Try our new research platform with insights from 80,000+ expert users

Check Point NGFW vs Zscaler Cloud Firewall comparison

Check Point Software Technologies and Zscaler are both solutions in the Firewalls category. Check Point Software Technologies is ranked #5 with an average rating of 8.6, while Zscaler is ranked #24 with an average rating of 8.6. Check Point Software Technologies holds a 3.0% mindshare in Firewalls, compared to Zscaler’s 0.4% mindshare. Additionally, 96% of Check Point Software Technologies users are willing to recommend the solution, compared to 92% of Zscaler users who would recommend it.
Sponsored
Fortinet FortiGate
Read 330 Fortinet FortiGate reviews
  • 78,842 Views
  • 58,697 Comparison Views
90% willing to recommend
Check Point NGFW
Read 310 Check Point NGFW reviews
  • 18,864 Views
  • 10,022 Comparison Views
96% willing to recommend
Zscaler Cloud Firewall
Read 18 Zscaler Cloud Firewall reviews
  • 1,317 Views
  • 954 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 6, 2025

Check Point NGFW and Zscaler Cloud Firewall compete in the network security category. Check Point NGFW holds an advantage in detailed application and content filtering, while Zscaler excels with its cloud adaptability and remote access capabilities.

Features: Check Point NGFW is known for detailed application filtering, content filtering, and IPsec VPN, which make it suitable for complex environments. Zscaler Cloud Firewall offers robust cloud adaptability, extensive remote access options, and comprehensive application control, benefiting cloud-first organizations.

Room for Improvement: Check Point NGFW users report stability issues, licensing complexity, and support-related challenges, suggesting improvements in automation and integration. Zscaler Cloud Firewall is noted for being costly for small businesses and presents limitations in customization and data center coverage, prompting desires for better support and geographic presence.

Ease of Deployment and Customer Service: Check Point is strong in on-premise and hybrid cloud setups, offering robust support despite noted inconsistencies. Zscaler, while agile in cloud deployments, receives criticism for its limited geographic support reach and slower service resolutions.

Pricing and ROI: Both products are considered expensive but offer strong ROI through their security features. Check Point's cost is justified by comprehensive security offerings, while Zscaler presents licensing flexibility, though it remains a significant expense for smaller businesses.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Check Point NGFW vs. Zscaler Cloud Firewall Report (Updated: April 2025).
Buyer's Guide
Check Point NGFW vs. Zscaler Cloud Firewall
April 2025
Download the complete report
Helped 849,686 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
330
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Check Point NGFW
Ranking in Firewalls
5th
Average Rating
8.8
Reviews Sentiment
7.4
Number of Reviews
310
Ranking in other categories
Unified Threat Management (UTM) (1st)
Zscaler Cloud Firewall
Ranking in Firewalls
24th
Average Rating
8.2
Reviews Sentiment
8.0
Number of Reviews
18
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of May 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.4%, up from 17.7% compared to the previous year. The mindshare of Check Point NGFW is 3.0%, down from 3.3% compared to the previous year. The mindshare of Zscaler Cloud Firewall is 0.4%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

