Fortinet FortiGate vs. Juniper SRX

As of March 2019, Fortinet FortiGate is ranked 1st in Firewalls with 45 reviews vs Juniper SRX which is ranked 6th in Firewalls with 17 reviews. The top reviewer of Fortinet FortiGate writes "The IPsec tunnels are very easily created, and quite interoperable with devices from other vendors". The top reviewer of Juniper SRX writes "The throughput is fine but the CLI is verbose, especially when configuring". Fortinet FortiGate is most compared with Cisco ASA NGFW, Sophos UTM and pfSense. Juniper SRX is most compared with Fortinet FortiGate, Cisco ASA NGFW and Palo Alto Networks WildFire. See our Fortinet FortiGate vs. Juniper SRX report.
Cancel
You must select at least 2 products to compare!
Cisco ASA NGFW Logo
112,253 views|52,710 comparisons
Fortinet FortiGate Logo
231,412 views|108,146 comparisons
Juniper SRX Logo
34,635 views|19,495 comparisons
Most Helpful Review
Find out what your peers are saying about Fortinet FortiGate vs. Juniper SRX and other solutions. Updated: March 2019.
325,762 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
The IPS (In-plane switching) is the most valuable feature.Its ability to discover attacks is a valuable feature. All of the other features that have to do with security are good.The greatest benefit for the organization is the confidence that we are secured.This solution has good security, and it's a good product. You can trust Cisco, and there's support as well, which is really good.Its VPN and ASN features are very stable.The setup was straightforward. I was happy with the configuration and deployment of the solution, as it was quick.It provides security for our company and users.It protects our network.

Read more »

We can use our devices to check all of the perimeters. It secures email websites.I really like the captive portal feature for our guest network. It has nice VLAN features in terms of separating our network. The anti-virus is also good.Advanced routing (RIP, OSPF, BGP, PBR). It gives you a seamless and simple integration into a large network.We use a southern institution that's audited for IT security and the reporting that automatically comes off the unit makes it much easier to meet compliance standards and makes it easier as far as the amount of time that has to be spent to compile that information. If you get your reporting set up correctly when you initially set it up, you just select the one you want and hit print. The auditing trail on it is the best feature.It is easy to use and performs very well.We are a visual effects company, and there have been a number of high profile security issues in our industry. This has brought us to a higher standard of security, which our clients are very keen on these days.It's a firewall that secures our internal network. I have been using it since 2013, and I find that most of the features are advanced, and very user friendly.The most valuable feature is the bundled subscription, which is IPS, TV and web filtering.

Read more »

From a protection perspective, it provides a network perimeter security function for our company.We use it as a firewall at our head office and branches.It integrates well with Fortinet and Palo Alto.It uses many applications, like antivirus blocking and web filtering.The high availability of the application is good.It protects the data behind our switches.It helps us perform our daily jobs.We mostly use the Layer 4 firewall functions: Access rules, NAT, and site-to-site IPsec VPN.

Read more »

Cons
At times the product is sluggish and slowSome of the features, like the stability, need to be improved.There may have been one or two incidences of malicious threats.The phishing emails could be improved.In terms of next-generation capabilities, Cisco is a little behind, and it is way behind the market leaders.The initial setup was complex.The pricing is a bit high.Migration with other appliances is not easy. It has to be done manually, and this takes a long time.

Read more »

They need to improve their technical support.Some of the filtering is not robust, you can escape it with a VPN. Some of the users bypass some of the filters. It catches some but it also misses some, that area could be improved. It's functioning reasonably but there's room for improvement in that area.I think there could be more QoS featuresThey should make the rule sets more understandable for the end user. When you're trying to explain to somebody how a computer network is secured, sometimes it's difficult for an end user or customer to understand. If there was a way to make the terminology more accessible to the end user, the set up could be easier. They should translate the technical jargon to an easily relatable and understandable conversation for the end user, the customer, that would be brilliant. Particularly in an environment where the IT structure is audited regularly, there's always pressure from the auditor to up the standards and up the security and you get your USCERT's that come out and there's a warning about this and the customer will want to lock out so much and when you apply it they run into issue where they can't search the internet or print to their remote office. Of course they can't print to your remote office, they just locked it up. They should make the language more understandable for the customer. If there's a product out there that made the jargon understandable to John Q. Public, I would buy that.There could be more integration between the logging and analytical platforms to make it more seamless and integrated.We had a minor problem where there was a major system upgrade on the hardware platfrom and the Mac client was not available as soon as it might have been. The PC client was available immediately, but we had to wait a month or so, before there was a mac client. I was slightly irritated that it was not ready on time, but it was eventually resolved.The web-cache feature which was previously on the FortiGate device, but was deleted with the recent upgrade should be returned. It was a very valuable feature for us.I think they need to improve more in order to be a competitor with the leaders of the field.

Read more »

This solution needs to update for "Next Generation" needs.It did not improve our safety because the IDS does not detect some attacks, but our anti-virus software did.We tried configuring the IDS for more than four months, but it did not work properly.The CLI is verbose. You have to say a lot to do a little. I don't like that part of it. Cisco's command syntax seems to be a good bit more concise. When you're trying to get something done, you don't want to have to type a bunch.Juniper needs to focus more on their perimeter firewalls.The GUI needs to be easier to handle.I would like to see endpoint control and endpoint testing security.I would like them to add a dashboard because it's difficult to operate.

