Cisco Secure Firewall vs Menlo Secure comparison

Cisco and Menlo Security are both solutions in the Firewalls category. Cisco is ranked #6 with an average rating of 8.1, while Menlo Security is ranked #50. Cisco holds a 6.1% mindshare in Firewalls, compared to Menlo Security’s 0.1% mindshare. Additionally, 83% of Cisco users are willing to recommend the solution, compared to 100% of Menlo Security users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

Cisco Secure Firewall and Menlo Secure are competitive options in network security. Cisco Secure Firewall is favored for support and pricing, while Menlo Secure is valued for advanced features and overall value.

Features: Cisco Secure Firewall is known for robust security measures, integration capabilities, and reliability. Menlo Secure features isolation technology, user-friendly prevention mechanisms, and efficient threat containment.

Room for Improvement: Cisco Secure Firewall needs better scalability, optimized performance, and enhanced integration options. Menlo Secure requires improved flexibility, intuitive management, and more integration features.

Ease of Deployment and Customer Service: Cisco Secure Firewall offers straightforward deployment and strong customer service. Menlo Secure, while efficient in deployment, has mixed feedback on customer support.

Pricing and ROI: Cisco Secure Firewall users are satisfied with setup costs and report a positive ROI. Menlo Secure, despite being more expensive, is seen as offering long-term benefits.

To learn more, read our detailed Cisco Secure Firewall vs. Menlo Secure Report (Updated: July 2025).

Buyer's Guide

Cisco Secure Firewall vs. Menlo Secure

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of August 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.8%, up from 17.8% compared to the previous year. The mindshare of Cisco Secure Firewall is 6.1%, up from 5.4% compared to the previous year. The mindshare of Menlo Secure is 0.1%, up from 0.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Read full review

Phil Shiflett

Senior Manager, Network Engineering at TTi Power Equipment

Unified policies streamline network management but complex licensing requires attention

Cisco Secure Firewall has some growth opportunities in terms of visibility and control capabilities regarding managing encrypted traffic. It has the ability to analyze encrypted traffic, and there is potential for more integration with APIs and AI to enhance these capabilities. Cisco Secure Firewall needs improvement in deployment time and the capability to access the CLI during support calls. I often encounter issues when technical support uses a CLI that is not familiar to me while troubleshooting through the GUI. My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time. For the next release, they should look at the features offered by competitors such as Fortinet, including the ability to perform packet capture directly from the interface. If they enhanced their troubleshooting efficiency related to packet capture for each specific rule, it would simplify the process significantly.

Read full review

Olivier DALOY

Group Information Systems Security Director - CISO at Faurecia

Secures users wherever they are and enable us to inspect SSL traffic, but we encountered too many issues

The solution should have no impact but it does have a bit of impact on end-users. For example, we encountered some issues in the downloads that took longer than they did without using Menlo. That is clearly not transparent for users. We expected not to have any latency when downloading anything from the internet with Menlo compared to without Menlo. We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution. In other words, we hope to get the same level of protection, while reducing the number of visible bugs, issues, latencies, impacts on performance, et cetera, that we have today with Menlo. We already solved most of them, but we still have too many such instances of issues with Menlo, even though it is protecting us for sure. The weak point of the solution is that it has consumed far too much of my team's time, taking them away from operations and projects and design. It took far too much time to implement it and get rid of all of the live issues that we encountered when our users started using the solution. The good point is that I'm sure it is protecting us and it's probably protecting us more than any other solution, which is something I appreciate a lot as a CISO. But on the other hand, the number of issues reported by the users, and the amount of time that has been necessary for either my team or the infrastructure team to spend diagnosing, troubleshooting, and fixing the issues that we had with the solution was too much. And that doesn't include the need to still use our previous solution, Blue Coat, that we have kept active so that whatever is not compatible or doesn't work with Menlo, can be handled by that other solution. It is far too demanding in terms of effort and workload and even cost, at the end of the day. That is why we decided to transition to another solution. If we had known in the beginning that we would not be able to get rid of Blue Coat, we probably would not have chosen Menlo because we were planning to replace Blue Coat with something that was at least able to do the same and more. We discovered that it was able to do more but it was not able to replace it, which is an issue. It is not only a matter of cost but is also a matter of not being able to reduce the number of partners that you have to deal with. In addition, they could enhance the ability to troubleshoot. Whenever a connection going through Menlo fails for any reason, being able to troubleshoot what the configuration of Menlo should be to allow it through would help, as would knowing what level of additional risk we would be taking with that configuration.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is the web filter."

