• Home
  • Cisco Sourcefire SNORT vs. Fortinet FortiWeb

Cisco Sourcefire SNORT vs Fortinet FortiWeb comparison

Cancel
You must select at least 2 products to compare!
Cisco Logo

Cisco Sourcefire SNORT

Read 18 Cisco Sourcefire SNORT reviews
2,112 views|1,553 comparisons
94% willing to recommend
Fortinet Logo

Fortinet FortiWeb

Read 83 Fortinet FortiWeb reviews
9,652 views|6,970 comparisons
88% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Intrusion Detection and Prevention Software (IDPS)
March 2024
Executive Summary

We performed a comparison between Cisco Sourcefire SNORT and Fortinet FortiWeb based on real PeerSpot user reviews.

Find out what your peers are saying about Darktrace, Vectra AI, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS).
To learn more, read our detailed Intrusion Detection and Prevention Software (IDPS) Report (Updated: March 2024).
Download the complete report
767,847 professionals have used our research since 2012.
Featured Review
Carlos Reis
Offer a convenient and effective way to implement strong security measures
Anonymous User
Works fine for classic websites and simple load balancing but lacks specialized protection
The WAF profiles has been most effective at mitigating web-based threats – probably something standardized, but again, we haven't tested it on... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events.""Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly.""Solid intrusion detection and prevention that scales easily in very large environments.""The solution is rather easy to use.""In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well.""It has a huge rate of protection. It's has a low level of positives and a huge rate of threat protection. It's easy to deploy and easy to implement. It has an incredible price rate compared to similar solutions.""The solution is stable.""It is quite an intelligent product."

More Cisco Sourcefire SNORT Pros →

"The most important feature of this solution is protection from attack.""One of the big advantages of using Fortinet FortiWeb is all the Fortinet family solutions use the same user interface and logic. This makes it easy to use, configure, manage, and understand if you have used one of their solutions before or are wanting to implement other Fortinet solutions in the future. Additionally, all Fortinet solutions can be managed with one application called FortiManager.""This product is very user-friendly.""The most valuable features in Fortinet FortiWeb are sandboxing and threat prevention.""The ease of configuration is valuable. We have Azure WAF, we have OCI WAF, and we also have Cloud Armor for GCP, but their configuration isn't very easy. It's pretty simple in FortiWeb, and we can enable or configure whatever we want.""The anti-defacement feature is very useful because it looks for web changes over time to protect pages.""High-performance and detection engines, provide a high rate of exposure of web attacks.""Auto Learn feature: Makes policy additions or deletions for my customers very simple​"

More Fortinet FortiWeb Pros →

Cons
"The solution's approach to managing traffic blocking is confusing and impractical.""While the alerts they offer are good, it could improve it in the sense that they should be more detailed to make the alerts more useful to us in general. Sometimes the solution will offer up false positives. Due to the fact that the alerts aren't detailed, we have to go dig around to see why is it being blocked. The solution would be infinitely better if there was just a bit more detail in the alert information and logging we receive.""The cloud can be improved.""The implementation could be a bit easier.""The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment.""Performance needs improvement.""The customization of the rules can be simplified.""Integration with other components — even Cisco's own products — can be enhanced to improve administrative experience."

More Cisco Sourcefire SNORT Cons →

"HA Architecture needs improvement. I would improve it by working on AP HA.""The solution could improve by being able to handle different use cases.""The initial setup is complex.""When we look at the incident reports in the dashboard, they are available for a maximum duration of 24 hours. They should provide more time for the analysis and increase the duration of the availability of these reports. Currently, it gives the options for 5 minutes, 1 hour, and 24 hours. It would be excellent if there are more options for a longer time period. It may be configurable, but I don't know how to do it.""For advanced users, it would be really useful to have access and the ability to manipulate packets. If we can access and manipulate the contents of packets, even encrypted packets... that would be powerful. Since we're looking at packets arriving at our network, we would have the private key to access those packets and their information.""They can introduce a scaled-down version for the SMB market. It would be very competitive in the environment.""Centralized configuration using FortiManager – like what exists for NGFW FortiGate appliances - would improve the configuration.""I would like to see the Application Delivery Control (ADC) and Web Application Firewall (WAF) combined in one device."

More Fortinet FortiWeb Cons →

Pricing and Cost Advice
  • "We have a three-year license for this solution."
  • "Licensing for this solution is paid on a yearly basis."
  • "I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."
  • "The cost is per port and can be expensive but it does include training and support for three years."

    • More Cisco Sourcefire SNORT Pricing and Cost Advice →

  • "Cheaper than others."
  • "FortiWeb can be purchased in VM mode for a lower price and the same features."
  • "Keep a loose margin between your actual bandwidth and the product sizing when using hardware appliances. Only virtual machines are upgradable to larger sizes."
  • "​It really pays off to buy licences for multiple years​."
  • "​The pricing is reasonable."
  • "The license cost depends on the size of the box or the size of the solution. It can go from €200 Euros to a few hundred thousand Euros a year depending on your size."
  • "The solution gives us the best price to performance ratio."
  • "The costs are standard. We pay around $1,600 yearly."

