Cisco Secure Firewall vs McAfee StoneGate [EOL] comparison

Cisco and McAfee are both solutions in the Firewalls category. Additionally, 83% of Cisco users are willing to recommend the solution, compared to 66% of McAfee users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 30, 2025

McAfee StoneGate [EOL] and Cisco Secure Firewall compete in the network security product category. Cisco Secure Firewall appears superior due to its comprehensive features and long-term value.

Features: McAfee StoneGate [EOL] provides robust threat prevention and centralized management known for simplicity and reliability. Cisco Secure Firewall offers advanced security with high integration capabilities and adaptability suited for complex network environments.

Ease of Deployment and Customer Service: McAfee StoneGate [EOL] features straightforward deployment for smaller environments with basic support offerings. In contrast, Cisco Secure Firewall requires more complex deployment suited for intricate setups and offers extensive customer service.

Pricing and ROI: McAfee StoneGate [EOL] is noted for cost-effectiveness in upfront setup with a quick ROI for smaller networks. Cisco Secure Firewall involves a higher initial investment, promising greater long-term ROI and value for larger, complex infrastructures.

To learn more, read our detailed Firewalls Report (Updated: December 2025).

Buyer's Guide

Firewalls

December 2025

Download the complete report

Helped 879,259 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Read full review

Phil Shiflett

Senior Manager, Network Engineering at TTi Power Equipment

Unified policies streamline network management but complex licensing requires attention

Cisco Secure Firewall has some growth opportunities in terms of visibility and control capabilities regarding managing encrypted traffic. It has the ability to analyze encrypted traffic, and there is potential for more integration with APIs and AI to enhance these capabilities. Cisco Secure Firewall needs improvement in deployment time and the capability to access the CLI during support calls. I often encounter issues when technical support uses a CLI that is not familiar to me while troubleshooting through the GUI. My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time. For the next release, they should look at the features offered by competitors such as Fortinet, including the ability to perform packet capture directly from the interface. If they enhanced their troubleshooting efficiency related to packet capture for each specific rule, it would simplify the process significantly.

Read full review

it_user935460

Computer Framework at a healthcare company with 1,001-5,000 employees

It works well with a highly-active cluster.

It is important for us in case of a disaster, or in case of a failure of one server. This means that the high availability is the most important part for us. It is important for us that the system is available and no connection is going to be lost if the system is restarting one note, or something like that. This is the main request for us for a good firewall protection product.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is simpler to configure. It is not like Cisco Firepower, where you go crazy trying to follow the Cisco documentation to figure out how to configure one little thing. Unlike Cisco Firepower, where you can't do everything through the web interface and you have got to do some command line stuff, Fortinet FortiGate SWG is simpler. There are four different things in Cisco to get in, which is not the case with Fortinet FortiGate SWG. It is one of my favorite solutions to work with. I would much rather work with it than Cisco Firepower, for example. Even though I've got 20 years of Cisco experience with different firewalls, I would much prefer this solution."

"FortiGate is easy to use, and I also like its VPN."

"Some of the valuable features are the firewall, IPS, web filter, and gateway capabilities. Additionally, it is easy to use and flexible."

"Previously, we were using another firewall device, Sophos. Compared to that, Fortinet FortiGate provides more features and better security."

"The initial installation is very straightforward."

"Two aspects I'm happy with regarding Fortinet FortiGate firewall are the easy user interface and its resilience during power interruptions."

"This solution works well on a daily basis, detecting various types of malicious traffic."

"Advanced routing (RIP, OSPF, BGP, PBR). It gives you a seamless and simple integration into a large network."

More Fortinet FortiGate pros

"A stable and solid solution for protection from external threats and for VPN connections."

"One of the best features is the ease of use. It's also easy to teach new engineers to use the ASA CLI."

"The greatest benefit that this has provided to our organization is that we've been able to adjust the time that it takes to implement firewall changes. It's gone from a week to less than half a day to implement a change, which means that our DevOps team can be much more agile, and there is much less overhead on the firewall team."

