• Home
  • Cisco Secure Firewall vs. WatchGuard Firebox

Cisco Secure Firewall vs WatchGuard Firebox comparison

Cancel
You must select at least 2 products to compare!
Fortinet Logo

Fortinet FortiGate

Read 306 Fortinet FortiGate reviews
123,063 views|89,961 comparisons
90% willing to recommend
Cisco Logo

Cisco Secure Firewall

Read 404 Cisco Secure Firewall reviews
58,582 views|32,836 comparisons
83% willing to recommend
WatchGuard Logo

WatchGuard Firebox

Read 78 WatchGuard Firebox reviews
18,639 views|14,396 comparisons
95% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Cisco Secure Firewall vs. WatchGuard Firebox
March 2024
Executive Summary
Updated on Nov 23, 2022

We performed a comparison between Cisco Secure Firewall and WatchGuard Firebox based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

  • Ease of Deployment: Users of Cisco Secure Firewall share mixed reviews on deployment. Some find it easy while others say the setup is not straightforward. Users of WatchGuard Firebox say deployment is straightforward.
  • Features: Users of both solutions are happy with the products’ stability and scalability.

    Cisco Secure Firewall users like that the solution has good security and filtering and good application visibility and control. Users say they would like to see an improved interface and better logging functionality, and that it would be nice if the solution had a policy-based routing feature.

    Users of WatchGuard Firebox like that the solution is user-friendly, reliable, and has good performance in addition to good management features, and good site-to-site VPN. Users would like to see the web blocker feature and the reporting be improved.
  • Pricing: Users of Cisco Secure Firewall have mixed opinions on the pricing. Some consider it to be expensive. Others say it is comparable to other solutions. Users of WatchGuard Firebox say the solution is expensive.
  • Service and Support: Users of both solutions are satisfied with the technical support they receive.
  • ROI: Users of both solutions report a good ROI.

Comparison Results: The two solutions are very comparable. WatchGuard Firebox received slightly better ratings because it is easier to deploy than Cisco Secure Firewall.

To learn more, read our detailed Cisco Secure Firewall vs. WatchGuard Firebox Report (Updated: March 2024).
Download the complete report
767,667 professionals have used our research since 2012.
Featured Review
Adeel Razzaq
Researched Cisco Secure Firewall but chose Fortinet FortiGate: Highly reliable, reasonably priced, and worth the money
There is not much visible improvement, but it's a stable and reliable environment. We did not see anything critical in the production environment.
Anonymous User
A flexible and easy to manage solution for segregating our servers from the rest of the environment
Instead of using multiple firewalls, we only need to rely on this solution. It has a small footprint.
Wandile Ntshalintshali
Organization improved exponentially, scaling at full capacity, and meets our needs specifically
WatchGuard Firebox has improved our organization one hundred percent from before we started using it.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable features of Fortinet FortiGate are it is one of the most mature firewalls in the UTM bundle.""The scalability is good in Fortinet FortiGate.""Fortinet FortiGate's reliability is valuable.""The license management is very valuable. You can get a new license each year, or you can enroll every two to four years. You can get the logs, and you will get the information on the risk in your network and the entire organization. With this information, you can take action on your actives, computers, or devices. You can bring your own device as an SSE.""The security on offer is very good.""The most valuable feature is the web filter.""Its performance in fulfilling our requirements has been satisfactory.""Some of the key features of the solution is that it has good reporting, you can receive many details from the connection, for example, clients and website information."

More Fortinet FortiGate Pros →

"It is a secure product.""The GUI is among the most valuable features,""The stability of Cisco ASA is excellent compared to other products on the market. Because of our customer experience as an integrator company, our clients never report any performance problems. We have a good performance reputation with Cisco ASA.""It is a highly stable product. We rarely receive any serious outdates, so it works quite well.""Its security and filtering are most valuable. Every layer of data that comes into the organization goes through it. After setting up the criteria, it automatically filters the traffic. We don't have to check it often.""The traffic inspection and the Firepower engine are the most valuable features. It gives you full details, application details, traffic monitoring, and the threats. It gives you all the containers the user is using, especially at the application level. The solution also provides application visibility and control.""It is a comprehensive suite and complete package.""The integration and configuration were pretty straightforward."

