Try our new research platform with insights from 80,000+ expert users

Forcepoint Next Generation Firewall vs Sangfor NGAF comparison

Forcepoint and Sangfor are both solutions in the Firewalls category. Forcepoint is ranked #27 with an average rating of 7.2, while Sangfor is ranked #19 with an average rating of 7.9. Forcepoint holds a 0.4% mindshare in Firewalls, compared to Sangfor’s 1.3% mindshare. Additionally, 78% of Forcepoint users are willing to recommend the solution, compared to 90% of Sangfor users who would recommend it.
Sponsored
Fortinet FortiGate
Read 330 Fortinet FortiGate reviews
  • 78,842 Views
  • 58,697 Comparison Views
90% willing to recommend
Forcepoint Next Generation ...
Read 44 Forcepoint Next Generation Firewall reviews
  • 1,440 Views
  • 1,161 Comparison Views
78% willing to recommend
Sangfor NGAF
Read 36 Sangfor NGAF reviews
  • 5,463 Views
  • 3,135 Comparison Views
90% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 6, 2025

Forcepoint Next Generation Firewall and Sangfor NGAF are competing in the network security field. Sangfor NGAF seems to have an edge due to its advanced features, which many find justifies its cost.

Features: Forcepoint's integrated threat intelligence, centralized management, and SD-WAN features cater to enterprises with complex setups. Sangfor NGAF provides all-in-one protection, enhanced threat detection, and features advanced AI technologies. It also offers a user-friendly interface, WAN optimization, and application control.

Room for Improvement: Forcepoint can be more user-friendly by simplifying its management console and reducing the complexity of its integrations. Improving deployment times could also help. Sangfor might enhance its reporting capabilities, provide more detailed analytics, and further develop its network scalability features to match enterprise demands.

Ease of Deployment and Customer Service: Sangfor NGAF offers straightforward deployment and proactive customer service, leading to reduced configuration and support time. Forcepoint, though robust, requires more effort due to its intricate setup and multiple solution integration, which may cause potential delays.

Pricing and ROI: Forcepoint incurs higher initial setup costs, reflective of its detailed security capabilities. Sangfor NGAF, with competitive pricing, offers a more favorable ROI due to efficient deployment and low maintenance costs, providing a compelling financial proposition for budget-conscious buyers.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Forcepoint Next Generation Firewall vs. Sangfor NGAF Report (Updated: April 2025).
Buyer's Guide
Forcepoint Next Generation Firewall vs. Sangfor NGAF
April 2025
Download the complete report
Helped 849,686 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
330
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Forcepoint Next Generation ...
Ranking in Firewalls
27th
Average Rating
7.6
Reviews Sentiment
6.7
Number of Reviews
44
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (11th), WAN Edge (12th)
Sangfor NGAF
Ranking in Firewalls
19th
Average Rating
8.0
Reviews Sentiment
6.5
Number of Reviews
36
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of May 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.4%, up from 17.7% compared to the previous year. The mindshare of Forcepoint Next Generation Firewall is 0.4%, up from 0.4% compared to the previous year. The mindshare of Sangfor NGAF is 1.3%, up from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

