Cisco Firepower NGFW Firewall Competitors and Alternatives

Get our free report covering Cisco, Fortinet, Palo Alto Networks, and other competitors of Cisco Firepower NGFW Firewall. Updated: September 2020.
442,517 professionals have used our research since 2012.

Read reviews of Cisco Firepower NGFW Firewall competitors and alternatives

Consultant
Executive Cyber Security Consultant at a tech services company with 11-50 employees
Sep 26 2020

What is most valuable?

The Palo Alto VM-Series is nice because I can move the firewalls easily. For instance, we once went from one cloud provider to another. The nice thing about that situation was that I could just move… more »

What needs improvement?

We would really like to see Palo Alto put an effort into making a real Secure Access Service Edge (SASE). Especially right now where we are seeing companies where everybody is working from home, that… more »

What's my experience with pricing, setup cost, and licensing?

I do not have to do budgets and I am thankful for that. I am just the guy in the chain who tells you what license you are going to need if you choose to go with Palo Alto VM-Series. How they negotiate… more »

Which solution did I use previously and why did I switch?

I have clients whose architecture is configured in a lot of different ways and combinations. I use a lot of different products and make recommendations based on specific situations. For example: * I… more »

What other advice do I have?

My first lesson when it comes to advice is a rule that I follow. When a new version comes out, we wait a month. If in that month we are not seeing any major complaints or issues with the Palo Alto… more »

Which other solutions did I evaluate?

I make recommendations for clients so I have to be familiar with the firewalls that I work with. In essence, I evaluate them all the time. I work from home and I have two Cisco firewalls. I have a… more »
Pushkin Sawhney
Real User
Principle Network and Security Consultant at a comms service provider with 10,001+ employees
Sep 17 2020

What is most valuable?

Among the valuable features are antivirus, URL inspection, and anti-malware protection. These are all advanced features. One of the great advantages of having Check Point… more »

How has it helped my organization?

One of our customers has just recently been attacked by malware and internal DoS attacks, and they have a multi-vendor, multi-layer firewall approach. The internal… more »

What needs improvement?

The area it needs improvement is the SandBlast Agent. It receives a file, or if it detects a Zero-day attack, it takes the file and analyzes it, either on-premise or in… more »

What's my experience with pricing, setup cost, and licensing?

It can be expensive, but it's value for money. What you pay for is what you get. You can go down in price and buy some cheap firewalls, but you're not going to get great… more »

Which solution did I use previously and why did I switch?

In the past, most of the customers I've worked with have used different firewall vendors, such as Cisco, Palo Alto, and Juniper. I've recently seen deployments where… more »

What other advice do I have?

If you're looking to implement Check Point as a security solution, definitely do your homework. Do some research, not just in terms of firewalls, but overall security… more »

Which other solutions did I evaluate?

With Juniper, one of the biggest downsides is support. The support portal is slow and I won't say the staff is competent in terms of understanding. They're very… more »
Bob-Thomas
Real User
Virtual CIO/ CISO at Kyber Security
Jul 09 2020

What is most valuable?

Once we moved the units up to the Gen 6 platform, they could support SSL-DPI. We are huge fans of the DPI. That piece is incredibly easy to implement. I'd say probably the most powerful thing about the solution is that coupled with the captured functionality.

What needs improvement?

We've turned the SSL inspection on, and it is a nightmare. It doesn't mean it doesn't work, but it will turn your world upside down for weeks until you tune it and get it right. That's an across the board problem. It's not just TZ. That's TZ's, NSA's, etc. Wherever you're using their implementation… more »

Which solution did I use previously and why did I switch?

We've also used Cisco previously. A while back, we used to have Cisco as our primary choice, with SonicWall being our second. That changed when I came to the company in 2004, where SonicWall became our solution of choice. We've got 400 or 500 firewalls out there and we don't plan on changing over to… more »

What other advice do I have?

We're a Silver Partner. I'm not an engineer. I was a field engineer for nine years a long, long time ago. However, I'm not typically the one that gets my fingers into stuff, and it would be my engineering and senior engineering staff that do that. That said, I can say that I don't think any of our… more »
Oscar Bashford
Real User
Network Operations Support at EOS IT Management Solutions Ltd
Aug 05 2020

What is most valuable?

I'm told the solution is the fastest, and, so far, I do find that to be the case. I'm familiar with the solution, so I'm pretty comfortable with the processes. There's pretty good usability.

What needs improvement?

Largely the solution seems fine to me. It could use more tutorials. I think there's a step missing or the use cases are missing information. I'm not sure why you have to connect from the descendant to another SRX. The why part, why would I… more »

Which solution did I use previously and why did I switch?

I'm kind of familiar with ASA firewalls from Cisco. I've worked with SonicWall a lot and Pablo Alto a little bit, however, I'm not 100% familiar with it. I've worked on it, but not every day. For Palo Alto, I just worked on it once. I know… more »

What other advice do I have?

Our organization is partners with Juniper. We have a business relationship with them. At work I see it a lot, however, a lot of tasks are automated at work. It's not like you have hands-on from scratch experience. In my position, I'm doing… more »

Which other solutions did I evaluate?

I would say this solution was the default selection, however, I know that ASA is up there too. That said, the virtual SRX is what's most popular now.
Georges Samaha
Reseller
Security Consultant at a tech services company with 501-1,000 employees
Jul 28 2020

What is most valuable?

From my experience, comparing it to other products, the granularity you can have in the application is very good. The application detection is excellent. It's certainly one of the best. The engine detector application is usually one of the best compared to any other firewall on the market, in my… more »

What needs improvement?

The solution would benefit from having a dashboard. From a normal IPS after attack, routine attack and threat detection attack, in other words, the standard IPS detection attack, I don't see Palo Alto as very good compared to others. The standard network IPS functionality could be better. It's there… more »

Which solution did I use previously and why did I switch?

As resellers, we also work with Cisco and some Forcepoint solutions. I like that in Cisco there's more security parts, like IPS, and a Demandware engine. I like Cisco, in general, more than Palo Alto if I'm comparing the two. However, from an application perspective, our application's usability and… more »

What other advice do I have?

In general, I prefer hardware, and Palo Alto's is quite good. However, we have a couple of virtual deployments for cases as well. I would definitely recommend the solution. It's one of the best firewalls on the market. I've worked with four different vendors in the past, and some of the most mature… more »
Get our free report covering Cisco, Fortinet, Palo Alto Networks, and other competitors of Cisco Firepower NGFW Firewall. Updated: September 2020.
442,517 professionals have used our research since 2012.