More Cisco Secure Firewall Pros →

"If there is any conflict, the reporting feature will kick out all types of information, which is great.""I like intrusion detection the most.""It also provides us with layered security. It has onboard virus scanning features that allow it to scan before something gets to the host. It will also stop a person from going to a site that is known to be bad.""Because we bought two firewalls... we need a central place to manage the policies and deploy them to both devices. It's good that it provides a system management console that is able to manipulate and manage policies in one place and deploy them to different locations.""The main reason we went with it was the security protocols. They were more robust on this device.""Intrusion Prevention is my primary focus so that's what I find most useful. The why is straightforward: It's to prevent intrusion.""The solution has increased productivity with our outside salespeople being able to connect into their computers and use those remotely.""It provides us with Layer 2 and Layer 3 security."

More WatchGuard Firebox Pros →

Cons
"There are some cloud-based features that could be much more flexible than they currently are.""One of the features that I would like to have is to do with endpoint production, it should be integrated. For example, the firewall gets notified of any kind of forensic event that needs to be done, such as if there is a ransomware attack and how it originated, all those records have to be available from the firewall, which is not.""Its reporting can be improved. Sometimes, I don't get proper reports.""The solution is very expensive.""The license renewal process, annual renewal price, and the web application firewall features should be improved.""There are some problems that support cannot give you a logical reason as to why it happened. For example, I had a case where I was dealing with a WhatsApp application that was giving issues. Technical support gave more than one reason it could be giving issues, but none of them solved the problem. Eventually I solved the problem, but it was far from the solutions that support had given.""For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial.""I don't really have anything negative to say as far as Fortinet firewalls are concerned. If anything, they can support a user a little bit better. They can stop being so time-sensitive about how much time the support call has taken, and they can help you do it yourself."

More Fortinet FortiGate Cons →

"UTM features would be nice or some NextGen features.""The installation and integration of Cisco ASA with FirePOWER can be improved. The management with Fortigate is easier than Cisco ASA on FirePOWER. The management side of Cisco ASA can be improved so it can be more easily configured and used.""I needed to be well-versed with all the command lines for Cisco ASA in order to fully utilize it. I missed this info and wasted some operational costs.""This solution could be more granular and user-friendly.""The virtual firewalls don't work very well with Cisco AnyConnect.""It is my understanding that they are in the process of discontinuing this device.""Most users do not have awareness of this product's functionality and features. Cisco should do something to make them aware of them. That would be quite excellent and useful to organizations that are still using legacy data-center-security products.""You need to have a little bit of knowledge to be able to configure it. Otherwise, it would be very difficult to configure because there is no GUI. The latest software available in the market has a GUI and probably zero-touch provisioning and auto-configuration. All these things are not available in our version. You need to manually go and configure everything in the switch. In terms of new features, we would definitely want to have URL-based filtering, traffic steering, and probably a little bit steering in the bandwidth based on the per-user level and per-user group. We will definitely need some of these features in the near future."

More Cisco Secure Firewall Cons →

"There's always room for improvement, especially if the threats are getting more sophisticated and the IT department cannot sufficiently meet this kind of sophistication with their own knowledge and experience. Knowing that this solution can get up to the level of addressing a lot of these threats is something that everybody wishes for. If we look at the dark web and the lawful web, they are two opposites, and if these two good and bad collide in the world of the internet, you want the best possible product—especially if you cannot get to that point of knowledge. I am just an individual and end user, with limited knowledge of usage. That's why I say there's always room for improvement, from their side and also from mine, because by knowing exactly what they can achieve and the knowledge that they can get on an everyday basis, and the portion that is understandable to me, it's an improvement for them as well.""It would be wonderful if the WatchGuard team develops nice products for threat intelligence.""This is a great product and offers great protection but they don't hear the customers' needs. They don't make improvements as per the customers' requests.""I haven’t dug deeply into the reporting features yet or if they are working well. However, I have generated several reports and there was too much unnecessary information, in comparison with the reporting features in the Sophos firewall. Sophos' reporting is more readable and easier to configure.""They are working on cloud-based options. However, they do not have the options fully functional in their solution at this time.""The pricing could be improved. It is definitely one of the more expensive products.""In terms of what could be improved, I would say their web blocker feature. It is still quite a confusing setup, especially when you want to filter out a particular category for granularity. For example, you do not want to filter Facebook but you do want to filter Facebook games only. It can be done, but the process to do it is very confusing.""The area where I think this product can be improved is the user interface and the reporting. It can be quite difficult to find the correct logs and to actually find out what is going on. The digging can be time-consuming."

