Compare Check Point CloudGuard Network vs. Juniper vSRX
Sponsored
 | Anonymous User Data Analyst at a hospitality company |
| Anonymous User Network Security Engineer at a government |
| Anonymous User Senior Solutions Architect at a computer software company |
Find out what your peers are saying about Fortinet, Netgate, Cisco and others in Firewalls. Updated: February 2021.
465,891 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"I like the user interface because the navigation is very easy, straightforward on your left side pane you have all the sites that you need to browse. Unlike any other firewalls, it's pretty straightforward."
"We have multiple secure internal networks linked with our plants. We are from a oil company, so we have multiple plant areas which need to have restricted network access. Therefore, we are using it for restricting access to the plant area."
"The initial setup was completely straightforward."
"I would say the Firepower module is most valuable. I'm trying more to transition to this kind firewall. I had to study a little on Palo Alto Networks equipment. There is a lot I have to learn about the difference."
"The feature that I found most valuable is the overall stability of the product."
"The stability of Cisco ASA is excellent compared to other products on the market. Because of our customer experience as an integrator company, our clients never report any performance problems. We have a good performance reputation with Cisco ASA."
"Right now, Cisco ASA NGFW has given us a lot of improvement. We are planning to move to a new facility and will be a much larger organization."
"Cisco ASA NGFW significantly improves our bank. It protects any high-value products that we use from hackers, viruses, malware, and script-bots. It gives us metrics on network traffic as well as what kind of attacks we are getting from the outside."
"It's a high-performance device. The network performance is also really good. We check how much time it takes for the servers. Our network performance has increased since using this solution."
"The most valuable feature of this solution is that you can start off with a simple firewall and expand it to UTM."
"The program is very stable."
"We find Check Point valuable because they are 100% focused on security. It totally closes the potential vulnerability channel. We can check our mail and our attachments and we can scan everything easily. We get an immediate report about the situation of the attachments. We can discover if the target's security attack was started from phishing, etc. We also enjoy using the additional features that protect our internal customer from targeted attacks."
"The IPS, application and URL filtering, as well as Identity Awareness, are all very valuable features."
"A unique architecture makes this product stand out from other solutions."
"As per the solution's blade design, there are many options. For example, you have to buy a UTM blade and an advanced malware blade, etc. If the blade license is there, we can configure from the firewall GUI."
"The most valuable feature for us is the cluster support."
"The features we found most valuable are using the IDS and IPS during protection. The application filtering feature is great."
"It's much faster to deploy a power source. If you need to deploy a firewall in the cloud of software, it's much easier and much faster than deploying the office firewall in a rush."
"The initial setup was very straightforward. There was no problem. The initial deployment took about one hour."
"There are a few valuable features that offer very good quality on the solution. Especially NetScreen. We used to use NetScreen for the the product line. It was a very mature solution, very robust, easy to configure, easy to manage, etc. It made it easy to do everything."
"The architecture of the OS in Juniper is very good. It's flexibility, scalability, and the technicality is also good."
"Juniper is more flexible with the commit check and the commit confirmed command. The design of the forwarding and contract plan in the operating system is very important for the performance when we have very big traffic."
"I'm told the solution is the fastest, and, so far, I do find that to be the case."
"It's a very powerful solution and the firewalls offer high performance"
Cons
"If I need to download AnyConnect in a rush, it will prompt me for my Cisco login account. Nobody wants to download a client to a firewall that they don't own."
"Most of the time, when I try to run Java, it is not compatible with ASA's current operating systems."
"We have to rely on Cisco ASDM to access the firewall interface. This needs improvement. Because we have a web-based interface, and it is a lot more user-friendly."
"The installation and integration of Cisco ASA with FirePOWER can be improved. The management with Fortigate is easier than Cisco ASA on FirePOWER. The management side of Cisco ASA can be improved so it can be more easily configured and used."
"One of my main concerns, an area that could use improvement is in adjusting the need to buy a license to enable features."
