IT Central Station is now PeerSpot: Here's why

Cisco IOS Security vs Fortinet FortiManager comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Buyer's Guide
Firewalls
July 2022
Find out what your peers are saying about Fortinet, Netgate, Check Point and others in Firewalls. Updated: July 2022.
621,593 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"It is one of the fastest solutions, if not the fastest, in the security technology space. This gives us peace of mind knowing that as soon as a new attack comes online that we will be protected in short order. From that perspective, no one really comes close now to Firepower, which is hugely valuable to us from an upcoming new attack prevention perspective.""With Cisco, there are a lot of features such as the network map. Cisco builds the whole network map of the machines you have behind your firewall and gives you insight into the vulnerabilities and attributes that the host has. Checkpoint and Fortinet don't have that functionality directly on the firewall.""Firepower has reduced our firewall operational costs by about 25 percent.""Provides good integrations and reporting.""A good intrusion prevention system and filtering.""The features I've found most valuable are the packet captures and packet traces because they help me debug connections. I like the logs because they help me see what's going on.""I like that Cisco Firepower NGFW Firewall is reliable. Support is also good.""If you compare the ASA and the FirePOWER, the best feature with FirePOWER is easy to use GUI. It has most of the same functionality in the Next-Generation FirePOWER, such as IPS, IPS policies, security intelligence, and integration and identification of all the devices or hardware you have in your network. Additionally, this solution is user-friendly."

More Cisco Firepower NGFW Firewall Pros →

"It covers everything we need it to without looking to secondary solutions.""The product is easy to use.""The capabilities for scalability with this product are huge""What I have used the most and received the most benefit from is the IPsec technology.""Cisco Technical Assistance Center works on a follow-the-sun concept and gives real 24x7 customer support, which is a great advantage when you have a service contract with them.""Cisco has always been a premium product. There's a lot of other entry-level solutions. This is more robust.""It is less expensive than alternative firewalls.""One of the main features is that the hardware is extremely reliable."

More Cisco IOS Security Pros →

"Fortinet FortiManager allows a full view of all the devices on the network from one location.""The initial setup was straightforward.""The solution is very stable.""The capability of centralized management is valuable. We can configure all firewall boxes with the same configuration.""Everybody is quite happy with the way that the graphical user interface works.""The best feature of Fortinet FortiManager is its ease of use. It is easy to manage the firewall from Fortinet FortiManager. Additionally, the interface is very good.""Central management system for Fortinet devices that's simple, scalable, and stable, with a straightforward setup.""This solution enables you to centralize the rules and the configuration of all the equipment."

More Fortinet FortiManager Pros →

Cons
"I believe that the current feature set of the device is very good and the only thing that Cisco should work on is improving the user experience with the device.""Web filtering needs improvement because sometimes the URL is miscategorized.""The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore.""I'm not a big fan of the FDM (Firepower Device Manager) that comes with Firepower. I found out that you need to use the Firepower Management Center, the FMC, to manage the firewalls a lot better. You can get a lot more granular with the configuration in the FMC, versus the FDM that comes out-of-the-box with it. FDM is like Firepower for dummies.""On the VPN side, Firepower could be better. It needs more monitoring on VPNs. Right now, it's not that good. You can set up a VPN in Firepower, but you can't monitor it.""FlexConfig is there as a bridge for features that are not yet natively integrated into Firepower. It is a way of allowing you to be able to configure things that wouldn't otherwise be possible until the development team can add them into Firepower's native capability. There is still some work that needs to be done around FlexConfig. There are still quite a few complex things, like policy-based routing, that have to be done in FlexConfig, and it doesn't always work perfectly. Sometimes, there are some glitches. It is recommended that you configure FlexConfig policies with Cisco TAC. It would be good to see Cisco accelerate some of those configurations that you can only do in FlexConfig into the platform, so that they are there natively.""The performance should be improved.""Licensing is complex, and I'd like it to be simplified. This is an area for improvement."

More Cisco Firepower NGFW Firewall Cons →

"Cisco IOS Security could improve its security features. There are competitors that have some additional security features, such as Fortinet FortiGate. Additionally, there should be better synchronization with Cisco IOS Security and other vendors, and improved AI features would be beneficial.""The user interface needs to be improved.""The pricing is the only con for this product.""The company needs to make its solution more affordable to make it more accessible to larger markets. Otherwise, it's seen as an enterprise-level solution that small or medium-sized organizations can't afford and therefore they won't even look at it.""There could be a bit more functions on offer that could make it easier to use.""Signatures and other critical definitions need to be updated more frequently.""It would be ideal if the solution had more capacity.""With respect to user-friendliness, it is a command-line interface and those with such experience will get along just fine, whereas others may struggle."