"Cisco's engineer helped us with a lot of scripting to see what existed. Previously, we didn't have a proper policy. In fact, we didn't have any policy because we didn't have any firewall for the data center, so generating a policy was a big challenge. Cisco's engineer helped us to do some scripting and find out what kind of policy we can have and organize those policies. That was nice."

"Beats sophisticated cyber attacks with a superior security appliance."

"The return on investment is not going to be restricted to just the box... Now, these genres have been expanded to cyber, to third-party integrations, having integrated logging, having integrated micro and macro segmentations. The scope has been widened, so the ROI, eventually, has multiplied."

"The most valuable features of Cisco firewalls are the IPS and IDS items. We find them very helpful. Those are the biggest things because we have some odd, custom-made products in our environment. What we've found through their IPS and IDS is that their vulnerability engines have caught things that are near-Zero-day items, inside of our network."

"The integration of network and workload micro-segmentation helps a lot to provide unified segmentation policies across east-west and north-south traffic. One concrete example is with Cisco ACI for the data center. Not only are we doing what is called a service graph on the ACI to make sure that we can filter traffic east-west between two endpoints in the same network, but when we go north-south or east-west, we can then leverage what we have on the network with SGTs on Cisco ISE. Once you build your matrix, it is very easy to filter in and out on east-west or north-south traffic."

More Cisco Secure Firewall pros

"We did not have issues with scalabiliy."

"It works well with a highly-active cluster."

Cons

"We would like to see an upgrade to the VPN feature, we are using the VPN from outside of our office and there is a limitation to 10 connections, more connections would be suitable."

"Integrating OpenVPN with FortiGate would provide a powerful combination of secure remote access and comprehensive network security."

"In FortiGate Next Generation Firewall (NGFW), my concern regarding improvements is the licensing model."

"The biggest "gotcha" is that if the client purchases what they call the UTM shared bundle, which has unified threat management on both, it's not as easy to manage if you have more than one firewall."

"The product's data guard feature should support a USB port when the internet connection is unavailable."

"We have an issue with hotel guest vouchers."

"In most cases, the IPS engine uses too many resources, which makes Fortinet FortiGate devices unstable."

"The built-in logging and reporting is limited without FortiAnalyzer."

More Fortinet FortiGate cons

"It's mainly the UI and the management parts that need improvement. The most impactful feature when you're using it is the user interface and the user experience."

"When we talk about data centers, we are talking about 100 gig capacity or 400 gig capacity. When it comes to active-active solution clustering and resilience and performance, Cisco should look into these a little bit more."

"Recently, we have been having an issue with the ASA firewall. We haven't found the root cause yet and are still working on it. We failed over the firewall from active to passive and suddenly that resolved the issue. We are now working to find the root cause."

"The annual subscription cost is a bit high. They should try to make it comparable to other offerings. We have a number of Chinese products here in Pakistan, which are already, very cheap and have less annual maintenance costs compared to Cisco."

"They need a user-friendly interface that we could easily configure."

"The price can be better."

"Report generation is an area that should be improved."

"It is surprising that you need to have a virtual appliance for the Firepower Management Center. It is not good if you have to setup a VMware server just for it."

More Cisco Secure Firewall cons

"After some experience with the solution, we had to do some redesign, but generally, we were happy with the product."

Pricing and Cost Advice

"We are on an annual license to use Fortinet FortiGate."

"The price of Fortinet FortiGate is better than Cisco, Check Point, and Palo Alto. In terms of pricing, it's probably a better-priced firewall solution overall."

"Its pricing is competitive with other solutions."

"We have the full license that included all of the features and support."

"It is expensive. You need to pay for the subscription every year, which is very expensive. The subscription includes technical support and hardware exchange in case of failure."

"If the customer is looking for SD-WAN, it comes free with FortiGate."

