• Home
  • Cisco Secure Firewall vs. WatchGuard Firebox

Cisco Secure Firewall vs WatchGuard Firebox comparison

Cancel
You must select at least 2 products to compare!
Fortinet Logo

Fortinet FortiGate

Read 306 Fortinet FortiGate reviews
123,063 views|89,961 comparisons
90% willing to recommend
Cisco Logo

Cisco Secure Firewall

Read 404 Cisco Secure Firewall reviews
58,582 views|32,836 comparisons
83% willing to recommend
WatchGuard Logo

WatchGuard Firebox

Read 78 WatchGuard Firebox reviews
18,639 views|14,396 comparisons
95% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Cisco Secure Firewall vs. WatchGuard Firebox
March 2024
Executive Summary
Updated on Nov 23, 2022

We performed a comparison between Cisco Secure Firewall and WatchGuard Firebox based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

  • Ease of Deployment: Users of Cisco Secure Firewall share mixed reviews on deployment. Some find it easy while others say the setup is not straightforward. Users of WatchGuard Firebox say deployment is straightforward.
  • Features: Users of both solutions are happy with the products’ stability and scalability.

    Cisco Secure Firewall users like that the solution has good security and filtering and good application visibility and control. Users say they would like to see an improved interface and better logging functionality, and that it would be nice if the solution had a policy-based routing feature.

    Users of WatchGuard Firebox like that the solution is user-friendly, reliable, and has good performance in addition to good management features, and good site-to-site VPN. Users would like to see the web blocker feature and the reporting be improved.
  • Pricing: Users of Cisco Secure Firewall have mixed opinions on the pricing. Some consider it to be expensive. Others say it is comparable to other solutions. Users of WatchGuard Firebox say the solution is expensive.
  • Service and Support: Users of both solutions are satisfied with the technical support they receive.
  • ROI: Users of both solutions report a good ROI.

Comparison Results: The two solutions are very comparable. WatchGuard Firebox received slightly better ratings because it is easier to deploy than Cisco Secure Firewall.

To learn more, read our detailed Cisco Secure Firewall vs. WatchGuard Firebox Report (Updated: March 2024).
Download the complete report
768,415 professionals have used our research since 2012.
Featured Review
Will Alfaro
Researched Cisco Secure Firewall but chose Fortinet FortiGate: Nice GUI, easy to configure, and has a reasonably priced licensing model
Gyaneshwar Upadhyay
User friendly and easy to use GUI, but stability and scalability need improvement
Wandile Ntshalintshali
Organization improved exponentially, scaling at full capacity, and meets our needs specifically
WatchGuard Firebox has improved our organization one hundred percent from before we started using it.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"I like that you are able to manage FortiGate from the FortiManager to create a more centralized environment.""The solution is extremely reliable.""The security features are about the best that I've seen anywhere.""We've found the solution to be pretty stable.""We have been able to offer several services to customers in a single box.""We use the FortiGate Sandbox to detect zero-day vulnerabilities, such as anomalies or malware, that are unknown and have not yet been discovered.""It increases security posture and is helpful for firewall reporting, intrusion protection, web filtering, and SD-WAN implementation.""Centralized monitoring, policy management, and virtualized appliances allow us to take control over our public and private infrastructure."

More Fortinet FortiGate Pros →

"The transparency of the single UI to ensure security. A product has to be simple so that an administrator can use it.""The high-availability features, the VPN and the IPSec, are our top three features.""The most valuable feature is zone segmentation, which we utilize through the Firepower management console.""To be honest, all of the features that are provided, all the other vendor will also have. One feature we did find valuable was the CLI, it is more accurate. Additionally, I was happy with the customization, dashboards, access lists and interface.""You can also put everything into a nice, neat, little package, as far as configuration goes. I was formerly a command-line guy with the ASA, and I was a little nervous about dealing with a GUI interface versus a command line, but after I did my first deployment, I got a lot more comfortable with doing it GUI based.""The solution's dashboard is fine, and in terms of support, Cisco is better than other OEMs in the market.""Cisco ASA provides us with very good application visibility and control.""The TAC is always very helpful. We pay for Tier 1 support, so we get whatever we need from them. They always give us a solution. If they can't give us an answer that day, they get back to us within at least 24 hours with a solution or fix. I have never had a problem with the TAC. I would rate them as 10 out of 10."

