Check Point NGFW vs Zscaler Cloud Firewall comparison

Check Point Software Technologies and Zscaler are both solutions in the Firewalls category. Check Point Software Technologies is ranked #5 with an average rating of 8.6, while Zscaler is ranked #25 with an average rating of 8.3. Check Point Software Technologies holds a 3.0% mindshare in Firewalls, compared to Zscaler’s 0.4% mindshare. Additionally, 96% of Check Point Software Technologies users are willing to recommend the solution, compared to 92% of Zscaler users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jul 13, 2025

Check Point NGFW and Zscaler Cloud Firewall compete in the network security market. Check Point NGFW may have an upper hand due to its comprehensive feature set, including robust policy management, while Zscaler stands out for cloud integration and ease of deployment.

Features: Check Point NGFW offers centralized management, zero-day threat protection, and strong VPN capabilities. Zscaler Cloud Firewall integrates seamlessly with existing security features, provides malware detection, and encryption, and allows for simple cloud-based management.

Room for Improvement: Check Point NGFW may face stability issues and bugs in new releases and compatibility with older hardware. Zscaler Cloud Firewall could enhance customer support, technical service, and expand features relative to competitors.

Ease of Deployment and Customer Service: Check Point requires significant infrastructure for hybrid or private cloud deployment and has varied customer support experiences. Zscaler offers easy public and hybrid cloud deployment, reducing infrastructure requirements and emphasizing intuitive cloud-based management, though its technical support might need improvement.

Pricing and ROI: Check Point NGFW might be costly for small businesses due to a complex licensing structure, yet offers strong ROI with centralized management reducing costs. Zscaler Cloud Firewall, although pricey, presents varied licensing options and operational cost advantages through minimal hardware requirements, making it attractive for scalability.

To learn more, read our detailed Check Point NGFW vs. Zscaler Cloud Firewall Report (Updated: July 2025).

Buyer's Guide

Check Point NGFW vs. Zscaler Cloud Firewall

July 2025

Download the complete report

Helped 864,155 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of August 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.8%, up from 17.8% compared to the previous year. The mindshare of Check Point NGFW is 3.0%, down from 3.1% compared to the previous year. The mindshare of Zscaler Cloud Firewall is 0.4%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Read full review

Hailemichael Yigrem

Senior Cyber Security Engineer at Deliver ICT and Telecommunication Technology PLC

Advanced security features enhance threat detection and prevention

Check Point NGFW provides granular application control and detailed visibility over application and user activity. It integrates with the ThreatCloud ecosystem, enabling real-time threat detection and prevention. The User Identity Awareness blade integrates with Active Directory, identifying user traffic sources. Check Point NGFW is highly scalable and has centralized management through SmartConsole, which manages policies, logs, and threat data. It reduced our incidents and decreased the time to analyze cyber threats by 70 percent.

Read full review

Bhaskar Rao

Network manager admin at Yamaha

Though it helps deal with web traffic or any malicious traffic, it needs to work on its DC performance issues

The product's initial setup phase is moderate in level, so it is neither very complex nor very easy. For the deployment, my company first needs to gather all the requirements of the users and the domain names and consider how many users there are in the company. In the implementation and planning part, my company needs to consider what kind of policies we will create while ensuring that the policies are created based on the requirements of the users. There is a need to segregate the users' requirements since there are separate departments in the company, like the HR department, sales department, IT department, and manufacturing department, so that our company can create policies depending on their requirements. On-site, if you want a GRE tunnel, our company can handle GRE tunnel traffic routing and Zscaler Cloud Firewall, after which Zscaler will take action based on the policies created by our organization. For the deployments and maintenance, a team of five members consisting of two managers and three engineers is required.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Web filtering and two-factor authentication are great features."

"They are very affordable compared to Palo Alto and other vendors, offering a great solution for networking and SD-WAN with extremely good protection."

"The impact of SD-WAN on the network performance has been significant."

"Easy to use support and licensing portal as well as activation process."

"Fortinet FortiGate helps improve my organization since it's quick and easy to install, and we don't have to call support frequently."

