We performed a comparison between Cisco Secure Firewall vs Juniper SRX based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: The two solutions are very comparable. Each of them have a good set of features, and the solution you choose will ultimately be dependent on your company’s specific preferences and requirements.
"It is user friendly, and has all the features you need."
"The most valuable feature of Fortinet FortiGate is URL filtering."
"The stability of the solution is excellent, as it is with other Fortinet products."
"The interface is very good."
"The solution is stable."
"There is an easy process for configuring it, and it is straightforward to implement the device from scratch."
"The most valuable feature of Fortinet FortiGate is security. They are known for efficiency and are on the top of Gartner Quadrant reviews. Fortinet FortiGate has an easy-to-use platform with a good graphical interface. The configuration is simple and the solution provides an overall good layer of security."
"The most valuable feature is the interface, which is very user friendly. We are utilizing most of the features, like content filtering. The firewall is powerful."
"Our company operates in Saudi Arabia, primarily working with government sectors. If any hardware malfunctions, the defective device is removed, and we receive a replacement from the reseller. We have not encountered any issues related to delays in receiving replacements for malfunctioning devices which has been beneficial."
"One of the nice things about Firepower is that you can set it to discover the environment. If that is happening, then Firepower is learning about every device, software operating system, and application running inside or across your environment. Then, you can leverage the discovery intelligence to get Firepower to select the most appropriate intrusion prevention rules to use for your environment rather than picking one of the base policies that might have 50,000 IPS rules in it, which can put a lot of overhead on your firewall. If you choose the recommendations, as long as you update them regularly, you might be able to get your rule set down to only 1,000 or 1,500, which is a significant reduction in a base rule set. This means that the firewall will give you better performance because there are less rules being checked unnecessarily. That is really useful."
"Cisco ASA NGFW significantly improves our bank. It protects any high-value products that we use from hackers, viruses, malware, and script-bots. It gives us metrics on network traffic as well as what kind of attacks we are getting from the outside."
"The interface is user-friendly."
"They are easy to maintain."
"Firepower has reduced our firewall operational costs by about 25 percent."
"The ASA 55-x range is a solid and reliable firewall. It secures the traffic for normal purposes."
"Its security and filtering are most valuable. Every layer of data that comes into the organization goes through it. After setting up the criteria, it automatically filters the traffic. We don't have to check it often."
"The IPS functionality of Juniper SRX is useful in the telecom industry."
"The deployment is quite easy and fast."
"The solution has proven to be quite stable."
"It is very fast and very easy to maintain. Another nice part of it is that you can easily extract the logs and move them over to a security operations center."
"When compared to Palo Alto, Juniper is a better choice when it comes to the enterprise network and connectivity."
"The CLI works perfectly."
"Most of our clients use it as a traditional firewall, blocking Layer 3 and Layer 4, blocking by transport."
"I like the Junos OS, which has been very good for me. It's very clever."
"As far as wanting more scalability or things in the network diagram, it's going to cost you."
"Fortinet already improved FortiGate, but in the current market, many brands of security devices have improved together. Fortinet still needs to catch up with market standards. Fortinet is lacking in features in comparison to competitors."
"Stability and technical support are the two major issues I have found with Fortinet."
"The security of Fortinet FortiGate could improve."
"Fortinet FortiGate can be integrated with different platforms. They have integrations in place, but I can't say they're 100%."
"At first glance, the interface for the device is very confusing."
"We would like to see an upgrade to the VPN feature, we are using the VPN from outside of our office and there is a limitation to 10 connections, more connections would be suitable."
"Lacks training for new features."
"It integrates with other security products from Cisco, but sometimes, there can be glitches or errors."
"We see a lot of vendors in the market with a lot of niche products. I understand that it's difficult to cover everything, but making it more open for integration with other vendors would be a value add for Cisco."
"On the VPN side, Firepower could be better. It needs more monitoring on VPNs. Right now, it's not that good. You can set up a VPN in Firepower, but you can't monitor it."
"Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version."
"One of the challenges we've had with the Cisco ASA is the lack of a strong controller or central management console that is dependable and reliable all the time."
"I would like to see them release a patch for ASAv with cross-platform FirePower integration."
"I believe that the current feature set of the device is very good and the only thing that Cisco should work on is improving the user experience with the device."
"A major area of improvement would be to have more functionality in public clouds, especially in terms of simplifying it. The high availability doesn't work right now because of the limitations in the cloud."
"I've noticed that the management interface could use some updates and upgrades."
"Juniper SRX Series Firewall has to improve its web content site, like web filtration."
"The GUI needs to be easier to handle."
"Juniper needs to focus more on their perimeter firewalls."
"The Juniper SRX product needs to improve in terms of innovation."
"The capacity can be limiting. We have outgrown its capacity. You can only scale up to a certain extent, depending on the device purchased."
"Improvements can be made to the GUI. The GUI can be improved by creating policies to handle IPS requirements. The configuration should be a one-step process. This would make it easier to complete the setup to register the time of operation."
"It would be good if Junos had "unique commands" between all hierarchical levels, discarding the use of the "Run" command."
Cisco Secure Firewall is ranked 4th in Firewalls with 112 reviews while Juniper SRX Series Firewall is ranked 19th in Firewalls with 18 reviews. Cisco Secure Firewall is rated 8.2, while Juniper SRX Series Firewall is rated 7.8. The top reviewer of Cisco Secure Firewall writes "Includes multiple tools that help manage and troubleshoot, but needs SD-WAN for load balancing". On the other hand, the top reviewer of Juniper SRX Series Firewall writes "Useful telecom industry functionality, simple deployment, but lacking features". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Palo Alto Networks NG Firewalls, whereas Juniper SRX Series Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Check Point NGFW, Palo Alto Networks NG Firewalls and Meraki MX. See our Cisco Secure Firewall vs. Juniper SRX Series Firewall report.
See our list of best Firewalls vendors and best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.