Cisco Secure Firewall vs Meraki MX comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 23, 2022
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Average Rating
8.4
Number of Reviews
312
Ranking in other categories
Firewalls (2nd), Software Defined WAN (SD-WAN) Solutions (2nd), WAN Edge (1st)
Cisco Secure Firewall
Average Rating
8.2
Number of Reviews
404
Ranking in other categories
Firewalls (4th), Cisco Security Portfolio (4th)
Meraki MX
Average Rating
8.2
Number of Reviews
60
Ranking in other categories
Unified Threat Management (UTM) (2nd)
 

Mindshare comparison

As of June 2024, in the Firewalls category, the mindshare of Fortinet FortiGate is 22.6%, up from 20.2% compared to the previous year. The mindshare of Cisco Secure Firewall is 6.3%, up from 6.3% compared to the previous year. The mindshare of Meraki MX is 4.2%, down from 5.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
Unique Categories:
Software Defined WAN (SD-WAN) Solutions
20.6%
WAN Edge
23.3%
Cisco Security Portfolio
7.1%
Unified Threat Management (UTM)
19.9%
 

Featured Reviews

William Nogueira - PeerSpot reviewer
Dec 11, 2023
Helps reduce our mean time to remediate and our security risk, and provides good visibility into our environment
While FortiGate offers a wide range of security features, I sometimes feel that the platform could benefit from more extensive improvements. Given the multitude of functions it provides, I wonder if the developers have enough time to adequately refine each aspect. However, for our specific needs, FortiGate currently performs adequately. The debugging and troubleshooting has room for improvement. I would like to see greater integration with third-party solutions. For instance, one example would be integrating Endpoint Protection with FortiGate, such that if an issue arises with Endpoint Protection, an action could be automatically triggered on FortiGate. I am concerned about Fortinet's ability to help us meet regulatory compliance because its optimal functionality requires deploying all solutions within the mesh as Fortinet products. This raises questions about the compatibility and integration of non-Fortinet technologies within the Fortinet Security Fabric.
Josh Schmookler - PeerSpot reviewer
Jun 15, 2023
Provides excellent visibility, helps to respond to threats faster, and their support is also fantastic
The policies module in FMC specifically isn't the most user-friendly. Coming from Cisco ASA, Cisco ASA is a little bit easier to use. When you get into particularly complex deployments where you have a lot of different interfaces and all that kind of stuff, it's a little bit tricky. Some usability improvements there would be nice. For scalability, they could support a little bit more diverse deployments around clustering and high availability. Currently, it's very active standby, and being able to do a three firewall cluster or four or five firewall cluster would suit some of my deployments a little bit better. It would also help to keep the cost down for the customer because you're buying smaller devices and clustering them versus larger devices.
RR
Jun 28, 2017
Features we most use are the SD-WAN and auto failover for dual ISP connections. Seem to work in harsh environments very well.
As the only network admin in the company, I have to monitor nine remote sites (production and shipping facilities) and 12 remote VPN connections from various smaller facilities. Each location is a processing facility, which, when in season, runs 24 x 7 for the duration they are in production. During this time frame, not having a tech support person on site to fix problems is a huge cost savings for us. I see problems usually before they are large enough to need someone on site and with the cloud services I can remotely control ports, firewall connections and equipment online. Meraki products are very solid and seem to work in harsh environments very well.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The stability of the solution is excellent, as it is with other Fortinet products."
"The FortiGate controls the user's activities and maximizes my bandwidth use overall."
"The most valuable features of Fortinet FortiGate are the ease of use and there are several operating systems that can include the hardware capacities. In the newer releases, the resources were more useful because they were included in the operating system."
"The most valuable feature is the SSL VPN, as it allows us to connect and it separates this product from other firewalls."
"A strong point of FortiGate is the graphical interface is complete and easy to use."
"The ease of setting the solution up is a valuable aspect for us."
"FortiGate's ability to perform as expected and fulfil our needs has been the most compelling feature for network security."
"The SD-WAN feature is the most valuable. This feature evolved from link load balancing. It has helped us in terms of our uptime and privatizing applications whenever we experience an outage. The SD-WAN feature has been a plus for us. Two-factor authentication has allowed us to add more users in terms of remote working. We have two-factor authentication for remote workers to authenticate them before they get on the network."
"If you have a solution that is creating a script and you need to deploy many implementations, you can create a script in the device and it will be the same for all. After that, you just have to do the fine tuning."
"Cisco's engineer helped us with a lot of scripting to see what existed. Previously, we didn't have a proper policy. In fact, we didn't have any policy because we didn't have any firewall for the data center, so generating a policy was a big challenge. Cisco's engineer helped us to do some scripting and find out what kind of policy we can have and organize those policies. That was nice."
"It is pretty stable. I haven't seen many issues during the past four years."
"On the network side, where you create your rules for allowing traffic — what can come inside and what can go out — that works perfectly, if you know what you want to achieve. It protects you."
"Another benefit has been user integration. We try to integrate our policies so that we can create policies based on active users. We can create policies based on who is accessing a resource instead of just IP addresses and ports."
"We are using the Cisco AnyConnect for our end-user VPN with the ASA."
"The VPN feature is the most valuable to us because it accomplishes the task well. We're able to do everything we need to do."
"All the features except IPS are valuable. IPS is not a part of my job."
"Ease of management is the best thing about the solution."
"Real Auto VPN with load balancer without needing a public IP. It is simple and functional."
"The solution is good for load balancing."
"The most valuable feature of Meraki MX is I can manage the solution from anywhere remotely, I can throttle bandwidth, and create all rules. Additionally, it is secure for our customers."
"Both the scalability and the scalability are great with Meraki MX."
"The solution is easy to set up."
"To me, the analytics feature is one of the most valuable in Meraki MX. I also find that it has good usability as it's cloud-based. Another valuable feature of Meraki MX is that it's simple to use and it's user-friendly."
"Site to Site VPN: The device can establish a VPN connection to multiple sites in a mesh environment in seconds, and without complex VPN knowledge."
 