"The FortiGate controls the user's activities and maximizes my bandwidth use overall."

"The dashboard I have found the most valuable in Fortinet FortiGate."

"The solution can scale well."

More Fortinet FortiGate pros

"The Check Point API let me make 100 net rules in just 10 minutes, which saved us time."

"While not being cheap, their pricing models are competitive."

"I have to say that it was Application Control and web filtering are excellent."

"It secures my organization. With the application blade, I can make security as application based and the custom application is also very useful. With identity awareness blades we get insights on our local users who are accessing/passing through the respective rule as users. We also use the DLP, IPS, and VPN features."

"The initial setup is easy."

"Check Point NGFW generates very helpful reports based on the logs of the activated features."

"The AntiSpam/Mail blade was also one of the main reasons we went with this product since we hosted our email server locally. This was an extra layer of protection on top of the existing solution."

"Some of the most valuable features are URL filtering, web filtering, and content filtering."

More Check Point NGFW pros

"Since it is really customizable, I can use it and avoid enabling access to the full network."

"Most of the features that Zscaler has to offer, we will deploy."

"The visibility and log availability offered are highly valued for troubleshooting purposes, and this is a key factor driving customer interest in the firewall module."

"The product’s firewall and VPN package are fantastic compared to any other solution."

"It helps a lot of companies to reduce their downtime. Also, It helps businesses in terms of being secured and protected from any threats."

"The solution is scalable."

"Zscaler provides effective protection against various cyber threats ensuring a safe environment"

"It is a stable solution."

More Zscaler Cloud Firewall pros

Cons

"With the reports, you can see it, and you can get good feelings so upper management can go, "Oh, wow. That looks pretty." However, it's very basic."

"The stability of Fortinet FortiGate could improve."

"The cloud management and automation capability could be improved."

"In an incident, after a restart, Fortinet FortiGate did not connect to FortiGuard servers. Due to that reason, on the customer end, all websites got blocked."

"The issue lies with features available in GUI versus CLI during configuration. When using GUI, I want to accomplish everything there, but sometimes it requires using CLI to ensure proper configuration."

"I would like to see a more intuitive dashboard."

"Its reporting and pricing need improvement."

"We'd like more management across other integrations."

More Fortinet FortiGate cons

"The client for the central tools is very big - maybe using web access in future releases, similar to other vendors should be possible."

"When installed on Windows, the system with low storage space slows down."

"Several security modules are based on HTTPS inspection, losing a relevant security capability if you don't implement it in your network."

"Log queries are slow and take time to load."

"The software licensing model is too complicated with all the various tiers of SKUs (i.e. per software blade). They need to simplify this for easier purchasing and renewing."

"Service support can be improved."

"Including some sort of menu or grouping for VOIP would help the small business area that has limited support."

"The main thing for a normal operations guy who is creating tools and firewalls, it is quite difficult to manage. It requires an expert level of knowledge in Check Point products to manage these scalable platform appliances and the virtual firewall that comes with it. We have to educate our guys and give them training on a regular basis to work on these products."

More Check Point NGFW cons

"The issue right now is probably that Zscaler is not providing web browser isolation. Another solution, Menlo, offers this. For one customer, we had to send traffic to Menlo to do the isolation for us. It was requested by the customer so that they could integrate any iframe. Zscaler needs to add this type of feature in their next release."

"If I can get rid of Jetscaler, I will use Twingate for sure."

"I don't have the visibility of a control dashboard or a network management system."

"There are some areas it could improve when it comes to blocking, we have to block some things manually. For example, if we block a top-level domain we have seen that the new IPs come through, the IPs are not blocked. There should be some more granular way of doing it. My only request is if you're blocking something at a top level, the sub-level sub-domains and all those other IPs should be blocked too automatically."

"When it comes to customer support, there is room for improvement in Zscaler's service."

"There are several areas for improvement. Firstly, the GUI is outdated, with noticeable lags and delays, especially when generating reports for past transactions."