More WatchGuard Firebox Cons →

Pricing and Cost Advice
  • "Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."
  • "These boxes are not that expensive compared to what they can do, their functionality, and the reporting you receive. Fortinet licensing is straightforward and less confusing compared to Cisco."
  • "Go for long term pricing negotiated at the time of purchase."
  • "Work through partners for the best pricing."
  • "The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."
  • "Easy to understand licensing requirements."
  • "​We saved a bundle by not needing all the past appliances from an NGFW.​"
  • "The cost is too high... They have to focus on more features with less cost for the customer. If you see the market, where it's going, there are a lot of players offering more features for less cost."

    • More Fortinet FortiGate Pricing and Cost Advice →

  • "Always plan ahead for three years. In other words, do not buy a firewall on what your needs are today, but try to predict where you will be three years from now in terms of bandwidth, security requirements, and changes in organizational design."
  • "I have to admit that the price is high. But I think it's worth it if the stability of your solution counts for you."
  • "It has a great performance-to-price value, compared to competitive solutions."
  • "Spec the right hardware model and choose the right license for your needs."
  • "Everything with Cisco is expensive. My advice is that there are a lot better options out in the market now."
  • "To discuss with Cisco Systems or their partners to gain the optimal price and to not consider, without verifying, the false information that Cisco ASA is very expensive."
  • "Cisco devices are for sure costly and budget could be an important constrain on selecting them as our security solution."
  • "​Price point is too high for features and throughput available.​"

    • More Cisco Secure Firewall Pricing and Cost Advice →

  • "Very competitive pricing regarding throughput compared to other alternatives."
  • "Cheap."
  • "The subscription that was purchased is for three years, but it is usually for one year at a time."
  • "The cheapest configuration, for maybe five people, is approximately $500."
  • "The price is so small that I don't pay attention to it anymore. I think we pay a few thousand dollars for two to three years, so about $100 per month. That's for all of our users. There is an additional cost if we want to go with a deeper licensing model, but we just pay for antivirus, IPS, and main product support."
  • "I haven't seen the pricing since 2017, but it was competitive. SonicWall, Barracuda, and WatchGuard were all about the same price when we did our last pricing."
  • "Each one, for the primary unit, was $8,600 and the High Availability unit was $2,000. That's with three years of subscription and support and the Total Security Suite."
  • "We only license our corporate one and the one we have at our DR site, we don't worry about the branches. It doesn't pay for us to license the ones at the branches. What they charge for what they call basic maintenance is extremely high for those little fireboxes."

