Try our new research platform with insights from 80,000+ expert users

Cisco Secure Firewall vs Palo Alto Networks NG Firewalls comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 6, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.4
Fortinet FortiGate provides cost-effective security, reducing operational costs and enhancing efficiency with quick ROI for enterprises.
Sentiment score
7.2
Cisco Secure Firewall offers improved security and efficiency, but cost and ROI vary based on deployment and usage.
Sentiment score
7.6
Palo Alto Networks NG Firewalls offer strong ROI through enhanced security, threat prevention, and operational efficiency despite a high initial cost.
Clients are now comfortable and not wasting productive hours on IT support.
The automation part is giving us a cost benefit and speed; we can react faster.
It's a very useful tool to mitigate and protect your enterprise.
The biggest return on investment when using Cisco Secure Firewall is that there's no waste in any infrastructure cost and licensing costs for us.
From my point of view, the biggest return on investment when using Cisco Secure Firewall is the single pane of glass, which is a huge plus for us.
The biggest return on investment for me when using Cisco Secure Firewall is reliability and robust network design.
Their user-friendly interface and Panorama central management, which provides a comprehensive overview, make them an ideal investment.
The solution helped reduce downtime, which is crucial in time-sensitive industries like manufacturing.
 

Customer Service

Sentiment score
6.9
Fortinet FortiGate support varies, praised for responsiveness but criticized for slow responses and regional inconsistencies in efficiency.
Sentiment score
7.5
Cisco Secure Firewall support is highly rated for knowledgeable assistance, though response times and access vary based on contracts.
Sentiment score
7.4
Palo Alto Networks NG Firewalls' support experiences vary, with mixed reviews on responsiveness, expertise, and regional satisfaction influencing customer opinions.
I would rate their support for FortiGate a nine out of ten.
They offer very accurate solutions.
The quick resolution of issues with Fortinet FortiGate is due to the support of the company and the fact that the equipment is easy to work with.
I have to provide many logs, yet problems remain unresolved, often requiring workarounds rather than solutions.
I have been working with them on firewalls, wireless, switching, and routing, and the support is the best.
They have expertise and provide solutions for the most difficult problems.
Their response time is within one hour.
They offer fast and competent assistance.
They provide fast response and rapid remediation of problems.
 

Scalability Issues

Sentiment score
7.3
Fortinet FortiGate is scalable with ease of expansion, though hardware integration and sizing can pose challenges for users.
Sentiment score
7.2
Cisco Secure Firewall offers scalability and integration, though licensing complexity and scalability challenges in growth may concern some users.
Sentiment score
7.2
Palo Alto Networks NG Firewalls are scalable, with mixed reviews on hardware limitations and better scalability through cloud deployments.
They scale up really well from smaller models like the FortiGate 40 and 50 to bigger sites with the FortiGate 100 for more throughput - up to enterprise datacenters.
The variation comes in terms of the interfaces and throughputs, but from a security perspective, you get the same benefit, irrespective of whether you have an entry-level unit or an enterprise.
We determine sizing based on multiple factors: number of users, available links, traffic types, server count, services in use, and whether services will be published.
Scalability presents a challenge.
Compared to FortiGate and Palo Alto, it lags in configuration and other aspects.
Even with the highest one, the 4600, we still face issues, particularly when transitioning between screens; it becomes very slow.
Cloud deployments benefit from auto-scaling, allowing for automatic adjustments to firewall capacity based on demand.
It is important to assess the infrastructure size before choosing a model.
Palo Alto Networks NG Firewalls are scalable and reliable.
 

Stability Issues

Sentiment score
7.9
Fortinet FortiGate is favored for its stability and reliability, with some performance issues resolved through updates and sizing.
Sentiment score
7.2
Cisco Secure Firewall is highly reliable with minimal outages, though occasional upgrade issues are typically fixed with updates.
Sentiment score
8.4
Palo Alto Networks NG Firewalls are praised for stability, high throughput, and reliability, outperforming competitors like Cisco and Fortinet.
We're experiencing 99.999% availability consistently.
I would rate the stability of Fortinet FortiGate a ten out of ten.
We have not had any problems with the operating systems or maintenance of subscriptions.
We have often encountered split-brain scenarios during failover processes and code upgrades, which have been persistent problems for us.
We work with a cluster with high availability, so if something goes wrong, we have it functioning.
Cisco Secure Firewall offers exceptional performance and stability.
With appropriately configured policies, these firewalls can provide robust network security.
After the upgrade, we are experiencing performance issues.
I have not experienced any outages or issues.
 