EhabAli - PeerSpot reviewer
Efficient, user-friendly, and affordable
In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.
Read full review
Manikandan Kannan - PeerSpot reviewer
Streamlined management through dual-interface configuration capabilities with excellent support
We use Check Point NGFW for security purposes. Our clients use it for security reasons, as mentioned during the call The most valuable feature is the availability of two consoles. In the normal GA login, I can create interfaces and configure interface IPs, while in the SmartConsole, I manage the…
Read full review
Bhaskar Rao - PeerSpot reviewer
Though it helps deal with web traffic or any malicious traffic, it needs to work on its DC performance issues
The product's initial setup phase is moderate in level, so it is neither very complex nor very easy. For the deployment, my company first needs to gather all the requirements of the users and the domain names and consider how many users there are in the company. In the implementation and planning part, my company needs to consider what kind of policies we will create while ensuring that the policies are created based on the requirements of the users. There is a need to segregate the users' requirements since there are separate departments in the company, like the HR department, sales department, IT department, and manufacturing department, so that our company can create policies depending on their requirements. On-site, if you want a GRE tunnel, our company can handle GRE tunnel traffic routing and Zscaler Cloud Firewall, after which Zscaler will take action based on the policies created by our organization. For the deployments and maintenance, a team of five members consisting of two managers and three engineers is required.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of the solution revolves around SSL VPN."
"What I like the most is the configuration and that it's simple, and straightforward to maintain."
"The web filtering feature and the intrusion protection system are the most valuable. It is a resilient appliance. I never had an issue with it in terms of any security breaches."
"The solution provides good threat intelligence feeds."
"We use a lot of function on the IPS and it works well for us."
"The feature I like most is the SD-WAN. It allows you to manage more than one ISP at the same time. And there is a high-availability mode, so if one of your ISPs is down, you still have a backup."
"Initial setup is straightforward. There weren't too many issues with setting it up. It takes one hour or so."
"The CLI is robust and powerful, enabling rapid, consistent changes via SSH."
More Fortinet FortiGate pros
"There are several ways to implement it."
"All policies can be deployed and managed in a very simple way."
"One of the valuable characteristics of Check Point NGFW is that it presents very centralized management."
"Check Point NGFW provides a bunch of different products or Blades, as they call it in Check Point. The firewall engine is what we use the most but we also use the IPS IDS and Anti-Bot features. The solution provides many features."
"It provides a central station where it is very easy to deploy our firewall policy in one click to many firewalls. This is one of the leading perks. It saves time by having one central station because I can deploy the same kind of policy to many firewalls at once."
"Extracting data from the logs and utilizing the log analyzer tool provides valuable insights and enhances the product's overall effectiveness."
"Objects search and tracker logs are useful."
"The Check Point architecture and packet are very good."
More Check Point NGFW pros
"The product’s firewall and VPN package are fantastic compared to any other solution."
"Zscaler is still a very good product."
"It helps a lot of companies to reduce their downtime. Also, It helps businesses in terms of being secured and protected from any threats."
"I like the ease of deployment and its flexibility. We don't need to deal with license, quotes, procurement, delivery, and installation. Everything is software-based, and it's very easy to operate."
"Includes advanced tech protection."
"It is a stable solution."
"The solution offers good sandboxing."
"The initial setup is straightforward."
More Zscaler Cloud Firewall pros
 

Cons

"In my opinion, Fortinet FortiGate could be improved by making the appliance smaller than what we have here, as it is pretty big."
"Palo Alto has a feature called WildFire Analysis that is unavailable in FortiGate. WildFire is better than a sandbox because it can address zero-day threats and vulnerabilities. It can immediately identify zero-day threats from the cloud."
"Technical support for this solution can be improved."
"The user interface could be improved to make it less confusing and easier to set up."
"The debugging and troubleshooting has room for improvement."
"The logs need to be better. They need to be more visible and easier to access."
"In most cases, the IPS engine uses too many resources, which makes Fortinet FortiGate devices unstable."
"There are some tiny bugs that sometimes affect the operations. In the past revision of it, there was a bug. Because of the bug, we had to downgrade the version. It happened only with the last revision."
More Fortinet FortiGate cons
"It could greatly improve our customer experience by centralizing management."
"The support team should be faster."
"When it comes to Check Point's small business gateway series, there might be a need for hardware upgrades, as configuring them can sometimes be a bit challenging."
"The only thing that we've seen is instances where console and administrative interfaces get locked up or freeze, and we have to get the machine rebooted."
"The tool is somewhat more expensive than its competitors."
"If you have a long ruleset, you may experience performance issues on the GUI, and installing rule changes on gateways can take a comparatively long time."
"Complex and not very easy to use."
"There's a significant area for improvement when it comes to pricing."
More Check Point NGFW cons
"There are several areas for improvement. Firstly, the GUI is outdated, with noticeable lags and delays, especially when generating reports for past transactions."
"We are having some issues with internet access being denied when organizational ID-based policies change. For example, a lower level employee ends up getting the same level of access as that of a higher level employee."
"They do not provide a few components that are fundamental to differentiate the products"
"Zscaler Cloud Firewall should have a better understanding of all dynamic cloud applications."
"The issue right now is probably that Zscaler is not providing web browser isolation. Another solution, Menlo, offers this. For one customer, we had to send traffic to Menlo to do the isolation for us. It was requested by the customer so that they could integrate any iframe. Zscaler needs to add this type of feature in their next release."
"If I can get rid of Jetscaler, I will use Twingate for sure."
"Instead of the standard license, they should certainly provide customers with the visibility to access and view the logs."
"The product could improve its integration with some legacy systems."
More Zscaler Cloud Firewall cons
 

