• Home
  • Fortinet FortiGate vs. Juniper SRX Series Firewall

Fortinet FortiGate vs Juniper SRX Series Firewall vs SonicWall NSa comparison

Cancel
You must select at least 2 products to compare!
Fortinet Logo

Fortinet FortiGate

Read 306 Fortinet FortiGate reviews
123,063 views|89,961 comparisons
90% willing to recommend
Juniper Logo

Juniper SRX Series Firewall

Read 86 Juniper SRX Series Firewall reviews
14,764 views|8,901 comparisons
85% willing to recommend
SonicWall Logo

SonicWall NSa

Read 77 SonicWall NSa reviews
9,038 views|6,733 comparisons
87% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Firewalls
March 2024
Executive Summary

We performed a comparison between Fortinet FortiGate, Juniper SRX Series Firewall, and SonicWall NSa based on real PeerSpot user reviews.

Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls.
To learn more, read our detailed Firewalls Report (Updated: March 2024).
Download the complete report
767,995 professionals have used our research since 2012.
Featured Review
Anonymous User
Researched Juniper SRX Series Firewall but chose Fortinet FortiGate: Stable with an easy initial setup and good documentation
Anonymous User
Researched Fortinet FortiGate but chose Juniper SRX Series Firewall: Easy to maintain, easy to extract the logs, and very stable
Previously, we had different routers for each of the incoming lines to the office, and we had other firewalls on the backend to manage them. Now,... Read more →
GK1
Researched Fortinet FortiGate but chose SonicWall NSa: Stable, easy to set up, has a UTM feature, and provides good support locally
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature of this solution is the analytics.""FortiGate firewalls are user-friendly, and I like the security profiling features.""It is very flexible to use.""The SD-WAN function is very developed. It has SD-WAN functionality with security features in one device. We can manage from one single console SD-WAN and the security policy.""The Intrusion Prevention System and the web filtering are both working well.""We use the FortiGate Sandbox to detect zero-day vulnerabilities, such as anomalies or malware, that are unknown and have not yet been discovered.""We use a lot of function on the IPS and it works well for us.""I like Fortinet FortiGate's antispam filter, SPN, and clustering features."

More Fortinet FortiGate Pros →

"I have used technical support quite a bit, and they are really good.""CLI: Junos CLI is very easy to use, and it is also very easy to find back items in the configuration and to change them.""The firewall features and the routing capability are the most valuable.""The setup is pretty straightforward.""Juniper is one of the most powerful network security solutions while remaining simple to use, set up, and scale.""I like the Junos OS, which has been very good for me. It's very clever.""The command line in Juniper SRX is extremely powerful, in my opinion. It's one of the best command lines I've used in networking products.""The user interface is good."

More Juniper SRX Series Firewall Pros →

"I like that SonicWall NSa is a stable product. It's also a scalable product.""It has excellent stability.""The most valuable feature I've found is VPN and web protection, particularly with navigation assessment. We use the application control feature to create rules controlling specific application navigation.""Anti-Spam reduces unwanted mail on corporate exchange services.""It allows us to block applications, i.e., websites by application type category. It is far more capable than content filtering alone.""Support is usually good when it comes to helping with issues.""We have utilized all the features. The most valuable are the URL filtering by category, DMZ zoning, load balancing and site-to-site VPN.""The most valuable features are the VPN, SSL VPN, and IPSec VPN."

More SonicWall NSa Pros →

Cons
"The stability could be a bit better.""The improvement is related to logs. Instead of the CLI, we should be able to have more insights into the logs of the firewall in the GUI.""The inability to scale the FortiAnalyzer to match our growth necessitates the purchase of new hardware.""There are mainly two areas of improvement in Fortinet FortiGate— the licensing cost and the timing of upgrading licenses for boxes.""The pricing could be a bit better, especially when you consider how they have the most basic offering priced.""The ease of use could be improved.""They can do more tests before they release new versions because I would like to be more assured. We had some experiences where they release something new and great, but some of the old features are disabled or they don't work well, which impacts the product satisfaction. The manufacturer should be able to prove that everything works or not only that it might work. This is applicable to most of the other services, software, and hardware companies. They all should work on this. We cannot trust every new release, such as a beta release, on the first day. We wait for some comments on the forums and from other companies that we know. We always wait a few weeks before we use the updated version. They should also extend the VPN client application, especially for Linux versions. Currently, it has an application for Linux devices, but it doesn't work the way we want to connect to the VPN. They use only the old connection, not the new one. They have VPN client applications for Windows and Mac, but they can add more useful features to better manage the devices and monitor the current health of each device. Such features would be helpful for our company.""The cloud features can be improved."