More Cisco Secure Firewall Pros →

"It's hard to pick one feature over another. But if I had to pick one, the UTM would be the most valuable because of the notification. I get notified via email if there is any type of threat detection or alert, telling me something is wrong.""The most valuable features of the WatchGuard Firebox are all the security and updated features. You are able to configure the solution from the cloud platform and the application and web interface are very nice.""WebBlocker has the best URL category database ever.""There are many fantastic features.""WatchGuard Firebox is the most powerful firewall for Wi-Fi security.""Easy to change the model if you need more performance, with good cohesion in the whole lineup of devices.""What I found most valuable in WatchGuard Firebox is that it's a functional platform that works, and each of its features works well. The solution also has good reporting and dashboard capabilities. I also find the overall performance of WatchGuard Firebox great.""The most valuable are the VPN and proxy features."

More WatchGuard Firebox Pros →

Cons
"I haven't had a single issue since using Fortinet.""Fortinet FortiGate could improve by adding enhancements to FortiMail, FortiSOAR, and FortiDeceptor.""The platform's interface could improve.""Fortinet FortiGate could improve by having better visibility. Palo Alto has better visibility.""The Web-filter in this solution is not very good.""I'm not sure if it's something that they already have or are developing something, however, we need some dedicated features for container security.""One area for improvement is the performance on the bandwidth demands for smaller devices, as well as better web filtering.""In some cases, its initial setup could be hard for customers."

More Fortinet FortiGate Cons →

"Make the IPS baked-in.""Other products are becoming easier to access and configure. They are providing UI interfaces to configure, take backup, synchronize redundant machines, and so on. It is very easy to take backup and upgrade the images in those products. Cisco ASA should have such features. If one redundant machine is getting upgraded, the technology and support should be there to upgrade other redundant machines. In a single window, we should be able to do more in terms of backups, restores, and upgrades.""The graphical interface could be improved. From what I have seen, Fortinet, for example, has a nicer GUI.""It is confusing to have two management interfaces, e.g., ASDM and Firepower Management Center.""Firewalls, in general, were not really designed for normal IT personnel, but for firewall and network experts. Therefore, they missed a lot of options and did not provide any good reporting or improvement options.""Some of the features, like the stability, need to be improved.""The product crashes. We have a cluster of firewalls and we regularly get failovers.""One of my colleagues is using the firewall as an IPS, but he is worried about Firepower's performance... With the 10 Gb devices, when it gets to 5 Gbps, the CPU usage goes up a lot and he cannot manage the IPS."

More Cisco Secure Firewall Cons →

"The documentation for the System Manager/Dimension configuration, could be a little bit clearer... The use case where you have multiple sites with multiple firewalls, and one site that has the System Manager server and the Dimension server, wasn't really well defined. It took me a little bit of digging to get that to actually work.""It would be wonderful if the WatchGuard team develops nice products for threat intelligence.""Websense is an application that monitors and filters internet traffic. Websense was derived from WatchGuard. But when you go to WatchGuard to actually implement that particular feature, you have to use some type of additional feature and you have to pay for it, unfortunately. I think it should be free or free in the WatchGuard box itself, as an option. It would be nice if they didn't charge us for that.""I would like to have a little more control over access points and the ability to see the bandwidth that is passing through a specific access point. We are not able to see that. We can see what traffic is passing through the Firebox itself, but we can't identify if it is coming from a particular access point or not.""There are a couple of things I wished that it would do, but I can't think of those off the top of my head.""The solution is lacking a professional website, they should be updated more often.""The data loss protection works well, but it could be easier to configure. The complexity of data loss protection makes it a more difficult feature to fully leverage. Better integration with third-party, two-factor authentication would be advantageous.""The performance of the solution's processor needs to be faster."