EhabAli - PeerSpot reviewer
Efficient, user-friendly, and affordable
In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.
Read full review
OusaidAbaz - PeerSpot reviewer
Provides decent protection for the LAN but complicated interface
We had some licensing issues with its web filtering capabilities. That's why we migrated our web filtering to Cisco Umbrella. Moreover, the interface is complicated. It's difficult to locate all the necessary menus and functions. For example, one of the many issues is with SSH. Even now, we haven't successfully opened the port to connect using SSH mode when we want to change the configuration. It's like a black box—not very open to changes and customization. It's simply not easy to configure. There are other problems, too. For example regarding Forcepoint's Websense component. We had a lot of problems managing the web settings within Websense. That's why we migrated to Cisco Umbrella for cloud-based web filtering. It's not that Forcepoint is inherently bad. The issue is that it's not user-friendly. It is not easy to use. The developers need to redesign the interface (GUI) for better management. It is very difficult to manage. For example, simple actions require too many clicks compared to FortiGate or Palo Alto. That's the main problem.
Read full review
Zaid Farooqui - PeerSpot reviewer
Enhanced threat detection with integrated security features and good support
We are using application firewalling, WAF, and SD-WAN. The capabilities are mostly within the box. For example, you will get web application firewall WAF as part and parcel of this. SD-WAN is also bundled. It integrates with their SIEM and SOAR solutions very nicely. Lastly, the pricing point is very cost-efficient as well.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The technical support is great."
"The most valuable feature of Fortinet FortiGate is URL filtering."
"It is easy to use. We chose this product for the possibility to have virtual domains (VDOMs). We are building another company in the group, and we would like to split the firewalling rules and policies between these two companies. Each company would be able to manage its own policies and security rules, which is an advantage of Fortinet FortiGate. We can define VDOMs, and every company can manage its own VDOM as if it has its own physical firewall, but in fact, we would be using the same physical appliance because we are also using the same internet lines. So, it allows us to reuse the existing resources without the disadvantage of having to compromise on policies and security. Each company can choose its own way of working."
"The most valuable feature is the VDOM, which allows the customer to have multiple firewalls in a single campus."
"It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall. You don't need to pay some other company for another product to do that for you. The firewall can do that for you. So, it's an easy-to-use product for people to be independent. They don't need to rely on other vendors to do what the firewall can do. They can do everything."
"FortiGate has led to a reduction in our security budget."
"The features that I have found most valuable are that it is good to use, and most importantly, the pricing. The customer especially likes the discount when they trade up or something like that."
"The solution is scalable."
More Fortinet FortiGate pros
"The solution offers sandboxing, which can be integrated at any time."
"Next Generation Firewall's best feature is that it can be managed on one platform."
"Technical support has been quite helpful in the past."
"The most valuable features of Forcepoint Next Generation Firewall are the advanced threat protection, including features like IPS and DDoS prevention, which help avoid internal DDoS attacks."
"It is a scalable product. I know a customer who has deployed more than 4,000 firewalls in a single deployment."
"I like the Firewall and the IPS."
"It is stable and scalable. In addition, their support is great. When you ask them for something, they provide support, and if required, they also involve the R&D team to help you to resolve the issues in your configuration."
"The central security management center and the content management center are very good."
More Forcepoint Next Generation Firewall pros
"The price versus value is good because the solution is less expensive than Sophos, Fortinet, or SonicWall."
"Sangfor NGAF specializes in ransomware detection and helps to protect our network from ransomware threats and malware."
"While the features are not dissimilar to other brands, configuration is much more simple, which works out great for Indonesian people."
"You might try Sangfor if you are on a tight budget. The price is affordable, and Sangfor offers a lot of features. We don't have any complaints about Sangfor."
"In four steps one can configure the entire firewall."
"The level of support provided to local companies is good. They transform their application control and other settings according to that country."
"The absolute best part of Sangfor NGAF is their support. It's a 24/7 support channel, and the last time I requested their assistance I got a reply within three minutes. They helped solve the problem immediately."
"It is a stable solution."
More Sangfor NGAF pros
 

Cons

"The cloud features and integration could be improved."
"The biggest "gotcha" is that if the client purchases what they call the UTM shared bundle, which has unified threat management on both, it's not as easy to manage if you have more than one firewall."
"There are some cloud-based features that could be much more flexible than they currently are."
"Fortinet FortiGate needs to improve the logging and reporting. Additionally, the next-generation application's policies should be improved. When they were released they had bugs."
"I would like Fortinet to add more automation to FortiGate."
"The user interface could be improved."
"I could not configure sFlow from the FortiGate graphical user interface. I realized that the sFlow configuration is available only from the CLI, and discovered that sFlow is not supported on virtual interfaces, such as VDOM links, IPsec, or GRE."
"The renewal price and the availability could be improved."
More Fortinet FortiGate cons
"My team is looking for more throughput and better integration with our security framework."
"I would like to see more sizing in the next release, and the roadmap should be clear."
"The security features need to be improved."
"Forcepoint Next Generation Firewall could change its interface, allowing standard or direct connect modes to be configured."
"Its interface is complex when compared with a firewall like FortiGate. Forcepoint Next Generation Firewall needs a management console, whereas FortiGate doesn't need any console. When you have a few devices, a console is not really necessary. It's good to have a private console only when you have a lot of devices."
"Forcepoint is a little difficult to configure compared to its competitors."
"The solution needs to add an antivirus profile and anti-spyware profile, not just policies and VPN."
"The ability to dynamically change policies could be improved."
More Forcepoint Next Generation Firewall cons
"I feel Sangfor should follow the hierarchy and close deals via resellers instead of closing it all with their own team."
"The GUI needs to be improved, lacks logic in some areas."
"The tool is expensive."
"Sangfor has recently increased their prices."
"The web interface needs to be improved, making it more user-friendly."
"The setup phase is quite complex."
"They need to improve their research team and they need to study their data to analyze it and build the product."
"Scalability for any network device is not very easy in terms of vertical scalability."
More Sangfor NGAF cons
 