Pricing and Cost Advice

"If the price of the license in Fortinet FortiGate was less expensive it would be better."
"At the time we bought them, I was satisfied with their pricing; I don't know how the new pricing will be."
"The pricing of the solution is very competitive."
"Fortinet FortiGate is expensive."
"It is expensive. You need to pay for the subscription every year, which is very expensive. The subscription includes technical support and hardware exchange in case of failure."
"I would say that all things considered, the pricing is pretty good."
"Licensing for Fortinet FortiGate is on a yearly basis. Pricing for it is a bit high. It could be cheaper."
"It is cost-effective, and provides a good value for your money. The pricing, and license renewal, is very reasonable for us."
More Fortinet FortiGate pricing and cost advice
"It may be considered relatively expensive, but the investment is justified when compared to other competitors."
"The cost of the pricing and licensing are okay. They are giving me a good product as far as I know. It is more expensive than Cisco, but cheaper than Palo Alto, which is fine. It has many good features, so it deserves a good price as well."
"The licensing is straightforward; there are only three types of licenses that include NGFW, NGTP, and SNBT, so the organization can choose its license according to their requirements."
"The licensing includes the cost of support."
"The pricing and licensing part is something that could be improved. Check Point license and pricing are a bit higher compared to competing firewalls. I think they can work on that."
"Check Point NGFW is expensive."
"The solution is expensive."
"It's an expensive solution"
More Check Point NGFW pricing and cost advice
"The licensing is on a yearly basis. It is somewhere around 30 or 40 pounds per user for our organization."
"There are different subscription models available."
"The product is a bit expensive compared to the solutions offered by its competitors, like Palo Alto. There is a need to make yearly payments towards the license in charges associated with the product."
"There is an annual license required for the use of the Zscaler Cloud Firewall."
"Zscaler is priced too high compared to the cost of Fortinet."
"It comes at a significantly reduced cost while ensuring control and effectiveness."
"It is expensive for small businesses."
"It is not the most budget-friendly solution, but it's important to consider its overall value."
More Zscaler Cloud Firewall pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
See recommendations
849,686 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
20%
Computer Software Company
14%
Comms Service Provider
7%
Manufacturing Company
6%
Educational Organization
56%
Computer Software Company
7%
Financial Services Firm
5%
Government
3%
Computer Software Company
14%
Financial Services Firm
12%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
See all answers
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
See all answers
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
See all answers
How does Check Point NGFW compare with Fortinet Fortigate?
I have experience on both from Disti and channel experience. Please find below my comments (nothing new as such). -Ch...
See all answers
Which would you recommend - Azure Firewall or Check Point NGFW?
Azure Firewall is easy to use and provides excellent support. Valuable features include integration into the overall ...
See all answers
What do you like most about Check Point NGFW?
Check Point NGFW provides essential security, featuring no-obligation access for secure connections, strong intrusion...
See all answers
Which lesser known firewall product has the best chance at unseating the market leaders?
Netscope, Zscaler if they continue route they are on now. FIrewalls needs great deal of automation on each end, datac...
See all answers
What do you like most about Zscaler Cloud Firewall?
The product’s firewall and VPN package are fantastic compared to any other solution.
See all answers
What is your experience regarding pricing and costs for Zscaler Cloud Firewall?
Zscaler Cloud Firewall is quite expensive compared to competitors. However, it offered moderate value for money.
See all answers
 

Comparisons

Sophos XG vs Fortinet FortiGate Logo
Sophos XG vs Fortinet FortiGate
Compared 22% of the time
Netgate pfSense vs Fortinet FortiGate Logo
Netgate pfSense vs Fortinet FortiGate
Compared 13% of the time
Cisco Secure Firewall vs Fortinet FortiGate Logo
Cisco Secure Firewall vs Fortinet FortiGate
Compared 11% of the time
WatchGuard Firebox vs Fortinet FortiGate Logo
WatchGuard Firebox vs Fortinet FortiGate
Compared 5% of the time
Fortinet FortiOS vs Fortinet FortiGate Logo
Fortinet FortiOS vs Fortinet FortiGate
Compared 2% of the time
More Fortinet FortiGate Competitors
Palo Alto Networks NG Firewalls vs Check Point NGFW Logo
Palo Alto Networks NG Firewalls vs Check Point NGFW
Compared 13% of the time
Sophos XG vs Check Point NGFW Logo
Sophos XG vs Check Point NGFW
Compared 9% of the time
Netgate pfSense vs Check Point NGFW Logo
Netgate pfSense vs Check Point NGFW
Compared 9% of the time
Cisco Secure Firewall vs Check Point NGFW Logo
Cisco Secure Firewall vs Check Point NGFW
Compared 6% of the time
Sophos XGS vs Check Point NGFW Logo
Sophos XGS vs Check Point NGFW
Compared 5% of the time
More Check Point NGFW Competitors
Azure Firewall vs Zscaler Cloud Firewall Logo
Azure Firewall vs Zscaler Cloud Firewall
Compared 16% of the time
OPNsense vs Zscaler Cloud Firewall Logo
OPNsense vs Zscaler Cloud Firewall
Compared 11% of the time
Palo Alto Networks NG Firewalls vs Zscaler Cloud Firewall Logo
Palo Alto Networks NG Firewalls vs Zscaler Cloud Firewall
Compared 8% of the time
Cisco Multicloud Defense vs Zscaler Cloud Firewall Logo
Cisco Multicloud Defense vs Zscaler Cloud Firewall
Compared 6% of the time
Cisco Secure Firewall vs Zscaler Cloud Firewall Logo
Cisco Secure Firewall vs Zscaler Cloud Firewall
Compared 5% of the time
More Zscaler Cloud Firewall Competitors
 