    • More WatchGuard Firebox Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    See Recommendations
    767,667 professionals have used our research since 2012.
    Comparison Review
    Anonymous User
    Cisco ASA vs. Palo Alto Networks
    Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning the management options: How to add and rename objects. How to update a device. How to find log entries. Etc. Cisco ASA Fast Management Suite: The ASDM GUI is really fast. You do not have to wait for the next window if you click on a certain button. It simply appears directly. On the Palo, each entry to add, e.g., an application inside a security rule, takes a few seconds. Better “Preview CLI Commands”: I am always checking the CLI commands before I send them to the firewall. On the Cisco ASA, they are quite easy to understand. I know, Palo Alto also offers the “Preview Changes”, but it takes a bit more time to recognize all XML paths. Better CLI Commands at all: For Cisco admins it is very easy to parse a “show run” and to paste some commands into another device. This is not that easy on a Palo Alto firewall. First, you must change the config-output format, and second, you cannot simply paste many lines into another device, since the ordering of these lines is NOT correct by default. That is, it simply doesn’t work. ACL Hit Count: I like the hit counts per access list entry in the GUI. It quickly reveals which entries are used very often and which ones are never used. On the… Read more →
    Questions from the Community
    Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Read all 3 answers   →
    What is the biggest difference between Sophos XG and FortiGate?
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Read all 13 answers   →
    What are the biggest technical differences between Sophos UTM and Fortine...
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Read all 11 answers   →
    Which is better - Fortinet FortiGate or Cisco ASA Firewall?
    Top Answer:One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet… more »
    Read all 4 answers   →
    How does Cisco's ASA firewall compare with the Firepower NGFW?
    Top Answer:It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Which is better - Meraki MX or Cisco ASA Firewall?
    Top Answer: Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports… more »
    Read all 2 answers   →
    What is your primary use case for WatchGuard Firebox?
    Top Answer:We are providing our services to all WatchGuard customers in the region. 
    Read all 62 answers   →
    What is your primary use case for WatchGuard Firebox?
    Top Answer:We just use it as a secondary WiFi device. We're a small office and we needed to set up a WiFi device for a few of our… more »
    Read all 62 answers   →
    What is your primary use case for WatchGuard Firebox?
    Top Answer:We're a hospital and we use it for developing our incoming and outgoing policies, and we also use it for VPN.
    Read all 62 answers   →
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
    Learn More
    Fortinet
    Cisco
    WatchGuard
    Overview

    Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

    Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.

    The core features of Cisco Secure Firewall are multifaceted:

    • Advanced threat protection is achieved through a combination of intrusion prevention, malware detection, and URL filtering technologies.
    • For secure access, the firewall presents multiple options, including VPN, remote access, and single sign-on.
    • Its network segmentation capability is vital in creating barriers within the network to safeguard critical assets.
    • The firewall is scalable, effectively serving small businesses to large enterprises.
    • Management is streamlined through Cisco DNA Center, a central management system.

    The benefits of deploying Cisco Secure Firewall are substantial. It significantly reduces the risk of cyberattacks, thereby enhancing the security posture of an organization. This security also translates into increased productivity, as secure access means uninterrupted work. Compliance with industry regulations is another advantage, as secure access and network segmentation align with many regulatory standards. Additionally, it helps in reducing IT costs by automating security tasks and simplifying management processes.

    In practical scenarios, Cisco Secure Firewall finds diverse applications. It's instrumental in protecting branch offices from cyberattacks, securing remote access for various stakeholders, safeguarding cloud workloads, and segmenting networks to isolate sensitive areas.

    User reviews from PeerSpot reflect an overall positive experience with the Cisco Secure Firewall. Users appreciate its ease of configuration, good management capabilities, robust protection, user-friendly interface, and scalability. However, some areas for improvement include better integration capabilities with other vendors, maturity, control over bandwidth for end-users, and addressing software bugs.

    In summary, Cisco Secure Firewall is a comprehensive, versatile, and reliable security solution that effectively meets the security needs of various organizations. It offers a balance of advanced protection, user-friendly management, and scalability, making it a valuable asset in the realm of network security.

    WatchGuard Firebox is a versatile security solution primarily used for security purposes such as firewalling, VPN, and protecting networks from outside and inside threats. It is also used for routing, multi-factor authentication, vulnerability management, and segregating industrial networks from corporate networks. 

    The product is praised for scalability, stability, user-friendliness, reasonable pricing, and good technical support. Some users use it for web filtering and hosting web pages, while others – for remote access connections and mobile VPNs. Firebox offers great protection, good performance, and flexibility without licensing limitations.

    WatchGuard Firebox Features

    WatchGuard Firebox has many valuable key features, including:

    • Policy management
    • Strong security
    • High performance
    • Network configuration for multiple clients
    • Built-in SD-WAN
    • Application control
    • Threat detection and response
    • Network discovery
    • Intuitive interface

    WatchGuard Firebox Benefits

    Some of the benefits of using WatchGuard Firebox include:

    • IT administrators can create and implement policies for content filtering, VPNs, and network inspections.
    • The solution is easy to set up, manage, and maintain.

