Forcepoint Next Generation Firewall vs Trellix Intrusion Prevention System comparison

The compared Forcepoint and Trellix solutions aren't in the same category. Forcepoint is ranked #31 in Firewalls , with an average rating of 7.0, and holds a 0.5% mindshare in the category. Trellix is ranked #10 in ID , with an average rating of 8.5, and holds a 2.7% mindshare. Additionally, 78% of Forcepoint users are willing to recommend the solution, compared to 94% of Trellix users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Forcepoint Next Generation Firewall and Trellix Intrusion Prevention System based on real PeerSpot user reviews.

Find out what your peers are saying about Fortinet, Netgate, OPNsense and others in Firewalls.

To learn more, read our detailed Firewalls Report (Updated: September 2025).

Buyer's Guide

Firewalls

September 2025

Download the complete report

Helped 872,019 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

Firewalls Market Share Distribution
Product	Market Share (%)
Forcepoint Next Generation Firewall	0.5%
Fortinet FortiGate	20.4%
OPNsense	11.0%
Other	68.1%

Firewalls

Intrusion Detection and Prevention Software (IDPS) Market Share Distribution
Product	Market Share (%)
Trellix Intrusion Prevention System	2.7%
Fortinet FortiGate	16.6%
Darktrace	13.8%
Other	66.9%

Intrusion Detection and Prevention Software (IDPS)

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Read full review

OusaidAbaz

Security Network Architect at Inmac

Provides decent protection for the LAN but complicated interface

We had some licensing issues with its web filtering capabilities. That's why we migrated our web filtering to Cisco Umbrella. Moreover, the interface is complicated. It's difficult to locate all the necessary menus and functions. For example, one of the many issues is with SSH. Even now, we haven't successfully opened the port to connect using SSH mode when we want to change the configuration. It's like a black box—not very open to changes and customization. It's simply not easy to configure. There are other problems, too. For example regarding Forcepoint's Websense component. We had a lot of problems managing the web settings within Websense. That's why we migrated to Cisco Umbrella for cloud-based web filtering. It's not that Forcepoint is inherently bad. The issue is that it's not user-friendly. It is not easy to use. The developers need to redesign the interface (GUI) for better management. It is very difficult to manage. For example, simple actions require too many clicks compared to FortiGate or Palo Alto. That's the main problem.

Read full review

Daniel_Martins

Head of Management Security Services at NetSafe Corp

Decade of experience empowers seamless problem resolution and support

I haven't seen threat intelligence and machine learning for predictive threat analysis in the Trellix Intrusion Prevention System yet. For Trellix IPS, AI improvements are an area where it can improve. It's a significant feature. Regarding the Trellix Intrusion Prevention System's flexibility for catering to our organization's specific infrastructure requirements, we have only on-premises and virtual appliances, but it's acceptable. The access and platform could potentially integrate with SaaS. Similar to when you put the EPO in mode integration with SaaS, you can connect with a local credential and with an X Console credential. Another possibility would be to connect with an integration login with the X Console. We have this with EPO on-premise, but with IPS, we don't have it.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The response is very quick and they can visually resolve our problems in a short period."

"Virtual Domains (VDOMs) are a feature that we found valuable."

"A strong point of FortiGate is the graphical interface is complete and easy to use."

"Fortinet has a very good solution for Secure SD-WAN. One very good feature is that they have robust and simple FortiOS through which they provide all solutions. That's their strength. There's not much complexity involved with the Secure SD-WAN solution of Fortinet as compared to Cisco's solution, which has a lot of flexibility but complexity also comes with that flexibility."

"The solution is user-friendly and easy to operate."

"Fortinet FortiGate SWG's content is its most valuable feature."

"Security management tool that's easy to integrate and easy to work with. No issues found with its stability and scalability."

"FortiGate's web and URL filtering are unlike any other firewall I've used. The functionality of URL filtering in those solutions is problematic because everything is encrypted, and firewalls can't break that encryption protocol. Fortinet has an SSL proxy, so the encryption is done before the packet ever leaves the FortiGate. The URL filter is definitely one of the most helpful features."