"Usually, the customers are satisfied, but I am going to recommend that all clients upgrade to FirePOWER management. I want Cisco to improve the feature called anti-spam. We use a Cisco only email solution, that's why we need the anti-spam on email facility."
"There is no support here in Georgia. If something goes wrong, support is not always very helpful with the other firewalls or other products."
"Cisco should improve its user interface design. There is a deep learning curve to the product if you are a newcomer."
"The initial setup is difficult. It took me three tries to get it right. The setup took two or three hours."
"The management console can be simplified because at the moment, it is a bit of a challenge to use."
"It is a very expensive program and there are additional costs despite the standard licensing fees."
"The stability of the solution could be improved, but this is the problem of all the solutions in the market. This isn't just a problem specific to Check Point."
"Sometimes, if you aren't familiar with the solution, it can be a bit complex, but it does become easier to use with time. However, every time they launch a new version, it becomes more complex and you need to take time to get familiar with all the changes. For every version that they upgrade, you need to upskill yourself."
"It can be difficult to install properly without prior training"
"If you compare the GUI with the Palo Alto and Forcepoint in the Cisco, they're very easy. Check Point, due to its design, is a little bit complex. They should make the GUI easy to use so that anyone can understand it easily, like Fortinet's GUI. Many companies end up using Fortinet because the GUI is very easy, and there's no need for training. They just deploy the box and do the configuration."
"Our biggest complaint concerns the high resource usage for IDP/IPS, as we cannot turn on all of the features even with new hardware."
"The pricing still needs some improvement."
"he stability could be improved."
"They really need to improve the GUI."
"I've talked to people that say Juniper now, as a device, can be a solution for a data center, but in the past, I have not seen this as being possible."
"We have some weird errors and some weird behavior on the solution occasionally. The device gets buggy without anyone touching it. It would work and then suddenly stop. Sometimes you need to just move the cards out and restart it again, and it will work. The solution itself, the hardware and the software, there must be some bugs that need to be dealt with."
"In the next release, I would like to see improvements made to the GUI because it isn't very good."
"We worked with Cisco's support and Juniper's support and there are some differences, to be honest, Cisco is more available and is more competent at addressing our cases."
"It could use more tutorials."
"Licensing is expensive compared to other solutions."
"The cost is a big factor for us. This is why we are using it only in our restricted area. They are very much higher than their competitors in the market."
"We paid about $7,000 for the Cisco firewall, plus another small Cisco router and the lead switch. It was under the combined license. It's a final agreement."
"Watch out for hidden licensing and incredibly high annual maintenance costs."
"I bought a license for three years and it was really affordable."
"With AnyConnect, it depends on your license. It depends on the number of concurrent users you want to connect."
"This solution might be expensive, but it is economical in the long run."
"Some of our customers would be more likely to standardize on Cisco equipment if the cost was lower because a lot of people install cheap equipment."
"On average, it is normally on the lower end, being less expensive than Palo Alto or Cisco."
"It is more expensive than other solutions and would be more competetive in the market if it came down in price."
"We pay approximately €150,000 ($166,000 USD) per year."
"Licensing is simply by the number of hosts that you are looking to protect within your environment. It makes it much easier to ensure that you are covering your environment."
"There is flexibility in the different licensing models that are offered."
"The pricing is pretty high, not just for your capital, for what you have to pay upfront, but for what you pay for your annual software renewals as well, compared to a lot of other vendors. Check Point is near the top, as far as how much it's going to cost you."
"Pricing of CloudGuard is pretty fair when you have a single account. It's comparable with other cloud providers. But for our use case, it got really pricey when we had to deploy multiple CloudGuards on multiple accounts in different regions, because you can't have CloudGuard protecting multiple regions. That's the big thing."
"The pricing and licensing have been good. We just had to do a license increase for our portion of it. We had that done within a couple of days. Given the fact that it's purely a software-based license, it ends up being even quicker than doing it for an on-prem firewall."
More Check Point CloudGuard Network Pricing and Cost Advice »
"After some research, I think that the cost of Juniper is more than Check Point, Palo Alto, and Fortinet."
"As a customer, the pricing is good for us."
