We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Being able to determine our active users vs inactive users has led us to increased productivity through visibility. Also, if an issue was happening with our throughput, then we wouldn't know without research. Now, notifications are more proactively happening."
"The most valuable feature is stability."
"I have access to the web version of Cisco Talos to see the reputation of IP addresses. I find this very helpful. It provides important information for my company to obtain the reputation of IP addresses. The information in Talos is quite complete."
"It is one of the fastest solutions, if not the fastest, in the security technology space. This gives us peace of mind knowing that as soon as a new attack comes online that we will be protected in short order. From that perspective, no one really comes close now to Firepower, which is hugely valuable to us from an upcoming new attack prevention perspective."
"The most valuable features of this solution are the integrations and IPS throughput."
"We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government."
"One of the most valuable features is the AMP. It's very good and very reliable when it comes to malicious activities, websites, and viruses."
"Its Snort 3 IPS has better flexibility as far as being able to write rules. This gives me better granularity."
"The solution has good customization abilities and plenty of features."
"I have found the most valuable features to be antivirus and malware protection."
"Technical support is perfect, excellent."
"The solution is very easy to use and has a very nice GUI."
"The main features of this solution are customization and ease to use."
"pfSense is easy to use, has user-friendly dashboards, and useful blocking features."
"The solution is fairly scalable when it comes to integrating with other applications and data sets."
"At our peak time, we have reached more than 5,000 concurrent connections."
"I've found the technical support to be helpful."
"It's been very easy to implement and deploy."
"Its user interface and simplicity are the most favorite parts for our clients. They find it stable and easy to use. Its performance is also good."
"The most valuable features are unified threat management which provides security intelligence and the VPN for both site-to-site and remote access."
"The most valuable features have been content filtering, and the interface is easy to navigate and to use."
"Technical support is good."
"We are able to block whatever we want to block by using this product. It provides all required security features, such as content filtering, VPN, in one box. Before switching to SonicWall, we had specified all required features."
"SonicWall TZ is a stable product."
"One issue with Firepower Management Center is deployment time. It takes seven to 10 minutes and that's a long time for deployment. In that amount of time, management or someone else can ask me to change something or to provide permissions, but during that time, doing so is not possible. It's a drawback with Cisco. Other vendors, like Palo Alto or Fortinet do not have this deployment time issue."
"One of the few things that are brought up is that for the overall management, it would be great to have a cloud instance of that. And not only just a cloud instance, but one of the areas that we've looked at is using an HA type of cloud. To have the ability to have a device file within a cloud. If we had an issue with one, the other one would pick up automatically."
"FirePOWER does a good job when it comes to providing us with visibility into threats, but I would like to see a more proactive stance to it."
"Cisco Firepower NGFW Firewall can be more secure."
"The configuration in Firepower Management Center is very slow. Deployment takes two to three minutes. You spend a lot of time on modifications. Whereas, in FortiGate, you press a button, and it takes one second."
"There is limited data storage on the appliance itself. So, you need to ship it out elsewhere in order for you to store it. The only point of consideration is around that area, basically limited storage on the machine and appliance. Consider logging it elsewhere or pushing it out to a SIEM to get better controls and manipulation over the data to generate additional metrics and visibility."
"I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. So, I would like to see a lot of improvements here."
"The central management tool is not comfortable to use. You need to have a specific skill set. This is an important improvement for management because I would like to log into Firepower, see the dashboard, and generate a real-time report, then I question my team."
"If you want to take advantage of all of the solution's options, you need to have a bit of a technical background. It's not for a layperson."
"Also, simplifying the rules for the GeoIP. Making it simpler to understand would be an improvement."
"Web interface could be enhanced and more user friendly."
"The VPN feature of the solution could improve by adding better functionality and providing easier configure ability."
"There is more demand for UTMs than a simple firewall. pfSense should support real-time features for handling the latest viruses and threats. It should support real-time checks and real-time status of threats. Some other vendors, such as Fortinet, already offer this type of capability. Such capability will be good for bringing pfSense at the same level as other solutions."
