We performed a comparison between Check Point CloudGuard Network Security and Cisco Secure Firewall based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Check Point CloudGuard Network Security provides useful features including VPN Blade, IPS Blade, URL filtering, and Applications Control Blade. Cisco Secure Firewall offers features such as threat defense, dashboard visibility, and application visibility and control.
For the Check Point CloudGuard Network Security, users suggest enhancing their support system, adding features like cluster creation on AWS and a managed web portal. They also recommend providing more visibility on data protection and improving documentation and support services. As for Cisco Secure Firewall, improvements are needed in network performance, policy administration, customization options, web filtering, user-friendly management interface, performance for IPS, and functionality in public clouds.
Service and Support: While some customers have praised the technical support of Check Point, others have faced response delays. Cisco Secure Firewall's customer service has garnered mixed review. Some customers appreciate the immediate solutions provided by their technical support, while others have mentioned delays and difficulties, particularly with Firepower.
Ease of Deployment: Check Point CloudGuard Network Security is generally considered easy and user-friendly for setup. However, it can be complex for some users and may require technical expertise. The deployment time varies depending on the number of customers or websites. Cisco Secure Firewall's initial setup reviews are mixed. Some find it difficult, while others find it straightforward. Cisco offers resources and documentation for assistance, yet the complexity can vary depending on the user's experience.
Pricing: The cost of setting up Check Point CloudGuard Network Security is perceived as high by most. There are, however, flexible pricing options with various discount models. Opinions on the pricing of Cisco Secure Firewall differ, with some finding it expensive and others considering it moderate.
ROI: Check Point CloudGuard Network Security consistently delivers a strong ROI of 80% to 85%, offering improved advantages and simplified administration. Cisco Secure Firewall exhibits fluctuating ROI, with some positive returns observed.
Comparison Results: Check Point CloudGuard Network Security is the preferred choice when compared to Cisco Secure Firewall. Users find the initial setup of Check Point CloudGuard Network Security to be easy, straightforward, and user-friendly. Check Point CloudGuard Network Security is highly praised for its valuable features such as VPN Blade, IPS Blade, URL filtering, and Applications Control Blade.
"We are using the FortiGate 100D series. VPN, firewall, anti-malware, OTM, and intrusion prevention are useful features."
"The most valuable features of the solution are SD-WAN, filtering testing applications, web filtering, and the new VPN."
"We use a lot of function on the IPS and it works well for us."
"The notable features that I have found most valuable are that it includes the antivirus, and also IPS, and even SD-WAN."
"Unified Threat Management (UTM) features."
"Easy to use support and licensing portal as well as activation process."
"The FortiGate controls the user's activities and maximizes my bandwidth use overall."
"It's an easy solution to set up."
"It's possible to sync the Check Point Management with the cloud portal, therefore allowing automated rules to be set in place whenever creating a new VM."
"The Capsule solution and application filters are the most valuable. It is pretty straightforward to implement, and it also has good stability and scalability. Their technical support is also really good."
"SSL/TLS traffic inspection features are used for advanced threat prevention against secure SSL traffic."
"The multiple virtual firewalls on one box are extremely useful and the interconnection with virtual switches is simple and easy to understand."
"Any kind of cloud environment anywhere can be protected through this effortlessly."
"The scalability is very good; again, very user-friendly. I wouldn't even say "user-friendly" because, as long as you deploy it properly, you can kill an EC2 and it will spin up another one right away, within about a minute and a half. And it will be ready for production right away."
"We find Check Point valuable because they are 100% focused on security. It totally closes the potential vulnerability channel. We can check our mail and our attachments and we can scan everything easily. We get an immediate report about the situation of the attachments. We can discover if the target's security attack was started from phishing, etc. We also enjoy using the additional features that protect our internal customer from targeted attacks."
"The ease of deployment has been nice. It is like managing any of our on-prem firewalls."
"The most valuable features for my client are the ASDM and monitoring."