More WatchGuard Firebox Cons →

Pricing and Cost Advice
  • "Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."
  • "These boxes are not that expensive compared to what they can do, their functionality, and the reporting you receive. Fortinet licensing is straightforward and less confusing compared to Cisco."
  • "Go for long term pricing negotiated at the time of purchase."
  • "Work through partners for the best pricing."
  • "The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."
  • "Easy to understand licensing requirements."
  • "​We saved a bundle by not needing all the past appliances from an NGFW.​"
  • "The cost is too high... They have to focus on more features with less cost for the customer. If you see the market, where it's going, there are a lot of players offering more features for less cost."

    • More Fortinet FortiGate Pricing and Cost Advice →

  • "Always plan ahead for three years. In other words, do not buy a firewall on what your needs are today, but try to predict where you will be three years from now in terms of bandwidth, security requirements, and changes in organizational design."
  • "I have to admit that the price is high. But I think it's worth it if the stability of your solution counts for you."
  • "It has a great performance-to-price value, compared to competitive solutions."
  • "Spec the right hardware model and choose the right license for your needs."
  • "Everything with Cisco is expensive. My advice is that there are a lot better options out in the market now."
  • "To discuss with Cisco Systems or their partners to gain the optimal price and to not consider, without verifying, the false information that Cisco ASA is very expensive."
  • "Cisco devices are for sure costly and budget could be an important constrain on selecting them as our security solution."
  • "​Price point is too high for features and throughput available.​"

    • More Cisco Secure Firewall Pricing and Cost Advice →

  • "Very competitive pricing regarding throughput compared to other alternatives."
  • "Cheap."
  • "The subscription that was purchased is for three years, but it is usually for one year at a time."
  • "The cheapest configuration, for maybe five people, is approximately $500."
  • "The price is so small that I don't pay attention to it anymore. I think we pay a few thousand dollars for two to three years, so about $100 per month. That's for all of our users. There is an additional cost if we want to go with a deeper licensing model, but we just pay for antivirus, IPS, and main product support."
  • "I haven't seen the pricing since 2017, but it was competitive. SonicWall, Barracuda, and WatchGuard were all about the same price when we did our last pricing."
  • "Each one, for the primary unit, was $8,600 and the High Availability unit was $2,000. That's with three years of subscription and support and the Total Security Suite."
  • "We only license our corporate one and the one we have at our DR site, we don't worry about the branches. It doesn't pay for us to license the ones at the branches. What they charge for what they call basic maintenance is extremely high for those little fireboxes."