Read more »

Pricing and Cost Advice
Pricing is high, but it is essentially a corporate decision.The cost is a bit high compared to other solutions in the market.Cisco recently has become very expensive.The cost is a bit higher than other competitive solutions on the market.It is considered on the "high end" of the spectrum.The cost of keeping the licensing up on the ASA is very expensive. It has a lot of positives, but the cost of going with it is really starting to be a major negative right now.Commercial leasing is the best option.ASA pricing seems high compared to other firewalls, such as the Sophos XG models.

Read more »

Compared to Palo Alto, which we have used in the past, pricing and licensing are okay.Setup cost may be not so low, as you expect, because it depends on different factors, but TCO for 5 years may pleasantly surprise you.The initial setup is super straight forward and as far as the licensing goes for the small product that we have, the pricing was pretty competitive. It wasn't as simple and as cheap as a SonicWall but for the service we would get it was a good price.It is a good product from a price perspective versus functionality.Price-wise, it's at a good price point for our market.It is cost-effective, and provides a good value for your money. The pricing, and license renewal, is very reasonable for us.They need to be competitive with other solutions.It is an inexpensive solution.

Read more »

It has a low price.It is not that expensive.Pricing is good. Most of the costs are in the UTM (IDS/IPS, virus scanning, etc) subscription.Palo Alto was nice, but much more expensive.We were able to lower our overall operating costs over a three year period by 25%, mostly recovered from maintenance/support costs.Small enterprises or telco have variant licenses, and this licensing should be improved.I would say about $20,000 for a SRX650 with IDP licence.Pricing is very good, not expensive.

Read more »

report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
325,762 professionals have used our research since 2012.
Top Comparisons
Compared 34% of the time.
Compared 17% of the time.
Compared 13% of the time.
Compared 9% of the time.
Compared 29% of the time.
Compared 21% of the time.
Also Known As
Cisco ASA, Adaptive Security Appliance, ASAFortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGateSRX
Learn
Cisco
Fortinet
Juniper
Overview

Adaptive Security Appliance (ASA) is Cisco's end-to-end software solution and core operating system that powers the Cisco ASA product series. This software solution provides enterprise-level firewall capabilities for all types of ASA products, including blades, standalone appliances and virtual devices. Adaptive Security Appliance provides protection to organizations of all sizes, and allows end-users to access information securely anywhere, at any time, and through any device.

Adaptive Security Appliance is also fully compatible with other key security technologies, and so provides organizations with an all-encompassing security solution.

Block more threats and quickly mitigate those that do breach your defenses with the industry’s first threat-focused NGFW.

The FortiGate family of NG firewalls provides proven protection with unmatched performance across the network, from internal segments, to data centers, to cloud environments. FortiGates are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.

High-performance security with advanced, integrated threat intelligence, delivered on the industry's most scalable and resilient platform. SRX Series gateways set new benchmarks with 100GbE interfaces and feature Express Path technology, which enables up to 1 Tbps performance for the data center.
Offer
Learn more about Cisco ASA NGFW
Learn more about Fortinet FortiGate
Learn more about Juniper SRX
Sample Customers
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here7-Eleven, AARNet Pty Ltd, Allegro Networks, alltours GmbH, Apollo Hotel Papendrecht, Armstrong Atlantic State University, Atlantech Online, Availity, Bajaj Capital, Baloise Insurance, BancABC, BAS Group, Black Lotus, Blue Box, Borealis, Carilion Clinic, Catholic Health System, CATV, Champlain College, Chinas Ministry of Railways, China University of Mining and Technology (CUMT), Cloud Dynamics, CloudSeeds, Cloudwatt, CODONiS, Colt Technology Services, Cork Internet Exchange, CSS Versicherung AG, CyrusOne, Danish Crown, Deloitte Belgium, Department of Energy, Divona Telecom, DQE Communications, DreamHost, European Government Agency, Expedient, Financial Market Information Services Provider, Fluidata, Fonality, Fox Sports, Global Financial Institution, Global Investment Bank, Global Investment Company, Energy Sciences Network (ESnet), Goethe University, HEAnet, High Performance Networks Inc., Hillenbrand
Top Industries
REVIEWERS
Financial Services Firm16%
Manufacturing Company14%
Comms Service Provider12%
Healthcare Company6%
VISITORS READING REVIEWS
Comms Service Provider22%
Financial Services Firm15%
Manufacturing Company10%
Transportation Company8%
REVIEWERS
Real Estate/Law Firm11%
Comms Service Provider11%
Financial Services Firm8%
Energy/Utilities Company8%
VISITORS READING REVIEWS
Cloud Provider17%
Comms Service Provider9%
Writing And Editing Position8%
Financial Services Firm8%
REVIEWERS
Comms Service Provider50%
Financial Services Firm17%
University8%
Retailer8%
VISITORS READING REVIEWS
Comms Service Provider40%
Media Company15%
Venture Capital & Private Equity Firm7%
Insurance Company7%
Company Size
REVIEWERS
Small Business38%
Midsize Enterprise29%
Large Enterprise33%
VISITORS READING REVIEWS
Small Business41%
Midsize Enterprise28%
Large Enterprise32%
REVIEWERS
Small Business49%
Midsize Enterprise26%
Large Enterprise26%
VISITORS READING REVIEWS
Small Business49%
Midsize Enterprise36%
Large Enterprise15%
REVIEWERS
Small Business38%
Midsize Enterprise17%
Large Enterprise46%
Find out what your peers are saying about Fortinet FortiGate vs. Juniper SRX and other solutions. Updated: March 2019.
325,762 professionals have used our research since 2012.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

Sign Up with Email