"IPSec Tunnel and AnyConnect (of course), the context awareness was a good feature, but clumsy at the beginning. I think it's better now."
"The most important feature is its categorization because on the site and social media you are unified in the way they are there."
"AnyConnect has been very helpful, along with the ability to use LDAP for authentication."
"Logging is great. It will show when it reaches its capacity before it is too late, unless you have bursts of traffic."
"Cisco ASA NGFW significantly improves our bank. It protects any high-value products that we use from hackers, viruses, malware, and script-bots. It gives us metrics on network traffic as well as what kind of attacks we are getting from the outside."
"It provides security for our company and users."
"To be honest, all of the features that are provided, all the other vendor will also have. One feature we did find valuable was the CLI, it is more accurate. Additionally, I was happy with the customization, dashboards, access lists and interface."
"Bandwidth usage in reporting could be improved for Fortinet FortiGate."
"Sometimes you do need to know some CLI commands, so it's a bit harder for technicians or new people that don't know it."
"Improvement is needed in the Web Filter quotas to restrict users with allocated quotas."
"The solution could be more secure and stable."
"I don't like that anything more than very basic reporting is not included."
"It should provide better visibility over the network and more information in the form of reports for the end users. Its installation should also be easier."
"I don't really have anything negative to say as far as Fortinet firewalls are concerned. If anything, they can support a user a little bit better. They can stop being so time-sensitive about how much time the support call has taken, and they can help you do it yourself."
"The central management for the FortiGate Fortinet Firewall needs improvement. They have the manager to do the essential management for both SD-WAN and for the security policy. They should also improve the SD-WAN function."
"The only pain points we have had with it were when we did major version upgrades. Rather than being able to do incremental upgrades on those, we had to completely redeploy. I know that has changed recently, but we had some hiccups when we did the upgrades. This is the only issue we have had."
"The business and product development team should introduce a high-end feedback collection mechanism and analyze the customer requirements constructively."
"The documentation could be much better."
"CloudGuard Network Security's pricing is expensive. We have encountered issues with its licensing."
"There is room for improvement in the integration with PaaS services from the public cloud. It would be very helpful."
"The user interface can be improved."
"There is room for improvement in addressing bugs and support issues."
"Check Point has a history of moving fast with software release and upgrade cycles which are difficult to keep up with at times."
"Comparing Cisco solution to others, it is expensive, it would be better for it to be cheaper."
"The one thing that the ASAs don't have is a central management point. We have a lot of our environments on FTD right now. So, we are using a Firewall Management Center (FMC) to manage all those. The ASAs don't really have that, but they are easy to use if you physically go into them and manage them."
"Cisco's inspection visibility could be better."
"The policies module in FMC specifically isn't the most user-friendly. Coming from Cisco ASA, Cisco ASA is a little bit easier to use. When you get into particularly complex deployments where you have a lot of different interfaces and all that kind of stuff, it's a little bit tricky. Some usability improvements there would be nice."
"The virtual firewalls don't work very well with Cisco AnyConnect."
"I wish the Cisco interface was not so granular. Check Point was easier to create specific rules than with ASAv."
"In the next release, I would like to see the VPN and UTM features included."
"I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. So, I would like to see a lot of improvements here."
More Check Point CloudGuard Network Security Pricing and Cost Advice →
Check Point CloudGuard Network Security is ranked 8th in Firewalls with 117 reviews while Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews. Check Point CloudGuard Network Security is rated 8.6, while Cisco Secure Firewall is rated 8.2. The top reviewer of Check Point CloudGuard Network Security writes "The solution has good threat emulation, threat extraction, and reporting features". On the other hand, the top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". Check Point CloudGuard Network Security is most compared with Azure Firewall, VMware NSX, Akamai Guardicore Segmentation, Palo Alto Networks VM-Series and Illumio, whereas Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Palo Alto Networks NG Firewalls. See our Check Point CloudGuard Network Security vs. Cisco Secure Firewall report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.