We performed a comparison between Barracuda CloudGen Firewall and SonicWall TZ based on real PeerSpot user reviews.
Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I like Fortinet's cloud management. It allows me to manage all my devices in different branches for three cloud accounts. Even though I use on-prem devices, I can manage everything on the cloud."
"The initial installation is very straightforward."
"The CLI and GUI do a good job of putting a lot at your fingertips."
"The wireless control is helpful."
"You can purchase switches and you don't need to do anything with them. You just put in the firewall and the switches get all the policies and rules that you already have in the firewall. With Fortinet, you just connect the FortiSwitch to the Fortinet and that's it."
"I like that they have given me a solution at a fair price."
"It is easy to use. We chose this product for the possibility to have virtual domains (VDOMs). We are building another company in the group, and we would like to split the firewalling rules and policies between these two companies. Each company would be able to manage its own policies and security rules, which is an advantage of Fortinet FortiGate. We can define VDOMs, and every company can manage its own VDOM as if it has its own physical firewall, but in fact, we would be using the same physical appliance because we are also using the same internet lines. So, it allows us to reuse the existing resources without the disadvantage of having to compromise on policies and security. Each company can choose its own way of working."
"Layer-3 firewall and routing are the most valuable features."
"Barracuda is very prompt at blocking any new spam which comes out."
"Most people are using enterprise applications remotely, and there is no license for SSL VPN, or in other words point-to-site. There is no limit on that. On other devices there is a specific limit and you have to pay per use for SSL VPN."
"One of the most important parts is, there is auto-upgrade of the hardware every fourth year."
"Inbound and outbound traffic analysis, rule creation wizard, and the GUI portal are among the key features."
"We enjoy the reduction in terms of labor."
"The interface is very user-friendly and it is quite easy to use."
"The most valuable features are SD-WAN, URL filtering, IPS, and virus scanning."
"Enables us to define user application-level access, so our customers can work anytime from anywhere."
"The scalability of SonicWall TZ is good and easy to add users."
"It does what it says it is going to do."
"From our point of view, the most valuable feature was the ease of deployment."
"The network security is great."
"I like the firewall product, the security server, and the content filter."
"The feature we found most valuable in SonicWall TZ is that it is user-friendly for an administrator."
"It's a stable solution."
"We are able to block whatever we want to block by using this product. It provides all required security features, such as content filtering, VPN, in one box. Before switching to SonicWall, we had specified all required features."
"Scalability is one of the disadvantages. When it comes to scalability, you have to actually change the box. If you want to upgrade it, you need to actually change the existing box and probably you take the system off to other sites."
"There were quite a few problems with the stability of the system."
"They can do more tests before they release new versions because I would like to be more assured. We had some experiences where they release something new and great, but some of the old features are disabled or they don't work well, which impacts the product satisfaction. The manufacturer should be able to prove that everything works or not only that it might work. This is applicable to most of the other services, software, and hardware companies. They all should work on this. We cannot trust every new release, such as a beta release, on the first day. We wait for some comments on the forums and from other companies that we know. We always wait a few weeks before we use the updated version. They should also extend the VPN client application, especially for Linux versions. Currently, it has an application for Linux devices, but it doesn't work the way we want to connect to the VPN. They use only the old connection, not the new one. They have VPN client applications for Windows and Mac, but they can add more useful features to better manage the devices and monitor the current health of each device. Such features would be helpful for our company."
"The stability of Fortinet FortiGate could improve."
"Some configuration elements cannot be easily altered once created."
"The process of configuring firewall rules appears excessively complex."
"From a reporting perspective, there's room for improvement. They're providing FortiAnalyzer through which one can get some enhancements, but the visibility and reporting still need slight improvement."
"The Wi-Fi controller needs a lot of improvement."
"I would like to see the connection improved."
"The analytics are weak."
"They have a very complicated interface. It's very hard to learn."
"To start working with spam, it takes a while because the product has to see that multiple emails are coming in with all the spam. If it could reduce that amount of time, then we would reduce the amount of users who are receiving spam."
"When you login from some sources, there is no feature in this box which can log you out after a certain timeout."
"When you do any commit, it locks your next access. If you are making a change to the device, from the security standpoint it's fine, but from the admin side it's not good. When you make changes, after each and every one it becomes locked."
"Command line could be more user friendly."
"Technical support used to be at a very high level but it is now a bit less so."
"We would like to improve the rules configuration in SonicWall TZ. Sometimes the rules don't work."
"The stability could be a lot better."
"The technical support has room for improvement."
"We require centralized monitoring of the network features, which they have but they are not to the level that we require."
"We have been facing issues with reporting."
"It could be made more user friendly."
"Sometimes there is a glitch between the network connection. Last time, something happened on our IP phone, the SonicWall team did some updates to fix the issue. However, glitches happen very rarely. I did not experience any other types of problems."
"The small business line has less PPS throughput."
Barracuda CloudGen Firewall is ranked 26th in Firewalls with 35 reviews while SonicWall TZ is ranked 12th in Firewalls with 78 reviews. Barracuda CloudGen Firewall is rated 8.2, while SonicWall TZ is rated 8.0. The top reviewer of Barracuda CloudGen Firewall writes "Feature-rich, robust, and easy to set up". On the other hand, the top reviewer of SonicWall TZ writes "Has efficient user access control feature and good technical support services ". Barracuda CloudGen Firewall is most compared with Netgate pfSense, Sophos XG, OPNsense, Azure Firewall and Cisco SD-WAN, whereas SonicWall TZ is most compared with Sophos XG, Netgate pfSense, Meraki MX, SonicWall NSa and SonicWall NSv. See our Barracuda CloudGen Firewall vs. SonicWall TZ report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
I strongly recommend you SonicWall 5600. Its having lots of feature for network security and Comparison of price and Support it would be great choice.
