

Cisco Secure Firewall and Netgate pfSense compete in the network security category. Cisco Secure Firewall has the upper hand in integration and advanced threat defense, while Netgate pfSense is recognized for its customization capabilities and lower cost for feature expansion.
Features: Cisco Secure Firewall is known for robust security, advanced threat protection, and seamless integration with Cisco’s broader ecosystem. It offers detailed policy management and a comprehensive suite for security architecture. Netgate pfSense excels in customization, offering open-source frameworks, extensive plugin support, and a wide array of features such as Snort integration and flexible deployment options.
Room for Improvement: Cisco Secure Firewall could enhance its automation capabilities and reduce costs to remain competitive. It's also essential to expand support without the dependency on high licensing fees. Netgate pfSense would benefit from streamlined deployment, a more intuitive interface, and robust official customer support options to mitigate reliance on community resources.
Ease of Deployment and Customer Service: Cisco Secure Firewall is recognized for its structured and guided deployment process, supplemented by comprehensive support via established channels. Netgate pfSense offers more autonomy in deployment, appealing to users who benefit from a flexible strategy and community support but lacks the structured support found with Cisco.
Pricing and ROI: Cisco Secure Firewall entails higher initial costs due to licensing and integration expenses but offers significant ROI through its extensive capabilities and integration into Cisco’s security ecosystem. In contrast, Netgate pfSense requires a lower initial investment, emphasizing cost-effective scalability and feature expansion, providing excellent value for budget-conscious buyers.
There is always a return on investment because you find you invest heavily, but your environment is secure and then you are at rest; you do not need to panic.
The biggest return on investment when using Cisco Secure Firewall is that there's no waste in any infrastructure cost and licensing costs for us.
From my point of view, the biggest return on investment when using Cisco Secure Firewall is the single pane of glass, which is a huge plus for us.
In four years of using it, that payment of 189 dollars per year has already paid off.
It's very favorable to have the inclusion of firewall, VPN, and router functionalities.
The total cost of ownership is extremely low when you compare it to a lot of the other devices or other gateway appliances that are available on the market.
I have to provide many logs, yet problems remain unresolved, often requiring workarounds rather than solutions.
I have been working with them on firewalls, wireless, switching, and routing, and the support is the best.
They have expertise and provide solutions for the most difficult problems.
I couldn't imagine having better support.
The biggest fear I have, and probably the only reason I still have the old one lying around is that if something were to happen to this hardware and I had to send it back for support, I need to be able to keep my network running in the meantime.
The support is knowledgeable and responds quickly, so the questions are addressed professionally and accurately.
When something happens in the device, the failover happens very quickly without any interruption.
Cisco Secure Cloud now allows us to potentially take the management functions of Cisco Secure Firewall, move it into the cloud, and integrate it with other Cisco security products, managing everything from one single pane.
I rate the scalability as a number 10.
If I put things into a certain context and say that we have a network that has around 100 people, then you don't put up a device that can manage 100 people. Instead, you need to get a device that can manage 150 to 200 people, and then you can create room for growth.
I don't think Netgate pfSense can offer much scalability for big enterprises.
Even with a jump from a 50 megabit to a 500 megabit internet connection and approximately 65 active VPN clients, our firewall operates smoothly without any strain.
We have often encountered split-brain scenarios during failover processes and code upgrades, which have been persistent problems for us.
We work with a cluster with high availability, so if something goes wrong, we have it functioning.
Cisco Secure Firewall offers exceptional performance and stability.
I rate the solution's stability a ten out of ten.
I've noticed a substantial improvement in stability and ease of use for upgrades and patching over the past year or two.
When I replace consumer routers with pfSense for small businesses with two or three employees, they are often amazed to discover the router can run for a year without a reboot.
My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time.
The GUI is useless for me and frustrates me to a very high degree, which led me to switch to the CLI for configuration.
Firewall as a Service can scale to a very large extent because it is a cloud-based offering that can scale up to a very large number, which is not a problem.