    • More Fortinet FortiWeb Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
    See Recommendations
    767,847 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Cisco Sourcefire SNORT?
    Top Answer:The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.
    Read all 17 answers   →
    What is your experience regarding pricing and costs for Cisco Sourcefire ...
    Top Answer:The product is inexpensive compared to leading brands such as Palo Alto or Fortinet. It is cheaper than Palo Alto and comparable to Fortinet. It also depends on Cisco’s discount. Sometimes it's… more »
    Read all 5 answers   →
    What needs improvement with Cisco Sourcefire SNORT?
    Top Answer:The solution has some stability issues. Also, it's complicated compared to other products like FortiGate.
    Read all 17 answers   →
    What do you like most about Fortinet FortiWeb?
    Top Answer:The product has a very user-friendly dashboard.
    Read all 47 answers   →
    What is your experience regarding pricing and costs for Fortinet FortiWeb?
    Top Answer:The product is expensive. I rate the pricing a ten out of ten.
    Read all 37 answers   →
    What needs improvement with Fortinet FortiWeb?
    Top Answer:The software's support services could be better compared to Sophos.
    Read all 47 answers   →
    Ranking
    13th
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    2,112
    Comparisons
    1,553
    Reviews
    5
    Average Words per Review
    392
    Rating
    8.0
    4th
    out of 79 in Web Application Firewall (WAF)
    Views
    9,652
    Comparisons
    6,970
    Reviews
    21
    Average Words per Review
    637
    Rating
    7.8
    Comparisons
    Also Known As
    Sourcefire SNORT
    Learn More
    Cisco
    Fortinet
    Overview

    Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds.

    Fortinet FortiWeb is a Web Application Firewall (WAF) that protects your web applications and APIs from attacks targeting known as well as unknown vulnerabilities. As the surface of your web applications evolves with each change of existing features and deployment of new features, your APIs are left exposed. Fortinet FortiWeb provides the board protection capabilities required to protect web applications without sacrificing performance or manageability.

    Fortinet FortiWeb is an automatic, advanced multi-layer solution that provides secure protection by discerning irregular behavior and distinguishing between malicious and benign anomalies. In addition, the approach delivers powerful bot mitigation capacities which authorize harmless bots to connect while blocking malicious bot activity securely. Regardless of where an application is hosted, Fortinet FortiWeb will safeguard business applications by providing deployment options, such as virtual machines, hardware appliances, and containers that can be deployed in the data center, cloud environments, or in the cloud-native SaaS solution.

    Fortinet FortiWeb Features and Benefits

    APIs and web applications have become integral to the rising demand for business-critical applications. Now more than ever, businesses are in need of an automatic firewall that will provide them with security, without sacrificing performance or reliability. Fortinet FortiWeb offers a variety of features and benefits, including:

    • Security fabric integration: FortiWeb integrates with other Fortinet solutions to provide advanced protection from persistent threats.

    • Proven web application and API protection: FortiWeb safeguards applications from all DDOS attacks, malicious bot attacks, and OWASP Top-10 threats.

    • Advanced visual analytics: FortiWeb offers a unique visual reporting tool that other WAF solutions don’t by providing a detailed analysis of attack elements and sources.

    • Hardware-based acceleration: With fast and secure traffic encryption and decryption, FortiWeb provides best-in-class WAF protection.

    • ML-based threat detection: FortiWeb delivers multi-layer machine learning defense protection to defend against zero-day attacks and reduce false positives.

    • False positive mitigation tools: Reduce daily management of policies through advanced tools to guarantee only unwanted traffic is blocked.

    Reviews from Real Users

    Fortinet FortiWeb offers an industry-leading Web Application Firewall, and users are satisfied with it for a number of reasons, including the ability to control everything from the dashboard and the PCI-compliant reports it offers.

    Carlos P., director of business and digital transformation at SERNIVEL3, notes, "You have the ability to control everything from one single dashboard."

    A director at a tech service company, says, "Banks have to be compliant with PCI and other things, and FortiWeb is absolutely amazing in terms of providing these reports. Otherwise, they will have to spend a lot of time on them."

    Sample Customers
    CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia
    Lush, Barnabas Health, Options, Riverside Healthcare, Hillsbourough County Schools, Columbia Public Schools, Schiller AG
    Top Industries
    REVIEWERS
    Computer Software Company27%
    Financial Services Firm18%
    Comms Service Provider18%
    Government9%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Government9%
    Financial Services Firm8%
    Comms Service Provider7%
    REVIEWERS
    Financial Services Firm24%
    Comms Service Provider20%
    Computer Software Company17%
    Government10%
    VISITORS READING REVIEWS
    Educational Organization37%
    Computer Software Company12%
    Financial Services Firm7%
    Comms Service Provider6%
    Company Size
    REVIEWERS
    Small Business22%
    Midsize Enterprise39%
    Large Enterprise39%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise13%
    Large Enterprise63%
    REVIEWERS
    Small Business49%
    Midsize Enterprise22%
    Large Enterprise28%
    VISITORS READING REVIEWS
    Small Business18%
    Midsize Enterprise46%
    Large Enterprise35%
    Buyer's Guide
    Intrusion Detection and Prevention Software (IDPS)
    March 2024
    Download Free Report
    Find out what your peers are saying about Darktrace, Vectra AI, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS). Updated: March 2024.
    DOWNLOAD NOW
    767,847 professionals have used our research since 2012.

    Cisco Sourcefire SNORT is ranked 13th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews while Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews. Cisco Sourcefire SNORT is rated 7.6, while Fortinet FortiWeb is rated 8.0. The top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". On the other hand, the top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention and KerioControl, whereas Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall.

    We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.