Fortinet FortiGate-VM vs Palo Alto Networks NG Firewalls comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary
Updated on Jul 11, 2023

We performed a comparison between Fortinet FortiGate-VM and Palo Alto Networks NG Firewalls based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

Features: Fortinet FortiGate-VM is highly regarded for its robust security features, including geofencing, firewalling, IPS, antivirus, and a user-friendly interface. Palo Alto Networks NG Firewalls excel in embedded machine learning, real-time attack prevention, and the ability to accurately identify applications.

Fortinet FortiGate-VM needs enhancements in key activation, log management, cloud management, MFA offerings, web filter options, application inspection, GUI features, bandwidth issues, VPN connectivity, pricing, performance, and documentation. Palo Alto Networks NG Firewalls require improvements in SD-WAN customization, best practices, machine learning capabilities, troubleshooting tools,next-generation capabilities, rule creation, monitoring interface, bug fixing, configuration support, IoT security, traffic shaping, machine learning for virus prevention, security functions, usability, training programs, SSL inspection, external dynamic list feature, internet filtering, API integration, and bug fixing.

Service and Support: Some customers have praised the support team of Fortinet FortiGate-VM for their quick response times and knowledge. However, other customers have mentioned slow response times and difficulties in finding information quickly. Customer service for Palo Alto Networks NG Firewalls has received mixed reviews. Some customers have praised the knowledgeable support team and timely issue resolution. However, others have mentioned difficulties in reaching the support team and issues with the support ticketing system.

Ease of Deployment: The setup process for Fortinet FortiGate-VM is generally straightforward and easy, while Palo Alto Networks NG Firewalls is not complex and easy. Prior knowledge can simplify Fortinet's setup, whereas Palo Alto may require proper planning.

Pricing: Fortinet offers flexible pricing options with no extra expenses, while Palo Alto is considered pricier. Nevertheless, Palo Alto is known for its reliability and high performance as a firewall solution.

ROI: Fortinet FortiGate-VM offers enhanced stability and heightened security. Palo Alto Networks NG Firewalls provide greater visibility, reporting capabilities, and streamlined management.

Comparison Results: Fortinet FortiGate-VM is the preferred solution as it is highly recommended due to its easy setup, robust security features, cost-effectiveness, and satisfactory ROI. Users find it user-friendly, easy to deploy, and with an intuitive interface.

To learn more, read our detailed Fortinet FortiGate-VM vs. Palo Alto Networks NG Firewalls Report (Updated: November 2023).
745,341 professionals have used our research since 2012.
Q&A Highlights
Question: Features comparison between Palo Alto and Fortinet firewalls
Answer: Hi PaloAlto is better when working on app control feature and special virtual wire links. Execpt that specific point, Fortinet is above. Best Regards, Damien
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The UTM feature is quite good. FortiAP is easy to deploy because both Fortigate and FortiAP are under the same brand. Otherwise, you need to do more work on the configuration.""Fortinet FortiGate's most valuable features are ease of use, flexibility, and most of the configuration we can be done using the GUI. When we compare Fortinet FortiGate with other solutions the firewall policy are very easy to understand.""The most valuable feature of Fortinet FortiGate is the simple configuration.""The most valuable features of Fortinet FortiGate are the ease of use and there are several operating systems that can include the hardware capacities. In the newer releases, the resources were more useful because they were included in the operating system.""I'm pretty happy with its reliability. It is also very scalable.""The scalability is good in Fortinet FortiGate.""It is easy to manage, and it doesn't need much knowledge from the team. It is a stable device, and there are many features that are included out of the box.""I have found Fortinet FortiGate to be scalable."

More Fortinet FortiGate Pros →

"FortiGate-VM's firewall is excellent.""It is highly scalable because it has a mesh architecture that allows consistent policies.""The most valuable features are the SD-WAN and the web filtering applications control.""The most valuable features of Fortinet FortiGate-VM are the servers, analyzer, and track protection.""I've found the UTM features and the SD-WAN to be most valuable.""FortiGate integrates well.""The reporting is good.""The solution is stable."