Cons

"It is stable, but its stability can be improved."
"I feel that the reporting needs to be improved."
"MTBF: Hardware failure is more common when compared to SonicWall or Cisco ASA."
"Fortinet FortiGate can improve by integrating the web application firewall and the DDoS protection part of the solution. Having a WAF feature, web application firewall, and proxy together would be a good benefit."
"I haven't had a single issue since using Fortinet."
"We had some issues in the beginning while setting it up, but after doing the firmware update, it is working fine."
"The updates Fortinet provides are sometimes unstable."
"The visibility of the network can be better. The GUI can be improved for better visibility of the network flow. Other solutions have better GUI in terms of network visibility."
"It can be improved when it comes to monitoring. Today, the logs from the firewalls could be improved a bit more without integrating with other devices."
"It could use a web-based portal for VPN. Earlier they had it in the ASA model, but currently they don't have it."
"MSSP oriented interface: I would like a single console which would allow me to manage settings creating consistency across all customers."
"The initial setup can be a bit complex for those unfamiliar with the solution."
"The solution could offer better control that would allow the ability to restrictions certain features from a website."
"Most users do not have awareness of this product's functionality and features. Cisco should do something to make them aware of them. That would be quite excellent and useful to organizations that are still using legacy data-center-security products."
"When you make any changes, irrespective of whether they are big or small, Firepower takes too much time. It is very time-consuming. Even for small changes, you have to wait for 60 seconds or maybe more, which is not good. Similarly, when you have many IPS rules and policies, it slows down, and there is an impact on its performance."
"ASDM can be improved."
"Meraki MX firewalls are great for small to medium-sized businesses, but other solutions are better for enterprise-sized companies."
"We do not have account managers in our region for the solution. Some governments don't use the product since it is attached to the internet."
"Could possibly use deeper configurations."
"Meraki has some hidden features and information that is only privy to their engineers. If that information became available to us, then it would improve our ease of management, and we would be able to make certain adjustments instead of having to go to them."
"We had minor issues with Meraki MX. We had a couple of RMAs, so that could be an area for improvement, but in terms of how the RMAs went, the turnaround time and getting those back into redeployment were quick. Another area for improvement in Meraki MX is that when you're scaling for multiple locations, you need to use the same model, but the model you'd need is only available for a short time. The specific model you require could be out of stock, or Meraki isn't making that model anymore, so Meraki should improve that."
"Expensive licensing and firewall stops immediately working if the license is not renewed at expiration date."
"The configuration options for firewall and IPS have limitations."
"It would be great if the Meraki devices let us see, in real time, the internet demand on a single device."
 

