We performed a comparison between Cisco Secure Firewall vs Juniper SRX based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: The two solutions are very comparable. Each of them have a good set of features, and the solution you choose will ultimately be dependent on your company’s specific preferences and requirements.
"It has improved our security capabilities."
"The performance is good."
"Our project needs to link two sides through the internet. One of these was in Cairo and the other in another city. We used FortiGate as the integrating solution between the two locations, i.e. the Fortinet 30E & 100E."
"The stability of the solution is excellent, as it is with other Fortinet products."
"We use a lot of function on the IPS and it works well for us."
"The features that I have found most valuable are that it is good to use, and most importantly, the pricing. The customer especially likes the discount when they trade up or something like that."
"Fortinet FortiGate is easy to use."
"We can detect any attack of viruses or malware at the first point of contact."
"The implementation is pretty straightforward."
"It provides security for our company and users."
"Everything is all documented in the file or in the command line script that gets uploaded to the device. It gives us great visibility."
"With Cisco, there are a lot of features such as the network map. Cisco builds the whole network map of the machines you have behind your firewall and gives you insight into the vulnerabilities and attributes that the host has. Checkpoint and Fortinet don't have that functionality directly on the firewall."
"The most valuable feature of the Firepower solution is FireSIGHT, which can be easily managed and is user-friendly."
"It's a flexible solution and is well-known in the community."
"Among the top features are integrated threat defence and the fact that each virtual appliance is separate so you get great granular control."
"Cisco Secure Firewall is reliable, which is why we opted for it during the pandemic for our remote users."
"The most valuable features are the security cloud ACP and KPP features."
"I like the routing and firewall features."
"It protects the data behind our switches."
"We use it as a firewall at our head office and branches."
"Performance is a strong point."
"The EEE security controls allow us to make policy restrictions, so I can customize port numbers to allow or limit control."
"Juniper is one of the most powerful network security solutions while remaining simple to use, set up, and scale."
"It'sa very secure device, it has good attack prevention capabilities using UTM."
"The security of Fortinet FortiGate could improve."
"There is one big configuration file with no separations for the unique VDOMs. Maybe they could separate individual VDOM configuration files with the root VDOM configuration file referencing the individual VDOM config files."
"Bandwidth usage in reporting could be improved for Fortinet FortiGate."
"The sniffing packets or packet captures, can be simplified and improved because it's a little confusing."
"They are doing good, but they can improve the distributor assignment. The availability of the product and the timeline of delivery are the main things. The distribution should be swift, and the distributor should not reach out to end customers directly. They should work as a distributor. There should also be one more local distributor. Currently, there is only one distributor in Pakistan, and the rest of them are in UAE. It is difficult to work with only one distributor. Sometimes, you don't get along with the same distributor, and that's why they should have one more distributor. Their licensing should also be improved. The activation or renewal of the product should be done from the date of renewal, not from the date on which the license expired."
"Quality control on their firmware versions needs improvement. When they introduce new firmware, there tend to be bugs."
"The inability to scale the FortiAnalyzer to match our growth necessitates the purchase of new hardware."
"It should have a better pricing plan. It is too expensive. It should also have a more granular view of the attack. I don't have FortiAnalyzer, and it is difficult for me to have a complete view when there is an attack on my server."
"Cisco should work on ASDM. One of the biggest drawbacks of Cisco ASA is ASDM GUI. Cisco should improve the ASDM GUI. The configuration through ASDM is really difficult as compared to CLI. Sometimes when you are doing the configuration in ASDM, it suddenly crashes. It also crashes while pushing a policy. Cisco should really work on this."
"It is my understanding that they are in the process of discontinuing this device."
"It's lacking one feature: VPN. Also, the 2100 Series lacks a DDoS feature. If they could add that to those platforms, that would be good."
"The solution's deployment is time-consuming, which should be minimized and made more user-friendly for us."
"In today's world, cyberattacks have become a common occurrence. However, so far, we have not faced any issues with our systems. I hope the situation remains the same in the future. If Cisco introduces even more advanced security measures, it would be beneficial."
"It is confusing to have two management interfaces, e.g., ASDM and Firepower Management Center."
"One thing that we really would have loved to have was policy-based routing. We had a lot of connections, and sometimes, we would have liked to change the routing depending on the policies, but it was lacking this capability. We also wanted application filtering and DNS filtering."
"The configuration in Firepower Management Center is very slow. Deployment takes two to three minutes. You spend a lot of time on modifications. Whereas, in FortiGate, you press a button, and it takes one second."
"Juniper SRX's UI is very bad."
"The user interface and the GUI need improvement."
"The user interface is something that Juniper needs to improve."
"There is room for improvement in scalability and performance. It's scalable and reliable, but when using next-generation firewall features, the performance decreases significantly for Juniper SRX."
"The setup process should be improved."
"The reporting is lacking."
"Its logging is very good, but we would like to have an easier way of creating more reports. We would like to be able to manipulate the reports or manage the way the reports are coming out."
"Juniper SRX is stable, but it could improve. FortiGate has better stability than Juniper SRX."
Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews while Juniper SRX Series Firewall is ranked 19th in Firewalls with 86 reviews. Cisco Secure Firewall is rated 8.2, while Juniper SRX Series Firewall is rated 7.8. The top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". On the other hand, the top reviewer of Juniper SRX Series Firewall writes "Highly scalable, user-friendly UI, and easy to maintain". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Palo Alto Networks NG Firewalls, whereas Juniper SRX Series Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Palo Alto Networks NG Firewalls, Check Point NGFW and Meraki MX. See our Cisco Secure Firewall vs. Juniper SRX Series Firewall report.
See our list of best Firewalls vendors and best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.