Compare Fortinet FortiGate vs. Kerio Control

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Anonymous User
Anonymous User
Find out what your peers are saying about Fortinet FortiGate vs. Kerio Control and other solutions. Updated: May 2021.
511,607 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"I like the way Firepower presents the data. It gives you two classifications for the evidence, something based on the priority of the evidence and another classification based on the impact of the evidence in your environment. This makes it very easy to spot the evidence that is most impactful to my environment. Instead of having to go through all the evidence based on that priority, I can focus on the evidence that has the most impact on my environment.""The most valuable feature of the Firepower solution is FireSIGHT, which can be easily managed and is user-friendly.""Once you add Firepower onto to it and you start enabling some of its features, you get some IDS/IPS involved with it and you can even do web filtering.""The most valuable features of Cisco firewalls are the IPS and IDS items. We find them very helpful. Those are the biggest things because we have some odd, custom-made products in our environment. What we've found through their IPS and IDS is that their vulnerability engines have caught things that are near-Zero-day items, inside of our network.""The IPS, as well as the malware features, are the two things that we use the most and they're very valuable.""The protection and security features, like URL filtering, the inspection, and the IPS feature, are also very valuable for us. We don't have IT staff at most of the sites so for us it's important to have a robust firewall at those sites""We can easily track unauthorized users and see where traffic is going.""With the FMC and the FirePOWERs, the ability to quickly replace a piece of hardware without having to have a network outage is useful. Also, the ability to replace a piece of equipment and deploy the config that the previous piece of equipment had is pretty useful."

More Cisco Firepower NGFW Firewall Pros »

"This solution has solid UTM features combined with a nice GUI.""It blocks the vulnerabilities that can negatively impact us.""The security features are about the best that I've seen anywhere.""The most valuable feature is the VDOM, which allows the customer to have multiple firewalls in a single campus.""FortiGate Secure SD-WAN includes best-of-breed next-generation firewall (NGFW) security, SD-WAN, advanced routing, and WAN optimization capabilities, delivering a security-driven networking WAN edge transformation in a unified offering.""SSL-VPN is very useful for us and has been very reliable.""Virtual Domains (VDOMs) are a feature that we found valuable.""We are a visual effects company, and there have been a number of high profile security issues in our industry. This has brought us to a higher standard of security, which our clients are very keen on these days."

More Fortinet FortiGate Pros »

"The user interface and the ease of use are pretty good. Everything fits together so nicely.""The routing of the multiple internet physical routers I have is the most valuable feature of this solution. Instead of me physically unplugging a cable from one router to the server, if one connection goes down, it automatically switches for me. So I can have all three of them plugged in. If one goes down, it just picks up the other one automatically. There's no physical cable swapping.""The interface control manager where we can allocate LAN connections to certain VLANs is the most valuable feature. The other feature that's important for us is because obviously everything is remote with MyKerio, as long as the boat has an internet connection, we can log onto the Kerio and get statistics, as well as provide support.""We also like the security. We can control what sites users can go to and we can make sure that where they're going is appropriate and that it's work-related.""The initial setup is a breeze.""Kerio is a lot clearer to set up to do particular things, whereas when I do it on a Cisco or a FortiGate I have to go fight with it per week sometimes to do something I can do in 20 minutes on Kerio.""It is very comprehensive and simple. It has all the active protections. It's updated. We love that you can set how often it is updated so you can work what is right for you. A large company with a lot of bandwidth can update the virus definitions and security definitions hourly, if they want. A smaller site that's remote, where maybe updating the definitions will eat into the bandwidth, we can schedule those more to go later at night. It's very flexible and works for us in all types of situations. This is great because then we don't have to learn seven different products to be able to work with seven different scenarios.""The most valuable feature is the reliability of VPN capabilities. The VPN has been very reliable and secure. The security has been very good and the VPN connections are reliable in that they stay up. We don't have a lot of problems with downtime and that type of thing."

More Kerio Control Pros »

Cons
"Also, they have a Firepower source file that I can work on the ASA device and on Firepower devices. A problem here lies in the way that you manage these devices. Some devices do not support the FMC, and some devices have to be managed through ASDM, and others have to be managed through FMC.""I would like to see the inclusion of more advanced antivirus features in the next release of this solution.""In Firepower, there is an ability to search and dig into a search, which is nice. However, I'm not a super fan of the way it scrolls. If you want to look at something live, it's a lot different. You're almost waiting. With the ASDM, where it just flows, you can really see it. The second someone clicks something or does something, you'll see it. The refresh rate on the events in Firepower is not as smooth.""The worst part of the entire solution, and this is kind of trivial at times, is that management of the solution is difficult. You manage FireSIGHT through an internet browser. I've had Cisco tell me to manage it through Firefox because that's how they develop it. The problem is, depending on the page you're on, they don't function in the same way. The pages can be very buggy, or you can't resize columns in this one, or you can't do certain things in that one. It causes a headache in managing it.""For the new line of FTDs, the performance could be improved. We sometimes have issues with the 41 series, depending what we activate. If we activate too many intrusion policies, it affects the CPU.""The user interface for the Firepower management console is a little bit different from traditional Cisco management tools. If you look at products we already use, like Cisco Prime or other products that are cloud-based, they have a more modern user interface for managing the products. For Firepower, the user interface is not very user-friendly. It's a little bit confusing sometimes.""We would like to see improvement in recovery. If there is an issue that forces us to do recovery, we have to restart or reboot. In addition, sometimes we have downtime during the maintenance windows. If Cisco could enhance this, so that upgrades would not necessarily require downtime, that would be helpful.""We had an event recently where we had inbound traffic for SIP and we experienced an attack against our SIP endpoint, such that they were able to successfully make calls out... Both CTR, which is gathering data from multiple solutions that the vendor provides, as well as the FMC events connection, did not show any of those connections because there was not a NAT inbound which said either allow it or deny it."

