Try our new research platform with insights from 80,000+ expert users

Cisco Secure Firewall vs Palo Alto Networks K2-Series comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 16, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
386
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Cisco Secure Firewall
Ranking in Firewalls
6th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
428
Ranking in other categories
Cisco Security Portfolio (3rd)
Palo Alto Networks K2-Series
Ranking in Firewalls
34th
Average Rating
8.4
Reviews Sentiment
7.7
Number of Reviews
34
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.2%, up from 17.7% compared to the previous year. The mindshare of Cisco Secure Firewall is 6.2%, up from 5.5% compared to the previous year. The mindshare of Palo Alto Networks K2-Series is 0.1%, up from 0.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

Vasu Gala - PeerSpot reviewer
A stable solution with an intuitive interface and quick customer service
I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.
Phil Shiflett - PeerSpot reviewer
Unified policies streamline network management but complex licensing requires attention
Cisco Secure Firewall has some growth opportunities in terms of visibility and control capabilities regarding managing encrypted traffic. It has the ability to analyze encrypted traffic, and there is potential for more integration with APIs and AI to enhance these capabilities. Cisco Secure Firewall needs improvement in deployment time and the capability to access the CLI during support calls. I often encounter issues when technical support uses a CLI that is not familiar to me while troubleshooting through the GUI. My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time. For the next release, they should look at the features offered by competitors such as Fortinet, including the ability to perform packet capture directly from the interface. If they enhanced their troubleshooting efficiency related to packet capture for each specific rule, it would simplify the process significantly.
Krishnakumar M - PeerSpot reviewer
One of the best tools for the prevention of evasive threats
There is a feature called granular application controls, which I liked. Instead of relying on ports and IP addresses, they use AMP ID. This kind of solution is very good. Another valuable feature is the prevention of evasive threats, which is one of the best tools I've encountered. SSL decryption and app ID-based SSL decryption are also impressive, along with the integration with user ID. Identity-based policies ensuring only authorized users can access specific resources are excellent features. Normally, there is something called SIM or SCIM in IDA IDM, but this feature is provided on the box, which is exemplary.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Its performance in fulfilling our requirements has been satisfactory."
"The Intrusion Prevention System and the web filtering are both working well."
"Valuable features include the Web Application Firewall, and it even has DLP (data leak prevention)."
"The application control features, such as Facebook blocking and Spotify blocking, are the most valuable."
"This is a quality product with ok support, and it is better than the competition we've tried."
"I would recommend using Fortinet FortiGate because of its usability."
"The most valuable feature is the SSL VPN, as it allows us to connect and it separates this product from other firewalls."
"Fortinet FortiGate is pretty robust. The updates and firmware releases are pretty timely. They have a good product revision and review system, so they are constantly reviewing their configuration and the different mechanisms that are used on Fortinet FortiGate."
"One of the most valuable features is the AMP. It's very good and very reliable when it comes to malicious activities, websites, and viruses."
"We found the initial setup to be easy."
"The most valuable feature of this solution is its ability to integrate vertically."
"Cisco tech is always good and helpful. I would rate them as 10 out of 10."
"We feel that we can trust the security, and our assets and business are well protected. We need to have trust in it, but we also see that it works. We have a security company that has tested that it works."
"Cybersecurity resilience has been paramount. Because there is a threat of losing everything if ransomware or another sort of attack were to happen, the cybersecurity resilience has been top-notch."
"Network segmentation is the most valuable feature."
"What I like about Cisco is the security zone. By default when you configure it, it gives you a security zone, which other firewalls don't have."
"Palo Alto firewalls are scalable enough. We have about 110 employees in our company, and we are about to expand to 130."
"The most valuable feature of Palo Alto Networks K2-Series is its management abilities. Additionally, the updates are very good."
"The solution is reliable and scales well."
"The customer service and support are really good."
"It's easy to configure."
"The most valuable features are the intuitive user interface, ease of use, and reporting."
"Overall product rating: Nine out of ten."
"The most valuable feature is availability."
 