More Fortinet FortiGate Cons →

"While the GUI is pretty good on the Juniper side, there can still be tweaks made to it that will make it even better.""The solution could cost less. It's a bit expensive right now.""IPS is one that I would definitely want to be improved. I would also like SSL VPN to be integrated.""The user interface and the GUI need improvement.""The capacity can be limiting. We have outgrown its capacity. You can only scale up to a certain extent, depending on the device purchased.""Both the web management and the graphical user interface are inadequate and should be improved.""I've noticed that the management interface could use some updates and upgrades.""Juniper needs to focus more on their perimeter firewalls."

More Juniper SRX Series Firewall Cons →

"I would like U.S.-based technical support.""I would like to have a built-in vulnerability scanner in the firewall. It would be great to have such functionality. Its price could also be better. It would also be good to have a local warehouse. It doesn't get damaged a lot, but if a customer needs a replacement, currently, it has to come from Miami or Mexico, which can take a few days. It would be better if they have a local warehouse from where we can just pick replacements and quickly solve a client's needs in terms of replacing equipment. It would be great to have it locally instead of waiting for it from Mexico or the USA.""There are a few areas that need improvement including the VPN, user management, and reporting.""Do not even consider NetExtender - probably one of the most horrific, nightmare grade Java-based VPN clients. We have but all given up trying to make it work reliably.""The product has a lot of bugs, actually. We are facing some issues with this product. The DPI SSL feature which is there, it is not working properly.""Initially, it may be difficult for some people to learn and become acquainted with it.""They should consider upgrading the capabilities within the GUI.""An area for improvement would be SonicWall NSa's integration with antiviruses."

More SonicWall NSa Cons →

Pricing and Cost Advice
  • "Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."
  • "These boxes are not that expensive compared to what they can do, their functionality, and the reporting you receive. Fortinet licensing is straightforward and less confusing compared to Cisco."
  • "Go for long term pricing negotiated at the time of purchase."
  • "Work through partners for the best pricing."
  • "The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."
  • "Easy to understand licensing requirements."
  • "​We saved a bundle by not needing all the past appliances from an NGFW.​"
  • "The cost is too high... They have to focus on more features with less cost for the customer. If you see the market, where it's going, there are a lot of players offering more features for less cost."

    • More Fortinet FortiGate Pricing and Cost Advice →

  • "The prices are very good as compared to other vendors."
  • "Pricing is very good, not expensive."
  • "I would say about $20,000 for a SRX650 with IDP licence."
  • "Small enterprises or telco have variant licenses, and this licensing should be improved."
  • "We were able to lower our overall operating costs over a three year period by 25%, mostly recovered from maintenance/support costs."
  • "Pricing is good. Most of the costs are in the UTM (IDS/IPS, virus scanning, etc) subscription."
  • "Palo Alto was nice, but much more expensive."
  • "It is not that expensive."

    • More Juniper SRX Series Firewall Pricing and Cost Advice →

  • "Additional resources are too expensive."
  • "Considering the market, I believe that the price of this solution is great."
  • "In our evaluation, we found that the costs of deploying the solution, and also purchasing the hardware and licenses, were very attractive."
  • "Licensed features provide application control, content filtering, antivirus, and anti-malware all in a single appliance."
  • "The CPUs are not able to compete with a similar price point to the Fortinet, WatchGuard, or Palo Alto product."
  • "A firewall doing anti-spam might be a low cost solution, but it is not your best strategy."
  • "You need their analyzer to properly generate reports. This is an expensive, licensed feature, with a complex application or appliance back-end."
  • "If you want to connect more than five concurrent users by VPN then you have to pay an additional fee."