More Cisco Firepower NGFW Firewall Cons »

"The Web-filter in this solution is not very good.""I would like to have logs, monitoring, and reporting for a month without extra fees.""Technical support for this solution can be improved.""Improvement is needed in the Web Filter quotas to restrict users with allocated quotas.""There is a lot of improvement needed with SSL-VPN.""The user interface could be improved to make it less confusing and easier to set up.""To the best of my knowledge, Fortinet does not have a CASB solution and Fortinet does not have a Zero trust solution.""We had a minor problem where there was a major system upgrade on the hardware platfrom and the Mac client was not available as soon as it might have been. The PC client was available immediately, but we had to wait a month or so, before there was a mac client. I was slightly irritated that it was not ready on time, but it was eventually resolved."

More Fortinet FortiGate Cons »

"The one thing that did put me off of the solution was that, after they were taken over by GFI, the licensing and a few other items have gotten very complicated.""I would like it if the interface section had multiple failovers. Although I do have three connections, just in case our physical cables get disconnected, I can only set up one failover as a backup. So, if for some reason our fiber and our AFM went down together, I would have to have it search for our 4G modem. I'd love to have extra backups running.""It has a VPN back to our data center but I don't think it has increased the number of VPN clients extended to those outside our environment""The denial of service could also be improved. There recently was a big issue with denial of service attacks and it was a bit laborious.""When it comes to dealing with updates, there are often bugs on the solution. They should do a lot more testing before they release new versions.""The overall speed needs improvement. Internet connectivity speed needs to be improved somehow.""I would like to see a little improvement in their technical support when you have a problem. I may be a little jaded because I came from Kerio when we could call and get a person on the phone who worked on the product. Every tech had their own demo setup. They had instant messaging capability with the developers. If we found a problem, then we could get a result for it quickly. Now, the product seems to be 24 hours. They have also gone to the model that if you need quicker support, then they now charge you additional for the exact same level of support that they used to give. I am assuming it's the exact same level of support that they say it is. I'm not paying extra for it. That's the biggest flaw with the product.""One of the problems we do have causes problems with the VPN. The software slows the throughput down too much. You could have a one-gigabit connection from the internet, and it slows it down to the area of upload and download is extremely slow. There's too much content filtering at that point."

More Kerio Control Cons »

Pricing and Cost Advice
"The price of this solution is not good or bad.""The Firepower series of appliances is not cheap. I just got a quote recently for six firewalls that was in the range of over half-a-million dollars. That's what could push us to look to other vendors...""Our subscription costs, just for the firewalls, is between $400,000 and $500,000 a year.""Cisco's pricing is high, at times, for what they provide.""The one-time cost is affordable, but the maintenance cost and the Smart Net costs need to be reduced. They're too high.""We normally license on a yearly basis. The hardware procurement cost should be considered. If you're virtual maybe that cost is eradicated and just the licensing cost is applied. If you have hardware the cost must be covered by you. All the shipping charges will be paid by you also. I don't thing there are any other hidden charges though.""Cisco pricing is premium. However, they gave us a 50 to 60 percent discount.""There are additional implementation and validation costs."

More Cisco Firepower NGFW Firewall Pricing and Cost Advice »

"The pricing for this solution is good.""Fortinet Secure SD-WAN delivered the lowest total cost of ownership (TCO) per Mbps among all other vendors.""Fortinet is the least expensive solution.""It's very affordable.""Setup cost may be not so low, as you expect, because it depends on different factors, but TCO for 5 years may pleasantly surprise you.""The Indian market is different than the European and American markets. When you compare they need to be a bit more aggressive on pricing.""I think that the pricing is fair.""For our organization, the licensing costs are approximately $7,000 per year."