"The interface is not very shiny and attractive."
"ClamAV AntiVirus can cause some crashes. That service should be improved."
"Ease of use is a problem for a user who is unfamiliar with this product because, in the interface, everything has to be set manually."
"There is a point I don't like about SonicWall in the past and now. Most of the destinations we look at when we're detecting some user using too much bandwidth or something like that, SonicWall just gave us destination IP address, instead of the full qualified domain name. I think that's the most important part that is still missing. I think that's the most important for us."
"GUI interface could be improved."
"In terms of what needs to be improved, I would say better load balancing and data filtering."
"The technology in this particular version is very old."
"From a support perspective, if we're talking tech support I think Silver Partners, Gold Partners, Platinum, whatever level, should have a different number to call. End users can call tech support over at SonicWall if they've paid for support as part of their AGSS or whatever services they bought. The end-user can call, or we can call, however, I don't want to be calling the same line that an end user's calling. I don't want the same response time. I need a different level of expertise."
"FortiGate has a client DNS in the firewall, but SonicWall doesn't have that. To create or configure a site-to-site VPN tunnel, we have to give a DNS name. Currently, we have to get the DNS name from a third party and then include it in SonicWall, whereas FortiGate has its own client DNS, so it provides a DNS name, and it does not require a third party. There should be a graphical option to view the network utilization and bandwidth usage."
"We require centralized monitoring of the network features, which they have but they are not to the level that we require."
"I would like the solution to build in more redundancy. I"
"This solution is expensive and other solutions, such as FortiGate, are cheaper."
"The solution was chosen because of its price compared to other similar solutions."
"Its pricing is good and competitive. There is a maintenance cost. It includes SecureX that makes it cost-effective as compared to the other solutions where you have to pay for XDR and SOAR capabilities."
"The price is comparable."
"It definitely competes with the other vendors in the market."
"The price for Firepower is more expensive than FortiGate. The licensing is very complex. We usually ask for help from Solutel because of its complexity. I have a Cisco account where I can download the VPN client, then connect. Instead, I create an issue with Solutel, then Solutel solves the case."
"Pricing is the same as other competitors. It is comparable. The licensing has gotten better. It has been easier with Smart Licensing."
"For me, personally, as an individual, Cisco Firepower NGFW Firewall is expensive."
"It's open-source and it's free. Anything for free is good."
"I like the fact that it is open-source."
"We are using the open-source version, not the commercial one."
"Its price is pretty fair."
"Looking at what it does, I think that it is fairly priced."
"pfSense is an open-source solution and free to use."
"I would recommend it for a small business or a startup as a starting point. It's also good for companies that are on a tight budget."
"pfSense is open-source."
"Customers are required to pay for a yearly subscription."
"The license that we purchased is good for three years."
"The price is fair."
"The price could be better for us in Bolivia."
"Its pricing is okay as compared to other solutions."
"You need to purchase multiple licenses to manage multiple devices which is cost-prohibitive for the value you would receive."
"It is a bit expensive. We have to purchase the license and the reporting part separately, which makes it a bit pricey. This is the main reason why we have thought of moving to another firewall. It would be good if they combine both of these."
"It has a yearly subscription."
Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.
pfSense is ranked 3rd in Firewalls with 56 reviews while SonicWall TZ is ranked 10th in Firewalls with 31 reviews. pfSense is rated 8.6, while SonicWall TZ is rated 8.4. The top reviewer of pfSense writes "Feature-rich, well documented, and there is good support available online". On the other hand, the top reviewer of SonicWall TZ writes "Easy to implement, fairly stable, and supports SSL-DPI". pfSense is most compared with OPNsense, Fortinet FortiGate, Sophos UTM, Sophos XG and Zyxel Unified Security Gateway, whereas SonicWall TZ is most compared with Fortinet FortiGate, Cisco ASA Firewall, Sophos XG and Meraki MX. See our SonicWall TZ vs. pfSense report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.