We performed a comparison between Cisco Secure Firewall vs Juniper SRX based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: The two solutions are very comparable. Each of them have a good set of features, and the solution you choose will ultimately be dependent on your company’s specific preferences and requirements.
"Reliability is the best feature. We faced some issues when we were setting it up, but the service, portal, and administration are good."
"Fortigate is very scalable to serve our customers' needs. We have scaled already from fifty to more than a hundred instances of Fortinet FortiGate. Around 20 staff are required for deployment and maintenance, mostly engineers."
"One of the valuable features is a standardized OS."
"The most valuable feature is the SSL VPN, as it allows us to connect and it separates this product from other firewalls."
"The most valuable feature is the VDOM, which allows the customer to have multiple firewalls in a single campus."
"Good performance, stability, and virtual domain ability."
"It is easy to use. We chose this product for the possibility to have virtual domains (VDOMs). We are building another company in the group, and we would like to split the firewalling rules and policies between these two companies. Each company would be able to manage its own policies and security rules, which is an advantage of Fortinet FortiGate. We can define VDOMs, and every company can manage its own VDOM as if it has its own physical firewall, but in fact, we would be using the same physical appliance because we are also using the same internet lines. So, it allows us to reuse the existing resources without the disadvantage of having to compromise on policies and security. Each company can choose its own way of working."
"Offers good security and filtering."
"It allowed us to consolidating multiple security devices into a single appliance."
"The technical support is excellent. I would rate it as 10 out of 10. When there has been an issue, we have had a good response from them."
"The configuration was kind of straightforward from the command line and also from the ASDM. It was very easy to manage by using their software in Java."
"Beats sophisticated cyber attacks with a superior security appliance."
"The feature I find most valuable is the Cisco VPN Interconnection."
"The GUI is among the most valuable features,"
"It is extremely stable I would say — at least after you deploy it."
"It's easy to integrate ASA with other Cisco security products. When you understand the technology, it's not a big deal. It's very simple."
"The CLI works perfectly."
"It provides good routing and high performance of the data center."
"One of Juniper SRX's most valuable features is the site-to-site VPN."
"Juniper has the "recovery safety feature", so if you perform a "commit confirmed" and the new configuration disconnects you. then there is no "confirmed" command with X mins (default = 10 mins). It automatically reverts (recovers) to the previous configuration. This is handy for when you do not want to make that trip down range just to reboot a router."
"Technical support is perfect."
"It protects the data behind our switches."
"I've found the security features, such as IDS and the VPN most valuable."
"The solution is relatively easy and inexpensive to maintain."
"I think the only issue that needs improvement is the interface."
"The support system could be improved."
"Its customer service could be better."
"The feedback that I have received is that the performance could be better, and the user experience is not as good compared to a previous solution we used. It could be more user-friendly. Of course, it still works fine for our operations."
"The support structure needs to be improved because every time we contact them, there is a delay in the response."
"Pricing for it is a bit high. It could be cheaper."
"The support team for Fortinet FortiGate needs to be more customer friendly."
"As far as wanting more scalability or things in the network diagram, it's going to cost you."
"There is no support here in Georgia. If something goes wrong, support is not always very helpful with the other firewalls or other products."
"The user interface for the Firepower management console is a little bit different from traditional Cisco management tools. If you look at products we already use, like Cisco Prime or other products that are cloud-based, they have a more modern user interface for managing the products. For Firepower, the user interface is not very user-friendly. It's a little bit confusing sometimes."
"We had an event recently where we had inbound traffic for SIP and we experienced an attack against our SIP endpoint, such that they were able to successfully make calls out... Both CTR, which is gathering data from multiple solutions that the vendor provides, as well as the FMC events connection, did not show any of those connections because there was not a NAT inbound which said either allow it or deny it."
"There are always vulnerabilities that come up and there was one in early 2018 but this was patched with software updates."
"Make the IPS baked-in."
"I would like to see the inclusion of more advanced antivirus features in the next release of this solution."
"Security generally requires integration with many devices, and the management side of that process could be enhanced somewhat. It would help if there was a clear view of the integrations and what the easiest way to do them is."
"We are looking for software taxi capabilities."
"The CLI is verbose. You have to say a lot to do a little. I don't like that part of it. Cisco's command syntax seems to be a good bit more concise. When you're trying to get something done, you don't want to have to type a bunch."
"Third-party support for Juniper is a lot less than Cisco. This is no surprise, but a definite consideration if you are expecting to use a lot of third party support. In my guesstimate, for every 100 Cisco shops, you will find one Juniper shop."
"The reporting is lacking."
"I would like to have a better web UI for administration. Juniper could simplify the web UI and make it more compatible with mobile devices."
"In the future, I would like to see the UI more responsive"
"In some cases, customers encounter issues related to network interfaces, while others prioritize security concerns."
"I think Juniper SRX should have a GUI. Some of the competitors are already implementing GUI for the firewall."
"It does have its nuances in terms of deployment. There are always areas to make something easier or more intuitive or make the system auto-negotiate more with existing hardware."
Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews while Juniper SRX Series Firewall is ranked 18th in Firewalls with 86 reviews. Cisco Secure Firewall is rated 8.2, while Juniper SRX Series Firewall is rated 7.8. The top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". On the other hand, the top reviewer of Juniper SRX Series Firewall writes "Highly scalable, user-friendly UI, and easy to maintain". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Check Point NGFW, whereas Juniper SRX Series Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Palo Alto Networks NG Firewalls, Check Point NGFW and Meraki MX. See our Cisco Secure Firewall vs. Juniper SRX Series Firewall report.
See our list of best Firewalls vendors and best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.