More Fortinet FortiGate-VM Pros →

"The user ID, Wildfire, UI, and management configuration are all great features.""I'm using most of its features such as antivirus, anti-spam, and WAF. I'm also using its DNS Security and DNS sinkhole features, as well as the URL filtering and application security features.""It is critical that Palo Alto Networks NG Firewalls embeds machine learning in the core of the firewall to provide inline, real-time attack prevention. In my environments, we have an integration with a third-party vendor. As soon as there is new information about new threats and the destination that they are trying to reach on any of our network devices, that traffic will be stopped.""The most valuable feature of the solution is the network protection.""Palo Alto Networks NG Firewalls saves us time.""The DNS sync code in your filtering is the most valuable feature of the Palo Alto Networks NG Firewalls.""A feature introduced by Palo Alto with the version 10-OS is embedded machine learning in the core of the firewall to provide inline, real-time attack prevention. Machine learning analyzes the network traffic and detects if there is any usual traffic coming from outside to inside. Because of Palo Alto, organizations detect around 91% of malicious attacks using machine learning. The machine learning helps customers by implementing firewalls in critical and air gap areas so there is no need to integrate with the cloud sandbox.""There are many valuable features, such as wireless cloud features."

More Palo Alto Networks NG Firewalls Pros →

Cons
"Fortigate's hardware capacities could be improved.""Lacks sufficient security options.""Currently, without the additional reporting module, we only have access to basic reporting.""It would be ideal if they had some sort of GUI interface for troubleshooting and diagnostics.""Fortinet FortiGate is a firewall solution and once it's deployed, you can rest assured that your system is secure.""Pricing for it is a bit high. It could be cheaper.""The solution lacks sufficient filtering.""There can be more security in hybrid implementations. When a customer has a hybrid environment where some parts are in the cloud, we need a consistent security solution for such scenarios."

More Fortinet FortiGate Cons →

"Right now, we have two data centers that are a thousand kilometers apart. It would be nice to be able to string them together.""Technical support could be better.""It would be better if it could provide you with options before completely blocking anything through the web filter. If you are doing a deep SSL inspection on the site if it says it's expired, it doesn't give you the option to continue at your own risk. I can't say that it's bad, but SSL internally isn't really a requirement. However, its security features can help. Right now, we have people going out and spending on purchasing the SSL certificates for internal sites.""Fortinet support needs improvement. The response times are lackluster. Fortunately, the product is stable and we seldom have issues. Also, it takes months for them to deliver hardware when we order it.""Now they do have the ability to pop up a command line, which is nice, however, the fact that you can't do everything within the GUI is probably a problem.""Areas for improvement would be application control and web filtering.""The users must buy FortiSIEM to get advanced analytics.""The operating system isn't stable, so it goes to memory counters every night."

More Fortinet FortiGate-VM Cons →

"I would like them to bring in some features that would encourage traffic shaping or bandwidth routing, like other UTM firewalls, because the solution should be capable of limiting the bandwidth for rules.""The stability, scalability for enterprise-level organizations, and technical documentation have room for improvement.""The customer-facing side needs to be improved in terms of the engagement and involvement of support staff.""I would like to see some Machine Learning because I have observed new types of attacks that are able to bypass existing security rules.""The support could be improved. Palo Alto does not have a support team located in Bangladesh, and their support team operates from another location. Therefore, when we raise a ticket, it takes some time for them to respond, which can be problematic for us.""The analysis of the ITS ID by Palo Alto Networks NG Firewalls could be improved.""We would like to see improvement in the web interface for this solution, so that it can handle updates without manual intervention to put the data in order.""Palo Alto keeps coming out with antivirus and malware updates. When we have to integrate those updates we face some problems with the cloud platform, not the on-prem setup. The device works fine, but sometimes the sync doesn't happen on time."

More Palo Alto Networks NG Firewalls Cons →

Pricing and Cost Advice
  • "I had to pay for the license for the firewall, but it is guaranteed to have updates. I expect a good service for it. It was about €1000 for a year, and there was no additional cost."
  • "It is more expensive than Sophos. Fortinet is overall more expensive than Sophos. The small range of Fortinet, such as 60F and 80F, is more expensive than the small range of Sophos. Sophos is cheaper. In addition, if you jump from 80F Series to 100F Series, the price doubles."
  • "The license is yearly. We pay for the top end. It's called 360."
  • "Here in Brazil, we're going through difficult economic times and the tax on the dollar is high. All the solutions from minor competitors are growing in the market. The prices have come more competitive."
  • "Licensing for Fortinet FortiGate is on a yearly basis. Pricing for it is a bit high. It could be cheaper."
  • "The licensing scheme of Fortinet is better than Cisco. It is more logical."
  • "The solution requires a license annually, it is not a user license, you can have as many users as your want. I must renew the license regularly per device."
  • "It was probably about $2,500 per firewall. It was all included. It included support, services, threat management software, and 24/7 FortiCare on it. Cisco products are more expensive."
  • More Fortinet FortiGate Pricing and Cost Advice →

