Cisco Secure Firewall vs Juniper vSRX comparison


Comparison Buyer's Guide

Executive Summary

Categories and Ranking

Fortinet FortiGate
Ranking in Firewalls
Average Rating
Number of Reviews
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (2nd), WAN Edge (1st)
Cisco Secure Firewall
Ranking in Firewalls
Average Rating
Number of Reviews
Ranking in other categories
Cisco Security Portfolio (4th)
Juniper vSRX
Ranking in Firewalls
Average Rating
Number of Reviews
Ranking in other categories
Virtualization Security (3rd), Unified Threat Management (UTM) (8th)

Mindshare comparison

As of June 2024, in the Firewalls category, the mindshare of Fortinet FortiGate is 22.6%, up from 20.2% compared to the previous year. The mindshare of Cisco Secure Firewall is 6.3%, up from 6.3% compared to the previous year. The mindshare of Juniper vSRX is 0.2%, down from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Unique Categories:
Software Defined WAN (SD-WAN) Solutions
WAN Edge
Cisco Security Portfolio
Unified Threat Management (UTM)

Featured Reviews

May 10, 2023
Feature-rich, affordable, and has good performance
It is deployed on-premises. Our customers prefer to deploy not only Fortinet devices but all security devices on-premises. They rarely use cloud licenses. Some customers only buy it from us, and for some customers, we also set it up. Its setup is easy for us, but not every company wants to use our service for setting it up because of the cost. They prefer to install it themselves. In some cases, it could be hard for them. In terms of the implementation strategy, we first try to understand what problem a customer wants to solve by using FortiGate. We collect a lot of information about a customer's network, such as protocols and devices being used. We try to prepare this device in our local lab. We preload the device and send it to the customer, and then we finalize the installation in the customer's building. We have very technical staff, and we do not have difficulties with installations. We have had situations where customers do not have much experience with it, and then we recommend them to go for certain features such as IPS, antivirus, etc. The deployment duration depends on the size of the environment, but generally, it does not take more than one or two months.
James-Buchanan - PeerSpot reviewer
Apr 2, 2023
Has excellent support and good licensing, and with the VPN feature, secures our users even when they're working from home
We use them for some of our border firewalls in our data centers and also as our VPN concentrator.  It's the VPN side of things that has been most useful for us. It allows us to secure our users even when they're working from home. They are able to access all of our resources, no matter where they…
Aug 5, 2020
Fast with good usability and fairly scalable
Largely the solution seems fine to me. It could use more tutorials. I think there's a step missing or the use cases are missing information. I'm not sure why you have to connect from the descendant to another SRX. The why part, why would I do that and what's practical, is not really answered in any documentation I have access to. At my last job, we used to hook up a VPN to the data center, and then at each site we would have a device connecting to that data center. Now that project is not 100% right now, I'm still wondering if I were to go and do that project, how would I do it? Should I make it cloud-based? If I want to use it virtually in the cloud as a hub, I want to see if that's possible, and, if it's possible, they should have documentation on that. I looked at the config. I played around with the config and then I say, "Okay, I see what they're doing, with the actual Azure part, and yet, on AWS, I'm having the same problem." It's something to do with the public IP. It's only functioning on the management side, on the virtual firewall. I can't get the other side, the other network interface to connect out. I don't have a connection out technically. I could ping, but through management and that's not how it's supposed to work. It's just through the management. I'm not seeing the departments.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:


"I am "headache free" that I don't have to categorize all the websites and that security has been pre categorized by the people, and that the services are getting updated. At least one part of my problem is over."
"The most valuable features are the policies, filtering, and configuration."
"The Fortinet FortiGate local partners were good. I did not have direct contact with Fortinet support."
"The most valuable features are that it is very simple to configure and to manage."
"The flexibility and ease of configuration are the most valuable features."
"Our project needs to link two sides through the internet. One of these was in Cairo and the other in another city. We used FortiGate as the integrating solution between the two locations, i.e. the Fortinet 30E & 100E."
"It increases security posture and is helpful for firewall reporting, intrusion protection, web filtering, and SD-WAN implementation."
"The security on offer is very good."
"The web interface was easy for me. The configuration is logical, so it's easy to use and easy to understand how to protect, how to open a port, how to manage and how to route a device. That's why I prefer Cisco. It's robust and I never have issues with the hardware. That's why I choose Cisco and not another vendor."
"What I found the most valuable about Cisco Secure Firewall is that if a client is educated about the solution, it can help him or her avoid many problems and mistakes."
"Stability is perfect. I haven't had any problems."
"They wanted to leverage something which is equivalent that can give them the next gen features like application awareness and intrusion protection. So that is a major reason they were looking forward to this. The original ASA firewall did not have these features. This was the major reason the customer moved on to Cisco Firepower Threat Defense (FTD). Now they can go ahead and leverage those functionalities."
"It has definitely improved our organization. It gives us remote connectivity, helps workers connect remotely, and also gives us good connectivity to our other branches."
"Cisco Secure Firewall is reliable, which is why we opted for it during the pandemic for our remote users."
"What I like about Cisco is the security zone. By default when you configure it, it gives you a security zone, which other firewalls don't have."
"The solution's dashboard is fine, and in terms of support, Cisco is better than other OEMs in the market."
"It's basic functionality is probably the most valuable feature."
"The command feature is valuable."
"The pricing is reasonable."
"The authentication part is seamless and easy for people."
"Juniper is more flexible with the commit check and the commit confirmed command. The design of the forwarding and contract plan in the operating system is very important for the performance when we have very big traffic."
"The technical support services are excellent."
"The most valuable features are application filtering, content filtering, the intrusion prevention system (IPS), and definitely the application firewall."
"It is easy for me to go in and update settings, make changes, or add/remove rules or security."


