Fortinet FortiGate and Netgate pfSense are firewall solutions. FortiGate is a commercial product with a focus on advanced security features and ease of use, making it ideal for businesses of all sizes. pfSense, on the other hand, is an open-source firewall known for its flexibility, customization, and cost-effectiveness, popular among tech-savvy users and small to medium businesses.
What are the valuable features of FortiGate and pfSense?
Pricing and ROI: Fortinet FortiGate has mixed reviews regarding pricing, setup cost, and licensing. FortiGate offers positive ROI with cost savings, reduced communication costs, and enhanced security. pfSense provides valuable ROI with flexibility, scalability, and improved network solutions. pfSense is open source. The pfSense Community Edition (CE) is a free. However, Netgate developed pfSense is a commercial version of pfSense called pfSense Plus. pfSense Plus includes additional features and support, but the core functionality is the same as the Community Edition. ROI comes from cost savings and granular control.
Room for Improvement: FortiGate users would appreciate better monitoring and advanced reporting. pfSense reviewers suggest improvements to the user interface for a more streamlined experience, also advanced reporting, better documentation, and troubleshooting tools.
Deployment and customer support: FortiGate users commented for a straightforward setup process with clear documentation and readily available support. pfSense installation is considered user-friendly, but advanced configurations can be challenging. The open-source community provides extensive documentation and online resources.
The summary above is based on 296 interviews we conducted recently with Fortinet FortiGate and pfSense users. To access the review's full transcripts, download our report.
"The web filtering facility and application control are the most valuable features from the point of view of our clients. The VPN feature is also quite popular amongst our clients. Two-factor authentication is one of the good features in Fortinet. These features are important for the current scenario of security. Security has become a necessity nowadays. With cyber-attacks becoming more common, protecting an organization's data is one of the major tasks. It is also very stable and scalable, and it is very straightforward to configure. Their technical support is also good."
"The pricing is excellent. It's much less expensive than Cisco."
"We have found it to be very reliable and that's why our teams and various users in our company use it as our main firewall every day."
"The most valuable features are the possibility of having one fabric for switching on security."
"The most valuable feature is the VDOM, which allows the customer to have multiple firewalls in a single campus."
"The wireless control is helpful."
"The reporting and monitoring are very good."
"Its stability is the most valuable."
"The initial setup was straightforward, therefore I wanted to continue using the product."
"The most valuable features of pfSense are the reports, monitoring, filtration, and blocking incoming and outgoing traffic."
"The solution has good customization abilities and plenty of features."
"Routing, load balancing, Traffic Limiter and queues. Since this company relies on an Internet connection, having these features is a must."
"I like pfSense's security features."
"Content protection, content inspection, and the application level firewall."
"The most valuable feature, for instance, is the ease of migrating configurations between different Netgate devices housed in the same box."
"Sophos Intercept X is scalable. Currently, we have almost 30 people using it in our company."
"They should make the rule sets more understandable for the end user. When you're trying to explain to somebody how a computer network is secured, sometimes it's difficult for an end user or customer to understand. If there was a way to make the terminology more accessible to the end user, the set up could be easier. They should translate the technical jargon to an easily relatable and understandable conversation for the end user, the customer, that would be brilliant. Particularly in an environment where the IT structure is audited regularly, there's always pressure from the auditor to up the standards and up the security and you get your USCERT's that come out and there's a warning about this and the customer will want to lock out so much and when you apply it they run into issue where they can't search the internet or print to their remote office. Of course they can't print to your remote office, they just locked it up. They should make the language more understandable for the customer. If there's a product out there that made the jargon understandable to John Q. Public, I would buy that."
"It needs to improve its ISP load balancing."
"The process of configuring firewall rules appears excessively complex."
"The setup is pretty complex and not easy to implement."
"There are SD-WAN network monitoring, SD-WAN features, Industrial Databases, Internet of Things, Detection, etc., however, we do have not licenses for those features. We thought that if you bought a product, you should have all of the features it offers. Why should you need to make so many extra purchases to enable features? They should have one price for the entire offering."
"I would like to see improvements in the support from Fortinet. Here in the Philippines, whenever we have problems with a Fortinet product, we mostly ask for support from distributors and resellers and not directly from Fortinet."
"I think that the infrastructure for the VPN could be improved. The way that it is bundled also made it difficult to use and sell as it is too expensive."
"The stability could be a bit better."
"The usage reports can be better."
"The integration could be improved."
"The integration of pfSense with EPS and EDS could be better. Also, it should be easier to get reports on how many users are connecting simultaneously and how sections connect in real-time."
"Improve analysis of logs and dashboards (control panel) with improved alert functionality."
"The solution could improve by having centralized management and API support online."
"The solution could always work at being more secure. It's a good idea to continue to work on security features and capabilities in order to ensure they can keep clients safe."
"Perhaps the documentation is not clear and because it is supported in the community there is no basic documentation."
"The technical support needs to be improved."
Fortinet FortiGate is ranked 2nd in Firewalls with 306 reviews while Netgate pfSense is ranked 1st in Firewalls with 128 reviews. Fortinet FortiGate is rated 8.4, while Netgate pfSense is rated 8.6. The top reviewer of Fortinet FortiGate writes "It's a reliable solution that's easy to install and cheaper than competitors ". On the other hand, the top reviewer of Netgate pfSense writes "User-friendly, easy to manage the firewall, rule-wise and interface-wise". Fortinet FortiGate is most compared with Sophos XG, Cisco Secure Firewall, Meraki MX, Check Point NGFW and WatchGuard Firebox, whereas Netgate pfSense is most compared with OPNsense, Sophos XG, Sophos UTM, KerioControl and Cisco Secure Firewall. See our Fortinet FortiGate vs. Netgate pfSense report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Both are very good products, but some features that Sophos mentioned as new, FortiGate has been handling. If you are going to grow with several appliances I recommend Sophos, since the administration can be done from the cloud. With Fortinet, you have to pay a licensing fee. In terms of costs and all the options, they are very similar. Another detail to review is the support, at the beginning with Fortigate, I had enough details, but it is really improving significantly with respect to Sophos.
My comment is based on experience and I do not lean toward any of the brands. To reiterate, they are good types of equipment.