  • "The solution could be better priced."
  • "The license we pay is a yearly fee. I can't say it's very expensive; it is a good price and is highly suitable for our usage."
  • "We have been waiting a long time for the vendor to give us licenses, it has been five months and we are still waiting. However, the price is reasonable."
  • "The price of the solution could be less expensive. There are some features that have to be purchased separately that have their own license."
  • "It is more expensive than its competitor, e.g. Sophos."
  • "Installation does not require another license making it an inexpensive solution."
  • "I would rate the product's pricing as four out of five."
  • "The price of the solution is competitive. Fortinet FortiGate-VM had a lot of advantages when it came to pricing. However, the competition has also geared up to a larger extent and it has become comparable now to the other solutions."
  • More Fortinet FortiGate-VM Pricing and Cost Advice →

  • "Palo Alto is like Mercedes-Benz. It is quite expensive, but the price is definitely justified."
  • "If you compare Palo Alto with other firewalls, it's a bit expensive."
  • "The pricing for Palo Alto is very high. The price difference with other vendors is huge because Palo Alto has been the market leader for the last five or six years, and they have a reliable product."
  • "The price could be better. Pricing is very different compared to WatchGuard, which costs around 60 lakhs, and FortiGate, which costs approximately 40 lakhs. Palo Alto Networks costs about a crore which is very high pricing. We bought this firewall, and our organization did not want to pay so much. We spent around one crore rupees which is not within our budget at all, and we are unhappy with them."
  • "Palo Alto is one of the most expensive firewalls in the world. Everyone knows that. But you need at least one layer from Palo Alto to protect your environment because it is the strongest company in the security field."
  • "If the cost is your main priority, Palo Alto would be a bit high. However, if you are ready to hear about return of investment, then I would convince you to go for Palo Alto."
  • "The Palo Alto solution is actually not expensive. It was comparable to the old firewall manufacturers that we were using. From the benefits that we have gotten out of the Palo Alto products, it is well worth the difference in cost, even though the difference in cost is not much at all."
  • "It could be less expensive."
  • More Palo Alto Networks NG Firewalls Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    745,341 professionals have used our research since 2012.
    Answers from the Community
    Donny Lee
    ABHILASH TH - PeerSpot reviewerABHILASH TH
    Reseller

    Hi,


    Both FT and PA have compelling features for large Enterprises. I would like to add a few good points about Fortinetwhich might be helpful ( from my 13 years of engagement with them as Distributor and Partner)


    Fortinet: 


    Have higher throughput; which comes with competitive rates


    Wide range of models to select to meet your requirement, without spending heavliy


    Outstanding customer support and very active customer care team


    Easly available skilled resources from the channel for deployment and post-implementation support 


    Regards


    Abhilash



    Alexander Denisenko - PeerSpot reviewerAlexander Denisenko
    User

    Hello. The question is what you are going to have as a result of application

    Questions from the Community
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Top Answer:In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it… more »
    Top Answer:Both of these solutions are excellent options that provide flexible scalability and solid security Fortinet Fortigate… more »
    Top Answer:The ease of access and user-friendly setup is a valuable feature. Fortinet proves to be particularly straightforward to… more »
    Top Answer:Azure Firewall Vs. Palo Alto Network NG Firewalls Both solutions provide stellar stability and security. Azure… more »
    Top Answer:Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat… more »
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    FortiGate Virtual Appliance, FortiGate-VM
    Palo Alto NGFW, Palo Alto Networks Next-Generation Firewall
    Learn More
    Overview

    Fortinet FortiGate is an innovative line of firewalls that aim to protect organizations from all types of web-based network threats. They come in a wide variety of product types. Fortinet FortiGate’s solutions are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.

    Fortinet FortiGate provides users with next-generation firewall solutions that provide proven protection with unmatched performance across the network, from internal segments to data centers to cloud environments. You can protect every part of your network without exception. Additionally, your protections can be managed from a single central location. This ensures that the task of protecting your network is infinitely easier to accomplish.

    Benefits of Fortinet FortiGate

    Some of the benefits of using Fortinet FortiGate include:

    • The ability to manage your firewalls from a centralized automated control console. Fortinet FortiGate’s FortiManager enables administrators to exercise control of their firewalls in a streamlined manner. Administrators have full visibility and control over their system from a single location. It utilizes automation that collects information in real time, which greatly simplifies and reduces the cost of running various types of workflows. Administrators can free up resources by automating the most basic tasks.
    • The ability to produce uniform, appropriate, and coordinated responses to threats across networks. Fortinet FortiGate’s FortiGuard feature generates system protections in near real time. This allows administrators to address threats to the system with custom-made solutions that can be uniformly enforced.
    • The ability to scale up your security to fit your changing security needs. Fortinet FortiGate’s design allows users to accelerate the transfer of data between users and escalate the number of users that are covered without compromising security of performance. This means that users can grow their networks and continue to collaborate without worrying about the system slowing down or coming under attack.