"It would be nice to have some sort of a form factor, a physical form factor perhaps, or virtual machine that you could install on devices or on a cloud, and have some cloud computing."

"Because it's on cloud, it doesn't allow application of extra settings."

More Zscaler Cloud Firewall cons

Pricing and Cost Advice

"It is too expensive for us. My organization is very small, and we have a total of ten users. We have three internal users and seven external users. The FortiGate 100D series is too expensive for renewing the licenses."

"The price is highly competitive when compared to other brands that offer similar functionality."

"We just pay a flat monthly fee to the vendor for the support."

"The pricing is fair."

"Fortinet FortiGate as a less expensive solution than Palo Alto."

"Its price is good."

"The price is fair for what we get with FortiGate."

"The price of FortiGate is reasonable as I plan to buy new switches. The initial gadgets are already booted, and the pricing seems normal on the market. As for additional costs, I haven't subscribed to many extra features, so I'm only using what I need. Last year, I renewed the support for three years, which can sometimes be expensive but depends on the security benefits and how it helps us."

More Fortinet FortiGate pricing and cost advice

"When it comes to the quality-price ratio, I've found that Check Point offers a competitive balance in the market."

"Check Point NGFW is expensive."

"Check Point offers the same applications and features as Palo Alto for roughly a third of the price."

"Check Point NGFW is a little expensive."

"One of the main reasons that we went with Check Point is that they provide a good solution for a firewall but at an affordable price. As a state agency, we can't afford Cisco Firepower. It's just out of our budget to be able to pay for something where licensing and hardware are so expensive. Check Point has really met our needs for a budget-friendly solution."

"I don't see that Check Point is very high, but it is geared more towards enterprises."

"We had to get separate licenses for the different blades. It would be nice to have a feature where we can get the multiple licenses all-in-one instead."

"The licensing includes the cost of support."

More Check Point NGFW pricing and cost advice

"It is not the most budget-friendly solution, but it's important to consider its overall value."

"The licensing is on a yearly basis. It is somewhere around 30 or 40 pounds per user for our organization."

"On a scale from one to ten, where one is cheap, and ten is expensive, I rate the solution's pricing an eight out of ten."

"It comes at a significantly reduced cost while ensuring control and effectiveness."

"There are different subscription models available."

"It is expensive for small businesses."

"Zscaler is priced too high compared to the cost of Fortinet."

"There are licensing costs, and I would not say that it's a cheap vendor."

More Zscaler Cloud Firewall pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

864,155 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Computer Software Company

15%

Financial Services Firm

10%

Comms Service Provider

Manufacturing Company

Computer Software Company

13%

Manufacturing Company

Financial Services Firm

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

How does Check Point NGFW compare with Fortinet Fortigate?

I have experience on both from Disti and channel experience. Please find below my comments (nothing new as such). -Ch...

See all answers

Which would you recommend - Azure Firewall or Check Point NGFW?

Azure Firewall is easy to use and provides excellent support. Valuable features include integration into the overall ...

See all answers

What do you like most about Check Point NGFW?

Check Point NGFW provides essential security, featuring no-obligation access for secure connections, strong intrusion...

See all answers

Which lesser known firewall product has the best chance at unseating the market leaders?

Netscope, Zscaler if they continue route they are on now. FIrewalls needs great deal of automation on each end, datac...

See all answers

What do you like most about Zscaler Cloud Firewall?

The product’s firewall and VPN package are fantastic compared to any other solution.

See all answers

What is your experience regarding pricing and costs for Zscaler Cloud Firewall?