    • More SonicWall NSa Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    See Recommendations
    767,995 professionals have used our research since 2012.
    Comparison Review
    Anonymous User
    Sophos UTM vs. Fortinet FortiGate
    I have used both Sophos and Fortinet products in production and I have found the Sophos UTM appliances (hardware and virtual) to be a better fit most of the time -- with a few caveats which I will touch on below. In both instances, the transition from TMG will be mostly straightforward. The main hang-ups will be with the VIP/load balancing and SSL. For some reason that completely escapes me, both of these vendors make getting valid certificates onto their boxes unnecessarily difficult -- the Fortinet appliances more so than the Sophos UTM appliances. At one point a Fortinet engineer had to write an entire manual on how to get an SSL certificate uploaded successfully on the 4.x firmware Sophos: The one feature that is missing (and this makes some amount of sense) from the Sophos appliance is BITS caching for updates. Other than that, Sophos offers a full replacement for TMG on UTM9. The XG platform also offers a replacement for the TMG; however, some of the rumblings about upcoming releases suggests that Sophos is going to give XG the Apple iOS treatment and "streamline" the interface...potentially cutting out/hiding some functionality. On the effectiveness of the NGFW, Sophos is mostly good but has a few issues blocking all pieces of an application. For instance, we had to build custom blocking rules for OpenVPN (the vpn was being used to bypass the content filter) because the default Application Control wasn't effectively blocking the application. Fortinet: If it… Read more →
    Questions from the Community
    Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Read all 3 answers   →
    What is the biggest difference between Sophos XG and FortiGate?
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Read all 13 answers   →
    What are the biggest technical differences between Sophos UTM and Fortine...
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Read all 11 answers   →
    What do you like most about Juniper SRX?
    Top Answer:Juniper SRX Series Firewall is a stable solution.
    Read all 65 answers   →
    What is your experience regarding pricing and costs for Juniper SRX?
    Top Answer:In my opinion, the Juniper SRX Series Firewall is cheaper than other products. We have a five-year license for the… more »
    Read all 44 answers   →
    What advice do you have for others considering Juniper SRX?
    Top Answer:Currently, we are using the solution as a data center firewall, but we previously used Juniper on all my segments. Since… more »
    Read all 60 answers   →
    What do you like most about SonicWall NSa?
    Top Answer:The product is simple to manage.
    Read all 49 answers   →
    What is your experience regarding pricing and costs for SonicWall NSa?
    Top Answer:The price is reasonable. The tool is cheap.
    Read all 36 answers   →
    What needs improvement with SonicWall NSa?
    Top Answer:The scope of management must be improved. The scope of what users can do with the product must be improved. The product… more »
    Read all 49 answers   →
    Ranking
    2nd
    out of 59 in Firewalls
    Views
    123,063
    Comparisons
    89,961
    Reviews
    48
    Average Words per Review
    661
    Rating
    8.4
    19th
    out of 59 in Firewalls
    Views
    14,764
    Comparisons
    8,901
    Reviews
    15
    Average Words per Review
    424
    Rating
    8.1
    20th
    out of 59 in Firewalls
    Views
    9,038
    Comparisons
    6,733
    Reviews
    18
    Average Words per Review
    363
    Rating
    7.9
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Juniper SRX
    NSA 250M, NSA 2600, NSA 3600, NSA 4600, NSA 5600, Dell SonicWALL NSA
    Learn More
    Fortinet
    Juniper
    SonicWall
    Overview

    Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

    Juniper SRX is a next-generation security solution that enables users to expand and secure their networks without incurring heavy costs or sacrificing performance.