Room For Improvement

Fortinet FortiGate users seek improvements in stability, integration, scalability, cost, and advanced features like monitoring and zero-trust technology.
Cisco Secure Firewall faces criticism for its complex GUI, high costs, and demands better features, integration, and performance improvements.
Palo Alto Networks NG Firewalls need better pricing, support, integration, management, documentation, and performance to address user challenges.
Investing in a solution that can accommodate such growth would be more cost-effective than repeatedly purchasing new hardware.
The constant daily revisions necessitate meticulous identification of the relevant documents to prevent the use of outdated information that could jeopardize our environment.
While Fortinet claims to offer a comprehensive network solution, it falls short in addressing computer application issues, particularly server security.
My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time.
Firepower Management Center is quite out of date compared to other vendors.
The integration between Cisco products themselves presents difficulties, such as SD-WAN configuration.
When performance degrades due to full packet inspection, the solution should be to increase the computing power within the same firewall, not to recommend upgrading to a larger, more expensive model.
Further integration into a unified system could improve usability.
Palo Alto Networks NG Firewalls lack built-in multi-factor authentication, requiring the purchase of a third-party tool to implement this essential security feature.
 

Setup Cost

Fortinet FortiGate offers various licensing models, balancing affordability and performance, though renewals can increase costs.
Cisco Secure Firewall is costly but offers robust support and reliability; licensing complexity can be mitigated by smart licensing.
Palo Alto Networks NG Firewalls are costly but provide robust security, with pricing based on contract length and features.
FortiGate is priced lower than Palo Alto.
Last year, I renewed the support for three years, which can sometimes be expensive but depends on the security benefits and how it helps us.
It is about 20% cheaper.
It's good to have them, however, it costs us a lot.
It's considered a premium, but people pay that price for Cisco.
There are a lot of in-place contracts for us that provide the benefit of discounts.
Palo Alto Networks NG Firewalls are expensive.
Palo Alto Networks NG Firewalls come at a premium, exceeding the cost of most competitors by 45 percent.
Colleagues looking for the cheapest and fastest firewall can still use Palo Alto Networks NG Firewalls because they are affordable.
 

Valuable Features

Fortinet FortiGate provides robust security features, user-friendly management, and scalability, making it a preferred choice for organizations.
Cisco Secure Firewall provides robust security, scalability, and central management, with intuitive tools for efficient threat protection and network monitoring.
Palo Alto Networks NG Firewalls provide advanced threat prevention, application control, and integrate various security capabilities into a user-friendly platform.
The firewall, IPS, and VPN functions are the most valuable features.
In terms of security, we have not experienced any security flaws or loopholes, and it has proven to be quite stable.
FortiGate has helped reduce the risk of cyberattacks that might disrupt our client's production.
What stands out positively about Cisco is their training and support, which has effectively prepared engineers to work with their products.
This is very important to my organization, as we work extensively with security because we are a bank, so we can keep the data safe.
Cisco Secure Firewall allows me to safeguard Layer 7 or Layer 3 and manage the security rules with the business needs of my organization.
The most valuable features of Palo Alto Networks NG Firewalls are DNS sync calls, enabled security features, and Wildfire.
Threat Vault allows us access to a comprehensive threat database, enabling us to get detailed information on threats and how to mitigate them.
The most valuable feature of Palo Alto Networks NG Firewalls is Cortex Data Lake.
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
370
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Cisco Secure Firewall
Ranking in Firewalls
6th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
428
Ranking in other categories
Cisco Security Portfolio (3rd)
Palo Alto Networks NG Firew...
Ranking in Firewalls
7th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
194
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.2%, up from 17.7% compared to the previous year. The mindshare of Cisco Secure Firewall is 6.2%, up from 5.5% compared to the previous year. The mindshare of Palo Alto Networks NG Firewalls is 3.7%, up from 3.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Q&A Highlights