Pricing and Cost Advice

"The pricing is justified. It's a little pricey, but what you pay for is what you get."
"It is expensive. You need to pay for the subscription every year, which is very expensive. The subscription includes technical support and hardware exchange in case of failure."
"We find the most valuable aspect of this solution is the price. It is affordable, and cheaper than other firewalls."
"The price of Fortinet FortiGate is reasonable."
"We are on an annual license to use Fortinet FortiGate."
"For medium and enterprise organizations, FortiGate is more affordable."
"Fortigate's pricing is competitive."
"The price is highly competitive when compared to other brands that offer similar functionality."
More Fortinet FortiGate pricing and cost advice
"Forcepoint Next Generation Firewall is reasonable, it is priced the same as other firewalls."
"Forcepoint is very expensive but it's really secure."
"I believe the licensing fee is for one year, three years, and five years, or something like that. If you wants to increase the support level from a simpler level to platinum, I think that there's a cost. There are differences between every kind of support, but I don't know the numbers."
"Next Generation Firewall is moderately priced."
"The pricing of the solution is normally competitive with other products."
"We have found the price could be reduced. It is a little expensive."
"There is a need to make payments towards the licensing charges attached to the product. The product is not expensive."
"The solution is expensive."
More Forcepoint Next Generation Firewall pricing and cost advice
"The product is very cost-effective compared to other brands or vendors."
"The license of Sangfor NGAF can be purchased at different interval lengths, such as annually or three years. They offer a range of packages to choose from, such as combo or hybrid packages. We are using the complete solution package which includes IM, NGF and SSL VPN, and WAF."
"The price could be more competitive."
"The price falls in the mid-range, neither exceptionally low nor high."
"It is one of the cheapest tools in the market."
"In my opinion, the price of the tool is good in the Pakistani market. We can easily get discounts if needed."
"I rate the product price as one on a scale of one to ten, where one is low price and ten is high price."
"-"
More Sangfor NGAF pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
See recommendations
849,686 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
21%
Computer Software Company
14%
Comms Service Provider
7%
Manufacturing Company
6%
Computer Software Company
18%
Financial Services Firm
10%
Manufacturing Company
10%
Government
9%
Computer Software Company
13%
Manufacturing Company
10%
Financial Services Firm
9%
Educational Organization
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
See all answers
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
See all answers
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
See all answers
What do you like most about Forcepoint Next Generation Firewall?
The product's initial setup phase is easy.
See all answers
What is your experience regarding pricing and costs for Forcepoint Next Generation Firewall?
The licensing model is dependent on negotiation skills, but there is room for improvement. The costs can be high sinc...
See all answers
What needs improvement with Forcepoint Next Generation Firewall?
The licensing model should be more flexible. I recommend that additional features be included in a single license to ...
See all answers
What do you like most about Sangfor NGAF?
I think Sangfor NGAF is more valuable than Cisco products because of its simplicity and ease of management. If I comp...
See all answers
What is your experience regarding pricing and costs for Sangfor NGAF?
The licensing cost is quite high compared to other available firewalls in the market.
See all answers
What needs improvement with Sangfor NGAF?
The cost of licensing is very high compared to other firewalls available here. There should be improvements in hardwa...
See all answers
 