"The most valuable feature is the ease of configuration."

"Centralized monitoring, policy management, and virtualized appliances allow us to take control over our public and private infrastructure."

"ROI is exceptionally good."

"We can detect any attack of viruses or malware at the first point of contact."

"LinkGreat firewall capabilities"

"Fortinet FortiGate is a security device. It can optimize security on the networks of a company. It actually protects the company from attacks from outside. With FortiGate, you can categorize the users. You can create a group of users that can access all of the websites for their work. You can limit other users' access."

"It's very easy to configure."

More Fortinet FortiGate pros

"The feature of Cisco Secure Firewall that I prefer the most is the use of ASDM where we visually are able to see all of our traffic when it comes through the firewall."

"The feature of Cisco Secure Firewall that I prefer the most is IPS; I appreciate the IPS feature because it's built in and I can control it using the FMC and push out the policy company-wide, making it centrally managed."

"It's pretty reliable and allows for isolation capabilities within the network."

"Technical support services are excellent."

"The initial setup was not complex."

"Signature-based detection; user-defined signatures with regular expressions; integrated URL and content filtering; custom URL categories filtering."

"ASA 5505 and ASA 5506 are very powerful tools to use in a business environment, and provide a lot of security."

"The feature I appreciate the most about Cisco Secure Firewall is its speed, especially for a 40-gig network."

More Cisco Secure Firewall pros

"For us, the primary goal is protection on the web, and that's extremely important. We're not using any of the other services at this time. The web part is key to the success of the organization. It gives us the ability to protect. It can isolate. It opens the session in an isolated format so that the code isn't running locally. It is running over in the Menlo environment, not in ours. It is not running on the local computer, whereas if you were to go to a normal website, it would run Java or something else on the local machine and potentially execute the malicious code locally. So, it does give us that level of protection."

"Accessing the internet with a proxy from anywhere is the most valuable feature. It ensures that users are only able to browse legitimate websites. If they happen to go to a legitimate website with a malicious payload, the isolation feature will take care of that."

"It has reduced security events to follow up on. While it is not 100%, there has been probably a 90% or more reduction. We were getting hit left, right, and center constantly from people browsing the Internet and hitting bad websites. It was not just bad websites that were stood up to be malicious, but good sites that were compromised."

"The fact that it is a cloud proxy solution is another feature we like. For example, if you acquire a new company, you can use it to protect that new company without the need to install anything physically on their networks."

Cons

"There's always something new that can be added or fixed."

"I mostly do administration, and I found Cisco to be the hardest major firewall manufacturer to deal with, with Fortinet FortiGate being the second hardest for me."

"The area that Fortinet may improve is customer support. When you have an incident, situation, or open a case, the support is not as good as Cisco or other platforms I have tested."

"FortiGate can improve its token system, as it requires a purchase before use."

"The technical support that Fortinet provides is not satisfactory. When we call Fortinet technical support, it takes too much time to connect with them."

"Maybe they could make some features more accessible, such as a way to translate directions between two networks that share the same subnets."

"Though the tool's GUI is user-friendly, it can be considered as an area with certain shortcomings where improvements are required."

"The initial setup is complex."

More Fortinet FortiGate cons

"MSSP oriented interface: I would like a single console which would allow me to manage settings creating consistency across all customers."

"Managing various product integrations, such as Umbrella, is challenging."

"The product's user interface is an area with certain shortcomings where improvements are required."

"At times the product is sluggish and slow"

"They should work on making it a little more intuitive for users and not quite as complex. Still, it's a good product."

"The worst part of the entire solution, and this is kind of trivial at times, is that management of the solution is difficult. You manage FireSIGHT through an internet browser. I've had Cisco tell me to manage it through Firefox because that's how they develop it. The problem is, depending on the page you're on, they don't function in the same way. The pages can be very buggy, or you can't resize columns in this one, or you can't do certain things in that one. It causes a headache in managing it."

"Its interface is sometimes is a little bit slow, and it can be improved. When you need to put your appliance in failover mode, it is a little difficult to do it remotely because you need to turn off the appliance in Cisco mode. In terms of new features, it would be good to have AnyConnect VPN with Firepower. I am not sure if it is available at the moment."