    Benefits of Juniper SRX

    Some of the benefits of using Juniper SRX include:

    • Easily manage and view every aspect of your system’s security. Juniper SRX enables users to manage their security from a centralized location. The central control center can control and view every Juniper connected device in a user’s network. Once a device meets the desired security requirements, an administrator can configure the device’s policy to match the other machines in their network. This both simplifies the way that the network operations run and decreases the number of resources that are needed to ensure that operations run smoothly.
    • Secure your system with a flexible and comprehensive security suite. Juniper SRX’s firewalls are flexible enough that they always match the type of applications that they are supposed to be protecting. Its security features uniformly protect your applications. This is true regardless of how your application is deployed. It can integrate with everything from cloud-based applications to those stored on physical servers in a data center. This makes it easy for administrators to maintain consistency across their systems.
    • Protect yourself from advanced threats. Juniper SRX is equipped with powerful security automation features. They can detect a wide range of known and unknown threats as soon as they appear. Once malware is detected, Juniper SRX begins to analyze it and determines what response fits the situation. Additionally, the threats are prioritized according to their severity. Administrators are then given a selection of response options from which they can choose. This enables users to prevent the spread of these threats.
    • Increase your ability to scale your security. Juniper SRX makes it easy for users to scale up their security to meet their specific needs. Its service processing cards (SPC) are designed to enable a user to meet all of their needs. Administrators do not need to buy specific hardware every time that they need to get something done. Their SPCs can be quickly and easily customized. The addition of SPCs enables users to scale up according to the particular project that they are working on at that time.
    • Reduce the number of resources that you need to expend. Juniper SRX enables users to add expansion modules to their network without expanding the cost to run their network. They accommodate growth without adding to the overall cost. Administrators will not need to spend money on more space, cooling power, or maintenance. Additionally, they will not have to dedicate more time to maintaining the network. Your network may grow, but the cost of running your system will not.

    Reviews from Real Users

    Juniper SRX stands out among their competitors for a number of reasons. Two major ones are their central management capabilities and the robustness of their suite of security features. Juniper SRX is designed to make it easy for users to take control of their network’s security. From one location, administrators can manage all aspects of their infrastructure’s security. The many features that it offers allows users to tailor their security to meet their specific needs.

    Shashidhara N., director of technology solutions & services at Connectivity IT Services Private Limited, writes, “On the SRX box, it has what I call a one model concept for security. I work especially with hybrid environments. With an SRX we have a single management dashboard. We can manage the internal framework easily with the centralized management component. You can work with threat prevention, you can work with integration, you can work with traffic management. Another good part about SRX is that you have opportunities for automation. Another thing that is very good is that all the operating systems for all Juniper boxes are the same. You do not work on different operating systems using different boxes.”

    Pradip J., the owner of Shree Atharva Sales Corporation, writes, “It is a complete security bundle. The cloud-based Sky Advanced Threat Prevention feature is very valuable. I am 100% satisfied with the performance of the Juniper firewall. It has a very good throughput. It works very fine. We use our firewall as a site-to-site VPN or Software-Defined Wide Area Network (SD-WAN). In both cases, it has a very good and optimum performance.Their service support is very good in India. I get really good support from the Juniper team."

    SonicWall NSa dispenses advanced threat protection using a high-performance security platform. The NSa series implements intuitive deep learning technologies in the SonicWall Capture Cloud Platform to dispatch the automated real-time threat detection and deterrence enterprise organizations need today. SonicWall Network Security appliance (NSa) series is best for mid-sized organizations to distributed enterprises and data centers.

    SonicWall NSa series next-generation firewalls (NFGWS) combine two very robust security ideologies to deliver advanced threat protection to keep users’ networks safe. Boosting SonicWall’s multi-engine advanced threat protection (ATP) is their Real-time Deep Memory Inspection (RTDMI™). The RTDMI intuitively identifies and stops aggressive zero-day threats and vicious malware by investigating memory directly. This real-time process allows SonicWall RTDMI to be accurate, lessen false positives and discover and alleviate malicious threats and attacks. SonicWall’s single-pass Reassembly-Free Deep Packet Inspection (RFDPI) will audit every byte of each and every packet by investigating both outbound and inbound traffic on the firewall. By combining the SonicWall Capture Cloud Platform along with on-box offerings such as intrusion prevention, web/URL filtering, and anti-malware, the NSa series is able to block the most malicious and dangerous threats at the gateway.

