IT Central Station is now PeerSpot: Here's why

Azure Firewall vs Fortinet FortiOS comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Buyer's Guide
Azure Firewall vs. Fortinet FortiOS
July 2022
Find out what your peers are saying about Azure Firewall vs. Fortinet FortiOS and other solutions. Updated: July 2022.
620,319 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch.""The solution offers very easy configurations.""IPS and Snort are very important because they also differentiate Cisco from other vendors and competitors.""The most valuable feature that Cisco Firepower NGFW provides for us is the Intrusion policy.""The customer service/technical support is very good with this solution.""We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government.""Web filtering is a big improvement for us. The previous version we used, the AC520, did not have that feature included. It was not very easy for us, especially because the environment had to be isolated and we needed to get updates from outside, such as Windows patches. That feature has really helped us when we are going outside to pull those patches.""I'm a big fan of SecureX, Cisco's platform for tying together all the different security tools. It has a lot of flexibility and even a lot of third-party or non-Cisco integration. I feel like that's a really valuable tool."

More Cisco Firepower NGFW Firewall Pros →

"All its features are good. That's why we recommend it.""I think that one of the best features is definitely the premium version, along with the IDPs in terms of the intrusion detection and prevention system.""Network filtering is valuable. The scalability capability from the cloud-native service helps us a lot because it simplifies our day-to-day maintenance activity.""Azure's cost-effectiveness is its major advantage.""The most valuable feature is threat intelligence. It is based on filtering and can identify multiple threats.""Among the most valuable features are the DDoS protection that protects your virtual machines, the threat intelligence, and traffic filtering.""I like its order management feature. It doesn't have the kind of threat intelligence that Palo Alto has, but the order management makes it much simpler to know the difference.""I can easily configure it."

More Azure Firewall Pros →

"Firewall and overall management are valuable features.""The most valuable features of Fortinet FortiOS are the ease of use and user-friendly interface.""The main features I find useful are intrusion prevention and web filtering. Additionally, the solution is easy to manage.""The most valuable features of Fortinet FortiOS are user-friendliness, ease of use, and threat prevention.""The classification of the websites is helpful.""This is a user friendly solution and offers comprehensive integrations.""I like that the firewall gives me a lot of control in terms of outgoing and inbound traffic, and it scores better in deep packet inspections when compared with the Azure Firewall.""Performance-wise, I think FortiOS is much better than its Juniper counterpart. Based on our actual experience and performance metrics, FortiOS-based products are much better than Juniper."

More Fortinet FortiOS Pros →

Cons
"It would be great if some of the load times were faster.""This product is managed using the Firepower Management Center (FMC), but it would be better if it also supported the command-line interface (CLI).""The initial setup can be a bit complex for those unfamiliar with the solution.""The application detection feature of this solution could be improved as well as its integration with other solutions.""One of the few things that are brought up is that for the overall management, it would be great to have a cloud instance of that. And not only just a cloud instance, but one of the areas that we've looked at is using an HA type of cloud. To have the ability to have a device file within a cloud. If we had an issue with one, the other one would pick up automatically.""Implementations require the use of a console. It would help if the console was embedded.""The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore.""We're getting support but there's a big delay until we get a response from their technical team. They're in the USA and we're in Africa, so that's the difficulty. When they're in the office, they respond."

More Cisco Firepower NGFW Firewall Cons →

"It has fewer features than you can get from other firewalls, like anti-spam and anti-phishing. Those kinds of things are not included. It only includes IDS and IDB.""It would be much easier if the on-premises, firewall rules, had some kind of export-import possibility in place, which is not the case right now.""Azure Firewall definitely needs a broader feature base. It should be able to go all the way up to layer 7 when looking at applications and things like that.""You have to have a defined IP range within your network to associate it with your network. The problem is you have to plan ahead of time if you expect to use the firewall in the future so that you don't have to reconfigure your subnets or that specific IP range. Other than that, I don't any issues. I use it for basic configuration for a single application, so I really don't try to leverage it for multiple applications where I might find some complexity or challenges.""The solution lacks artificial intelligence and machine learning. It might be in the roadmap. However, currently, it's not available.""The reporting, logging, and monitoring features, as well as the flexibility of the policies, need to be improved.""It needs a lot of improvement, especially on intruder detection. They are working hard on that.""The development area and QA area could be improved. With those improvements, we can improve projects and take even less time to implement them."