Pricing and Cost Advice

"They are very competitive, but we like to have the factory warranty taken care of."
"It has a competitive price."
"Fortinet FortiGate has different licensing models, depending on what you're going to do. Services included would depend on the license model. Licenses can be renewed annually."
"Pricing is lower than Cisco."
"There is a license to use Fortinet FortiGate."
"I think the price of Fortinet FortiGate is very reasonable."
"Fortinet's pricing is more straightforward than other solutions. If Fortinet doesn't stick out when you're searching for a solution, you are a glutton for punishment. You only need to know two things when purchasing a Fortinet solution: your total bandwidth and bandwidth at the site. You need to estimate the future bandwidth with other solutions if your customer plans to upgrade."
"The pricing is flexible."
"Cisco smart licensing is a hassle for a disconnected environment."
"The enterprise agreement that we have has helped with the pricing because it allows us to consume licensing in more of a consumption model versus a per-user type model. That has helped us a lot."
"Commercial leasing is the best option."
"This product is expensive."
"Our subscription costs, just for the firewalls, is between $400,000 and $500,000 a year."
"Pricing is why we had to go for a UTM. For us to achieve what we needed, if we had gone with the ASA, the cost would have been high compared to getting one box (UTM)."
"The ROI is good. Using ASA, we have saved 10% to 20% on our costs."
"The licensing has definitely improved and got a lot easier. It is customizable depending on what the customer needs, which is a good benefit, instead of just a broad license that everybody has to pay."
"The pricing for Meraki MX is all right, but as the hardware needs to be licensed, the cost depends on the complexity of the device and the term. Pricing could be $100 to $10,000 yearly or even more for a more complex device."
"The product's price depends on use cases."
"The larger MX products are on the expensive side."
"capabilities" What is our primary use case? The solution is mainly based on the cloud which is highly adaptable to the needs of its users due to its large user base. By employing over fifty VPS, we strategically position these units where clients require them the most. Remarkably, the cost of this setup is notably more affordable compared to competing alternatives. The management dashboard allows users to oversee each branch within their network. This comprehensive view is unified within the dashboard, offering insights into the entire branch network. The system works mostly for financial institutions, particularly banking clients. What is most valuable? The cloud management system is really valuable. What needs improvement? Direct logging is something that can be introduced. In the absence of cloud management, the possibility of local configurations and on-premise logins becomes restricted. This limitation stands as a primary concern. When it comes to resolving issues, the inability to access login options hampers troubleshooting efforts. The stability is noteworthy; but when compared to alternative products, its stability is comparatively lower. Additionally, certain limitations are observed in terms of remote control. Price-wise, the solution stands out for its competitive and cost-effective nature compared to other alternatives. Operationally, it is user-friendly and requires minimal effort from administrators, making configuration hassle-free. For how long have I used the solution? I have been using Meraki MX for the last three years. What do I think about the stability of the solution? The solution is stable however there are issues and we need to reboot sometimes. I would rate it five out of ten. What do I think about the scalability of the solution? Considering the needs of medium-class clients, scalability proves to be highly advantageous. I would rate it nine out of ten. How was the initial setup? The initial setup is easy via the cloud portal, primarily because managed support is needed for internet access. Without this, the direct configuration of the box becomes unattainable.The duration required is significantly shorter compared to alternatives. Occasionally, when dealing with a larger number of branches, like fifty or more, we managed to complete the implementation within 14 days. In cases involving complex processes and discussions, additional time might be necessary. However, once the system is set up and connected to the cloud, other configurations can be done within an eight-hour timeframe. What's my experience with pricing, setup cost, and licensing? The solution has three licenses; enterprise, security, and SD WAN. This subscription-based method aligns with customer requirements. When procuring hardware, the minimum requirement is the enterprise license, granting access to cloud management and the portal. Customers can opt to acquire the security or SD-WAN licenses if needed. This adaptable pricing model offers great flexibility. All licenses are linked to the device count, proving advantageous for customers. If there's a future demand for additional devices, licenses can be expanded accordingly without any concerns. The flexibility of the licensing system is indeed valuable."
"Meraki is also expensive, but it's a little bit less expensive and it's easier to configure than Cisco ASA."
"The price of Meraki MX is between $8 and $1,200. Additionally, we typically purchase a three-year enterprise license, and we pay approximately $899 and mark it up a bit."
"Meraki MX is an expensive solution."
"It is a good global solution in terms of the price and features, but because we sell this solution in dollars, sometimes we don't get to sell this solution in Brazil because the dollar is very expensive. The price of every project is different. It varies depending upon the project, scenario, and client."
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
789,728 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
 