More Fortinet FortiGate pros

"We find the product to be stable and reliable in terms of performance."

"The blocking, based on the signal provided, is the solution's most valuable aspect."

"The central security management center and the content management center are very good."

"We're trying to use all the firewall's features. Most of the features were effective, but the usability is a huge concern."

"The most valuable feature is SD-WAN."

"The most valuable feature is the console management."

"I have found that Forcepoint Next Generation Firewall is easy to use, highly secure, and the main VPN tunnel is created automatically which is a benefit."

"I found the initial setup process to be very simple and straightforward."

More Forcepoint Next Generation Firewall pros

"The most valuable features in Trellix for me are the automated signature updates. It is a great and convenient feature."

"McAfee NSP is much more stable than Cisco."

"The solution can scale."

"The threat intelligence updates are very accurate."

"Overall the solution is very good. It offers great protection and gives us a good overview of what is on the network."

"The ability to centrally manage all the IPS sensors, track the different security events generated by it, and customize the different policies, depending on their location."

"The most valuable features of the solution stem from the fact that it is a good product for dealing with DDoS attacks and for the inspection of network traffic."

"The product is worth the investment."

More Trellix Intrusion Prevention System pros

Cons

"Fortinet technical support is lacking, as OEM support is slightly better."

"Fortinet FortiGate SWG's SSL offloading features need improvement."

"I use the FortiGate 60D model and realized the 300Mbps bandwidth limitation. Because it is a product that offers many services, I think it could have greater bandwidth capacity."

"I could not configure sFlow from the FortiGate graphical user interface. I realized that the sFlow configuration is available only from the CLI, and discovered that sFlow is not supported on virtual interfaces, such as VDOM links, IPsec, or GRE."

"Fortinet FortiGate could be improved in terms of user friendliness at the policy level and assigning URL based and keyword based features."

"Like any hardware, it has finite scalability restrictions."

"They have recently acquired a CNAP solution which should be integrated into FortiGate boxes natively for protection at any application layer. Since Fortinet FortiGate has Layer 7 protection, they should integrate that as soon as they can for threat detection and network detection."

"One issue is that they have retired SSL VPN for existing devices. This causes significant effort for us to change customer setups."

More Fortinet FortiGate cons

"The endpoint protection capabilities of the product are an area of concern where improvements are required."

"They should have a GUI on the product itself, not a separate management tool to be used on the management server or on a server to be used to manage the file. It should be all in one device. The device should be controlled through its own GUI. They also have to improve the learning center and the documents as the documents don't really help."

"We feel the product's technical support could be better, as this relates to the solution itself, to the installation of the product, and to having a proper understanding of the case."

"The solution needs to add an antivirus profile and anti-spyware profile, not just policies and VPN."

"Forcepoint would be improved if there were more training available."

"They need to work on stability, it has not been the best in our experience."

"While they offer a comprehensive bundled solution, some users may prefer on-premise deployments for certain features, such as URL filtering."

"Configuration is not easy because it has an old-fashioned interface. The configuration interface is highly complex, and it's been the same for years. They have to change the interface."

More Forcepoint Next Generation Firewall cons

"There are limited resources for configuration guidance."

"The technical support must be improved."

"The area of concern where the tool needs improvement is how the product prompts users at a network level that helps prevent any wireless network attacks through alerts and notifications."

"The platform’s GUI could be the latest."

"The pricing could be improved."

"Integration with Global Thereat Intelligence could be better. Also, I think management solutions are end of life now at McAfee. Network threat analyzer may be used for endpoint quarantines. Integration between these sides, as well as endpoint APO, will help you quarantine the risky endpoints."

"We would like to have a simpler version. Some settings and functions on the McAfee console are complex and complicated. I want the management console to be simpler."

"Some of the documentation is not as straightforward as it could be."

More Trellix Intrusion Prevention System cons

Pricing and Cost Advice

"I give the pricing of the solution a six out of ten."