Zscaler Cloud Firewall is quite expensive compared to competitors. However, it offered moderate value for money.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 19% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 12% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 11% of the time

Meraki MX vs Fortinet FortiGate

Compared 5% of the time

Palo Alto Networks NG Firewalls vs Fortinet FortiGate

Compared 3% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks NG Firewalls vs Check Point NGFW

Compared 12% of the time

Sophos XG vs Check Point NGFW

Compared 8% of the time

Netgate pfSense vs Check Point NGFW

Compared 8% of the time

Cisco Secure Firewall vs Check Point NGFW

Compared 6% of the time

Sophos XGS vs Check Point NGFW

Compared 6% of the time

More Check Point NGFW Competitors

Azure Firewall vs Zscaler Cloud Firewall

Compared 14% of the time

Palo Alto Networks NG Firewalls vs Zscaler Cloud Firewall

Compared 10% of the time

OPNsense vs Zscaler Cloud Firewall

Compared 7% of the time

Cisco Secure Firewall vs Zscaler Cloud Firewall

Compared 5% of the time

Sangfor NGAF vs Zscaler Cloud Firewall

Compared 5% of the time

More Zscaler Cloud Firewall Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

July 2025

Download Fortinet FortiGate product report

Buyer's Guide

Check Point NGFW

July 2025

Download Check Point NGFW product report

Buyer's Guide

Zscaler Cloud Firewall

July 2025

Download Zscaler Cloud Firewall product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

Check Point NG Firewall, Check Point Next Generation Firewall

No data available

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Check Point NGFW provides comprehensive firewall protection, managing VPNs, and securing network perimeters with advanced threat prevention techniques. It's widely used to protect businesses, data centers, and ensure secure traffic management.

Check Point NGFW offers robust security for companies, delivering security features like threat prevention, URL filtering, and intrusion prevention across both layer 3 and layer 7. It supports remote access, web filtering, application control, and safeguards against malware, botnets, and zero-day attacks. With its intuitive management console, deep packet inspection, centralized management capabilities, and sophisticated threat detection, Check Point NGFW enhances network security and productivity. The system integrates seamlessly with other technologies and provides real-time monitoring, detailed reporting, and automated policy management. Additionally, its setup is straightforward, it scales well, and offers comprehensive logging.

What are the key features?

VPN capabilities: Ensures secure remote access and encrypted communications.
Intuitive management console: Simplifies administration with an easy-to-use interface.
Application control: Provides extensive control over applications running on the network.
Deep packet inspection: Examines data packets in detail to detect and prevent threats.
Intrusion prevention system: Protects against unauthorized access and attacks.
Centralized management: Manages all security policies and devices from one location.
Automated policy management: Reduces administrative tasks through automation.
Advanced threat detection: Identifies sophisticated threats in real-time.
Real-time monitoring: Continuously monitors network traffic and security events.
Easy setup and scalability: Simplifies deployment and scales with business needs.

What are the benefits?

Enhanced security: Provides comprehensive protection against a range of cyber threats.
Increased productivity: Simplifies security management, allowing IT teams to focus on other tasks.
Improved visibility: Detailed reporting and monitoring provide insights into network activity.
Reduced risk: Automated threat detection and policy management mitigate potential risks.
Cost efficiency: Consolidates multiple security functions, reducing the need for additional solutions.

Check Point NGFW is implemented in industries like finance, healthcare, and retail, where protecting sensitive data and ensuring compliance are critical. Its advanced security features and ease of management make it suitable for large enterprises and data centers, ensuring reliable and secure network operations.

Check Point Software Technologies

Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud first world. Its flagship services, Zscaler Internet Access and Zscaler Private Access, create fast, secure connections between users and applications, regardless of device, location, or network. Zscaler services are 100% cloud-delivered and offer the simplicity, enhanced security, and improved user experience that traditional appliances or hybrid solutions are unable to match. Used in more than 185 countries, Zscaler operates the world’s largest cloud security platform, protecting thousands of enterprises and government agencies from cyberattacks and data loss.

Check more details: https://www.zscaler.com/produc...

Zscaler

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Control Southern, Optimal Media

Zenith Live, Azure, Carlsberg Group

Buyer's Guide

Check Point NGFW vs. Zscaler Cloud Firewall

July 2025

Free Report: Check Point NGFW vs. Zscaler Cloud Firewall

Find out what your peers are saying about Check Point NGFW vs. Zscaler Cloud Firewall and other solutions. Updated: July 2025.

DOWNLOAD NOW

864,155 professionals have used our research since 2012.

See our Check Point NGFW vs. Zscaler Cloud Firewall report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.