If I need to go between different VLANs, I have VLAN 19.1 and VLAN 19.2, and I strictly use Netgate pfSense, but it doesn't route very efficiently and works quite slowly.
They should support the idea of configuration management as code from source code and provide a more robust API for managing the pfSense configuration.
Monitoring is crucial. The easier the monitoring and user interface, the simpler our team can work on and investigate issues.
It's good to have them, however, it costs us a lot.
Basically, the license for the VPNs is for all the interfaces, and that is the thing that is really expensive compared with Palo Alto.
It's considered a premium, but people pay that price for Cisco.
It also offers a free community version that can't be beaten.
Since I'm using my own hardware instead of a Netgate appliance, this is the most bang for your buck you can deploy.
There are cheaper firewall options, but they aren't as reliable and easy to manage.
What stands out positively about Cisco is their training and support, which has effectively prepared engineers to work with their products.
This is very important to my organization, as we work extensively with security because we are a bank, so we can keep the data safe.
Cisco Secure Firewall allows me to safeguard Layer 7 or Layer 3 and manage the security rules with the business needs of my organization.
I like the tool's flexibility in the sense that you do not have to buy an appliance. You can put it on your own hardware, and it can be very simplistic hardware with simple configurations.
The most valuable feature is the routing capability.
It is not licensed and is not run by some corporation that watches you.
| Product | Mindshare (%) |
|---|---|
| Netgate pfSense | 7.7% |
| Cisco Secure Firewall | 7.6% |
| Other | 84.7% |

| Company Size | Count |
|---|---|
| Small Business | 192 |
| Midsize Enterprise | 130 |
| Large Enterprise | 236 |
| Company Size | Count |
|---|---|
| Small Business | 171 |
| Midsize Enterprise | 33 |
| Large Enterprise | 29 |
Cisco Secure Firewall provides comprehensive network security with advanced features such as application visibility, URL filtering, and malware protection. It combines a user-friendly interface with robust VPN capabilities, making it a reliable choice for varying network environments and industry applications.
Cisco Secure Firewall offers exceptional protection with its integration into Cisco's broader ecosystem, ensuring enhanced threat detection and policy unification. Despite its complexity in command-line interfaces and management, Cisco Secure Firewall remains a potent tool for safeguarding data. It is widely adopted for edge security, VPN services, perimeter defense, and traffic segmentation, especially in hybrid settings. Essential sectors like banking and telecom benefit from its stable connectivity and centralized security management. Though there are challenges with costs and support for third-party APIs, the firewall's scalability and high availability provide comprehensive support for protecting network assets.
What are the key features of Cisco Secure Firewall?Cisco Secure Firewall is widely implemented across sectors like banking, education, ISPs, and telecoms. It fortifies data centers and network edge security, delivering strong protection for client access, hybrid environments, and intrusion prevention. In these industries, firewall solutions ensure secure connectivity and manage RTU traffic effectively, leveraging centralized management and integration with Cisco's security tools.
Netgate pfSense is an open-source firewall and router software known for scalability, cost-effectiveness, and community support. It includes customizable packages for varied network management needs, offering solid performance and straightforward management for diverse setups.
Netgate pfSense provides an impressive range of functionalities including firewall capabilities, VPN options, and extensive customization through packages. Its low resource usage and high availability make it viable for businesses of all sizes, especially when dealing with tailored network demands. Despite its strengths, users suggest improvements in ease of use, mobile compatibility, and support for plug-ins. Enhanced centralized management, better documentation, and additional security features are frequent requests.
What are the key features of Netgate pfSense?In education and healthcare, Netgate pfSense is employed for secure connectivity and efficient traffic management, accommodating distinct demands of remote access and content filtering. Organizations in these sectors often utilize features such as load balancing and VPNs to maintain secure and reliable network operations while integrating with services like Active Directory for streamlined identity management. Small to medium-sized enterprises benefit from its affordability and robust functionality, making it a go-to choice for managed service environments requiring effective network security and control.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.