We performed a comparison between Barracuda CloudGen Firewall, Cisco Secure Firewall, and Fortinet FortiGate based on real PeerSpot user reviews.
Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls."Barracuda is very prompt at blocking any new spam which comes out."
"They have a very responsive customer service and support team."
"Its stability and SD-WAN features are the most valuable."
"What I like best about this product are the support and the features."
"We use Barracuda NG Firewall as a border firewall. We trough it to control all in/out Internet traffic."
"The encryption and the security standards are valuable."
"If an employee tries to get or move a file that is not permitted to them - for example if he wants to copy it to a USB - he will not have the right to do that, because Barracuda manages who has the right to copy, and what you copy to a USB. The USB is encrypted with a specific code from Barracuda and will only be decrypted into any other laptop in the company if they allow it to see it."
"Easy integration with some other systems like LDAP or Active Directory to manage other permissions and the division of external access and internal access."
"The technical team is always available when we have problems."
"It is a very stable product. I've not had any issues with it. It is a super product, and I won't need to change it anytime soon."
"Cisco ASA works out-of-the-box. With the setup wizard, it was easy to get it deployed quickly, even by novice IT users."
"Its ability to discover attacks is a valuable feature. All of the other features that have to do with security are good."
"The most valuable feature we have found to be the VPN because we use it often."
"The configuration capabilities and the integration with other tools are the most valuable features. I really like this product. Cisco is one of my favorite brands, and I always think Cisco solutions are very reliable, easy to configure, and very secure."
"We are using the Cisco AnyConnect for our end-user VPN with the ASA."
"The most valuable feature is the access control list (ACL)."
"The most valuable feature is the VDOM, which allows the customer to have multiple firewalls in a single campus."
"It's very good and very stable for businesses. It works very well."
"The most important features with FortiGate are the web filter and application controls. We can control our internet usage and use the web filter for application purposes."
"The user interface (UI) is very, very good."
"The solution is stable."
"The solution is very user-friendly."
"The ease of setting the solution up is a valuable aspect for us."
"FortiGate is flexible and easy to use."
"The biggest issue that I have with this solution is that it is not super intuitive. Once you know what to do, things make sense, but you can't just open the program and start doing things. It would be great if there was a little bit more guided usage inside the program."
"It would be better if they had a trace and trap feature. It's hard for me to say anything bad about Barracuda. This is because we had a firewall go down in the town of Kirkland Lake, and it was a blown-out port, and they had an instant replacement."
"Command line could be more user friendly."
"I would like to see the connection improved."
"The price could be better."
"The initial setup is a bit complex."
"The usability for the administrator's experience needs improvement. My system administrator has some questions about its overall connectivity and flexibility."
"The price is a bit higher than other vendors."
"They need to do an overhaul of the management console."
"They need a user-friendly interface that we could easily configure."
"Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version."
"Cisco wasn't first-to-market with NGFWs... they should look at what other vendors are doing and try not only to be on the same wavelength but a little bit better."
"We are Cisco partners, and when we recommend Cisco FirePower to customers, they always think that FirePower is bad. For a single installation of FirePower, if I have to write about 18 tickets to Cisco, it's a big problem. There was an issue was related to Azure. We had Active Directory in Azure. The clients had to connect to FirePower through Azure. We had a lot of group policies. After two group policies, we had to make groups in Azure, and they had to sign in and sign back. It was a triple-layer authentication, and there was a big problem, so we didn't use it."
"It is a good firewall, though not NextGen."
"I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. So, I would like to see a lot of improvements here."
"The product line does not address the SMB market as it is supposed to do. Cisco already has an on-premises sandbox solution."
"Backup can be improved."
"If I had any criticism that I would give FortiGate, it would be that they need to stop changing their logging format. Every time we do a firmware upgrade, it is a massive issue on the SIM. Parsers have to be rebuilt. Even the FortiGate guys came in and said that they don't play well in the sandbox."
"One area for improvement is the performance on the bandwidth demands for smaller devices, as well as better web filtering."
"The initial setup and configuration are not intuitive and require training."
"The integration with third-party tools may be something that they should work on."
"It is stable, but its stability can be improved."
"It should come integrated or have its own type of network monitor tool in a module. There should just be one package, and you are good to go."
"I could not configure sFlow from the FortiGate graphical user interface. I realized that the sFlow configuration is available only from the CLI, and discovered that sFlow is not supported on virtual interfaces, such as VDOM links, IPsec, or GRE."