Product Reports

Buyer's Guide
Fortinet FortiGate
April 2025
Fortinet FortiGate reportDownload Fortinet FortiGate product report
Buyer's Guide
Check Point NGFW
April 2025
Check Point NGFW reportDownload Check Point NGFW product report
Buyer's Guide
Zscaler Cloud Firewall
April 2025
Zscaler Cloud Firewall reportDownload Zscaler Cloud Firewall product report
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
Check Point NG Firewall, Check Point Next Generation Firewall
No data available
 

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

  • VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
  • Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
  • Advanced Firewall: Offers robust firewalling with application control and web filtering.
  • SD-WAN: Optimizes application performance and enhances bandwidth management.
  • SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

  • High-performance Security: Delivers effective threat mitigation with high availability.
  • Centralized Management: Simplifies network operations with cloud-based management tools.
  • Detailed Analytics: Provides comprehensive insights into network activity and security threats.
  • Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Check Point NGFW provides comprehensive firewall protection, managing VPNs, and securing network perimeters with advanced threat prevention techniques. It's widely used to protect businesses, data centers, and ensure secure traffic management.

Check Point NGFW offers robust security for companies, delivering security features like threat prevention, URL filtering, and intrusion prevention across both layer 3 and layer 7. It supports remote access, web filtering, application control, and safeguards against malware, botnets, and zero-day attacks. With its intuitive management console, deep packet inspection, centralized management capabilities, and sophisticated threat detection, Check Point NGFW enhances network security and productivity. The system integrates seamlessly with other technologies and provides real-time monitoring, detailed reporting, and automated policy management. Additionally, its setup is straightforward, it scales well, and offers comprehensive logging.

What are the key features?
  • VPN capabilities: Ensures secure remote access and encrypted communications.
  • Intuitive management console: Simplifies administration with an easy-to-use interface.
  • Application control: Provides extensive control over applications running on the network.
  • Deep packet inspection: Examines data packets in detail to detect and prevent threats.
  • Intrusion prevention system: Protects against unauthorized access and attacks.
  • Centralized management: Manages all security policies and devices from one location.
  • Automated policy management: Reduces administrative tasks through automation.
  • Advanced threat detection: Identifies sophisticated threats in real-time.
  • Real-time monitoring: Continuously monitors network traffic and security events.
  • Easy setup and scalability: Simplifies deployment and scales with business needs.
What are the benefits?
  • Enhanced security: Provides comprehensive protection against a range of cyber threats.
  • Increased productivity: Simplifies security management, allowing IT teams to focus on other tasks.
  • Improved visibility: Detailed reporting and monitoring provide insights into network activity.
  • Reduced risk: Automated threat detection and policy management mitigate potential risks.
  • Cost efficiency: Consolidates multiple security functions, reducing the need for additional solutions.

Check Point NGFW is implemented in industries like finance, healthcare, and retail, where protecting sensitive data and ensuring compliance are critical. Its advanced security features and ease of management make it suitable for large enterprises and data centers, ensuring reliable and secure network operations.

Check Point Software Technologies

Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud first world. Its flagship services, Zscaler Internet Access and Zscaler Private Access, create fast, secure connections between users and applications, regardless of device, location, or network. Zscaler services are 100% cloud-delivered and offer the simplicity, enhanced security, and improved user experience that traditional appliances or hybrid solutions are unable to match. Used in more than 185 countries, Zscaler operates the world’s largest cloud security platform, protecting thousands of enterprises and government agencies from cyberattacks and data loss.

Check more details: https://www.zscaler.com/produc...

Zscaler
 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
Control Southern, Optimal Media
Zenith Live, Azure, Carlsberg Group
Buyer's Guide
Check Point NGFW vs. Zscaler Cloud Firewall
April 2025
Free Report: Check Point NGFW vs. Zscaler Cloud Firewall
Find out what your peers are saying about Check Point NGFW vs. Zscaler Cloud Firewall and other solutions. Updated: April 2025.
DOWNLOAD NOW
849,686 professionals have used our research since 2012.
See our Check Point NGFW vs. Zscaler Cloud Firewall report.
See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.