet FortiGate's most valuable features."

More Fortinet FortiGate Pros →

"My technicians find the pfSense's web interface very useful. It is very easy to use. pfSense is very reliable and stable. We like the OpenVPN clients that can be deployed using pfSense very much.""Centralized administration with multiple services, which allows for execution in several important functionalities of information security.""The solution is fairly scalable when it comes to integrating with other applications and data sets.""The plugins or add-ons are most valuable. Sometimes, they are free of charge, and sometimes, you have to pay for them, but you can purchase or download very valuable plugins or add-ons to perform internal testing of your network and simulate a denial-of-service attack or whichever attack you want to simulate. You can also remote and monitor your network and see where the gap is. Did you forget a printer port? Most attacks at the moment are happening through printers, and they can tell you immediately that you forgot to close the port of the printer. There are more than one million printers that are in danger, and everybody knows that hackers are using them to enter the network. So, you can download plugins to protect your network.""The firewall sensor is highly effective, and it's easy to deploy. You can deploy pfSense with limited hardware resources. It's not necessary to have an appliance with much RAM to make it work. It's cost-effective and performs well.""Easy to deploy and easy to use.""Super easy to manage. Anyone who has been working with firewalls can handle it.""The scalability is very good, where you can do an HA configuration and then bring in another box, if necessary."

More Netgate pfSense Pros →

"A valuable feature that we can consider is the deployment time, which is significantly reduced. It is almost 90% faster compared to other solutions.""The product's initial setup process was simple.""The documentation is great.""The solution is easy to manage.""A valuable feature that we can consider is the deployment time, which is significantly reduced, almost 90% faster compared to other solutions. This leads to quicker deployment and less downtime.""It is scalable. But that depends on what model you are using.""The solution is robust.""The reporting feature and application ID functionality within Palo Alto Networks PA-Series are incredibly valuable to us."

More Palo Alto Networks PA-Series Pros →

Cons
"They are doing good, but they can improve the distributor assignment. The availability of the product and the timeline of delivery are the main things. The distribution should be swift, and the distributor should not reach out to end customers directly. They should work as a distributor. There should also be one more local distributor. Currently, there is only one distributor in Pakistan, and the rest of them are in UAE. It is difficult to work with only one distributor. Sometimes, you don't get along with the same distributor, and that's why they should have one more distributor. Their licensing should also be improved. The activation or renewal of the product should be done from the date of renewal, not from the date on which the license expired.""I would like reporting to be improved and should offer a lot more tools to monitor the products.""The support from Fortinet FortiGate could improve. They are not easily accessible when we need them. They could improve their response time.""The scalability could be better.""For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial.""I'm not sure if it's something that they already have or are developing something, however, we need some dedicated features for container security.""The renewal price and the availability could be improved.""I think the only issue that needs improvement is the interface."

More Fortinet FortiGate Cons →

"Other solutions provide more scope for growth. For instance, we can have only 10 to 20 employees on VPN, but other solutions can support more users. We also have more capabilities to increase the performance of the solution.""In an upcoming release, the reporting could be more user-friendly. For example, the reporting in graphs and charts for the host can be cumbersome.""The configuration of the solution is a bit difficult.""The main problem with pfSense is that it lacks adequate ransomware protection.""The GUI. There are TONS of plugins for pfSense, as such, if a user wants to add quite a bit of functionality, the GUI will feel a little congested.""I'd like to find something in pfSense that is more specific to URL filtering. We have customers who would like to filter their web traffic. They would like to be able to say to their employees, "You can surf the web, but you cannot get access to Facebook or other social media," or "You can surf the web, but you're not allowed to gamble or watch porn on the web." My technicians say that doing this kind of stuff with pfSense nowadays is not easy. They can implement some filters using IP addresses but not by using the names of the domains and categories. So, we are not able to exclude some categories from the allowed traffic, such as porn, gambling, etc. To do that, we have to use another product and another web filter that uses DNS. I know that there are some third-party products that could work with pfSense, but I'd like the native pfSense solution to do that.""Also, the GUI is helpful, but it's not user-friendly. It's complicated. It should be more intuitive for the average user and have an excellent graphical view. Of course, the user will typically know about network administration, but it still should be easy to understand.""There are some bias issues and some intrusions in our network that have to be addressed. So, we're thinking of changing this firewall to something like a professional hardware-enabled firewall."

More Netgate pfSense Cons →

"The product must provide multiple threat detection features.""I encountered a slight issue with the application portal, which was not functioning correctly.""The solution’s pricing could be improved because it is an expensive solution.""The pricing of the solution needs improvement.""Pricing flexibility could be an aspect worth considering, as it has been a concern for some of our clients.""The interface is complex.""As we migrate fully into the cloud, additional features like capacity upgrading and improvements to hardware resources will be necessary, especially since our equipment consists of older-generation switches and routers.""Currently, they are not protected with any data security when they work from home or outside the network. They surf the Internet directly and should implement a proxy or firewall to monitor the data between the endpoint and the internet."