Cons

"Technical support could be better. You don't always get the level of help you need right away."
"I would like some automated custom reporting."
"The user interface of the Fortinet FortiGate management console could be more intuitive and user-friendly, and the log analysis and reporting features could be enhanced to provide more flexibility and customizable insights."
"Some features in Fortinet FortiGate need improvement as we discover when calling support that certain actions must be done from the command line."
"The sniffing packets or packet captures, can be simplified and improved because it's a little confusing."
"The stability could be a bit better."
"Improvements for Fortinet FortiGate could be made by making it easier to implement on networks and simpler to add users and accounts that utilize this solution. That's basically the only challenge that I see."
"Fortinet FortiGate has started implementing AI, however, it hasn't reached full maturity."
"The policies module in FMC specifically isn't the most user-friendly. Coming from Cisco ASA, Cisco ASA is a little bit easier to use. When you get into particularly complex deployments where you have a lot of different interfaces and all that kind of stuff, it's a little bit tricky. Some usability improvements there would be nice."
"In terms of functionality, there isn't much to improve. There could be more bandwidth and better interface speed."
"We are looking for software taxi capabilities."
"Downtime due to bugs requiring code upgrades has been problematic. That's the reason why we are moving away from Cisco Secure Firewalls."
"The price can be better."
"We are replacing ASA with FTD which offers many new features not available using ASA."
"We only have an issue with time sync with Cisco ASA and NTP. If the time is out of sync, it will be a disaster for the failover."
"I'm not a big fan of the FDM (Firepower Device Manager) that comes with Firepower. I found out that you need to use the Firepower Management Center, the FMC, to manage the firewalls a lot better. You can get a lot more granular with the configuration in the FMC, versus the FDM that comes out-of-the-box with it. FDM is like Firepower for dummies."
"The solution's commitment time could be reduced as it often takes a lot of time to execute."
"Palo Alto has many other products. It would be nice for these products to be centralized under one tool"
"I cannot think of anything specific to improve at the moment."
"It is recommended that the Palo Alto Networks K2-Series be implemented step by step for the Panorama. Sometimes we can't overwrite the configurations because it fails."
"I would like to see the threat intelligence capability integrated with other vendors such as Cisco and Forcepoint."
"There are a lot of bugs in this solution."
"Its networking features could be better."
"The tool needs to improve integration with more products from other vendors. I would like the product to add threat intelligence features as well."
 

Pricing and Cost Advice

"On a scale of one being cheap and ten being expensive, I rate the tool's price as an eight."
"If the price of the license in Fortinet FortiGate was less expensive it would be better."
"Fortinet FortiGate allows you to purchase licenses for hardware and software."
"Its pricing is good. It's average or normal as compared to Palo Alto and Check Point firewalls."
"It scales well if you know what to buy from a physical box standpoint. They seem to offer something for every level."
"Their licensing costs are annual. The UTM feature license along with their support is called FortiCare. We include that as a part of the annual maintenance cost. Palo Alto or Juniper also have an annual subscription charge for UTM. Price, of course, can always be more competitive, but it is not the most expensive product. The price-performance ratio is quite high for FortiGate."
"The price range is quite acceptable and normal."
"If you purchase a one-year subscription with the hardware and then you want to renew for the second year, it is very costly."
"The cost of the firewalls versus the ROI is okay."
"Its price is moderate. It is not too expensive."
"It's more expensive than Fortinet and Juniper. The price is high compared to other vendors. In general, for the license, it's not that expensive."
"Cisco, as we all know, is expensive, but for the money you are paying, you know that you are also getting top-notch documentation as well as support if needed."
"Spec the right hardware model and choose the right license for your needs."
"The cost of this solution is high."
"I have to admit that the price is high. But I think it's worth it if the stability of your solution counts for you."
"The pricing for Cisco products is higher than others, but Cisco is a very good, strong, and stable technology."
"The price of the solution is expensive."
"When comparing Palo Alto Networks K2-Series with other solutions it is on the higher end of the price scale."
"It is an expensive solution."
"Palo Alto Networks K2-Series is an expensive solution, the price could be reduced. They are more expensive than some of their competitors."
"Palo Alto firewalls are very expensive."
"The price of this solution is too high."
"The overall price of Palo Alto Networks K2-Series could be reduced."
"This product is designed for large companies. The price would not be suitable for a small or medium size company."
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
861,803 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Comms Service Provider
8%
Educational Organization
8%
Manufacturing Company
7%
Educational Organization
21%
Computer Software Company
18%
University
7%
Manufacturing Company
6%
Computer Software Company
18%
Performing Arts
15%
Manufacturing Company
10%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...
Which is better - Meraki MX or Cisco ASA Firewall?
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...
Features comparison between Palo Alto and Fortinet firewalls
In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it...
What is your experience regarding pricing and costs for Palo Alto Networks K2-Series?
The pricing for the Palo Alto Networks K2-Series solution is affordable and there are no complaints about the licensing.
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
No data available
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
State of North Dakota, SEGA, Alameda County Office of Education, Temple University, VERGE, CAME
Find out what your peers are saying about Cisco Secure Firewall vs. Palo Alto Networks K2-Series and other solutions. Updated: July 2025.
861,803 professionals have used our research since 2012.