    Reviews from Real Users

    Below are some reviews and helpful feedback written by WatchGuard Firebox users.

    PeerSpot user Kelly C., IT Manager at a hospitality company, mentions, “One of the most valuable features is the Gateway AntiVirus. We scan all traffic as it's coming through. We also use spamBlocker to scrub spam. We use content filtering, which is critical in any corporate environment to make sure that people don't surf things they're not supposed to. WatchGuard has a very easy VPN and branch office VPN setup, so we use those pretty extensively too.It's very easy to use. In terms of performance, WatchGuard has always worked well for us. Regarding the reporting, I was in the Dimension server earlier today. It's very powerful. I like it. And the management features are easy to use. I like the fact that I can open up the System Manager client or I can just do it through the web if I'm making a quick change.”

    A Director of Information Technology at a retailer says, “Among the most valuable features is the ease of use — love the interface — of both the web interface and of the WatchGuard System Manager. It's a stable platform. The devices are pretty rock-solid.”

    Jason M., IT Director at a healthcare company, explains, “The policy monitoring and allowing different traffic flows are the most useful features for us; regulating which traffic comes in and out. In terms of the throughput and performance, we don't have a problem or any bottleneck there. We downgraded the size of our appliance because we're a small facility, and what we had before was actually too big. The one we are now going with seems to be doing a great job.” He also adds, “The management feature is pretty nice.”

    Steve R., President and Owner at Peak Communication Systems, Inc., comments, "It saves us time in the respect that we now have the template built for it so we can get in and get it done. We've had much less problems supporting Voice over IP technologies from different companies. Because our client base has grown over the years, we're probably saving 20 to 30 man-hours a month now that we've got this on a good stable level."

    Sample Customers
    1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
    There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
    Ellips, Diecutstickers.com, Clarke Energy, NCR, Wrest Park, Homeslice Pizza, Fortessa Tableware Solutions, The Phoenix Residence
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company15%
    Comms Service Provider8%
    Manufacturing Company6%
    REVIEWERS
    Financial Services Firm15%
    Comms Service Provider12%
    Computer Software Company12%
    Government8%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company16%
    Comms Service Provider9%
    Government6%
    REVIEWERS
    Manufacturing Company18%
    Construction Company11%
    Computer Software Company7%
    Real Estate/Law Firm5%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Comms Service Provider12%
    Government6%
    Educational Organization6%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise32%
    Large Enterprise41%
    REVIEWERS
    Small Business35%
    Midsize Enterprise24%
    Large Enterprise42%
    VISITORS READING REVIEWS
    Small Business24%
    Midsize Enterprise30%
    Large Enterprise46%
    REVIEWERS
    Small Business65%
    Midsize Enterprise22%
    Large Enterprise13%
    VISITORS READING REVIEWS
    Small Business42%
    Midsize Enterprise19%
    Large Enterprise39%
    Buyer's Guide
    Cisco Secure Firewall vs. WatchGuard Firebox
    March 2024
    Free Report: Cisco Secure Firewall vs. WatchGuard Firebox
    Find out what your peers are saying about Cisco Secure Firewall vs. WatchGuard Firebox and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    767,667 professionals have used our research since 2012.

    Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews while WatchGuard Firebox is ranked 13th in Firewalls with 78 reviews. Cisco Secure Firewall is rated 8.2, while WatchGuard Firebox is rated 8.6. The top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". On the other hand, the top reviewer of WatchGuard Firebox writes "Offers a streamlined deployment, intuitive interface and robust security features". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Sophos UTM, whereas WatchGuard Firebox is most compared with Netgate pfSense, Sophos XG, OPNsense, SonicWall TZ and Sophos UTM. See our Cisco Secure Firewall vs. WatchGuard Firebox report.

    See our list of best Firewalls vendors and best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.