More Azure Firewall Cons →

"FortiOS doesn't work well with all browsers. I think they need to do a better job of making it compatible with the various browsers that are out there.""The central management can improve in Fortinet FortiOS. It is sometimes difficult to manage all the devices.""FortiOS could provide a more detailed analysis of the network and connected devices.""Fortinet FortiOS can improve the GUI and remove the command line interface. All the functionality should be available from the GUI. Day-to-day management can be tough for IT administrators. Additionally, the reporting is not very good.""Fortinet FortiOS need to manage its memory and CPU utilization better. It peaks at times, which sometimes can be challenging.""FortiOS's bandwidth and interface could be improved.""The implementation could be simplified.""The support could be improved, Fortinet's response time is very slow. Setting up the VPN could be made much easier, especially when deployed with Azure."

More Fortinet FortiOS Cons →

Pricing and Cost Advice
  • "Cisco, as we all know, is expensive, but for the money you are paying, you know that you are also getting top-notch documentation as well as support if needed."
  • "This product requires licenses for advanced features including Snort, IPS, and malware detection."
  • "This product is expensive."
  • "For me, personally, as an individual, Cisco Firepower NGFW Firewall is expensive."
  • "The price of Firepower is not bad compared to other products."
  • "The solution was chosen because of its price compared to other similar solutions."
  • "The price is comparable."
  • "It definitely competes with the other vendors in the market."
  • More Cisco Firepower NGFW Firewall Pricing and Cost Advice →

  • "Azure Firewall is more expensive. If Microsoft can make Azure Firewall cheaper, I can see that all clients will think of using it. One client used FortiGate because it is much cheaper. Some clients ask me for Cisco, but in the cloud estimate, I found its cost is the same as Azure Firewall."
  • "Azure Firewall is quite an expensive product."
  • "The licensing module is good."
  • "The total cost of ownership is much less than Palo Alto, Cisco, or any other brand."
  • "It is pay-as-you-go. So, you pay based on the usage. If I remember it well, there is a basic fee, and there is a traffic fee. It is not per month. It is per hour or something like that. It is not so expensive."
  • "Azure Firewalls operate on a pay-as-you-go model, similar to cloud services."
  • "The solution is cheaper than other brands. My company has an enterprise contract and we finally got a good price with Azure."
  • More Azure Firewall Pricing and Cost Advice →

  • "The software costs roughly half what the hardware costs. Overall, the product is expensive."
  • "The price of Fortinet FortiOS has been reasonable."
  • "There is a license required for the solution and the price is fair."
  • "The solution could have a better licensing model. It's a bit more expensive than other solutions. The annual subscription is very pricy in Fortinet. The cost could be reduced."
  • "It is not cheap; it is also not expensive. It is somewhere in the middle."
  • "The cost is around $40,000."
  • "The Fortinet solutions can be a bit expensive."
  • "I am on a two-year contract and I pay annually for Fortinet FortiOS."
  • More Fortinet FortiOS Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    620,319 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and… more »
    Top Answer: The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
    Top Answer:It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Top Answer:Azure Firewall Vs. Palo Alto Network NG Firewalls Both solutions provide stellar stability and security. Azure… more »
    Top Answer:Both products are very stable and easily scalable. The setup of Azure Firewall is easy and very user-friendly and the… more »
    Top Answer:Both of these solutions are excellent options that provide flexible scalability and solid security. Fortinet Fortigate… more »
    Top Answer:In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it… more »
    Top Answer:The stability of Fortinet meets our requirements and I'm satisfied with it.
    Top Answer:A medium 100 or 200 Series box costs around $3000, and the software cost is around 55% of the hardware cost.
    Comparisons
    Also Known As
    Cisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWv
    Learn More
    Overview

    Cisco Firepower Next-Generation Firewall (NGFW) is a firewall that provides capabilities beyond those of a standard firewall and delivers comprehensive, unified policy management of firewall functions, application control, threat prevention, and advanced malware protection from the network to the endpoint.