    • More WatchGuard Firebox Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    See Recommendations
    768,415 professionals have used our research since 2012.
    Comparison Review
    Anonymous User
    Cisco ASA vs. Palo Alto Networks
    Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning the management options: How to add and rename objects. How to update a device. How to find log entries. Etc. Cisco ASA Fast Management Suite: The ASDM GUI is really fast. You do not have to wait for the next window if you click on a certain button. It simply appears directly. On the Palo, each entry to add, e.g., an application inside a security rule, takes a few seconds. Better “Preview CLI Commands”: I am always checking the CLI commands before I send them to the firewall. On the Cisco ASA, they are quite easy to understand. I know, Palo Alto also offers the “Preview Changes”, but it takes a bit more time to recognize all XML paths. Better CLI Commands at all: For Cisco admins it is very easy to parse a “show run” and to paste some commands into another device. This is not that easy on a Palo Alto firewall. First, you must change the config-output format, and second, you cannot simply paste many lines into another device, since the ordering of these lines is NOT correct by default. That is, it simply doesn’t work. ACL Hit Count: I like the hit counts per access list entry in the GUI. It quickly reveals which entries are used very often and which ones are never used. On the… Read more →
    Questions from the Community
    Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Read all 3 answers   →
    What is the biggest difference between Sophos XG and FortiGate?
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Read all 13 answers   →
    What are the biggest technical differences between Sophos UTM and Fortine...
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Read all 11 answers   →
    Which is better - Fortinet FortiGate or Cisco ASA Firewall?
    Top Answer:One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet… more »
    Read all 4 answers   →
    How does Cisco's ASA firewall compare with the Firepower NGFW?
    Top Answer:It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Which is better - Meraki MX or Cisco ASA Firewall?
    Top Answer: Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports… more »
    Read all 2 answers   →
    What is your primary use case for WatchGuard Firebox?
    Top Answer:We are providing our services to all WatchGuard customers in the region. 
    Read all 63 answers   →
    What is your primary use case for WatchGuard Firebox?
    Top Answer:We just use it as a secondary WiFi device. We're a small office and we needed to set up a WiFi device for a few of our… more »
    Read all 63 answers   →
    What is your primary use case for WatchGuard Firebox?
    Top Answer:We're a hospital and we use it for developing our incoming and outgoing policies, and we also use it for VPN.
    Read all 63 answers   →
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
    Learn More
    Fortinet
    Cisco
    WatchGuard
    Overview

    Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

    Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.

    The core features of Cisco Secure Firewall are multifaceted:

    • Advanced threat protection is achieved through a combination of intrusion prevention, malware detection, and URL filtering technologies.
    • For secure access, the firewall presents multiple options, including VPN, remote access, and single sign-on.
    • Its network segmentation capability is vital in creating barriers within the network to safeguard critical assets.
    • The firewall is scalable, effectively serving small businesses to large enterprises.
    • Management is streamlined through Cisco DNA Center, a central management system.

    The benefits of deploying Cisco Secure Firewall are substantial. It significantly reduces the risk of cyberattacks, thereby enhancing the security posture of an organization. This security also translates into increased productivity, as secure access means uninterrupted work. Compliance with industry regulations is another advantage, as secure access and network segmentation align with many regulatory standards. Additionally, it helps in reducing IT costs by automating security tasks and simplifying management processes.

    In practical scenarios, Cisco Secure Firewall finds diverse applications. It's instrumental in protecting branch offices from cyberattacks, securing remote access for various stakeholders, safeguarding cloud workloads, and segmenting networks to isolate sensitive areas.

    User reviews from PeerSpot reflect an overall positive experience with the Cisco Secure Firewall. Users appreciate its ease of configuration, good management capabilities, robust protection, user-friendly interface, and scalability. However, some areas for improvement include better integration capabilities with other vendors, maturity, control over bandwidth for end-users, and addressing software bugs.

    In summary, Cisco Secure Firewall is a comprehensive, versatile, and reliable security solution that effectively meets the security needs of various organizations. It offers a balance of advanced protection, user-friendly management, and scalability, making it a valuable asset in the realm of network security.

    WatchGuard Firebox is a versatile security solution primarily used for security purposes such as firewalling, VPN, and protecting networks from outside and inside threats. It is also used for routing, multi-factor authentication, vulnerability management, and segregating industrial networks from corporate networks. 

    The product is praised for scalability, stability, user-friendliness, reasonable pricing, and good technical support. Some users use it for web filtering and hosting web pages, while others – for remote access connections and mobile VPNs. Firebox offers great protection, good performance, and flexibility without licensing limitations.

    WatchGuard Firebox Features

    WatchGuard Firebox has many valuable key features, including:

    • Policy management
    • Strong security
    • High performance
    • Network configuration for multiple clients
    • Built-in SD-WAN
    • Application control
    • Threat detection and response
    • Network discovery
    • Intuitive interface

    WatchGuard Firebox Benefits

    Some of the benefits of using WatchGuard Firebox include:

    • IT administrators can create and implement policies for content filtering, VPNs, and network inspections.
    • The solution is easy to set up, manage, and maintain.

