We performed a comparison between Fortinet FortiGate, Juniper SRX Series Firewall, and SonicWall NSa based on real PeerSpot user reviews.
Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls."The most valuable feature of this solution is the analytics."
"FortiGate firewalls are user-friendly, and I like the security profiling features."
"It is very flexible to use."
"The SD-WAN function is very developed. It has SD-WAN functionality with security features in one device. We can manage from one single console SD-WAN and the security policy."
"The Intrusion Prevention System and the web filtering are both working well."
"We use the FortiGate Sandbox to detect zero-day vulnerabilities, such as anomalies or malware, that are unknown and have not yet been discovered."
"We use a lot of function on the IPS and it works well for us."
"I like Fortinet FortiGate's antispam filter, SPN, and clustering features."
"I have used technical support quite a bit, and they are really good."
"CLI: Junos CLI is very easy to use, and it is also very easy to find back items in the configuration and to change them."
"The firewall features and the routing capability are the most valuable."
"The setup is pretty straightforward."
"Juniper is one of the most powerful network security solutions while remaining simple to use, set up, and scale."
"I like the Junos OS, which has been very good for me. It's very clever."
"The command line in Juniper SRX is extremely powerful, in my opinion. It's one of the best command lines I've used in networking products."
"The user interface is good."
"I like that SonicWall NSa is a stable product. It's also a scalable product."
"It has excellent stability."
"The most valuable feature I've found is VPN and web protection, particularly with navigation assessment. We use the application control feature to create rules controlling specific application navigation."
"Anti-Spam reduces unwanted mail on corporate exchange services."
"It allows us to block applications, i.e., websites by application type category. It is far more capable than content filtering alone."
"Support is usually good when it comes to helping with issues."
"We have utilized all the features. The most valuable are the URL filtering by category, DMZ zoning, load balancing and site-to-site VPN."
"The most valuable features are the VPN, SSL VPN, and IPSec VPN."
"The stability could be a bit better."
"The improvement is related to logs. Instead of the CLI, we should be able to have more insights into the logs of the firewall in the GUI."
"The inability to scale the FortiAnalyzer to match our growth necessitates the purchase of new hardware."
"There are mainly two areas of improvement in Fortinet FortiGate— the licensing cost and the timing of upgrading licenses for boxes."
"The pricing could be a bit better, especially when you consider how they have the most basic offering priced."
"The ease of use could be improved."
"They can do more tests before they release new versions because I would like to be more assured. We had some experiences where they release something new and great, but some of the old features are disabled or they don't work well, which impacts the product satisfaction. The manufacturer should be able to prove that everything works or not only that it might work. This is applicable to most of the other services, software, and hardware companies. They all should work on this. We cannot trust every new release, such as a beta release, on the first day. We wait for some comments on the forums and from other companies that we know. We always wait a few weeks before we use the updated version. They should also extend the VPN client application, especially for Linux versions. Currently, it has an application for Linux devices, but it doesn't work the way we want to connect to the VPN. They use only the old connection, not the new one. They have VPN client applications for Windows and Mac, but they can add more useful features to better manage the devices and monitor the current health of each device. Such features would be helpful for our company."
"The cloud features can be improved."
"While the GUI is pretty good on the Juniper side, there can still be tweaks made to it that will make it even better."
"The solution could cost less. It's a bit expensive right now."
"IPS is one that I would definitely want to be improved. I would also like SSL VPN to be integrated."
"The user interface and the GUI need improvement."
"The capacity can be limiting. We have outgrown its capacity. You can only scale up to a certain extent, depending on the device purchased."
"Both the web management and the graphical user interface are inadequate and should be improved."
"I've noticed that the management interface could use some updates and upgrades."
"Juniper needs to focus more on their perimeter firewalls."
"I would like U.S.-based technical support."
"I would like to have a built-in vulnerability scanner in the firewall. It would be great to have such functionality. Its price could also be better. It would also be good to have a local warehouse. It doesn't get damaged a lot, but if a customer needs a replacement, currently, it has to come from Miami or Mexico, which can take a few days. It would be better if they have a local warehouse from where we can just pick replacements and quickly solve a client's needs in terms of replacing equipment. It would be great to have it locally instead of waiting for it from Mexico or the USA."
"There are a few areas that need improvement including the VPN, user management, and reporting."
"Do not even consider NetExtender - probably one of the most horrific, nightmare grade Java-based VPN clients. We have but all given up trying to make it work reliably."
"The product has a lot of bugs, actually. We are facing some issues with this product. The DPI SSL feature which is there, it is not working properly."
"Initially, it may be difficult for some people to learn and become acquainted with it."
"They should consider upgrading the capabilities within the GUI."
"An area for improvement would be SonicWall NSa's integration with antiviruses."