We performed a comparison between Cisco Secure Firewall and Fortinet FortiGate-VM based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Cisco Secure Firewall provides important functionalities like protection against threats, visibility into applications, efficient problem-solving, compatibility with other Cisco offerings, and impressive data transfer rates. Fortinet FortiGate-VM stands out for its robust security features, geofencing capabilities, user-friendly interface, and ability to adapt to varying needs.
The reviews highlight various areas where both the Cisco Secure Firewall and the Fortinet FortiGate-VM need improvement, including network performance, policy administration, customization options, centralized management, logging functionality, public cloud functionality, cloud management, technical support, MFA offerings, web filtering options, application inspection, GUI features, availability and delivery, setup process, data center clustering, throughput enhancement, web application firewall integration, integration simplicity, policy customization, and web-filtering configuration improvement.
Service and Support: The opinions on customer service for Cisco Secure Firewall are divided, with some customers appreciating their technical support, while others express concerns about delays and difficulties. Fortinet FortiGate-VM receives mixed reviews, with some satisfied customers and others suggesting that their support could be improved.
Ease of Deployment: The setup process for Cisco Secure Firewall can be more complex depending on the user's familiarity and environment, while Fortinet FortiGate-VM offers a generally straightforward and easy initial setup, with assistance provided by Fortinet.
Pricing: The cost of setting up Cisco Secure Firewall can vary, and some reviewers find it pricey due to additional expenses for licensing, support, and hardware. Fortinet FortiGate-VM is seen as competitive and more affordable than certain alternatives. It provides flexible pricing options and includes support for entitlement in the licensing fees. However, costs may rise when scaling or adding extra features.
ROI: Cisco Secure Firewall offers different levels of ROI depending on how it is used and the overall system design, whereas Fortinet FortiGate-VM delivers enhanced security and stability, potentially resulting in ROI.
Comparison Results: Fortinet FortiGate-VM is the preferred choice when comparing it to Cisco Secure Firewall. Users find the initial setup of Fortinet FortiGate-VM to be straightforward and easy. Fortinet FortiGate-VM is highly praised for its strong security features, user-friendly interface, and easy deployment.
"The most valuable features of Fortinet FortiGate are the ability to work in proxy mode, which other solutions, such as Palo Alto cannot. There are some features that are better that come at no extra license or subscriptions cost, such as basic SD-WAN. The DLT is useful, other solutions have the same feature too, such as Palo Alto."
"One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises. You can actually do both. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. They're pretty reliable and consistent. One of the reasons why I started using the product was their single pane of management. I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface. I don't have to log into one interface for the firewall, another one for the access points, and another one for the switches. These firewalls have access point controller functionality built right into the system, so I don't even have to purchase additional devices to manage them."
"This version is stable. I don't have any issues with this solution, in our environment, it works well."
"It has improved our security capabilities."
"It's an easy solution to set up."
"The most valuable features are the policies, filtering, and configuration."
"The web filtering feature and the intrusion protection system are the most valuable. It is a resilient appliance. I never had an issue with it in terms of any security breaches."
"The most valuable features of Fortinet FortiGate are the different types of profiling. It has been the most effective for me. The WAF and the antivirus profile are the most effective in network protection."
"The configuration support is very good. You can find a lot of configuration samples and troubleshooting tips on the internet, which is very good."
"The firewall and policy side are easy to use."
"We have multiple secure internal networks linked with our plants. We are from a oil company, so we have multiple plant areas which need to have restricted network access. Therefore, we are using it for restricting access to the plant area."
"The most valuable feature of this solution is its ability to integrate vertically."
"A stable, reliable solution used to protect the network's perimeter."
"The web interface was easy for me. The configuration is logical, so it's easy to use and easy to understand how to protect, how to open a port, how to manage and how to route a device. That's why I prefer Cisco. It's robust and I never have issues with the hardware. That's why I choose Cisco and not another vendor."
"The ASDM (Adaptive Security Device Manager) which is the graphical user interface, works out, and Cisco keeps it current."
"The Firepower IPS, based on Snort technology, has an amazing detection engine and historical analysis capability of files that eases threat investigations a lot."
"The most valuable features we have found to be the VPN, ease of use, and overall simplicity."