    Cisco NGFW Firewalls include advanced threat defense capabilities to meet diverse needs, from small offices to high-performance data centers and service providers, and are deployed in leading private and public clouds. Available in a wide range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Cisco NGFW firewalls are also available with clustering for increased performance, high availability configurations, and more.

    Key Features of Cisco NGFW Firewalls

    • Breach prevention and advanced security: Prevent attacks before they get inside. Cisco provides its firewalls with the latest intelligence to stop emerging threats and employs filtering to enforce policies on hundreds of millions of URLs. Cisco NGFW offers built-in sandboxing and advanced malware protection that continuously analyzes file behavior to quickly detect and eliminate threats.

    • Comprehensive network visibility: Constantly monitor your network so you can rapidly spot and stop bad behavior. Cisco NGFW provides a holistic view of all activity and provides a clear picture of threat activity across users, hosts, networks, and devices, as well as information on threats and website, application, and VM activities.

    • Flexible management and deployment options: Centrally deploy, customize, and manage all your appliances.

    • Fast detection: Detect threats in seconds and detect the presence of a successful breach within hours or minutes. Cisco NGFW allows you to deploy consistent policy that's easy to maintain, with automatic enforcement across all the different parts of your organization.

    • Automation and product integrations: Seamlessly integrate with Cisco tools and automatically share threat information, event data, policy, and contextual information with email, web, endpoint, and network security tools. Cisco NGFW automates security tasks like impact assessment, policy management and tuning, and user identification.

    Reviews from Real Users

    Cisco NGFW stands out among its competitors for a number of reasons. Two major ones are its extensive discovery abilities that enable you to constantly see what is happening on your network and take action when necessary, and the high level of protection it provides.

    Mike B., a director of IT security at a wellness & fitness company, writes, "It is one of the fastest solutions, if not the fastest, in the security technology space. This gives us peace of mind knowing that as soon as a new attack comes online that we will be protected in short order. From that perspective, no one really comes close now to Firepower, which is hugely valuable to us from an upcoming new attack prevention perspective."

    Zhulien K., the lead network security engineer at TechnoCore LTD, notes, " The most valuable feature that Cisco Firepower NGFW provides for us is the Intrusion policy. Again, with that being said, I cannot shy away from giving kudos to all of the other features such as AVC (Application Visibility and Control), SSL Decryption, Identity policy, Correlation policy, REST API, and more. All of the features that are incorporated in the Cisco Firepower NGFW are awesome and easy to configure if you know what you are doing. Things almost always work, unless you hit a bug, which is fixed with a simple software update. "

    Azure Firewall is a user-friendly, intuitive, cloud-native firewall security solution that provides top-of-the-industry threat protection for all your Azure Virtual Network resources. Azure Firewall is constantly and thoroughly analyzing all traffic and data packets, making it a very valuable and secure fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability. Azure Firewall allows users to create virtual IP addresses and provides for secure DDoS protection for the virtual machines on your network. It also provides fast and efficient east-west and north-south traffic security.

    Azure Firewall is a managed, cloud-based network security service built to protect your Azure Virtual Network resources. It is a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.

    Azure Firewall has two significant offerings, Standard and Premium.

    Azure Firewall Standard works directly with Microsoft Cyber Security and supplies excellent L3-L7 filtering and threat awareness. The proactive real-time threat awareness will quickly alert you and immediately deny all traffic to and from any known problematic or suspicious domains or IP addresses. Microsoft Cyber Security is updated continually to protect against all new and known potential threats at all times. To learn more about Azure Firewall Standard, click here.

    Azure Firewall Premium provides everything the standard version does, and additionally adds extra levels of data encryption, network intrusion detection, extended URL filtering, and Web category filters. To learn more about the added features of Azure Firewall Premium, click here.