More Palo Alto Networks PA-Series Cons →

Pricing and Cost Advice
  • "Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."
  • "These boxes are not that expensive compared to what they can do, their functionality, and the reporting you receive. Fortinet licensing is straightforward and less confusing compared to Cisco."
  • "Go for long term pricing negotiated at the time of purchase."
  • "Work through partners for the best pricing."
  • "The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."
  • "Easy to understand licensing requirements."
  • "​We saved a bundle by not needing all the past appliances from an NGFW.​"
  • "The cost is too high... They have to focus on more features with less cost for the customer. If you see the market, where it's going, there are a lot of players offering more features for less cost."

    • More Fortinet FortiGate Pricing and Cost Advice →

  • "PFSENSE turns out to be very economical, the license is free and for little money you get very good support"
  • "Unless they have specific requirements that demand a particular device, I always suggest pfSense specifically because of the absence of pricing and licensing."
  • "Spend at least $300 or more on a good pfSense box. Use a hard drive, and not a USB flash drive for pfSense storage."
  • "It's open source (and free - as in beer and speech), but also has commercial support."
  • "If you need to buy hardware onto which to install PfSense, go with their boxes on their website, they are great."
  • "It works quite well for an open source product."
  • "From Sonic Wall, their price is much higher, because for every feature that you want to add, you have to pay. I can do the same things with pfSense, but everything is included in one price."
  • "There are a few features not included, and when you have to use those features, you have to pay for them."

    • More Netgate pfSense Pricing and Cost Advice →

  • "Palo Alto’s pricing is way higher than any other solution provider."
  • "While other firewalls may come with a higher cost, when you consider the cost in relation to the services and features that Palo Alto offers, it is clear that Palo Alto is delivering excellent value."
  • "Compared to other vendors, Palo Alto Networks PA-Series is expensive."
  • "Palo Alto is more expensive than FortiGate."
  • "The pricing is a bit on the higher side."
  • "The product is expensive."
  • "We have to pay a yearly licensing fee for the solution."
  • "The tool's pricing was reasonable when we bought the product. We pay around 60,000 dollars per year."

    • More Palo Alto Networks PA-Series Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    See Recommendations
    772,679 professionals have used our research since 2012.
    Questions from the Community
    Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Read all 3 answers   →
    What is the biggest difference between Sophos XG and FortiGate?
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Read all 13 answers   →
    What are the biggest technical differences between Sophos UTM and Fortine...
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Read all 11 answers   →
    Help me find the best open source router
    Top Answer:You don't really specify what type of router you are looking for but if you are talking about a gateway router I… more »
    How do I choose between Fortinet FortiGate and pfSense?
    Top Answer:Fortinet’s Fortigate is a firewall solution we use and are very much satisfied with its performance. We find Fortigate… more »
    Read all 5 answers   →
    What is the difference between PfSense and OPNsense?
    Top Answer:Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and… more »
    What do you like most about Palo Alto Networks PA-Series?
    Top Answer:The reporting feature and application ID functionality within Palo Alto Networks PA-Series are incredibly valuable to… more »
    Read all 13 answers   →
    What is your experience regarding pricing and costs for Palo Alto Network...
    Top Answer:The licensing is great. We renew it, and it works. The pricing is fair. I rate the pricing a five out of ten.
    Read all 11 answers   →
    What needs improvement with Palo Alto Networks PA-Series?
    Top Answer:I don't have any specific suggestions for improving the Palo Alto Networks PA-Series at the moment. I find it to be a… more »
    Read all 14 answers   →
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Learn More
    Fortinet
    Netgate
    Video Not Available
    Palo Alto Networks
    Video Not Available
    Overview

    Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

    pfSense is a powerful and reliable network security appliance primarily used for security purposes such as firewall and VPN or traffic shaping, network management, and web filtering. It is commonly used by small businesses and managed service providers to protect their customers' networks and enable remote access through VPNs. 

    The solution is praised for its stability, user-friendly interface, scalability potential, open-source nature, free cost, easy installation, firewall capabilities, security features, flexibility, and simplicity. Overall, pfSense is a cost-effective solution for enterprises that need a VPN for their employees.

    pfSense Key Features

    pfSense has many key features and capabilities, including:

    • Strength and accuracy: pfSense is able to always follow either default or custom rules, making it a stronger firewall than some of its competitors. It also filters traffic separately, whether it’s coming from your internal network of devices or the open internet, allowing you to set different rules and policies for each.

    • Flexibility: pfSense can work both as a basic firewall and as a complete security system because it gives you the flexibility to integrate additional features as code where necessary.

    • Open-source: Because it is open-source, not only is pfSense free to use, but community members can contribute to the code to make it a better software.

    • User-friendly: Usually firewall products are not user-friendly because they often include complex settings, options, and features that require fine-tuning. pfSense’s interface is simple, direct, and easy to use.

    • WireGuard Support: Instead of building your own VPN using pfSense, or settling for a commercial VPN provider, you can directly integrate WireGuard with the pfSense firewall.