"The graphical interface could be improved. From what I have seen, Fortinet, for example, has a nicer GUI."

More Cisco Secure Firewall cons

"Currently, I don't have a good way to see which of my rules are being used in the access control lists. I have numerous entries, but are they all still needed? A report that would show me my list of who is allowed and whether we're actually using it would be useful because I can then go clean up my list. It would be easier to manage. We would eliminate the vulnerability of unused services."

"We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution."

"The user monitoring could still be improved."

"In the best of all worlds, we wouldn't have to make any exceptions. However, that is a big ask because a lot of that depends on how websites are constructed. For example, there are some very complex, application-oriented sites that we end up making exceptions for. It is really not that big an issue for us to make the exceptions. We feel like we are doing that without a huge impact on our security posture, but we do have to make some exceptions for complex sites, e.g., mostly SaaS-type sites and applications."

Pricing and Cost Advice

"The price of Fortinet FortiGate is affordable. Most of our customers are on a three-year license to use the solution. All the features and support are included in the price."

"While Fortinet FortiGate has a higher price point compared to Sophos XG, its user-friendly interface justifies the cost."

"The pricing of the solution is very competitive."

"For the price, I'd rate it a ten because it's very cost-effective."

"I find it quite reasonable."

"Pricing for this product is comparatively lower than other products. It's an affordable solution, but when expanding the number of users, they'll ask you to replace the model, so that's an added cost."

"The price of Fortinet FortiGate is reasonable for an SME."

"As far as I'm aware, in our case, it's just a yearly pricing arrangement with no additional licensing costs."

More Fortinet FortiGate pricing and cost advice

"The price for Firepower is more expensive than FortiGate. The licensing is very complex. We usually ask for help from Solutel because of its complexity. I have a Cisco account where I can download the VPN client, then connect. Instead, I create an issue with Solutel, then Solutel solves the case."

"Firepower has a very high cost and you have to pay for the standby as well, meaning that the cost is doubled."

"Spec the right hardware model and choose the right license for your needs."

"It would be nice if pricing could do more to reflect the economy of the country where the product is being implemented."

"Licensing is not only for Secure Firewalls, and it's too complicated."

"The pricing for Cisco products is higher than others, but Cisco is a very good, strong, and stable technology."

"Licensing is quite difficult to get your head around. My biggest challenge is to understand the details, the inner relations. Luckily, to some extent, we have enterprise agreements, but licensing for me is a real black box."

"Cisco is not for a small mom-and-pop shop because of the cost, but if you're in a regulated industry where a breach could cost you a million dollars, it's a bargain."

More Cisco Secure Firewall pricing and cost advice

"It is appropriately priced for what they're doing for us. Considering the protection provided, I feel their pricing is spot-on."

"The solution is expensive. It's more expensive than the solution I previously used. Compared with the other cloud-based solutions, it's very competitive."

"We save a ton of money and time. Previously, the numerous hits that we were receiving from our security tools, prior to implementing them, had to all be chased down, dispositioned, and endpoints had to be reimaged. It was just a ton of effort to do all that. That is where the savings from time and money come in."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Comparison Review

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Mar 11, 2015

Cisco ASA vs. Palo Alto Networks

Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

16%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Computer Software Company

21%

University

Manufacturing Company

Educational Organization

Computer Software Company

19%

Financial Services Firm

11%

Retailer

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Which is better - Fortinet FortiGate or Cisco ASA Firewall?

One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...

See all answers

How does Cisco's ASA firewall compare with the Firepower NGFW?

It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...

See all answers

Which is better - Meraki MX or Cisco ASA Firewall?

Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...

See all answers

Ask a question

Earn 20 points

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 20% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 11% of the time

Cisco Meraki MX vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 4% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 4% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks WildFire vs Cisco Secure Firewall