Fortigate firewalls are quite rugged and offer great flexibility in configuring the policies and managing them. For individuals as well as group level user privileges. The antivirus offered is also very effective and not at all resource hungry. The only drawback is, the admin should be very well trained and aware of configuring the firewall. It’s quite complicated that way. Or the support provider (reseller) should have expert level admins to configure and set these firewalls in the infrastructure.
I would alternatively suggest looking into Sophos firewalls. They are equally rugged and effective. And also have a much user-friendly configuration and management console.
Barracuda: No Presence in the market at all, quite different way to install manage the product. Impossible to find the technical resource. If it is managed by Multinet then it’s a different story.
UTM control was not good back in the days, not sure about recent improvements.
Support Generally good feedback of Barracuda support.
Sonicwall: Very little presence in the local market, will have compatibility issues when establishing VPN with other vendors or any other integration.
UTM should be good, not experienced it first-hand.
Support, Have horrible feedback about support. they don’t respond for months.
Fortinet: Firewall full of features, good market presence with official REPs in the country. It is basically the same Juniper SSG ScreenOS platform with good UTM.
UTM is good
Support, Support in the region from India is poor, fright. A good local partner can make your day. If case is escalated to US/Canada teams, the experience is much better. You need in-country REPs support to escalate the cases.
China effect, the downside of Fortinet is, its QA of new FortiOS release is not good at all. Things running fine on one release fail badly when upgraded to new release. you need to be ready for an alternate solution when faced with such situation.
But it is better than Barracuda and SonicWall anyways.
RMA time is not next day.
Palo Alto: I would recommend Palo Alto, it can do everything typically required from a NGFW/UTM. Price can be expensive. Typically models with high throughput are quoted from most vendors. In reality, the actual required throughput is not that much. PA820 and PA220 can cater 90% of requirement we have in our environments. This way solution will be comparatively competitive cost wise. Compatibility with third-party devices is good.
Per-user bandwidth limit is missing.
UTM is best.
Support is good. The first level is through support partners, but the experience is good.
No rapid RMA, as no in-country depot exists. But On site spare is best, as the customer owns the spare unit on his premises.
Fortinet is a good option, the interesting thing with them is all the other bits you can add. Many of these such as email protection, Sandbox, edge device protection (anti-virus, VPN Connector for PCs), tokens (electronic or hardware), switches, Wireless Access Points all talk to each other so the Fortinet security umbrella covers them as well. Fortinet has a SIEM as well.
Whatever you buy, get training on it. Also, evaluate the reseller's ability to do an install. Some folks just sell the product, other also know how to install - buy from the latter, and get some Pro Services for the installation.
I have always thought Barracuda's marketing was better than the products (it is very good marketing) and SonicWALL R&D suffered under Dell, and I don't know that it is any better now they are owned by an Investment house.
Out of these three firewalls I would, and have chosen Fortinet. Checkout NSS Labs for real world comparisons. I have been using Fortigates for 2 years now in HA configurations and have only once had to use the cli. Also updates and firmware upgrades never bring the network or internet down. These firewalls get new features added at no extra cost and the throughput is amazing. Buying the UTM bundles gets you all of the features you need and more. I heard about support issues but evertime i call i get routed to someone who knows how the features work and actually helps. We added a fortianalyzer and now we can see logs from all of the firewalls in one console and hold them for a year. Fortinet doesn't just manage their antivirus products they are the developers. These firewalls decrypt data on the fly and scan for viruses before it gets to your email, desktops or servers. Within the first week it caught ransomware within a yahoo email before it could infect our systems. We replaced our websense URL filtering with the URL filtering within the fortigates and never looked back.
I could go on and on but the real tilt in Fortinets favor was it was near half the cost of similar features and functions PA had quoted. Write down what you want and then ask if the vendors have these included in their firewalls or if they have separate appliances that can do them. Every appliance has a latency cost associated with it. You might find that all three can do what you want then it will come down to the management of the firewalls and cost.
Good luck.
I've utilized both SonicWALL and Fortinet in many implementations over the years. Fortinet does a better job in large, multi-tenant deployments and has excellent stateful packet inspection throughput. If you're planning to do SSL decryption and inspection, SonicWALL is the way to go (and currently, the product we lead with). I've found SonicWALL to be easier to manage and have also found that if you're a GUI-oriented user, all of the features are there in the UI. On the Fortigate you'll often have to dig into the CLI to enable some features.
The Barracuda products are very good and quite pricey, especially since you mentioned you were looking at the Sonicwall TZ series. The Sonicwall TZ series is meant for a smaller environment. The Fortinet firewalls are great but require a little more training. My experience with Sophos is that they have been a little buggy and support is not great. Since Sonicwall was sold by Dell the support has been better. I work with several small companies and I would say go with whatever product you have the most experience with. The learning curve can be a little much when you don't know what you're looking at. Both Sonicwall and Fortinet have pretty good support and a pretty extensive KB. Good Luck!
fortinet or baracuda and CISCO ASA 5500 series also good