    • Speed Management and Fault Tolerance: pfSense’s multi-WAN feature allows your system to continue operating in case components fail.

    • Well-supported: pfSense regularly has security and feature updates. It also has a documentation site and a well-informed and knowledgeable support forum.

    Reviews from Real Users

    Below is some feedback from PeerSpot Users who are currently using the solution.

    Bojan O., CEO at In.sist d.o.o., says, “The classic features, such as content inspection, content protection, and the application-level firewall, are the most important."

    Another PeerSpot user, a chef at a media company, explains what he finds most valuable about pfSense: "The plugins or add-ons are most valuable. Sometimes, they are free of charge, and sometimes, you have to pay for them, but you can purchase or download very valuable plugins or add-ons to perform internal testing of your network and simulate a denial-of-service attack or whichever attack you want to simulate. You can also remote and monitor your network and see where the gap is."

    T.O., a VP of Business Development at a tech services company, mentions, "What I found most valuable is the cost of the platform, the flexibility of the platform, and the fact that the ongoing fees are not there as they are with the competitor."



    PA-Series constitute the full range of our ML-Powered Next-Generation Firewall physical appliances that are easy to deploy into your organization’s network and purposefully designed for simplicity, automation, and integration. No matter where you need protection, our PA-Series ML-Powered Next-Generation Firewalls are architected to provide consistent protection to your entire network – from your headquarters and office campus, branch offices and data center to your mobile and remote workforce.

    Sample Customers
    1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
    Nerds On Site Inc., RKC Development Inc., Expertech, Fisher's Technology, Ncisive, Consulting, CPURX, Vaughn's Computer House Calls, Imeretech LLC, Digital Crisis, Carolina Digital Phone, Technigogo Technology Services, The Simple Solution, SwiftecITInc, Rocky Mountain Tech Team, Free Range Geeks, Alaska Computer Geeks, Lark Information Technology, Renaissance Systems Inc., Cutting Edge Computers, Caretech LLC, GoVanguard, Network Touch Ltd, P.C. Solutions.Net, Vision Voice and Data Systems LLC, Montgomery Technologies, Techforce, Concero Networks, ASONInc, CPS Electronics and Consulting, Darkwire.net LLC, IT Specialists, MBS-Net Inc., VOICE1 LLC, Advantage Networking Inc., Powerhouse Systems, Doxa Multimedia Inc., Pro Computer Service, Virtual IT Services, A&J Computers Inc., Envision IT LLC, CommunicaONE Inc., Bone Computer Inc., Amax Engineering Corporation, QPG Ltd. Co., IT 101 Inc., Perfect Cloud Solutions, Applied Technology Group Inc., The Digital Sun Group LLC, Firespring
    Information Not Available
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company15%
    Comms Service Provider7%
    Manufacturing Company6%
    REVIEWERS
    University9%
    Manufacturing Company9%
    Comms Service Provider8%
    Marketing Services Firm8%
    VISITORS READING REVIEWS
    Computer Software Company14%
    Comms Service Provider12%
    Government8%
    Educational Organization6%
    REVIEWERS
    Computer Software Company35%
    Manufacturing Company24%
    Financial Services Firm12%
    Government6%
    VISITORS READING REVIEWS
    Computer Software Company24%
    Manufacturing Company13%
    Construction Company7%
    University6%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business28%
    Midsize Enterprise32%
    Large Enterprise40%
    REVIEWERS
    Small Business69%
    Midsize Enterprise19%
    Large Enterprise12%
    VISITORS READING REVIEWS
    Small Business34%
    Midsize Enterprise19%
    Large Enterprise47%
    REVIEWERS
    Small Business41%
    Midsize Enterprise17%
    Large Enterprise41%
    VISITORS READING REVIEWS
    Small Business39%
    Midsize Enterprise22%
    Large Enterprise39%
    Buyer's Guide
    Netgate pfSense vs. Palo Alto Networks PA-Series
    May 2024
    Free Report: Netgate pfSense vs. Palo Alto Networks PA-Series
    Find out what your peers are saying about Netgate pfSense vs. Palo Alto Networks PA-Series and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    772,679 professionals have used our research since 2012.

    Netgate pfSense is ranked 1st in Firewalls with 128 reviews while Palo Alto Networks PA-Series is ranked 17th in Firewalls with 28 reviews. Netgate pfSense is rated 8.6, while Palo Alto Networks PA-Series is rated 8.6. The top reviewer of Netgate pfSense writes "User-friendly, easy to manage the firewall, rule-wise and interface-wise". On the other hand, the top reviewer of Palo Alto Networks PA-Series writes "Offers trained customer support, stability and ease of use ". Netgate pfSense is most compared with OPNsense, Sophos XG, KerioControl, Sophos UTM and Cisco Secure Firewall, whereas Palo Alto Networks PA-Series is most compared with OPNsense, SonicWall NSa, Sophos XG, Juniper SRX Series Firewall and WatchGuard Firebox. See our Netgate pfSense vs. Palo Alto Networks PA-Series report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.