Answers from the Community

NC
Nov 24, 2021
Nov 24, 2021
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports network security and firewall options. We researched both Meraki and ASA. We liked that ASA provides a solid VPN setup and integrates with other Cisco security offerings. Cisco ASA is great for routing and accessing remote office locations via the remote VPN. We also liked the high ...
See 2 answers
Nov 8, 2021
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports network security and firewall options. We researched both Meraki and ASA. We liked that ASA provides a solid VPN setup and integrates with other Cisco security offerings. Cisco ASA is great for routing and accessing remote office locations via the remote VPN. We also liked the high availability and customizable nating (Network Access Translation). It is very reliable and easy to use. You can easily configure a site-to-site VPN to connect multiple sites. The support is great - they respond 24/7/365 and there is a lot of documentation available. The downside is that ASAs are aging. Therefore, Cisco ASAs are best suited to small businesses. If you need something affordable that gets the job done, ASA is a good option. We chose Cisco Meraki, because, in our opinion, it is a step forward from ASA. The level of security and intrusion detection is great, and because it is cloud-based, it is easy to change the configuration without downtime. Logging is very comprehensive, and management is very simple. The best feature is content filtering with granular control. Cisco Meraki offers advanced malware protection, including traffic shaping. Another feature we really like is that you can pre-configure devices before they arrive at the installation. It doesn’t work with DMVPN, which is a downside. Another feature that could use some improvement is reporting, which is not real-time. The price can get expensive but if you can afford it, a full-stack Cisco Meraki system does a great job keeping your network secure. Conclusions: If you want a robust but basic firewall, ASA is your best choice. Cisco Meraki is a better choice if you are looking for a next-generation firewall with advanced security features and easy management.
FT
Nov 24, 2021
Meraki is designed for zero deployments and no in-house firewall specialist personnel. Best to secure Networks like remote offices, branches or home offices. Also to protect Internet Access (your computer accesses the internet). Cisco ASA is more of a professional firewall, not only protecting internet access but also providing security for publishing services like web servers, data centers, central services. They will need a specialist to install and support them. Therefore offer much more sophisticated protection features. So you can't really compare these solutions, as they are targeting different markets. You might compare Cisco to Sophos, but again, these are different protection solutions, one for network protection, the other for client protection. If you look only at the firewall part, you miss a lot in the total protection approach with Sophos.
 

Top Industries

By visitors reading reviews
Educational Organization
21%
Computer Software Company
15%
Comms Service Provider
7%
Manufacturing Company
6%
Educational Organization
23%
Computer Software Company
16%
Comms Service Provider
6%
Government
6%
Educational Organization
23%
Computer Software Company
16%
Government
5%
Manufacturing Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...
Which is better - Meraki MX or Cisco ASA Firewall?
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...
Fortigate 60d vs. Meraki MX67 for a small company without a dedicated IT Department
We have Meraki Mx devices now, we are looking to replace them. But that is because the Meraki MX platform lacks SSL I...
What do you like most about Meraki MX?
I am happy with the technical support for the solution. I rate the technical support a ten out of ten.
What is your experience regarding pricing and costs for Meraki MX?
I would rate the pricing a ten out of ten, with one being cheap and ten being expensive.
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
MX64, MX64W, MX84, MX100, MX400, MX600
 

Learn More

Video not available
 

Overview

 

Sample Customers

1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
Hyatt, ONS
Find out what your peers are saying about Cisco Secure Firewall vs. Meraki MX and other solutions. Updated: May 2024.
789,728 professionals have used our research since 2012.