    Additionally, SonicWall firewalls supply absolute protection by executing complete inspection and decryption of SSH and TLS/SSL encryption connections - no matter the port or protocol. The firewall takes a deep dive into each and every packet (the header and data) routing out any anomalies, zero-day intrusions, threats, and protocol non-compliance. Users can also define unique criteria specific to their organization to ensure their networks remain safe. This aggressive deep packet inspection is able to identify and block malicious attacks, stop dangerous malware downloads, prevent the spread of infections, and defeat command and control (C&C) communications and data exfiltration. Protocols involving inclusion and exclusion allow users complete control to decide, based on specific governance policies, organizational policies, or government or legal compliance, which traffic is to be investigated for decryption or inspection.

    SonicWall Nsa offers enterprise organizations the network control and fluid flexibility they desire using an intrusion prevention system (IPS), VPN, real-time visualization, and other advanced powerful security features, making it a popular firewall solution in today's marketplace.

    Reviews from Real Users

    “The features that I have found most valuable are the firewalling, which is very good, and the GUI which is very intuitive. It is easy to use and provides great security.” - Network Engineer at a maritime company

    “What's valuable in SonicWall NSa is the ATP (advanced threat protection). It can protect users from malicious links. SonicWall NSa also has a Sandboxing service that is very helpful for us, especially when end users accidentally click on malicious links. Another valuable feature of this solution is that it is very useful for site-to-site VPN connectivity issues. SonicWall NSa has very good hardware. I also love that SonicWall has very good technical support, who are very knowledgeable, provide good suggestions, and they're easy to reach.” - Mohammed M., Network Administrator at Transgulf Readymix

    Sample Customers
    1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
    7-Eleven, AARNet Pty Ltd, Allegro Networks, alltours GmbH, Apollo Hotel Papendrecht, Armstrong Atlantic State University, Atlantech Online, Availity, Bajaj Capital, Baloise Insurance, BancABC, BAS Group, Black Lotus, Blue Box, Borealis, Carilion Clinic, Catholic Health System, CATV, Champlain College, Chinas Ministry of Railways, China University of Mining and Technology (CUMT), Cloud Dynamics, CloudSeeds, Cloudwatt, CODONiS, Colt Technology Services, Cork Internet Exchange, CSS Versicherung AG, CyrusOne, Danish Crown, Deloitte Belgium, Department of Energy, Divona Telecom, DQE Communications, DreamHost, European Government Agency, Expedient, Financial Market Information Services Provider, Fluidata, Fonality, Fox Sports, Global Financial Institution, Global Investment Bank, Global Investment Company, Energy Sciences Network (ESnet), Goethe University, HEAnet, High Performance Networks Inc., Hillenbrand
    Orange County Rescue Mission, First Source, Michaels & Taylor, Green Clinic Health System, Aspire Chiltern Skills and Enterprise Centre, UnitedStack, Faith Lutheran College Redlands, Celtic Manor Resort, Star Kay White, Air Works, Unimat Life, NHS Yorkshire and Humber Commissioning Support (YHCS), Hutt City Council, Mato Grosso do Sul, Nspyre
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company15%
    Comms Service Provider8%
    Manufacturing Company6%
    REVIEWERS
    Comms Service Provider35%
    Financial Services Firm16%
    Computer Software Company10%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Educational Organization41%
    Computer Software Company11%
    Comms Service Provider6%
    Government5%
    REVIEWERS
    Manufacturing Company19%
    Educational Organization8%
    Retailer8%
    Construction Company8%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Comms Service Provider7%
    Government7%
    Retailer6%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise32%
    Large Enterprise41%
    REVIEWERS
    Small Business43%
    Midsize Enterprise21%
    Large Enterprise36%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise47%
    Large Enterprise34%
    REVIEWERS
    Small Business59%
    Midsize Enterprise19%
    Large Enterprise22%
    VISITORS READING REVIEWS
    Small Business40%
    Midsize Enterprise16%
    Large Enterprise44%
    Buyer's Guide
    Firewalls
    March 2024
    Download Free Report
    Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls. Updated: March 2024.
    DOWNLOAD NOW
    767,995 professionals have used our research since 2012.