"Regarding specific features, I appreciate the option for external selection, where you can choose either to use a default or create a self-description. This simplifies the process compared to other vendors that require creating a test extension profile and then applying it to the installation. With FortiGate, there is a streamlined approach. From the benefits perspective, clients mainly see cost reduction, especially with FortiGate VM Firewall, as it eliminates the need for additional hardware."
"Fortinet FortiGate-VM is very easy to create the user of VPN, allowing them to use it quickly. Additionally, the integration and interface are good."
"The tool's most valuable feature is its ability to deploy it on live physical hardware. Specifically, when providing firewall services for clients, we can leverage such hardware appliances to support multiple customers on the same hardware."
"The thing that I like the most is that they're very willing to work with us to resolve issues that they haven't taken care of before in their product."
"There is an interesting possibility of building a tunnel to a firewall from access points. We use this feature for small branch offices with one to two employees with access to central RDP servers."
"Its interface is good. It comes with a lot of features, and its performance is also very good."
"I find the simplicity to be most valuable."
"We would like to have the ability to disable some of the security functionalities."
"With FortiGate, the main complaint that I have heard is about the technical support."
"Fortinet FortiGate could improve by having better visibility. Palo Alto has better visibility."
"Application management can be improved."
"FortiGate support could do some improvements on their IPv6 configuration. Right now it's still in the very early stage for utilizing in an enterprise level network environment."
"The feature which gives us a lot of pain is ASIC architecture."
"It needs more available central management."
"There are some complex administration tasks in their administration portal. That needs to be improved."
"We're getting support but there's a big delay until we get a response from their technical team. They're in the USA and we're in Africa, so that's the difficulty. When they're in the office, they respond."
"It can be improved when it comes to monitoring. Today, the logs from the firewalls could be improved a bit more without integrating with other devices."
"I would like to see more integration with third-party devices in general. There is great integration with Cisco devices, but there's not much integration with third-party devices."
"I think the ASA layer is thin. It's always Layer 3 or Layer 4 source controller and doesn't control the Layer 7 traffic. It's important, and you'll need an additional firewall."
"It doesn't have a proper GUI to do troubleshooting, so most people have to rely on the command line."
"The central management tool is not comfortable to use. You need to have a specific skill set. This is an important improvement for management because I would like to log into Firepower, see the dashboard, and generate a real-time report, then I question my team."
"I would like it if there was a centralized way to manage policies, then sticking with the network functions on the actual devices. That is probably the thing that frustrates me the most. I want a way that you can manage multiple policies at several different locations, all at one site. You then don't have to worry about the connectivity piece, in case you are troubleshooting because connectivity is down."
"The annual subscription cost is a bit high. They should try to make it comparable to other offerings. We have a number of Chinese products here in Pakistan, which are already, very cheap and have less annual maintenance costs compared to Cisco."
"There is always room for improvement in any solutions, including Fortinet's FortiGate-VM. Although the solution claims to have a superior throughput compared to other OEMs, upon closer examination and comparison, there is potential for significant improvement in this area. In today's rapidly evolving technology world, it is important to continuously strive for enhancement and development, and I believe Fortinet can make significant strides in this direction for the FortiGate-VM."
"VM should be more optimized."
"I have worked on some of the largest and smallest solutions that Fortinet sells and they all scale really well."
"Fortinet could improve the availability and delivery of its products. It takes four to six weeks for every purchase to arrive."
"The block, the clarity, the quarantine command, is not very user-friendly. You would have to do everything through the command line and I would have preferred if it wasn't a CLI."
"We have experience stability issues, when the product sizing is wrong or on configuration errors."
"The solution is fairly complex."
"The product may not be as robust as Palo Alto. However, unless you are a big bank, you probably won't need it to be."
Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews while Fortinet FortiGate-VM is ranked 9th in Firewalls with 113 reviews. Cisco Secure Firewall is rated 8.2, while Fortinet FortiGate-VM is rated 8.4. The top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". On the other hand, the top reviewer of Fortinet FortiGate-VM writes "An easy-to-manage and configure tool that provides ample documentation to help with the setup phase". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Palo Alto Networks NG Firewalls, whereas Fortinet FortiGate-VM is most compared with Azure Firewall, Palo Alto Networks VM-Series, Fortinet FortiOS, OPNsense and Zyxel Unified Security Gateway. See our Cisco Secure Firewall vs. Fortinet FortiGate-VM report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.