• Home
  • Check Point NGFW vs. Cisco IOS Security

Check Point NGFW vs Cisco IOS Security comparison

Cancel
You must select at least 2 products to compare!
Fortinet Logo

Fortinet FortiGate

Read 306 Fortinet FortiGate reviews
123,063 views|89,961 comparisons
90% willing to recommend
Check Point Software Technologies Logo

Check Point NGFW

Read 275 Check Point NGFW reviews
27,863 views|17,209 comparisons
96% willing to recommend
Cisco Logo

Cisco IOS Security

Read 47 Cisco IOS Security reviews
1,229 views|955 comparisons
91% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Check Point NGFW vs. Cisco IOS Security
March 2024
Executive Summary

We performed a comparison between Check Point NGFW and Cisco IOS Security based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Check Point NGFW vs. Cisco IOS Security Report (Updated: March 2024).
Download the complete report
767,319 professionals have used our research since 2012.
Featured Review
Andrei Vaskin
Researched Check Point NGFW but chose Fortinet FortiGate: Feature-rich, affordable, and has good performance
It protects our customers' networks from viruses and threats.
reviewer09751353
Researched Cisco IOS Security but chose Check Point NGFW: Easy to use and free of bugs with a good Smart Console
We selected this solution in order to replace the Cisco ASA we used to have. The features the CP firewall has combined with a very attractive price... Read more →
Hassan-Ayoub
Very highly scalable and an effective Umbrella integration for tech analysis
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"We are using the FortiGate 100D series. VPN, firewall, anti-malware, OTM, and intrusion prevention are useful features.""The SD-WAN function is very developed. It has SD-WAN functionality with security features in one device. We can manage from one single console SD-WAN and the security policy.""What I like the most is the configuration and that it's simple, and straightforward to maintain.""FortiGate has a strong security topic which allows all of the Fortinet devices to communicate and share information which makes their security more powerful.""It increases security posture and is helpful for firewall reporting, intrusion protection, web filtering, and SD-WAN implementation.""I really like the captive portal feature for our guest network. It has nice VLAN features in terms of separating our network. The anti-virus is also good.""This is an easy solution to deploy.""The IPsec tunnels are very easily created, and quite interoperable with devices from other vendors."

More Fortinet FortiGate Pros →

"Check Point has a centralized console that makes it possible to manage all the deployed equipment. It also has a built-in VPN service that lets users connect through VPN to our organization, which facilitates teleworking while cutting off unauthorized access to the organization's internal network.""The most valuable feature is the central management system through the Security Management Server. Apart from that, the graphical user interface helps us to do things easily.""The QoS blade is very good for controlling traffic such as Windows patches, mail traffic and other stuff.""The most valuable features are application control, regulation, and threat prevention.""In a single bundle we have the all solutions we need - like application/URL filtering, and threat emulation/extraction.""The most valuable feature is the powerful, deep packet inspection engine.""Management integration is holistic as centralized management has been core to the solution for decades.""We can decipher the activity of each connection and see what is inside it."

More Check Point NGFW Pros →

"The most valuable features of Cisco IOS Security are the plenty of functionality it provides, many people are IT certified the usage, and the user interface is good.""The solution effectively integrates with Umbrella.""I've found their network routing to be very good.""The security is very good.""The solution is very user-friendly and easy to deal with.""Cisco IOS allows us to keep the same security features as our principal offices.""The VPN is the most valuable feature.""Cisco has always been a premium product. There's a lot of other entry-level solutions. This is more robust."

More Cisco IOS Security Pros →

Cons
"Fortinet should focus on enhancing the capabilities of FortiGate by consolidating its various products, such as FortiGate Cloud, FortiManager, and FortiAnalyzer.""I would suggest that Fortinet add sandboxing to their solution.""I would like to have logs, monitoring, and reporting for a month without extra fees.""There is room for improvement related to the logging and reporting aspect.""Pricing for it is a bit high. It could be cheaper.""There is a lot of improvement needed with SSL-VPN.""It would be ideal if they had some sort of GUI interface for troubleshooting and diagnostics.""The room for improvement is about the global delivery time period. Usually I need to wait for almost one month to deliver it overseas. So if you can shorten the deliver time it'd be great."

More Fortinet FortiGate Cons →

"The predefined reports are few and it would be nice to increase them since the logs are excellent.""We find the GUI to be wrong and the CLI doesn't always show all of the connections.""Their technical support can be better. In addition, when we need to use it in a government environment, we face a lot of legal issues related to different types of certifications. It would be better to improve it for these issues. Check Point doesn't have a SOAR system. They work with Siemplify, but it is an integration with another vendor. It would be great if Check Point has an integrated SOAR system.""The SmartUpdate interface is a little bit crowded if your company has a lot of software items.""It would be ideal to manage everything from one central place.""This product has room for improvement in technical support for Africa.""In terms of what could be improved, we have a cluster with two nodes and usually we have some problems when process gets really high and it has to choose which services it keeps going. I would like to have a better solution here, like if instead of just one we could use both at the same time. It would be good if it could work together. Then when one has a failure or something like that, the other one is there to transfer, to take all the services and keep working.""We'd like an option that can convert other vendors' NGFW configurations to supported Check Point NGFW config for ease of migration."

