Try our new research platform with insights from 80,000+ expert users

Cisco Secure Firewall vs OPNsense comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 16, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.1
Fortinet FortiGate delivers cost efficiency, rapid ROI, and enhanced security, reducing downtime and operational expenses for users.
Sentiment score
7.2
Cisco Secure Firewall offers improved security and efficiency, but cost and ROI vary based on deployment and usage.
Sentiment score
2.5
Entities benefited from rapid returns and cost savings with OPNsense, offering superior threat management compared to Check Point and FortiNet.
Clients are now comfortable and not wasting productive hours on IT support.
The automation part is giving us a cost benefit and speed; we can react faster.
It's a very useful tool to mitigate and protect your enterprise.
The biggest return on investment when using Cisco Secure Firewall is that there's no waste in any infrastructure cost and licensing costs for us.
From my point of view, the biggest return on investment when using Cisco Secure Firewall is the single pane of glass, which is a huge plus for us.
The biggest return on investment for me when using Cisco Secure Firewall is reliability and robust network design.
 

Customer Service

Sentiment score
6.9
Fortinet FortiGate support receives mixed reviews, with praise for expertise but criticism for inconsistent response times and language barriers.
Sentiment score
7.5
Cisco Secure Firewall support is highly rated for knowledgeable assistance, though response times and access vary based on contracts.
Sentiment score
6.4
Many users rely on forums for support, expressing mixed satisfaction with OPNsense's accessibility, cost, and technical support.
They offer very accurate solutions.
The quick resolution of issues with Fortinet FortiGate is due to the support of the company and the fact that the equipment is easy to work with.
I would rate the technical support for Fortinet FortiGate a ten out of ten.
I have to provide many logs, yet problems remain unresolved, often requiring workarounds rather than solutions.
I have been working with them on firewalls, wireless, switching, and routing, and the support is the best.
They have expertise and provide solutions for the most difficult problems.
I mainly rely on community support since the solution is open source.
 

Scalability Issues

Sentiment score
7.3
Fortinet FortiGate is highly rated for scalability, accommodating growth efficiently, though hardware upgrades may be needed for expansion.
Sentiment score
7.2
Cisco Secure Firewall offers scalability and integration, though licensing complexity and scalability challenges in growth may concern some users.
Sentiment score
6.5
OPNsense is scalable for diverse organizations, efficiently supporting different user volumes, with some challenges in high-volume voice traffic.
They scale up really well from smaller models like the FortiGate 40 and 50 to bigger sites with the FortiGate 100 for more throughput - up to enterprise datacenters.
The variation comes in terms of the interfaces and throughputs, but from a security perspective, you get the same benefit, irrespective of whether you have an entry-level unit or an enterprise.
We determine sizing based on multiple factors: number of users, available links, traffic types, server count, services in use, and whether services will be published.
Scalability presents a challenge.
Compared to FortiGate and Palo Alto, it lags in configuration and other aspects.
Even with the highest one, the 4600, we still face issues, particularly when transitioning between screens; it becomes very slow.
In my organization, there are 400 users, and OPNsense serves as our gateway and proxy for all of them.
Aside from these aspects, it demonstrated good scalability.
It supports routing, VPN setups, and traffic monitoring with additional packages like Snort and Suricata.
 

Stability Issues

Sentiment score
7.8
FortiGate is praised for its robust reliability, minor update issues, and consistently stable performance across various use cases.
Sentiment score
7.2
Cisco Secure Firewall is highly reliable with minimal outages, though occasional upgrade issues are typically fixed with updates.
Sentiment score
8.5
OPNsense is stable with high ratings, despite issues with VPN failover, occasional bugs, and hardware compatibility concerns.
We're experiencing 99.999% availability consistently.
I would rate the stability of Fortinet FortiGate a ten out of ten.
The solution is very stable.
We have often encountered split-brain scenarios during failover processes and code upgrades, which have been persistent problems for us.
We work with a cluster with high availability, so if something goes wrong, we have it functioning.
Cisco Secure Firewall offers exceptional performance and stability.
It just doesn't respond, so I have to restart it over and over again to try to figure out what the problem is.
OPNsense is the same, but it does have a way of installing the Realtek drivers, which gives you a lot more stability overall on the system.
The only challenge faced was its inadequacy to manage large voice traffic effectively, even with dedicated hardware.
 

Room For Improvement

Fortinet FortiGate users seek lower fees, better interface, integration, support, consistent updates, and improved documentation and features.
Cisco Secure Firewall faces criticism for its complex GUI, high costs, and demands better features, integration, and performance improvements.
OPNsense faces challenges with integration, user interface, documentation, scalability, performance, and security features, needing enhancements in various areas.
Investing in a solution that can accommodate such growth would be more cost-effective than repeatedly purchasing new hardware.
The constant daily revisions necessitate meticulous identification of the relevant documents to prevent the use of outdated information that could jeopardize our environment.
While Fortinet claims to offer a comprehensive network solution, it falls short in addressing computer application issues, particularly server security.
My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time.
Firepower Management Center is quite out of date compared to other vendors.
The integration between Cisco products themselves presents difficulties, such as SD-WAN configuration.
For high availability, it's crucial to have a method in place where a designated component oversees the entire process.
Some of the features include classified traffic and better blocking of newly registered DNS domains.
There are some add-ons that need enhancements to make management easier for users, especially the reporting features.
 