"Fortinet bundles FortiGate with other products and because of this, the price is a little expensive to some SMB enterprises."

"As far as I'm aware, in our case, it's just a yearly pricing arrangement with no additional licensing costs."

"The price range is quite acceptable and normal."

"I would rate pricing to be about four or five out of ten, it is reasonable."

"The solution could be better priced."

"Go for long term pricing negotiated at the time of purchase."

"It's an expensive solution"

More Fortinet FortiGate pricing and cost advice

"Next Generation Firewall is moderately priced."

"Everything in Forcepoint comes with an individual license, which is kind of a problem. In our last meeting, they said that it may change at the beginning of 2021, and they will try to merge some licenses together. Customers will get more features than what they got previously. We will wait and see."

"I believe the licensing fee is for one year, three years, and five years, or something like that. If you wants to increase the support level from a simpler level to platinum, I think that there's a cost. There are differences between every kind of support, but I don't know the numbers."

"It requires a yearly subscription."

"The solution is expensive."

"There is a license required to use this solution and we can purchase it for one, two, three, or five years."

"The big advantage of this solution is that we can select the right model for our requirements, which is not too expensive."

"The pricing of the solution is normally competitive with other products."

More Forcepoint Next Generation Firewall pricing and cost advice

"The tool is competitively priced."

"I rate the product’s pricing an eight out of ten."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

872,019 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Computer Software Company

14%

Manufacturing Company

10%

Government

Financial Services Firm

Manufacturing Company

14%

Financial Services Firm

Computer Software Company

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	350
Midsize Enterprise	130
Large Enterprise	187

By reviewers
Company Size	Count
Small Business	27
Midsize Enterprise	8
Large Enterprise	10

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	7
Large Enterprise	5

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

What do you like most about Forcepoint Next Generation Firewall?

The product's initial setup phase is easy.

See all answers

What is your experience regarding pricing and costs for Forcepoint Next Generation Firewall?

The licensing model is dependent on negotiation skills, but there is room for improvement. The costs can be high sinc...

See all answers

What needs improvement with Forcepoint Next Generation Firewall?

At this moment, nothing specific comes to mind regarding improvements for Forcepoint Next Generation Firewall. The ma...

See all answers

What do you like most about McAfee Network Security Platform?

The threat intelligence updates are very accurate.

See all answers

What is your experience regarding pricing and costs for McAfee Network Security Platform?

The tool is competitively priced. I rate the pricing a six out of ten.

See all answers

What needs improvement with McAfee Network Security Platform?

Trellix Intrusion Prevention System does not provide virtual patching. Patching involves updates on the OS side to ad...

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 18% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 11% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 8% of the time

OPNsense vs Fortinet FortiGate

Compared 4% of the time

Cisco Meraki MX vs Fortinet FortiGate

Compared 4% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks Advanced Threat Prevention vs Forcepoint Next Generation Firewall

Compared 19% of the time

Check Point Quantum Force (NGFW) vs Forcepoint Next Generation Firewall

Compared 11% of the time

Rapid7 InsightIDR vs Forcepoint Next Generation Firewall

Compared 6% of the time

Sophos XG vs Forcepoint Next Generation Firewall

Compared 5% of the time

Cisco Secure Firewall vs Forcepoint Next Generation Firewall

Compared 4% of the time

More Forcepoint Next Generation Firewall Competitors

Trend Micro TippingPoint Threat Protection System vs Trellix Intrusion Prevention System

Compared 33% of the time

Palo Alto Networks Advanced Threat Prevention vs Trellix Intrusion Prevention System

Compared 19% of the time

Cisco Secure IPS (NGIPS) vs Trellix Intrusion Prevention System

Compared 17% of the time

Vectra AI vs Trellix Intrusion Prevention System

Compared 8% of the time

Check Point IPS vs Trellix Intrusion Prevention System

Compared 7% of the time

More Trellix Intrusion Prevention System Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