"If they had better integration with security products, such as Cisco ISE or Rapid Threat Containment, then it would be an improvement."
"The advanced models are expensive."
"It should be more stable. There should be full integration within Fortinet products themselves as well as with other third-party products. Especially when you're not dealing with SIEM and the correlation of the security box, we want Fortinet to be able to share that information with as many other products as it can."
"Backup can be improved."
"The solution could be more secure and stable."
"If they could extend their fabric towards other vendor environments for integration, that would be great."
"The setup is pretty complex and not easy to implement."
"I use the FortiGate 60D model and realized the 300Mbps bandwidth limitation. Because it is a product that offers many services, I think it could have greater bandwidth capacity."
"In the past though, colleagues have had issues during the upgrade process. The failover didn't work and production was down."
"Cisco ASDM is a problem because it is old."
"It would be better if we could manage all of our firewalls as a set rather than individually. I would like to see a single pane of glass type of option. We also use another vendor's firewalls and they have a centralized management infrastructure that we have implemented. This infrastructure is a bit easier to manage."
"MSSP oriented interface: I would like a single console which would allow me to manage settings creating consistency across all customers."
"I would say that in inexperienced hands, the interface can be kind of overwhelming. There are just a lot of options. Too much, if you don't know what you are looking for or trying to do."
"We use the FTD management platform for the boxes. The GUI that manages multiple Firepower boxes could be improved so that the user experience is better."
"Setting firewall network rules should be more straightforward with a clearer graphical representation. The rule-setting method seems old-fashioned. The firewall and network rules are separate from the Firepower and web access rules."
"Implementations require the use of a console. It would help if the console was embedded."
"The GUI interface needs improvement."
"We experienced some technical issues during implementation"
"In the next release, I would like to see improvements made to the GUI because it isn't very good."
"Juniper vSRX is expensive."
"The GUI really needs a lot of work, and it has got worse with successive version updates."
"It is pretty complex to manage and could be easier."
"The biggest downside of Juniper vSRX is its pricing, which may be too high for smaller organizations. While it's a decent solution, the cost may limit its accessibility to smaller customers."
"he stability could be improved."

Pricing and Cost Advice

"Its price is reasonable. They have a clear pricing policy. It is not complicated by the number of VPN users at a time. We know what the price is. The yearly subscription for the security license is rather high, but it is all included for whatever number of users you have and the kind of functions you need."
"We are on an annual license to use Fortinet FortiGate."
"The price for the device and software is high. However, the solution is of good quality and has a lot of features."
"Compared to other firewall products, it's a little cheaper in terms of pricing."
"When you look at these end security systems and firewalls, these firewalls even five years ago were $50,000 or perhaps $25,000 to implement in some types of customer sites. Now we're talking about tools that are $1,000. In this case, it might have been $500 or something like that."
"As far as I'm aware, in our case, it's just a yearly pricing arrangement with no additional licensing costs."
"Fortinet FortiGate allows you to purchase licenses for hardware and software."
"I give the pricing a nine out of ten."
"Licensing is not only for Secure Firewalls, and it's too complicated."
"In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco."
"The one-time cost is affordable, but the maintenance cost and the Smart Net costs need to be reduced. They're too high."
"I am happy with the product in general, including the pricing."
"This product is expensive."
"Always consider what you might need to reduce your wasted time and invest it in other solutions."
"Cisco smart licensing is a hassle for a disconnected environment."
"The ROI is good. Using ASA, we have saved 10% to 20% on our costs."
"As a customer, the pricing is good for us."
"After some research, I think that the cost of Juniper is more than Check Point, Palo Alto, and Fortinet."
"We like pricing through the AWS Marketplace."
"Our experience purchasing the solution through the AWS Marketplace was good."
"The solution is inexpensive."
"The pricing is reasonable."
"It is not that costly."
"The solution is pricey."
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
789,291 professionals have used our research since 2012.

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Top Industries

By visitors reading reviews
Educational Organization
Computer Software Company
Comms Service Provider
Manufacturing Company
Educational Organization
Computer Software Company
Comms Service Provider
Educational Organization
Computer Software Company
Financial Services Firm

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...
Which is better - Meraki MX or Cisco ASA Firewall?
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...
What do you like most about Juniper vSRX?
One of Juniper vSRX's most valuable features is its integration with safety applications. It keeps the software secur...
What is your experience regarding pricing and costs for Juniper vSRX?
The tool is sold in a package. Hence, the individual price is very low.
What needs improvement with Juniper vSRX?
The biggest downside of Juniper vSRX is its pricing, which may be too high for smaller organizations. While it's a de...

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
No data available



Sample Customers

1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
Expedient Data Centers
Find out what your peers are saying about Cisco Secure Firewall vs. Juniper vSRX and other solutions. Updated: May 2024.
789,291 professionals have used our research since 2012.