More Check Point NGFW Cons →

"I would love it if it has a link-by-link feature, integration with Unified Threat Management (UTM), and load balancers. They haven't got any link-by-link feature right now, which can be a very attractive option. This link-by-link feature can also be made available for Cisco's UTM firewalls. The link-by-link feature is available in some of the other firewalls. Currently, integration with UTM is missing. Cisco IOS Security also doesn't have the load balancers and a few things that need to be done to get a good UTM firewall. Normally, other firewalls have UTM. As a next-generation firewall, it's good, but as a UTM, it has to do some work.""We faced significant challenges related to licensing issues, particularly when licenses expire.""It takes too much time to deploy a policy to FMC. It takes around eight minutes. You can't afford any downtime when you're changing policies.""The initial setup is complicated.""The user interface needs to be improved.""I would like to see much more embedded security that works and that isn't a bolt-on.""We need to pay for the license and it is expensive.""The pricing is the only con for this product."

More Cisco IOS Security Cons →

Pricing and Cost Advice
  • "Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."
  • "These boxes are not that expensive compared to what they can do, their functionality, and the reporting you receive. Fortinet licensing is straightforward and less confusing compared to Cisco."
  • "Go for long term pricing negotiated at the time of purchase."
  • "Work through partners for the best pricing."
  • "The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."
  • "Easy to understand licensing requirements."
  • "​We saved a bundle by not needing all the past appliances from an NGFW.​"
  • "The cost is too high... They have to focus on more features with less cost for the customer. If you see the market, where it's going, there are a lot of players offering more features for less cost."

    • More Fortinet FortiGate Pricing and Cost Advice →

  • "I don't think the product's pricing is a good value. I feel it's very overpriced. I feel a lot of the features for a next gen firewall are there. But I feel it's overpriced, because of the stability issues. As far as support goes, I really can't speak to direct Check Point support, but the third-party was pretty terrible... As far as the licensing goes, it's pretty complex. If anybody was to purchase the Check Point product, definitely make sure they have an account rep come on site, and explain it line by line, what each thing is. It's not straightforward. It's very convoluted. There's no way you could just figure it out by looking at it."
  • "Check Point solutions are very expensive here. They're good, but they're expensive... Check Point is only useful for customers that have a big IT budget."
  • "The price is high in comparison to other solutions."
  • "We pay $5,000-$6,000 a year."
  • "Maybe the pricing is a bit high but you get the durability and the duration."
  • "Licensing issues may be confusing at times."
  • "It is quite an expensive product, although security is a top priority."
  • "This product is not cheap and there are additional costs that depend on what model or package that you buy."

    • More Check Point NGFW Pricing and Cost Advice →

  • "The pricing is very expensive. Normally I do a yearly contract; I don't know the exact pricing, but it's around $75,000 USD per year. That's the standard licensing."
  • "The licensing is on a subscription basis, and it is fairly costly. I would prefer a one-time payment."
  • "The licenses for this solution are expensive."
  • "It is an expensive solution."
  • "The pricing is okay. It is competitive. It costs more when you need get more features."
  • "Price is certainly something that the IOS technology has fallen behind the competition on."
  • "It is necessary to pay for a license in order to use the solution. It is on a yearly basis and the price is high."
  • "Palo Alto networks are more expensive than this solution and this is why you will see more products like this one in Mexico."

    • More Cisco IOS Security Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    See Recommendations
    767,319 professionals have used our research since 2012.
    Questions from the Community
    Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Read all 3 answers   →
    What is the biggest difference between Sophos XG and FortiGate?
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Read all 13 answers   →
    What are the biggest technical differences between Sophos UTM and Fortine...
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Read all 11 answers   →
    How does Check Point NGFW compare with Fortinet Fortigate?
    Top Answer:I have experience on both from Disti and channel experience. Please find below my comments (nothing new as such)… more »
    Read all 5 answers   →
    Which would you recommend - Azure Firewall or Check Point NGFW?
    Top Answer:Azure Firewall is easy to use and provides excellent support. Valuable features include integration into the overall… more »
    Read all 2 answers   →
    What do you like most about Check Point NGFW?
    Top Answer:Check Point NGFW provides essential security, featuring no-obligation access for secure connections, strong intrusion… more »
    Read all 165 answers   →
    What do you like most about Cisco IOS Security?
    Top Answer:The VPN connection portal scan works flawlessly, which was a big plus for us.
    Read all 37 answers   →
    What is your experience regarding pricing and costs for Cisco IOS Security?
    Top Answer:Cisco comes with a premium reputation, and while it's certainly not the cheapest option. Compared to other products like… more »
    Read all 28 answers   →
    What needs improvement with Cisco IOS Security?
    Top Answer:Some GUI modules have extended prices compared to other vendors, which isn't ideal. Cisco is a scalable product, but it… more »
    Read all 37 answers   →
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Check Point NG Firewall, Check Point Next Generation Firewall
    IOS Security
    Learn More
    Fortinet
    Check Point Software Technologies
    Cisco
    Overview

    Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

    Check Point NGFW is a next generation firewall that enables safe usage of internet applications by blocking malicious applications and unblocking safe applications. Check Point NGFW, which uses deep packet inspection to identify and control applications, has features such as application and user control and integrated intrusion prevention (IPS), as well as more advanced malware prevention capabilities like sandboxing.