"When comparing this solution to others, I would rate it a ten out of ten in terms of pricing. However, the issue of requiring a separate license for redundancy is a drawback, and I would rate it a nine out of ten."

"It is too expensive for us. My organization is very small, and we have a total of ten users. We have three internal users and seven external users. The FortiGate 100D series is too expensive for renewing the licenses."

More Fortinet FortiGate pricing and cost advice

"Purchasing from the AWS Marketplace was easy. It was just point and click."

"We are in the process of renewing our three-year license, which costs approximately $24,000 USD for the thirty-six months."

"When it comes to Cisco, the price of everything is higher. Cisco firewalls are expensive, but we get support from Cisco, and that support is very active."

"I bought a license for three years and it was really affordable."

"It is expensive. There is a cost for everything. There is per year license cost and support cost. There is also a cost for any training, any application, and any resource. Things are very costly to do with Cisco. Other brands are cheaper. They are also more flexible in terms of training, subscription, and licensing. They give lots and lots of years free. They provide more than Cisco."

"That'd be more for my leadership, but I give them the quotes, and if they approve, they're happy. They've never wavered, so I wouldn't say it's out of the realm where they're considering another product. It must be in the direct price range for our leadership to not blink an eye when we give it to them."

"It is worth every penny that we have invested in it."

"Although I am not directly involved in dealing with the pricing aspect of the Cisco Secure Firewall, I know that the licensing has improved over the years."

More Cisco Secure Firewall pricing and cost advice

Information not available

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

879,259 professionals have used our research since 2012.

Comparison Review

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Mar 11, 2015

Cisco ASA vs. Palo Alto Networks

Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Computer Software Company

16%

Manufacturing Company

University

Comms Service Provider

No data available

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	357
Midsize Enterprise	132
Large Enterprise	188

By reviewers
Company Size	Count
Small Business	180
Midsize Enterprise	126
Large Enterprise	212

No data available

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Which is better - Fortinet FortiGate or Cisco ASA Firewall?

One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...

See all answers

How does Cisco's ASA firewall compare with the Firepower NGFW?

It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...

See all answers

Which is better - Meraki MX or Cisco ASA Firewall?

Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...

See all answers

Ask a question

Earn 20 points

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 19% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 7% of the time

OPNsense vs Fortinet FortiGate

Compared 4% of the time

Cisco Meraki MX vs Fortinet FortiGate

Compared 3% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 3% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks NG Firewalls vs Cisco Secure Firewall

Compared 10% of the time

Palo Alto Networks WildFire vs Cisco Secure Firewall

Compared 8% of the time

OPNsense vs Cisco Secure Firewall

Compared 4% of the time

Netgate pfSense vs Cisco Secure Firewall

Compared 4% of the time

Check Point Quantum Force (NGFW) vs Cisco Secure Firewall

Compared 3% of the time

More Cisco Secure Firewall Competitors

No data available

Product Reports

Buyer's Guide

Fortinet FortiGate

December 2025

Download Fortinet FortiGate product report

Buyer's Guide

Cisco Secure Firewall

December 2025

Download Cisco Secure Firewall product report

Buyer's Guide

Firewalls

December 2025

Download McAfee StoneGate [EOL] product report

Also Known As

Fortinet FortiGate Next-Generation Firewall

Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall, Cisco Secure Firewall ASA Virtual - BYOL

McAfee Next Generation Firewall, Stonesoft, Intel Next Generation Firewall, Intel Security StoneGate

Overview

Fortinet FortiGate is a versatile network security tool offering features like VPN, firewall, web filtering, intrusion prevention, and scalability. It is known for its performance and integration with other Fortinet products, making it a preferred choice for robust cybersecurity.

Fortinet FortiGate stands out as a comprehensive cybersecurity solution with strong performance and ease of configuration. It delivers unified threat management, integrating features such as dynamic routing, SD-WAN support, and centralized management. Despite its strengths, improvements in the web interface's stability, pricing structures, and reporting capabilities are needed. Users seek better integration with third-party tools and automation advancements to enhance the experience further. These enhancements, alongside improvements in bandwidth management and the reduction of licensing costs, are points of interest for users looking to capitalize on FortiGate's extensive capabilities.