More Fortinet FortiGate Pricing and Cost Advice »

"It is priced low enough for entry-level, but it has the power to grow with a company without them having to replace it.""The biggest advice that I could probably give people is when you buy the solution be prepared to either buy the unlimited license or buy more licenses than you think. Each user license gives you one employee and each a user gives you five devices. In the world nowadays where everybody has a cellphone, tablet, desktop, and laptop, that's four devices. You still get one more device per person. That covers your servers and back-ends.""It is a good fit for SMBs because of its maintainability. When you want to keep your costs low, then Kerio Control is a very good solution. It's not an expensive product that is well integrated. It has a complete set of features within it that make it a very strong product.""GFI has made a stupid decision regarding small office licensing. For offices where there are only three to five employees and had five years towards a five user product, they now force these customers to a 10-year user license. I really don't understand it. It's a stupid decision for the small offices who want a good solution for security because they'll probably decide to go to another product. Why should they buy something that they don't use?""The fixed model of users and devices is a bit of a problem for us. We want to be able to expand it fast and not have to contact our supplier first to get a license... If they had a larger fixed price with unlimited users or devices, that would help. Now, it's five users each time. A pack of 100 or 200 users for a certain price would make it more dynamic and user-scalable.""The yearly maintenance fee is a bit high for the Kerio Control Boxes. The end of life for the devices is kind of short. It seems like they're making you upgrade within a short period of time. They should at least allow five years, but it seems like they are changing their end of life to be shorter to generate revenue.""It gives us a lot. It does prove to be a very robust product for the cost.""I think it is a bit on the pricey side, but it's okay. I've got 50 licenses which I think is $250 a year or something like that."

More Kerio Control Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
511,607 professionals have used our research since 2012.
Questions from the Community
Top Answer: Pricewise Cisco. But PA has better rating.
Top Answer: Ease of Use - GUI familiarities  and adoption level can differ from user to user. - Personally I found CISCO  ASA… more »
Top Answer:  When you compare these firewalls you can identify them with different features, advantages, practices and… more »
Top Answer: In my opinion and as a result of years of experience: - Both are great firewalls with excellent performance and a… more »
Top Answer: Some of the valuable features are the firewall, IPS, web filter, and gateway capabilities. Additionally, it is easy to… more »
Top Answer: The reporting needs to be improved. It is hard to get a domain.
Top Answer: The price of the solution is reasonable. For additional costs, you can add on more features such as antivirus.
Top Answer: 1. More detailed reporting. 2. Sometimes you get a few challenges joining to a domain. 3. Improved and simplified User… more »
Popular Comparisons
Also Known As
Cisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWv
FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
Learn More
Overview

Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

The FortiGate family of NG firewalls provides proven protection with unmatched performance across the network, from internal segments, to data centers, to cloud environments. FortiGates are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.

Kerio Control brings together next-generation firewall capabilities -- including a network firewall and router, intrusion detection and prevention (IPS), gateway anti-virus, VPN, and web content and application filtering. These comprehensive capabilities and unmatched deployment flexibility make Kerio Control the ideal choice for small and mid-sized businesses.

Offer
Learn more about Cisco Firepower NGFW Firewall
Learn more about Fortinet FortiGate
Learn more about Kerio Control
Sample Customers
Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield
Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here
Triton Technical, McDonald's
Top Industries
REVIEWERS
Comms Service Provider22%
Financial Services Firm19%
Manufacturing Company9%
Non Profit9%
VISITORS READING REVIEWS
Comms Service Provider37%
Computer Software Company20%
Government6%
Educational Organization4%
REVIEWERS
Comms Service Provider14%
Computer Software Company9%
Financial Services Firm8%
Manufacturing Company6%
VISITORS READING REVIEWS
Comms Service Provider35%
Computer Software Company20%
Government5%
Media Company4%
REVIEWERS
Computer Software Company21%
Financial Services Firm14%
Transportation Company14%
Pharma/Biotech Company7%
VISITORS READING REVIEWS
Comms Service Provider46%
Computer Software Company18%
Media Company4%
Educational Organization4%
Company Size
REVIEWERS
Small Business43%
Midsize Enterprise25%
Large Enterprise32%
VISITORS READING REVIEWS
Small Business13%
Midsize Enterprise13%
Large Enterprise74%
REVIEWERS
Small Business48%
Midsize Enterprise24%
Large Enterprise28%
VISITORS READING REVIEWS
Small Business36%
Midsize Enterprise22%
Large Enterprise42%
REVIEWERS
Small Business88%
Midsize Enterprise9%
Large Enterprise3%
VISITORS READING REVIEWS
Small Business51%
Midsize Enterprise16%
Large Enterprise33%
Find out what your peers are saying about Fortinet FortiGate vs. Kerio Control and other solutions. Updated: May 2021.
511,607 professionals have used our research since 2012.

Fortinet FortiGate is ranked 1st in Firewalls with 99 reviews while Kerio Control is ranked 9th in Firewalls with 26 reviews. Fortinet FortiGate is rated 8.4, while Kerio Control is rated 8.0. The top reviewer of Fortinet FortiGate writes "Stable, easy to set up, and offers good ROI". On the other hand, the top reviewer of Kerio Control writes "Through the ease of how quickly we could roll out the VPN to everybody, we had whole companies remotely working overnight". Fortinet FortiGate is most compared with Cisco ASA Firewall, pfSense, Meraki MX, Sophos XG and Palo Alto Networks WildFire, whereas Kerio Control is most compared with pfSense, Sophos UTM, OPNsense, Sophos XG and Cisco ASA Firewall. See our Fortinet FortiGate vs. Kerio Control report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.