October 2025

Download Fortinet FortiGate product report

Buyer's Guide

Forcepoint Next Generation Firewall

October 2025

Forcepoint Next Generation Firewall report

Download Forcepoint Next Generation Firewall product report

Buyer's Guide

Trellix Intrusion Prevention System

October 2025

Trellix Intrusion Prevention System report

Download Trellix Intrusion Prevention System product report

Also Known As

No data available

Forcepoint NGFW, Stonesoft Next Generation Firewall, McAfee Network Security Platform, Intel Security Network Security Platform

McAfee Network Security Platform, McAfee NSP, IntruShield Network Intrusion Prevention System, IntruShield Network IPS

Overview

Fortinet FortiGate excels in providing integrated VPN, firewalling, and Unified Threat Management (UTM) with centralized management and high availability. It supports remote access and comprehensive threat protection, making it a preferred choice for securing networks.

Fortinet FortiGate offers a robust security platform with features such as strong intrusion prevention, application control, and web filtering. Its integration with Active Directory and SD-WAN functionality provides scalable solutions for large networks. Users appreciate its ease of use through centralized management interfaces, ensuring robust security with flexible configurations. However, FortiGate could enhance its graphical interface and technical support responsiveness, address firmware bugs and costly licensing, improve logging, integrate better with third-party tools, and strengthen scalability and memory for log storage. Complexity in configuration and the need for intuitive features are noted challenges, and there's a demand for advanced security, zero-trust capabilities, and AI integration.

What are the key features of Fortinet FortiGate?

VPN: Secure remote access and connectivity.
Firewalling: Protects networks from unauthorized access and attacks.
UTM: Offers a comprehensive approach to threat management.
SD-WAN: Optimizes traffic routing for efficient network performance.
Web Filtering: Controls and monitors web access and ensures Internet security.

What benefits or ROI should be considered?

Centralized Management: Simplifies administration and monitoring.
High Availability: Ensures consistent security and network availability.
Scalability: Adapts to the needs of growing networks.
Comprehensive Threat Protection: Provides robust security measures.
Ease of Use: Minimizes the complexity of security management.

Fortinet FortiGate is widely implemented across industries like education, finance, and government. Companies use it for firewall protection, VPN, and SD-WAN capabilities, ensuring secure perimeter and data center security. It facilitates remote access management and traffic routing optimization, offering reliable security and connectivity solutions.

Fortinet

Forcepoint Next Generation Firewall is a versatile and comprehensive solution for perimeter security, offering features such as SD-WAN, IPS, VPN, and cloud or on-premises subscription keys. It is preferred by many clients over Cisco and is used for obligation redundancy, VPN access, and as the main point of security in infrastructure.

The product is praised for its simplicity, flexibility, complete feature set, scalability, and central management capabilities. Other valuable features include IPS, firewall, sandbox, application control, filtering, security management center, connectivity, and integration capabilities.

Forcepoint

Block More Intrusions
Stop new and unknown attacks with signature-based and signature-less intrusion prevention systems. Signature-less intrusion detection finds malicious network traffic and stops attacks where no signatures exist.

Unify Virtual and Physical Security
Support network virtualization across private and public cloud platforms to scale security and evolve with changing IT dynamics.

Maximize Security and Performance
Scale hardware performance to speeds up to 100 Gbps and leverage data from multiple products.

Trellix

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

California Department of Corrections and Rehabilitation (CDCR)

Desjardins Group, HollyFrontier, Nubia, Agbar, WNS Global Services, INAIL, Universidad de Las Américas Puebla (UDLAP), Cook County, China Pacific Insurance, Bank Central Asia, California Department of Corrections and Rehabilitation, City of Chicago, Macquarie Telecom, Sutherland Global Services, Texas Tech University Health Sciences Center, United Automotive Electronic Systems

Find out what your peers are saying about Fortinet, Netgate, OPNsense and others in Firewalls. Updated: September 2025.

DOWNLOAD NOW

872,019 professionals have used our research since 2012.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.