    Key Benefits and Features of Azure Firewall:

    • High availability - You do not need load balancers with Azure Firewall; it's already built in and ready to go.
    • Self-scalability - Azure Firewall is intuitive and will auto-scale as needed based on traffic flow to be ready for peak traffic times.
    • Threat awareness - Using Microsoft Cyber Security to filter traffic, Azure Firewall will deny any known problematic threats to keep your network safe.
    • Additional IP addresses - You can securely add up to 250 public IP addresses with Azure Firewall
    • Improved web category filtering - You can set up specific protocols to allow or deny categories within websites that are deemed inappropriate for use within your network. You have the ability to organize categories based on a defined set of descriptions.

    What our real users have to say:

    Many IT CEntral Station (soon to be Peerspot) users found Azure Firewall to be very user-friendly and easy to use. They liked that it offers seamless integration to the cloud and were especially pleased with the threat filtering options.

    Regarding integration and threat intelligence, our users wrote:

    “The most valuable feature is the integration into the overall cloud platform.”

    The most valuable feature is threat intelligence. It is based on filtering and can identify multiple threats.”

    I think that one of the best features is definitely the premium version, along with the IDPs in terms of the intrusion detection and prevention system.”



    Control all the security and networking capabilities in all your FortiGates across your entire network with one intuitive operating system. Improve your protection and visibility while reducing operating expenses and saving time with a truly consolidated next generation enterprise firewall platform.

    Offer
    Learn more about Cisco Firepower NGFW Firewall
    Learn more about Azure Firewall
    Learn more about Fortinet FortiOS
    Sample Customers
    Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield
    Information Not Available
    Black Gold Regional Schools, Amadeus Hospitality, Jefferson County, Chunghwa Telecom, City of Boroondara, Dimension Data
    Top Industries
    REVIEWERS
    Comms Service Provider19%
    Financial Services Firm17%
    Government13%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Comms Service Provider29%
    Computer Software Company20%
    Government7%
    Manufacturing Company4%
    REVIEWERS
    Financial Services Firm31%
    Government15%
    Manufacturing Company15%
    Computer Software Company15%
    VISITORS READING REVIEWS
    Computer Software Company26%
    Comms Service Provider19%
    Government6%
    Financial Services Firm5%
    REVIEWERS
    Comms Service Provider17%
    Financial Services Firm14%
    Transportation Company10%
    Manufacturing Company10%
    VISITORS READING REVIEWS
    Comms Service Provider29%
    Computer Software Company22%
    Government6%
    Financial Services Firm4%
    Company Size
    REVIEWERS
    Small Business40%
    Midsize Enterprise25%
    Large Enterprise35%
    VISITORS READING REVIEWS
    Small Business26%
    Midsize Enterprise20%
    Large Enterprise55%
    REVIEWERS
    Small Business21%
    Midsize Enterprise17%
    Large Enterprise63%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise18%
    Large Enterprise61%
    REVIEWERS
    Small Business52%
    Midsize Enterprise15%
    Large Enterprise33%
    VISITORS READING REVIEWS
    Small Business26%
    Midsize Enterprise20%
    Large Enterprise54%
    Buyer's Guide
    Azure Firewall vs. Fortinet FortiOS
    July 2022
    Find out what your peers are saying about Azure Firewall vs. Fortinet FortiOS and other solutions. Updated: July 2022.
    620,319 professionals have used our research since 2012.

    Azure Firewall is ranked 19th in Firewalls with 17 reviews while Fortinet FortiOS is ranked 17th in Firewalls with 35 reviews. Azure Firewall is rated 7.0, while Fortinet FortiOS is rated 8.4. The top reviewer of Azure Firewall writes "Good value for your money, good URL filtering, supports intrusion prevention, and is stable". On the other hand, the top reviewer of Fortinet FortiOS writes "Great IPS and DNS filtering with useful tutorials available  ". Azure Firewall is most compared with Palo Alto Networks NG Firewalls, Fortinet FortiGate-VM, Palo Alto Networks VM-Series, Check Point NGFW and pfSense, whereas Fortinet FortiOS is most compared with Fortinet FortiWeb, Fortinet FortiGate, Infoblox Advanced DNS Protection, Fortinet FortiManager and OPNsense. See our Azure Firewall vs. Fortinet FortiOS report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.