Setup Cost

Fortinet FortiGate is competitively priced, offering cost-effective options, though renewal costs and additional features may increase expenses.
Cisco Secure Firewall is costly but offers robust support and reliability; licensing complexity can be mitigated by smart licensing.
OPNsense is a cost-effective, flexible solution for enterprises, preferred over costly alternatives like FortiGate and Palo Alto.
FortiGate is priced lower than Palo Alto.
Last year, I renewed the support for three years, which can sometimes be expensive but depends on the security benefits and how it helps us.
It is about 20% cheaper.
It's good to have them, however, it costs us a lot.
It's considered a premium, but people pay that price for Cisco.
There are a lot of in-place contracts for us that provide the benefit of discounts.
It is a free solution, and when you compare it to alternatives like FortiGate, which is quite powerful but also costly, the value becomes evident.
I would rate the pricing a nine out of ten, especially considering the availability of a free community edition.
It is free.
 

Valuable Features

Fortinet FortiGate is valued for its security features, ease of use, flexibility, reliability, and affordability across organizations.
Cisco Secure Firewall provides robust security, scalability, and central management, with intuitive tools for efficient threat protection and network monitoring.
OPNsense is valued for its flexibility, user-friendly interface, robust features, frequent updates, and compatibility with useful plugins.
In terms of security, we have not experienced any security flaws or loopholes, and it has proven to be quite stable.
FortiGate has helped reduce the risk of cyberattacks that might disrupt our client's production.
These features help reduce our downtime, manage the ISPs, and deploy SLAs for all the website traffic.
What stands out positively about Cisco is their training and support, which has effectively prepared engineers to work with their products.
This is very important to my organization, as we work extensively with security because we are a bank, so we can keep the data safe.
Cisco Secure Firewall allows me to safeguard Layer 7 or Layer 3 and manage the security rules with the business needs of my organization.
The most valuable features include the basic firewall functionality and the GeoIP location services.
One of the most valuable features is the network checking.
OPNsense is easy to use and open source.
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
373
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Cisco Secure Firewall
Ranking in Firewalls
6th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
428
Ranking in other categories
Cisco Security Portfolio (3rd)
OPNsense
Ranking in Firewalls
3rd
Average Rating
8.4
Reviews Sentiment
6.7
Number of Reviews
40
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.2%, up from 17.7% compared to the previous year. The mindshare of Cisco Secure Firewall is 6.2%, up from 5.5% compared to the previous year. The mindshare of OPNsense is 11.4%, down from 17.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

Vasu Gala - PeerSpot reviewer
A stable solution with an intuitive interface and quick customer service
I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.
Phil Shiflett - PeerSpot reviewer
Unified policies streamline network management but complex licensing requires attention
Cisco Secure Firewall has some growth opportunities in terms of visibility and control capabilities regarding managing encrypted traffic. It has the ability to analyze encrypted traffic, and there is potential for more integration with APIs and AI to enhance these capabilities. Cisco Secure Firewall needs improvement in deployment time and the capability to access the CLI during support calls. I often encounter issues when technical support uses a CLI that is not familiar to me while troubleshooting through the GUI. My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time. For the next release, they should look at the features offered by competitors such as Fortinet, including the ability to perform packet capture directly from the interface. If they enhanced their troubleshooting efficiency related to packet capture for each specific rule, it would simplify the process significantly.
Akram Zaki Hussein - PeerSpot reviewer
Robust network security and management offering a user-friendly interface, open-source flexibility, and cost-effectiveness, with challenges regarding initial setup and the absence of official support
The interface is user-friendly, but there's room for improvement in terms of intuitiveness. The bundle management aspect requires additional attention to make it more intuitive, especially for inspecting high-level traffic. This is crucial, especially for larger companies where the existing features might not be the most optimal choice, given limitations like printer constraints. For high availability, it's crucial to have a method in place where a designated component oversees the entire process. Given that OPNsense plays a pivotal role as a firewall, safeguarding against various threats, having a reliable backup ensures uninterrupted protection even if unforeseen events impact the primary virtual machine. It would be beneficial if OPNsense supported additional virtualization platforms like Hyper-V from Microsoft and VMware, similar to how Kaspersky has integrated them.
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
860,711 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Educational Organization
11%
Comms Service Provider
8%
Manufacturing Company
7%
Educational Organization
31%
Computer Software Company
16%
University
6%
Manufacturing Company
5%
Computer Software Company
16%
Comms Service Provider
14%
Government
6%
Educational Organization
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...
Which is better - Meraki MX or Cisco ASA Firewall?
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...
What is the difference between PfSense and OPNsense?
Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and cl...
What do you like most about OPNsense?
What I like the most about OPNsense is that it offers an easy-to-use dashboard for device management and control.
What is your experience regarding pricing and costs for OPNsense?
The pricing is competitive when compared to vendors like Palo and FortiNet.
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
No data available
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
1. Deciso B.V. 2. iXsystems, Inc.  3. EuroBSDCon  4. Netgate  5. Claranet  6. Voleatech  7. Open Systems AG  8. Securebit AG  9. Proxmox Server Solutions GmbH  10. AVM Computersysteme Vertriebs GmbH  Additional customers include: T-Systems International GmbH, Deutsche Telekom AG, Vodafone GmbH, 1&1 IONOS SE, OVHcloud, Hetzner Online GmbH, Strato AG, PlusServer GmbH, Host Europe GmbH, United Internet AG, 1&1 Versatel Deutschland GmbH, QSC AG, Bechtle AG, Cancom SE, Computacenter AG & Co. oHG, T-Systems Multimedia Solutions GmbH, Atos SE, Capgemini SE, Accenture plc, IBM Corporation, Hewlett Packard Enterprise Company, Cisco Systems, Inc.
Find out what your peers are saying about Cisco Secure Firewall vs. OPNsense and other solutions. Updated: July 2025.
860,711 professionals have used our research since 2012.