    Check Point NGFW includes 23 firewall models optimized for running all threat prevention technologies simultaneously, including full SSL traffic inspection, without compromising on security or performance.

    Benefits of Check Point's Next Generation Firewall

    • Robust security: Check Point NGFW delivers the best possible threat prevention with SandBlast Zero Day protection. The SandBlast protection agent constantly inspects passing network traffic for exploits and vulnerabilities. Suspicious files are then emulated in a virtual sandbox in order to detect and report malicious behavior.

    • Security at hyperscale: On-demand hyperscale threat prevention performance provides cloud level expansion and resiliency on premises.

    • Unified management: Check Point's SmartConsole makes it easy to manage and configure network security environments and policies. With the SmartConsole, users can manage all the firewall gateways and access logs and install databases from one location. Unified management control across the network increases the efficiency of security operations and reduces IT costs.
    • Continuous logging: Check Point NGFW’s Threat Management feature detects vulnerabilities and logs them. Using the logged data, users can easily create and implement efficient security policies.

    • Remote access: The remote access VPN provides a seamless connection for remote users.

    Check Point NGFW is suitable for organizations of all sizes, from small businesses to larger enterprises.

    Reviews from Real Users

    Check Point NGFW stands out among its competitors for a number of reasons. Two major ones are its intrusion prevention feature as well as its centralized management, which makes it very easy to deploy firewall policies to many firewalls with one click.

    Shivani J., a network security administrator, writes, "Check Point has a lot of features. The ones I love are the antivirus, intrusion prevention, and data loss prevention."

    G., a network administrator at Secretaría de Finanzas de Aguascalientes, writes, “Within the organization, the inspection of packages has given us great help in detecting traffic that may be a threat to the institution. The configuration of policies has allowed us to maintain control of access and users for each institution that is incorporated into our headquarters.”

    Arun J., a senior network engineer, notes, “The nicest feature is the centralized management of multiple firewalls. With the centralized management, we can easily use and operate multiple firewalls as well as create a diagram of them.”

    Cisco IOS Software delivers a sophisticated set of security capabilities for a comprehensive, layered security approach throughout your network infrastructure. Cisco IOS security technologies help to defend critical business processes against attack and disruption, protect privacy, and support policy and regulatory compliance controls.
    Sample Customers
    1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
    Control Southern, Optimal Media
    Arup Group, Brunel University London, City of Biel, Gobierno de Castilla-La Mancha, K&L Gates , New South Wales Rural Fire Service, Offshore Northern Seas, Transplace
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company15%
    Comms Service Provider8%
    Manufacturing Company6%
    REVIEWERS
    Financial Services Firm22%
    Computer Software Company15%
    Comms Service Provider7%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Educational Organization49%
    Computer Software Company8%
    Financial Services Firm5%
    Comms Service Provider5%
    REVIEWERS
    Computer Software Company17%
    Comms Service Provider17%
    Financial Services Firm14%
    Manufacturing Company10%
    VISITORS READING REVIEWS
    Computer Software Company22%
    Financial Services Firm10%
    Manufacturing Company8%
    Government7%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise32%
    Large Enterprise41%
    REVIEWERS
    Small Business32%
    Midsize Enterprise19%
    Large Enterprise49%
    VISITORS READING REVIEWS
    Small Business14%
    Midsize Enterprise58%
    Large Enterprise28%
    REVIEWERS
    Small Business34%
    Midsize Enterprise28%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise21%
    Large Enterprise58%
    Buyer's Guide
    Check Point NGFW vs. Cisco IOS Security
    March 2024
    Free Report: Check Point NGFW vs. Cisco IOS Security
    Find out what your peers are saying about Check Point NGFW vs. Cisco IOS Security and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    767,319 professionals have used our research since 2012.

    Check Point NGFW is ranked 5th in Firewalls with 275 reviews while Cisco IOS Security is ranked 22nd in Firewalls with 47 reviews. Check Point NGFW is rated 8.8, while Cisco IOS Security is rated 8.0. The top reviewer of Check Point NGFW writes "Good antivirus protection and URL filtering with very good user identification capabilities". On the other hand, the top reviewer of Cisco IOS Security writes "User-friendly and excels in documentation, making it easier to resolve issues". Check Point NGFW is most compared with Palo Alto Networks NG Firewalls, Sophos XG, Cisco Secure Firewall, Netgate pfSense and Azure Firewall, whereas Cisco IOS Security is most compared with Cisco Secure Firewall, Meraki MX, Fortinet FortiOS, Netgate pfSense and OPNsense. See our Check Point NGFW vs. Cisco IOS Security report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.