What are Fortinet FortiGate's key features?

VPN: Ensures secure remote connections.
Firewall: Protects against unauthorized access.
Web Filtering: Blocks malicious sites and content.
Application Control: Manages and controls applications.
Intrusion Prevention: Detects and prevents vulnerabilities.
SSL Inspection: Enhances security by inspecting encrypted traffic.

What benefits should be considered when evaluating Fortinet FortiGate?

Affordability: Offers cost-effective security solutions.
Reliability: Known for consistent and stable performance.
Integration: Seamlessly integrates with other Fortinet products.
Comprehensive Protection: Provides broad threat protection capabilities.

Fortinet FortiGate is widely implemented across industries as a primary firewall system for securing internet gateways and safeguarding data centers. It supports businesses in achieving SD-WAN integration and enhances cybersecurity by providing essential features like antivirus, web filtering, and application control. Enterprises utilize FortiGate for securing remote connections and ensuring compliance with security standards, making it adaptable for different network sizes and industries.

Fortinet

Cisco Secure Firewall provides comprehensive network security with advanced features such as application visibility, URL filtering, and malware protection. It combines a user-friendly interface with robust VPN capabilities, making it a reliable choice for varying network environments and industry applications.

Cisco Secure Firewall offers exceptional protection with its integration into Cisco's broader ecosystem, ensuring enhanced threat detection and policy unification. Despite its complexity in command-line interfaces and management, Cisco Secure Firewall remains a potent tool for safeguarding data. It is widely adopted for edge security, VPN services, perimeter defense, and traffic segmentation, especially in hybrid settings. Essential sectors like banking and telecom benefit from its stable connectivity and centralized security management. Though there are challenges with costs and support for third-party APIs, the firewall's scalability and high availability provide comprehensive support for protecting network assets.

What are the key features of Cisco Secure Firewall?

Application Visibility: Offers in-depth visibility of application traffic to monitor and protect against threats.
Advanced Malware Protection: Protects against known and emerging malware threats with powerful detection capabilities.
URL Filtering: Manages and restricts access to websites, enhancing organizational data security.
VPN Capabilities: Ensures secure remote access and encrypted communication through strong VPN features.
Integration with Cisco Ecosystem: Enhances security measures with seamless integration with Cisco's suite of security tools.

What benefits and ROI should be expected from Cisco Secure Firewall?

Comprehensive Protection: Offers multi-layered security for diverse network environments, increasing overall data protection.
Performance Efficiency: High availability and scalability lead to improved network performance and resource management.
Management Simplification: Centralized security management streamlines policy deployment across networks.
Enhanced Threat Detection: Integration capabilities improve threat detection and mitigation for better security posture.

Cisco Secure Firewall is widely implemented across sectors like banking, education, ISPs, and telecoms. It fortifies data centers and network edge security, delivering strong protection for client access, hybrid environments, and intrusion prevention. In these industries, firewall solutions ensure secure connectivity and manage RTU traffic effectively, leveraging centralized management and integration with Cisco's security tools.

Cisco

StoneGate is a Highly Available Firewall/VPN. The StoneGate fault-tolerant VPN maintains sessions across multiple VPN devices and multiple Internet or network connections, regardless of device or connection failures. StoneGate provides Security, Manageability, Availability, and Scalability thus reducing network security complexity and costs. Stonesoft was the inventor of high availability for security solutions and a recognized leader in network security.

McAfee

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.

Avency, R€SLER Oberfl_chentechnik GmbH, MAUSER Group, CEMEX, Cegedim, Fusion Media Networks

Find out what your peers are saying about Fortinet, Netgate, OPNsense and others in Firewalls. Updated: December 2025.

DOWNLOAD NOW

879,259 professionals have used our research since 2012.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.