We performed a comparison between Cisco Secure Firewall and KerioControl based on real PeerSpot user reviews.
Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."FortiGate has a very strong unified threat management system."
"Mainly the FortiGate reporting system is very good. It guides us through all the expectations of security. Fortinet provides us all that we need for security. Also, Fortinet FortiGate is a next-generation firewall. It is much more advanced than others."
"Their proxy-based inspection is responsive and secure."
"It works very well. It has a lot of different functionalities. Its cost is also fine for our customers."
"With FortiClient, you can easily connect when you are home, check out what you want to do, and connect to your network when you are not at work. You can switch on servers and you can check what is wrong."
"FortiGate SD-WAN facilitated a smooth transition for our customers between their two internet service providers, ensuring uninterrupted connectivity without any downtime."
"The most valuable features of Fortinet FortiGate are the ease of use and the UI. It has always provided me with what I needed. I have no need for additional costs that other solutions have, such as Sophos."
"It has improved our organization with control data."
"We chose Cisco because it had the full package that we were looking for."
"Malicious URLs are being blocked."
"The most valuable feature is the access control list (ACL)."
"The user interface, the UI, is excellent on the solution."
"We use the solution for deep packet inspection, Internet Edge functionality, IDS, and IDP."
"If only a Layer 4 FW is needed, this is a good solution."
"My confidence continues to build upon using Cisco firewalls."
"You do not have to do everything through a command line which makes it a lot easier to apply rules."
"The firewall and the content filtering options are valuable."
"The solution is easy to manage. Kerio Control is unique compared to other firewalls because it has been around since 2000 when we switched and the name it started with was WinRoute, and then later became Kerio Control. It evolved over time and it is more of a proprietary firewall on its own and has been developed through open source."
"The routing of the multiple internet physical routers I have is the most valuable feature of this solution. Instead of me physically unplugging a cable from one router to the server, if one connection goes down, it automatically switches for me. So I can have all three of them plugged in. If one goes down, it just picks up the other one automatically. There's no physical cable swapping."
"What I like the most about Kerio is that I can use the software appliance as a solution, so if the hardware fails for any reason then I can quickly replace it with hardware that I have in stock."
"The product is affordable."
"One thing we use quite a lot, as well, is the DHCP Server, because we do a lot of work where all our devices need to have static IP addresses. Rather than going around and configuring every box, we do it all through DHCP reservations. It's easier. We've got a record of it. We can manipulate it if we need to change something or change some hardware. It's all easy. Even guys who are not used to using it can pick it up quite quickly."
"The firewall appliance itself is the most valuable feature."
"It prevents people from visiting undesirable sites and ensures that they use the internet for their designated jobs."
"FortiOS is not simple."
"The solution could be more user friendly."
"The Web-filter in this solution is not very good."
"I could not configure sFlow from the FortiGate graphical user interface. I realized that the sFlow configuration is available only from the CLI, and discovered that sFlow is not supported on virtual interfaces, such as VDOM links, IPsec, or GRE."
"I would like to see improvements in the product's application rules."
"NGN, reporting and controls."
"To the best of my knowledge, Fortinet does not have a CASB solution and Fortinet does not have a Zero trust solution."
"Some of the features in the graphical user interface do not work, which requires that we used the command-line-interface."
"It should have an additional “operating mode”, like a “candidate configuration mode”, where you would have the possibility to test the changes you are going to implement and also the possibility to validate these changes."
"Critical bugs need to be addressed before releasing the version."
"Cisco suffers from some integration issues with other products... There is a problem with the Cisco Catalyst Switches in terms of assembling bursts and having them interact properly with the Cisco Firepower."
"In the next release, I would like to see the VPN and UTM features included."
"On firewall features, Fortinet is better. Cisco needs to become more competitive and add more features or meet Fortinet's offering."
"It is confusing to have two management interfaces, e.g., ASDM and Firepower Management Center."
"I would say that in inexperienced hands, the interface can be kind of overwhelming. There are just a lot of options. Too much, if you don't know what you are looking for or trying to do."
"Initial setup can be complex. It is complex. We have to set up ASA, SFR module, and FMC separately, which sometimes requires extensive troubleshooting, even for smaller issues."
"They should add wireless features."
"The solution can be improved to create the capability for larger bandwidths that support our business needs."
"The comprehensiveness of the security features could be improved upon. However, for the most part, it is pretty good. They could add more logs. I would like to see more detailed reporting, custom reporting from the logs, and more of a streamlined interface for certain aspects."
"Kerio Control could improve content filtering."
"If you have to dive deeper into the firewall or any other features, then you really have to read up a bit about how to set it up properly. Some of my colleagues, in the beginning, jumped in and made a bunch of rules but then it got really messy. If Kerio had a template or guidelines for best practices, at the beginning, that would really help. With Kerio Control it's basically 'find out for yourself.'"
"The trial duration of the product should be extended."
"Kerio Control has just improved on their biggest problem, which was to introduce better support for high-availability requirements in production."
"I have had a few issues with HTTPS decryption. The solution also does not show the actual user's Internet usage."
Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews while KerioControl is ranked 28th in Firewalls with 54 reviews. Cisco Secure Firewall is rated 8.2, while KerioControl is rated 8.0. The top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". On the other hand, the top reviewer of KerioControl writes "With VPN, any of our guys can log in to the system and effectively be on board; helps with our customers all over the world". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Palo Alto Networks NG Firewalls, whereas KerioControl is most compared with Netgate pfSense, OPNsense, Sophos UTM, Sophos XG and WatchGuard Firebox. See our Cisco Secure Firewall vs. KerioControl report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.