"The pricing is reasonable."
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
465,891 professionals have used our research since 2012.
Top Answer:
When you compare these
firewalls you can identify them with different features, advantages,
practices and… more »
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Ask a question
Earn 20 points
Ask a question
Earn 20 points
Compared 34% of the time.
Compared 15% of the time.
Compared 6% of the time.
Compared 6% of the time.
Compared 1% of the time.
Compared 32% of the time.
Compared 13% of the time.
Compared 8% of the time.
Compared 8% of the time.
Compared 6% of the time.
Compared 52% of the time.
Compared 21% of the time.
Compared 10% of the time.
Compared 8% of the time.
Compared 5% of the time.
Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv
CloudGuard IaaS, Check Point vSEC, CloudGuard IaaS, Check Point Virtual Systems, Check Point CloudGuard Network Security
Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.
Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.
Check Point CloudGuard provides unified cloud native security for all your assets and workloads, giving you the confidence to automate security, prevent threats, and manage posture – everywhere – across your multi-cloud environment.
The vSRX offers the same features as physical SRX Series firewalls but in a virtualized form factor for delivering security services that scale to match network demand. It offers the same features as the SRX appliance, including core firewall, robust networking, full next-gen capabilities, and automated life-cycle management. It handles speed up to 100 Gbps. It supports Juniper Contrail, OpenContrail, and third-party software-defined networking (SDN) solutions and integrates with cloud orchestration tools. Deployed in your private cloud, vSRX protects against the lateral spread of advanced threats between virtual machines within your network borders. It provides scalable application security for dynamic workloads and protects mission-critical applications from known and unknown threats. Also the vSRX virtual firewall helps you seamlessly extend your private cloud into public cloud environments, securely moving data and workloads with ease. As a VPN gateway, the vSRX provides remote users with safe access to their workloads. As a segmentation gateway, the vSRX protects public-cloud workloads by blocking lateral threats using application policies that help maintain security and compliance.
Learn more about Cisco ASA Firewall
Learn more about Check Point CloudGuard Network
Learn more about Juniper vSRX
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
Physicians Choice Laboratory Services, Helvetica Insurance
Expedient Data Centers
Financial Services Firm17%
Comms Service Provider14%
Manufacturing Company10%
Computer Software Company7%
Comms Service Provider35%
Computer Software Company22%
Media Company4%
Government4%
Financial Services Firm17%
Computer Software Company17%
Energy/Utilities Company11%
Government11%
Computer Software Company32%
Comms Service Provider22%
Government8%
Insurance Company4%
Comms Service Provider50%
University25%
Financial Services Firm13%
Computer Software Company13%
Comms Service Provider44%
Computer Software Company18%
Government5%
Media Company4%
Small Business36%
Midsize Enterprise26%
Large Enterprise38%
Small Business27%
Midsize Enterprise20%
Large Enterprise53%
Small Business39%
Midsize Enterprise27%
Large Enterprise33%
Small Business45%
Midsize Enterprise20%
Large Enterprise35%
Find out what your peers are saying about Fortinet, Netgate, Cisco and others in Firewalls. Updated: February 2021.
465,891 professionals have used our research since 2012.
Check Point CloudGuard Network is ranked unranked in Firewalls with 22 reviews while Juniper vSRX is ranked 21st in Firewalls with 11 reviews. Check Point CloudGuard Network is rated 8.4, while Juniper vSRX is rated 8.2. The top reviewer of Check Point CloudGuard Network writes "Unified Security Management has enabled us to combine our on-prem appliances and cloud environments". On the other hand, the top reviewer of Juniper vSRX writes "Fast with good usability and fairly scalable". Check Point CloudGuard Network is most compared with Fortinet FortiGate, Cisco Firepower NGFW Firewall, Palo Alto Networks NG Firewalls, Palo Alto Networks WildFire and pfSense, whereas Juniper vSRX is most compared with Juniper SRX, pfSense, Fortinet FortiGate-VM, Cisco Firepower NGFW Firewall and Trend Micro Deep Security.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.