Most Helpful Review
Researched Fortinet FortiGate-VM but chose Cisco ASA Firewall: Good stability, excellent technical support, and powerful intrusion detection
Find out what your peers are saying about Fortinet FortiGate-VM vs. Juniper vSRX and other solutions. Updated: November 2020.
447,439 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"It is a comprehensive suite and complete package."
"The integration and configuration were pretty straightforward."
"The transparency of the single UI to ensure security. A product has to be simple so that an administrator can use it."
"It provides security for our company and users."
"Among the top features are integrated threat defence and the fact that each virtual appliance is separate so you get great granular control."
"Its VPN and ASN features are very stable."
"The setup was straightforward. I was happy with the configuration and deployment of the solution, as it was quick."
"This solution has good security, and it's a good product. You can trust Cisco, and there's support as well, which is really good."
"It handles our current load with ease, and I think it can handle a bit more. It definitely can handle a lot more capacity than we currently use."
"FortiGate is a nice and very good product."
"The product is quite user-friendly so we didn't have a lot of issues that needed to be addressed."
"The standard features, including the filtering, are quite good. All the basic features are pretty useful for us."
"The most valuable features are site-to-site connections and UTM."
"The stability of the solution is good. We haven't faced any issues at all while using the product."
"The most valuables features are the ease of use and deployment."
"In terms of administration, it's perfect."
"The technical support has been good."
"It is easy for me to go in and update settings, make changes, or add/remove rules or security."
"The authentication part is seamless and easy for people."
"The features we found most valuable are using the IDS and IPS during protection. The application filtering feature is great."
"It's much faster to deploy a power source. If you need to deploy a firewall in the cloud of software, it's much easier and much faster than deploying the office firewall in a rush."
"The initial setup was very straightforward. There was no problem. The initial deployment took about one hour."
"There are a few valuable features that offer very good quality on the solution. Especially NetScreen. We used to use NetScreen for the the product line. It was a very mature solution, very robust, easy to configure, easy to manage, etc. It made it easy to do everything."
"The architecture of the OS in Juniper is very good. It's flexibility, scalability, and the technicality is also good."
"Cisco ASA should be easier to use. It is a bit tough to navigate and see what is going on."
"Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version."
"The artificial intelligence and machine learning (behavioral based threat detection), which I can this will be coming out in another year, these are what we need now."
"The initial setup was complex."
"There are always vulnerabilities that come up and there was one in early 2018 but this was patched with software updates."
"In terms of next-generation capabilities, Cisco is a little behind, and it is way behind the market leaders."
"The phishing emails could be improved."
"There may have been one or two incidences of malicious threats."
"The GUI could be improved."
"FortiGate should be more customer friendly and budgeted better."
"Customization needs improvement."
"We haven't attempted to scale the solution just yet. If we want to scale this solution we may have to look at other models. With certain requirements, we probably wouldn't be able to scale it so well as it is right now."
"When new versions are deployed they tend to be a little buggy, so they should be more fully tested before release."
"The user interface needs to be improved."
"In the next release, we would like to see full integration with VMware NSX virtualized networks."
"The interface needs to be updated and simplified."
"The GUI interface needs improvement."
"The user interface could always be better. They could make it simpler and more intuitive."
"Right now, we are going through issues and problems where the product gets dropped with the connection or during the authentication initial phase. While it could be our problem, we would like to see more stability in this area."
"The pricing still needs some improvement."
"he stability could be improved."
"They really need to improve the GUI."
"I've talked to people that say Juniper now, as a device, can be a solution for a data center, but in the past, I have not seen this as being possible."
"We have some weird errors and some weird behavior on the solution occasionally. The device gets buggy without anyone touching it. It would work and then suddenly stop. Sometimes you need to just move the cards out and restart it again, and it will work. The solution itself, the hardware and the software, there must be some bugs that need to be dealt with."
Pricing and Cost Advice
"Purchasing from the AWS Marketplace was easy. It was just point and click."
"It is pay-as-you-go, so it much cheaper than buying in the plants."
"Our individual release cycle has been quicker because the entire development and testing environment has been automated because of these virtual instances. It has aligned our development workflow. This is where we have seen the ROI increase."
"With the Cisco ASA, you do get what you pay for. What would really be awesome is to see Cisco blow out a real cheap version where you can use the sandbox, but leave it step-wise and go to another product relatively easily, like getting you hooked on candy."
"We are partners with Cisco. They are always one call away, which is good. They know how to keep their customers happy."
"Pricing is high, but it is essentially a corporate decision."
"Licensing is expensive compared to other solutions."
"The cost is a big factor for us. This is why we are using it only in our restricted area. They are very much higher than their competitors in the market."
"The price of this product is great compared to others."
"This solution is very expensive."
"The price is similar to Symantec Endpoint, but it's more expensive than Forcepoint solutions. Fortinet is better than Forcepoint."
"There is a benefit in terms of the cost of using this solution because the price is very good."
"It's not a cheap solution but it comes with its benefits."
"Our experience purchasing the solution through the AWS Marketplace was good."
"We like pricing through the AWS Marketplace."
"It is not that costly."
"After some research, I think that the cost of Juniper is more than Check Point, Palo Alto, and Fortinet."
"As a customer, the pricing is good for us."
"The pricing is reasonable."
Questions from the Community
Top Answer: Cisco FW for peace of mind
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Top Answer: The functionality provided is very good.
Top Answer: Fortigate is cheaper if you compare it to Palo Alto, a main competitor.
Ask a question
Earn 20 points
Compared 34% of the time.
Compared 15% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 5% of the time.
Compared 26% of the time.
Compared 13% of the time.
Compared 13% of the time.
Compared 11% of the time.
Compared 3% of the time.
Compared 58% of the time.
Compared 23% of the time.
Compared 11% of the time.
Compared 8% of the time.
Also Known As
|Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv||FortiGate Virtual Appliance, FortiGate-VM|
Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.
Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.
FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.
|The vSRX offers the same features as physical SRX Series firewalls but in a virtualized form factor for delivering security services that scale to match network demand. It offers the same features as the SRX appliance, including core firewall, robust networking, full next-gen capabilities, and automated life-cycle management. It handles speed up to 100 Gbps. It supports Juniper Contrail, OpenContrail, and third-party software-defined networking (SDN) solutions and integrates with cloud orchestration tools. Deployed in your private cloud, vSRX protects against the lateral spread of advanced threats between virtual machines within your network borders. It provides scalable application security for dynamic workloads and protects mission-critical applications from known and unknown threats. Also the vSRX virtual firewall helps you seamlessly extend your private cloud into public cloud environments, securely moving data and workloads with ease. As a VPN gateway, the vSRX provides remote users with safe access to their workloads. As a segmentation gateway, the vSRX protects public-cloud workloads by blocking lateral threats using application policies that help maintain security and compliance.|
Learn more about Cisco ASA Firewall
Learn more about Fortinet FortiGate-VM
Learn more about Juniper vSRX
|There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.||Security7 Networks, COOPENAE||Expedient Data Centers|
Financial Services Firm19%
Comms Service Provider12%
Comms Service Provider31%
Computer Software Company24%
Computer Software Company9%
Financial Services Firm9%
Comms Service Provider9%
Comms Service Provider36%
Computer Software Company28%
K 12 Educational Company Or School6%
Comms Service Provider50%
Financial Services Firm13%
Computer Software Company13%
Comms Service Provider44%
Computer Software Company21%
See our list of best Firewalls vendors.