More Cisco IOS Security Cons →

"The solution could improve by having better integration with other solutions other than Fortinet.""We have some visibility issues with the reporting.""The compatibility with legacy products should be better. It would also be nice if the software could manage other devices from Fortinet and third parties.""We have experienced a series of minor bugs that necessitated contacted technical support on several occasions.""Its licensing model should be improved.""This solution needs more experienced technical support staff. There's nothing special about it compared to other vendors.""The FortiManager is more complex and they can make it easier to use the VPN manager. All other features are okay. However, the VPN manager is more difficult and can cause some issues in the environment, if you do not have the experience to use it.""Within the management of some features on FortiManager, specifically the management of user objects used for VPN service, FortiManager is quite weak."

More Fortinet FortiManager Cons →

Pricing and Cost Advice
  • "Cisco, as we all know, is expensive, but for the money you are paying, you know that you are also getting top-notch documentation as well as support if needed."
  • "This product requires licenses for advanced features including Snort, IPS, and malware detection."
  • "This product is expensive."
  • "For me, personally, as an individual, Cisco Firepower NGFW Firewall is expensive."
  • "The price of Firepower is not bad compared to other products."
  • "The solution was chosen because of its price compared to other similar solutions."
  • "The price is comparable."
  • "It definitely competes with the other vendors in the market."
  • More Cisco Firepower NGFW Firewall Pricing and Cost Advice →

  • "It is an expensive solution."
  • "The pricing is okay. It is competitive. It costs more when you need get more features."
  • "Price is certainly something that the IOS technology has fallen behind the competition on."
  • "It is necessary to pay for a license in order to use the solution. It is on a yearly basis and the price is high."
  • "Palo Alto networks are more expensive than this solution and this is why you will see more products like this one in Mexico."
  • "The price of the solution should be cheaper, and the license is purchase annually."
  • "They have smart licenses that can be provided for one year, two years, three years, five years, and seven years. Alternatively, they have perpetual licenses available."
  • "Cisco IOS Security price could be reduced, it is more expensive than many of the other solutions, such as Sophos and Fortinet FortiGate."
  • More Cisco IOS Security Pricing and Cost Advice →

  • "Fortinet is a high-end product and the cost is high. They should consider reducing the price, especially for existing customers."
  • "The license model they use depends on the size and is not limited to the users."
  • "This is an affordable solution, and its licensing model is based on the number of devices."
  • "For us, it is a little bit expensive."
  • "For the licensing fee, we paid around 10,000 to 15,000 euros."
  • More Fortinet FortiManager Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    621,593 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and… more »
    Top Answer: The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
    Top Answer:It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Top Answer:One of the main features is that the hardware is extremely reliable.
    Top Answer:Palo Alto networks are more expensive than this solution and this is why you will see more products like this one in… more »
    Top Answer:I think they should bring back remote VPN for users. However, I understand the attempt is to have these functions inside… more »
    Top Answer:It has multiple features in one box, which helps to avoid needing a lot of equipment. This is something that makes them… more »
    Top Answer:Fortinet is a high-end product and the cost is high. They should consider reducing the price, especially for existing… more »
    Top Answer:We have some visibility issues with the reporting. As the reporting is not properly available, we have to use many tools… more »
    Comparisons
    Also Known As
    Cisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWv
    IOS Security
    Learn More
    Overview

    Cisco Firepower Next-Generation Firewall (NGFW) is a firewall that provides capabilities beyond those of a standard firewall and delivers comprehensive, unified policy management of firewall functions, application control, threat prevention, and advanced malware protection from the network to the endpoint.

    Cisco NGFW Firewalls include advanced threat defense capabilities to meet diverse needs, from small offices to high-performance data centers and service providers, and are deployed in leading private and public clouds. Available in a wide range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Cisco NGFW firewalls are also available with clustering for increased performance, high availability configurations, and more.

    Key Features of Cisco NGFW Firewalls

    • Breach prevention and advanced security: Prevent attacks before they get inside. Cisco provides its firewalls with the latest intelligence to stop emerging threats and employs filtering to enforce policies on hundreds of millions of URLs. Cisco NGFW offers built-in sandboxing and advanced malware protection that continuously analyzes file behavior to quickly detect and eliminate threats.

    • Comprehensive network visibility: Constantly monitor your network so you can rapidly spot and stop bad behavior. Cisco NGFW provides a holistic view of all activity and provides a clear picture of threat activity across users, hosts, networks, and devices, as well as information on threats and website, application, and VM activities.

    • Flexible management and deployment options: Centrally deploy, customize, and manage all your appliances.

    • Fast detection: Detect threats in seconds and detect the presence of a successful breach within hours or minutes. Cisco NGFW allows you to deploy consistent policy that's easy to maintain, with automatic enforcement across all the different parts of your organization.

