We performed a comparison between Cisco Secure Firewall and Zscaler Cloud Firewall based on real PeerSpot user reviews.
Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Its stability is the most valuable."
"This product is definitely scalable."
"The most valuable feature of Fortinet FortiGate is the simple configuration."
"We can detect any attack of viruses or malware at the first point of contact."
"Good anti-malware and web filtering features."
"The technical support is great."
"From the firewall perspective, the rules and policies are very sufficient and easy to use."
"The solution is easy to configure and maintain remotely."
"Cisco Secure Firewall's security solutions, advanced malware protection, and DDoS communication are very good."
"It is extremely stable I would say — at least after you deploy it."
"ASA integrates with FirePOWER, IPS functionality, malware filtering, etc. This functionality wasn't there in the past. With its cloud architecture, Cisco can filter traffic at the engine layer. Evasive encryptions can be entered into the application, like BitTorrent or Skype. This wasn't possible to control through a traditional firewall."
"Valuable features include DMZ segmentation, and IDS and IPS."
"The setup was straightforward. I was happy with the configuration and deployment of the solution, as it was quick."
"It has a good security level. It is a next-generation firewall. It can protect from different types of attacks. We have enabled IPS and IDS."
"The ASDM (Adaptive Security Device Manager) which is the graphical user interface, works out, and Cisco keeps it current."
"At this point, we find that this product has high productivity and high availability and there is no need for improvement."
"The visibility and log availability offered are highly valued for troubleshooting purposes, and this is a key factor driving customer interest in the firewall module."
"The solution offers good sandboxing."
"The scalability is okay. We have around 2200 people using this solution."
"I like the ease of deployment and its flexibility. We don't need to deal with license, quotes, procurement, delivery, and installation. Everything is software-based, and it's very easy to operate."
"Zscaler Cloud Firewall understands the applications in the current generation and adapts to the present generation cloud applications."
"It is a stable solution."
"The product’s firewall and VPN package are fantastic compared to any other solution."
"Zscaler provides effective protection against various cyber threats ensuring a safe environment"
"It would be good if they had fewer updates."
"Fortinet FortiGate can improve by integrating the web application firewall and the DDoS protection part of the solution. Having a WAF feature, web application firewall, and proxy together would be a good benefit."
"Some features of Fortinet FortiGate are actually fee enabled that are inconvenient for deploying in production. Other issues relate to isolation with Cisco products and your server."
"I use the FortiGate 60D model and realized the 300Mbps bandwidth limitation. Because it is a product that offers many services, I think it could have greater bandwidth capacity."
"Fortinet already improved FortiGate, but in the current market, many brands of security devices have improved together. Fortinet still needs to catch up with market standards. Fortinet is lacking in features in comparison to competitors."
"I would like to have logs, monitoring, and reporting for a month without extra fees."
"The process of configuring firewall rules appears excessively complex."
"They can do more tests before they release new versions because I would like to be more assured. We had some experiences where they release something new and great, but some of the old features are disabled or they don't work well, which impacts the product satisfaction. The manufacturer should be able to prove that everything works or not only that it might work. This is applicable to most of the other services, software, and hardware companies. They all should work on this. We cannot trust every new release, such as a beta release, on the first day. We wait for some comments on the forums and from other companies that we know. We always wait a few weeks before we use the updated version. They should also extend the VPN client application, especially for Linux versions. Currently, it has an application for Linux devices, but it doesn't work the way we want to connect to the VPN. They use only the old connection, not the new one. They have VPN client applications for Windows and Mac, but they can add more useful features to better manage the devices and monitor the current health of each device. Such features would be helpful for our company."
"If I need to download AnyConnect in a rush, it will prompt me for my Cisco login account. Nobody wants to download a client to a firewall that they don't own."
"One big pain point I have is the ASDM interface because it's Java, and sometimes, it's a bit buggy and has low performance. That's something that probably won't be improved because of backward compatibility."
"If I want to activate IPS features on it, I have to buy another license. If I want Cisco AnyConnect, I have to buy another license. That's where we have challenges."
"There is room for improvement in the stability or software quality of the product. There were a few things in the past where we had a little bit of a problem with the product, so there is room for improvement."
"The graphical interface could be improved. From what I have seen, Fortinet, for example, has a nicer GUI."
"It would be great if some of the load times were faster."
"When we talk about data centers, we are talking about 100 gig capacity or 400 gig capacity. When it comes to active-active solution clustering and resilience and performance, Cisco should look into these a little bit more."
"They need a user-friendly interface that we could easily configure."
"It would be better if they improved their policy, package visibility, and flexibility while we're creating rules for inspection. It could also be cheaper or more things could be included in the basic package. In the next release, I would like better coverage in the Asia Pacific region and better quality of service."
"There are some areas it could improve when it comes to blocking, we have to block some things manually. For example, if we block a top-level domain we have seen that the new IPs come through, the IPs are not blocked. There should be some more granular way of doing it. My only request is if you're blocking something at a top level, the sub-level sub-domains and all those other IPs should be blocked too automatically."
"Certain criteria need to be met if you want to scale this solution."
"The product could improve its integration with some legacy systems."
"Pricing is a challenge."
"They do not provide a few components that are fundamental to differentiate the products"
"It would be nice to have some sort of a form factor, a physical form factor perhaps, or virtual machine that you could install on devices or on a cloud, and have some cloud computing."
"Zscaler Cloud Firewall should have a better understanding of all dynamic cloud applications."
Cisco Secure Firewall is ranked 4th in Firewalls with 404 reviews while Zscaler Cloud Firewall is ranked 24th in Firewalls with 15 reviews. Cisco Secure Firewall is rated 8.2, while Zscaler Cloud Firewall is rated 8.2. The top reviewer of Cisco Secure Firewall writes "Highlights and helps us catch Zero-day vulnerabilities traveling across our network". On the other hand, the top reviewer of Zscaler Cloud Firewall writes "A highly stable and comprehensive cloud security and access solution". Cisco Secure Firewall is most compared with Palo Alto Networks WildFire, Netgate pfSense, Meraki MX, Sophos XG and Juniper SRX Series Firewall, whereas Zscaler Cloud Firewall is most compared with Azure Firewall, OPNsense, Sophos XG, Palo Alto Networks NG Firewalls and Check Point NGFW. See our Cisco Secure Firewall vs. Zscaler Cloud Firewall report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.