    Reviews from Real Users

    Below are some reviews and helpful feedback written by WatchGuard Firebox users.

    PeerSpot user Kelly C., IT Manager at a hospitality company, mentions, “One of the most valuable features is the Gateway AntiVirus. We scan all traffic as it's coming through. We also use spamBlocker to scrub spam. We use content filtering, which is critical in any corporate environment to make sure that people don't surf things they're not supposed to. WatchGuard has a very easy VPN and branch office VPN setup, so we use those pretty extensively too.It's very easy to use. In terms of performance, WatchGuard has always worked well for us. Regarding the reporting, I was in the Dimension server earlier today. It's very powerful. I like it. And the management features are easy to use. I like the fact that I can open up the System Manager client or I can just do it through the web if I'm making a quick change.”

    A Director of Information Technology at a retailer says, “Among the most valuable features is the ease of use — love the interface — of both the web interface and of the WatchGuard System Manager. It's a stable platform. The devices are pretty rock-solid.”

    Jason M., IT Director at a healthcare company, explains, “The policy monitoring and allowing different traffic flows are the most useful features for us; regulating which traffic comes in and out. In terms of the throughput and performance, we don't have a problem or any bottleneck there. We downgraded the size of our appliance because we're a small facility, and what we had before was actually too big. The one we are now going with seems to be doing a great job.” He also adds, “The management feature is pretty nice.”

    Steve R., President and Owner at Peak Communication Systems, Inc., comments, "It saves us time in the respect that we now have the template built for it so we can get in and get it done. We've had much less problems supporting Voice over IP technologies from different companies. Because our client base has grown over the years, we're probably saving 20 to 30 man-hours a month now that we've got this on a good stable level."

    Sample Customers
    1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
    There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
    Ellips, Diecutstickers.com, Clarke Energy, NCR, Wrest Park, Homeslice Pizza, Fortessa Tableware Solutions, The Phoenix Residence
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company15%
    Comms Service Provider8%
    Manufacturing Company6%
    REVIEWERS
    Financial Services Firm15%
    Comms Service Provider12%
    Computer Software Company12%
    Government8%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company16%
    Comms Service Provider9%
    Government6%
    REVIEWERS
    Manufacturing Company18%
    Construction Company11%
    Computer Software Company7%
    Real Estate/Law Firm5%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Comms Service Provider11%
    Government6%
    Educational Organization6%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise32%
    Large Enterprise41%
    REVIEWERS
    Small Business35%
    Midsize Enterprise24%
    Large Enterprise42%
    VISITORS READING REVIEWS
    Small Business24%
    Midsize Enterprise31%
    Large Enterprise45%
    REVIEWERS
    Small Business65%
    Midsize Enterprise22%
    Large Enterprise13%
    VISITORS READING REVIEWS
    Small Business42%
    Midsize Enterprise19%
    Large Enterprise39%
    Buyer's Guide
    Cisco Secure Firewall vs. WatchGuard Firebox
    March 2024
    Free Report: Cisco Secure Firewall vs. WatchGuard Firebox
    Find out what your peers are saying about Cisco Secure Firewall vs. WatchGuard Firebox and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    768,415 professionals have used our research since 2012.

    Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews while WatchGuard Firebox is ranked 13th in Firewalls with 78 reviews. Cisco Secure Firewall is rated 8.2, while WatchGuard Firebox is rated 8.6. The top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". On the other hand, the top reviewer of WatchGuard Firebox writes "Offers a streamlined deployment, intuitive interface and robust security features". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Sophos UTM, whereas WatchGuard Firebox is most compared with Netgate pfSense, Sophos XG, OPNsense, SonicWall TZ and Sophos UTM. See our Cisco Secure Firewall vs. WatchGuard Firebox report.

    See our list of best Firewalls vendors and best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.