    • Automation and product integrations: Seamlessly integrate with Cisco tools and automatically share threat information, event data, policy, and contextual information with email, web, endpoint, and network security tools. Cisco NGFW automates security tasks like impact assessment, policy management and tuning, and user identification.

    Reviews from Real Users

    Cisco NGFW stands out among its competitors for a number of reasons. Two major ones are its extensive discovery abilities that enable you to constantly see what is happening on your network and take action when necessary, and the high level of protection it provides.

    Mike B., a director of IT security at a wellness & fitness company, writes, "It is one of the fastest solutions, if not the fastest, in the security technology space. This gives us peace of mind knowing that as soon as a new attack comes online that we will be protected in short order. From that perspective, no one really comes close now to Firepower, which is hugely valuable to us from an upcoming new attack prevention perspective."

    Zhulien K., the lead network security engineer at TechnoCore LTD, notes, " The most valuable feature that Cisco Firepower NGFW provides for us is the Intrusion policy. Again, with that being said, I cannot shy away from giving kudos to all of the other features such as AVC (Application Visibility and Control), SSL Decryption, Identity policy, Correlation policy, REST API, and more. All of the features that are incorporated in the Cisco Firepower NGFW are awesome and easy to configure if you know what you are doing. Things almost always work, unless you hit a bug, which is fixed with a simple software update. "

    Cisco IOS Software delivers a sophisticated set of security capabilities for a comprehensive, layered security approach throughout your network infrastructure. Cisco IOS security technologies help to defend critical business processes against attack and disruption, protect privacy, and support policy and regulatory compliance controls.

    Networks are constantly evolving due to threats, organizational growth, or new regulatory/business requirements. Traditional management products focus on mitigating company-wide threats through firewall policies, firmware updates, and keeping content security current. FortiManager offers the features to contain threats as well as providing flexibility to evolve along with your ever-changing network.

    Offer
    Learn more about Cisco Firepower NGFW Firewall
    Learn more about Cisco IOS Security
    Learn more about Fortinet FortiManager
    Sample Customers
    Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield
    Arup Group, Brunel University London, City of Biel, Gobierno de Castilla-La Mancha, K&L Gates , New South Wales Rural Fire Service, Offshore Northern Seas, Transplace
    Black Gold Regional Schools, Amadeus Hospitality, Jefferson County, Chunghwa Telecom, City of Boroondara, Dimension Data
    Top Industries
    REVIEWERS
    Comms Service Provider19%
    Financial Services Firm17%
    Government13%
    Computer Software Company6%
    VISITORS READING REVIEWS
    Comms Service Provider29%
    Computer Software Company20%
    Government7%
    Manufacturing Company4%
    REVIEWERS
    Comms Service Provider20%
    Financial Services Firm13%
    Security Firm13%
    Transportation Company7%
    VISITORS READING REVIEWS
    Computer Software Company27%
    Comms Service Provider25%
    Government6%
    Healthcare Company4%
    REVIEWERS
    Computer Software Company20%
    Comms Service Provider20%
    Transportation Company20%
    Non Profit10%
    VISITORS READING REVIEWS
    Comms Service Provider28%
    Computer Software Company21%
    Government6%
    Manufacturing Company4%
    Company Size
    REVIEWERS
    Small Business40%
    Midsize Enterprise25%
    Large Enterprise35%
    VISITORS READING REVIEWS
    Small Business26%
    Midsize Enterprise20%
    Large Enterprise55%
    REVIEWERS
    Small Business38%
    Midsize Enterprise31%
    Large Enterprise31%
    VISITORS READING REVIEWS
    Small Business24%
    Midsize Enterprise18%
    Large Enterprise58%
    REVIEWERS
    Small Business50%
    Midsize Enterprise23%
    Large Enterprise27%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise18%
    Large Enterprise55%
    Buyer's Guide
    Firewalls
    July 2022
    Find out what your peers are saying about Fortinet, Netgate, Check Point and others in Firewalls. Updated: July 2022.
    621,593 professionals have used our research since 2012.

    Cisco IOS Security is ranked 18th in Firewalls with 13 reviews while Fortinet FortiManager is ranked 2nd in Network Management Applications with 11 reviews. Cisco IOS Security is rated 8.0, while Fortinet FortiManager is rated 8.6. The top reviewer of Cisco IOS Security writes "Prevent unauthorized use of network resources and integrate branch offices with reliability". On the other hand, the top reviewer of Fortinet FortiManager writes "Good centralized management that's stable and easy to scale". Cisco IOS Security is most compared with pfSense, Cisco ASA Firewall, Zyxel Unified Security Gateway, Meraki MX and OPNsense, whereas Fortinet FortiManager is most compared with Fortinet FortiGate Cloud, Cisco DNA Center, Zabbix, Fortinet FortiOS and Micro Focus Network Node Manager.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.