Comparisons

Sophos XG vs Fortinet FortiGate Logo
Sophos XG vs Fortinet FortiGate
Compared 22% of the time
Netgate pfSense vs Fortinet FortiGate Logo
Netgate pfSense vs Fortinet FortiGate
Compared 13% of the time
Cisco Secure Firewall vs Fortinet FortiGate Logo
Cisco Secure Firewall vs Fortinet FortiGate
Compared 11% of the time
WatchGuard Firebox vs Fortinet FortiGate Logo
WatchGuard Firebox vs Fortinet FortiGate
Compared 5% of the time
More Fortinet FortiGate Competitors
Palo Alto Networks Advanced Threat Prevention vs Forcepoint Next Generation Firewall Logo
Palo Alto Networks Advanced Threat Prevention vs Forcepoint Next Generation Firewall
Compared 22% of the time
Check Point NGFW vs Forcepoint Next Generation Firewall Logo
Check Point NGFW vs Forcepoint Next Generation Firewall
Compared 13% of the time
Sophos XG vs Forcepoint Next Generation Firewall Logo
Sophos XG vs Forcepoint Next Generation Firewall
Compared 7% of the time
OPNsense vs Forcepoint Next Generation Firewall Logo
OPNsense vs Forcepoint Next Generation Firewall
Compared 4% of the time
Arista NDR vs Forcepoint Next Generation Firewall Logo
Arista NDR vs Forcepoint Next Generation Firewall
Compared 4% of the time
More Forcepoint Next Generation Firewall Competitors
Sophos XG vs Sangfor NGAF Logo
Sophos XG vs Sangfor NGAF
Compared 16% of the time
Palo Alto Networks NG Firewalls vs Sangfor NGAF Logo
Palo Alto Networks NG Firewalls vs Sangfor NGAF
Compared 4% of the time
Sophos XGS vs Sangfor NGAF Logo
Sophos XGS vs Sangfor NGAF
Compared 4% of the time
Netgate pfSense vs Sangfor NGAF Logo
Netgate pfSense vs Sangfor NGAF
Compared 4% of the time
Check Point NGFW vs Sangfor NGAF Logo
Check Point NGFW vs Sangfor NGAF
Compared 3% of the time
More Sangfor NGAF Competitors
 

Product Reports

Buyer's Guide
Fortinet FortiGate
April 2025
Fortinet FortiGate reportDownload Fortinet FortiGate product report
Buyer's Guide
Forcepoint Next Generation Firewall
April 2025
Forcepoint Next Generation Firewall reportDownload Forcepoint Next Generation Firewall product report
Buyer's Guide
Sangfor NGAF
April 2025
Sangfor NGAF reportDownload Sangfor NGAF product report
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
Forcepoint NGFW, Stonesoft Next Generation Firewall, McAfee Network Security Platform, Intel Security Network Security Platform
Sangfor NGAF Firewall Platform
 

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

  • VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
  • Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
  • Advanced Firewall: Offers robust firewalling with application control and web filtering.
  • SD-WAN: Optimizes application performance and enhances bandwidth management.
  • SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

  • High-performance Security: Delivers effective threat mitigation with high availability.
  • Centralized Management: Simplifies network operations with cloud-based management tools.
  • Detailed Analytics: Provides comprehensive insights into network activity and security threats.
  • Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Forcepoint Next Generation Firewall is a versatile and comprehensive solution for perimeter security, offering features such as SD-WAN, IPS, VPN, and cloud or on-premises subscription keys. It is preferred by many clients over Cisco and is used for obligation redundancy, VPN access, and as the main point of security in infrastructure. 

The product is praised for its simplicity, flexibility, complete feature set, scalability, and central management capabilities. Other valuable features include IPS, firewall, sandbox, application control, filtering, security management center, connectivity, and integration capabilities.

Forcepoint

Sangfor Next Generation Firewall (also known as NGAF) is a converged security solution providing protection against advanced threat, malware, viruses, ransomware and web-based attacks using integrated security features like firewall, IPS, anti-virus, anti-malware, APT, URL filtering, Cloud Sandbox, and WAF. As the world's first AI-enabled and fully integrated Next Generation Firewall & Web Application Firewall (WAF), NGAF offering the security visibility, real-time detection and response, simplified operation and maintenance and high-performance application layer security needed to operate an enterprise network in total security. Tested and proven to provide cutting-edge network security by ICSA Labs and endorsed by Gartner Inc., NGAF harnesses the power of Sangfor’s Neural-X threat intelligence and analytics platform and Engine Zero’s innovative malware detection to provide next-generation protection for today’s enterprise.

Sangfor
 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
California Department of Corrections and Rehabilitation (CDCR)
The Ministry of Science, Technology, and Innovation (Indonesia), Lawson, Inc. (Philippines), Universiti Sultan Zainal Abidin (Indonesia), TEK Automotive (Italy), etc.
Buyer's Guide
Forcepoint Next Generation Firewall vs. Sangfor NGAF
April 2025
Free Report: Forcepoint Next Generation Firewall vs. Sangfor NGAF
Find out what your peers are saying about Forcepoint Next Generation Firewall vs. Sangfor NGAF and other solutions. Updated: April 2025.
DOWNLOAD NOW
849,686 professionals have used our research since 2012.
See our Forcepoint Next Generation Firewall vs. Sangfor NGAF report.
See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.