Abdul Azim - PeerSpot reviewer
Nov 05, 2024
 

Featured Reviews

Vasu Gala - PeerSpot reviewer
A stable solution with an intuitive interface and quick customer service
I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.
Phil Shiflett - PeerSpot reviewer
Unified policies streamline network management but complex licensing requires attention
Cisco Secure Firewall has some growth opportunities in terms of visibility and control capabilities regarding managing encrypted traffic. It has the ability to analyze encrypted traffic, and there is potential for more integration with APIs and AI to enhance these capabilities. Cisco Secure Firewall needs improvement in deployment time and the capability to access the CLI during support calls. I often encounter issues when technical support uses a CLI that is not familiar to me while troubleshooting through the GUI. My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time. For the next release, they should look at the features offered by competitors such as Fortinet, including the ability to perform packet capture directly from the interface. If they enhanced their troubleshooting efficiency related to packet capture for each specific rule, it would simplify the process significantly.
AmjadKhan1 - PeerSpot reviewer
Provides inline protection with a unified view and anti-spyware capabilities
I would rate Palo Alto Networks NG Firewalls ten out of ten because it is the best. Our disaster recovery site utilizes Palo Alto Networks Next-Generation Firewalls. We are also in the process of upgrading the firewalls at our 365 sites in Pakistan to Palo Alto Networks firewalls. While budget firewalls may advertise comparable features, they often fall short of effectively detecting viruses, threats, and ransomware. In contrast, Palo Alto Networks NG Firewalls, combined with Cortex XDR, provide comprehensive threat intelligence and detection capabilities, ensuring superior security coverage. I recommend conducting a proof of concept before selecting a firewall. This will allow you to evaluate different options and determine which best suits your needs. While Palo Alto offers robust firewall solutions, it's essential to compare them with other vendors to ensure you make an informed decision.
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
859,687 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
 

Answers from the Community

Abdul Azim - PeerSpot reviewer
Nov 5, 2024
Nov 5, 2024
When considering a firewall solution, Palo Alto Networks stands out in terms of advanced security features, AI-driven automation, and ease of management. These attributes make it an ideal choice for organizations looking to not only secure their networks today but also protect themselves from the evolving cyber threats of tomorrow. In comparison, Cisco Firepower, while a solid solution, lacks t...
See 2 answers
Raj Metkar - PeerSpot reviewer
Sep 10, 2024
I will say go for Palo Alto Firewalls purely on basis of ease of management(centralised management has all features that one will need), only reason one would think of Cisco firepower if you are dependent on EIGRP as dynamic routing protocol and PA's will support anything else like BGP/OSPF for total integration and Dynamic topology, Similar to Checkpoint firewalls but much cheaper in price.We use All 3 firewall technologies , Cisco, PA and Checkpoint, if I have money I will go for checkpoint everywhere, main problem with Cisco has been centralised managed and Cisco never got it right, Central management for PA is almost there but is still not as good as Checkpoint.
Bijo Abraham - PeerSpot reviewer
Nov 5, 2024
When considering a firewall solution, Palo Alto Networks stands out in terms of advanced security features, AI-driven automation, and ease of management. These attributes make it an ideal choice for organizations looking to not only secure their networks today but also protect themselves from the evolving cyber threats of tomorrow. In comparison, Cisco Firepower, while a solid solution, lacks the same level of integrated AI capabilities, cloud-readiness, and seamless management interface. Given these factors, Palo Alto Networks offers superior protection, greater operational efficiency, and long-term scalability — all of which align with modern business requirements for agility, security, and growth. We strongly recommend that the organization adopt Palo Alto Networks Firewalls to meet current and future security needs. This recommendation aligns with the organization’s objectives of reducing complexity, improving security posture, and preparing for future threats with an intelligent and easily manageable security solution.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Educational Organization
12%
Comms Service Provider
8%
Manufacturing Company
7%
Educational Organization
31%
Computer Software Company
16%
University
6%
Manufacturing Company
5%
Computer Software Company
14%
Financial Services Firm
9%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...
Which is better - Meraki MX or Cisco ASA Firewall?
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...
What is a better choice, Azure Firewall or Palo Alto Networks NG Firewalls?
Azure Firewall Vs. Palo Alto Network NG Firewalls Both solutions provide stellar stability and security. Azure Firew...
Features comparison between Palo Alto and Fortinet firewalls
In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it...
Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
Palo Alto NGFW, Palo Alto Networks Next-Generation Firewall
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
SkiStar AB, Ada County, Global IT Services PSF, Southern Cross Hospitals, Verge Health, University of Portsmouth, Austrian Airlines, The Heinz Endowments
Find out what your peers are saying about Cisco Secure Firewall vs. Palo Alto Networks NG Firewalls and other solutions. Updated: June 2025.
859,687 professionals have used our research since 2012.