Compared 9% of the time

Palo Alto Networks NG Firewalls vs Cisco Secure Firewall

Compared 7% of the time

Netgate pfSense vs Cisco Secure Firewall

Compared 4% of the time

OPNsense vs Cisco Secure Firewall

Compared 4% of the time

Cisco Meraki MX vs Cisco Secure Firewall

Compared 3% of the time

More Cisco Secure Firewall Competitors

Prisma Access by Palo Alto Networks vs Menlo Secure

Compared 18% of the time

Cisco Umbrella vs Menlo Secure

Compared 17% of the time

Prisma Access Browser vs Menlo Secure

Compared 13% of the time

Check Point Harmony SASE (formerly Perimeter 81) vs Menlo Secure

Compared 10% of the time

Symantec Endpoint Security vs Menlo Secure

Compared 9% of the time

More Menlo Secure Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

August 2025

Download Fortinet FortiGate product report

Buyer's Guide

Cisco Secure Firewall

August 2025

Download Cisco Secure Firewall product report

Buyer's Guide

Menlo Secure

August 2025

Download Menlo Secure product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall

Menlo Security Web Security, Menlo Web Security

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.

The core features of Cisco Secure Firewall are multifaceted:

Advanced threat protection is achieved through a combination of intrusion prevention, malware detection, and URL filtering technologies.
For secure access, the firewall presents multiple options, including VPN, remote access, and single sign-on.
Its network segmentation capability is vital in creating barriers within the network to safeguard critical assets.
The firewall is scalable, effectively serving small businesses to large enterprises.
Management is streamlined through Cisco DNA Center, a central management system.

The benefits of deploying Cisco Secure Firewall are substantial. It significantly reduces the risk of cyberattacks, thereby enhancing the security posture of an organization. This security also translates into increased productivity, as secure access means uninterrupted work. Compliance with industry regulations is another advantage, as secure access and network segmentation align with many regulatory standards. Additionally, it helps in reducing IT costs by automating security tasks and simplifying management processes.

In practical scenarios, Cisco Secure Firewall finds diverse applications. It's instrumental in protecting branch offices from cyberattacks, securing remote access for various stakeholders, safeguarding cloud workloads, and segmenting networks to isolate sensitive areas.

User reviews from PeerSpot reflect an overall positive experience with the Cisco Secure Firewall. Users appreciate its ease of configuration, good management capabilities, robust protection, user-friendly interface, and scalability. However, some areas for improvement include better integration capabilities with other vendors, maturity, control over bandwidth for end-users, and addressing software bugs.

In summary, Cisco Secure Firewall is a comprehensive, versatile, and reliable security solution that effectively meets the security needs of various organizations. It offers a balance of advanced protection, user-friendly management, and scalability, making it a valuable asset in the realm of network security.

Cisco

Menlo Security Secure Application Access

Menlo Security Secure Application Access makes zero trust access easy, giving users secure connectivity to private applications, including web and legacy applications. At the core of Secure Application Access is the Menlo Secure Cloud Browser, which fetches, secures and delivers the content for users.

In addition to providing simple-to-deploy, clientless ZTA, Secure Application Access and the Menlo Secure Cloud Browser protect applications from attacks such as session hijacking, cookie manipulation, and other tactics that employ protocol manipulation.

Secure Application Access protects applications from Internet threats and provides granular controls for added protection of the application and associated data. These security controls include Read-only/Read-write, Upload/download, Copy/paste, AV scanning, Sandboxing, and Data Loss Prevention.

Last Mile Data Protection

Menlo Last-Mile Data Protection identifies and prevents sensitive data from leaving your company by meticulously inspecting all file uploads and user input across browsing sessions. Leveraging the Secure Cloud Browser, users are protected from the internet and you can protect your organization from data loss with comprehensive traffic monitoring and controls. This approach addresses the growing concerns surrounding data leakage in the age of AI tools like ChatGPT.

By identifying sensitive data through file types, regular expressions, or predefined libraries, Menlo Last-Mile Data Protection empowers security teams to regulate data input into AI platforms and prevent unauthorized uploads. This capability provides crucial protection for intellectual property, PII, and other confidential information.

The solution leverages the Menlo Cloud Security Platform's visibility and control over traffic to reliably detect and prevent data leaks originating from both browser submission forms and non-browser traffic. With the ability to inspect encrypted web traffic, Menlo Last-Mile Data Protection enforces DLP policies consistently across all users and devices, ensuring comprehensive data protection.

Menlo Security

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.

Information Not Available

Buyer's Guide

Cisco Secure Firewall vs. Menlo Secure

July 2025

Free Report: Cisco Secure Firewall vs. Menlo Secure

Find out what your peers are saying about Cisco Secure Firewall vs. Menlo Secure and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Cisco Secure Firewall vs. Menlo Secure report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.