    Reviews from Real Users

    Fortinet FortiGate’s firewall solutions are cutting edge. They stand out from competitors for a number of reasons. Two major ones are the robustness and power of their firewalls. Fortinet FortiGate’s firewall provides users with many valuable features that allow them to maximize what they can do with the solution. These firewalls enable users to use a single piece of software to accomplish tasks that often require the use of multiple pieces of software.

    PeerSpot user Eric S., a Solutions Engineer and Consultant at a tech-services company, notes the robustness of this solution when he writes, "One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises. You can actually do both. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. They're pretty reliable and consistent. One of the reasons why I started using the product was their single pane of management. I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface.”

    PeerSpot user Jim M., a network admin at Penobscot Valley Hospital, notes the power of Fortinet FortiGate’s security software when he writes, "It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall.”

    FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.

    Palo Alto Networks NG Firewalls are next-generation firewalls used for security to protect networks from threats and attacks. It is used for perimeter security, data center protection, and managing secure access to environments. Users highlight the NGFW's effectiveness in providing comprehensive security without impacting network performance. Users appreciate its ease of use, particularly in setup and ongoing management, making it a favored choice for businesses looking to secure their cloud environments.

    The firewall provides application control, malware protection, scalability, stability, user-friendly interface, threat hunt capabilities, application visibility and awareness, URL filtering, traffic monitoring, machine learning for attack prevention, a unified platform for all security capabilities, DNS security, VPN, and embedded machine learning. Palo Alto Networks NG Firewalls is easy to manage, reliable, and balances security and network performance well. It also provides complete visibility through logs and alerting.

    Palo Alto Networks NG Firewalls Features

    Palo Alto Networks NG Firewalls has many valuable key features. Some of the most useful ones include:

    • Secure Application Enablement (App-ID, User-ID, Content-ID)
    • Malware Detection and Prevention (threat prevention service, buffer overflows and port scans, anti-malware capabilities, command-and-control protection, and WildFire)
    • DNS Security (URL filtering, predict and block malicious domains, signature-based protection, extensible cloud-based architecture)
    • Panorama Security Management (including graphical views and analytics, manage rules and dynamic updates, customizable application command center (ACC), log collection mode, physical or virtual appliance)
    • Threat Intelligence (high-fidelity threat intelligence, priority alerts, automatic extraction and sharing of prevention indicators, native integration with Palo Alto Networks products)

    Palo Alto Networks NG Firewalls Benefits

    There are several benefits to implementing Palo Alto Networks NG Firewalls. Some of the biggest advantages the solution offers include:

    • Dedicated management interface for managing and initial configuration of the device
    • Regular threat signatures and updates
    • Import addresses and URL objects from the external server
    • Configure and manage with REST API integration
    • Great throughput and connection speed is fair even in high traffic load
    • Deep visibility into the network activity through Application and Command Control
    • Easy to manage and very user friendly

    Reviews from Real Users

    Below are some reviews and helpful feedback written by Palo Alto Networks NG Firewalls users.

    A Solutions Architect at a communications service provider says, “The product stability and level of security are second to none in the industry. We value the security of our client's infrastructure so these features are valuable to us. An example of a very valuable feature behind Palo Alto is the application-aware identifiers that help the firewall know what its users are trying to do. It can block specific activities instead of just blocking categories. For example, you can block an application, or all unknown applications.”

    PeerSpot user Gerry H., CyberSecurity Network Engineer at a university, mentions that the solution has a “Nice user interface, good support, is stable, and has extensive logging capabilities.” He also adds, “Wildfire has been a very good feature. This solution provides a unified platform that natively integrates all security capabilities, which is 100% important to us. This is a great feature.”

    Eric S., Network Analyst at a recreational facilities/services company, states, "With its single pane of glass, it makes monitoring and troubleshooting a bit more homogeneous. We are not looking at multiple platforms and monitoring management tools. It is more efficient from that perspective. It is more of a common monitoring and control system for multiple aspects of what used to be different systems. It provides efficiency and time savings."

    Offer
    Learn more about Fortinet FortiGate
    Learn more about Fortinet FortiGate-VM
    Learn more about Palo Alto Networks NG Firewalls
    Sample Customers
    Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here
    Security7 Networks, COOPENAE
    SkiStar AB, Ada County, Global IT Services PSF, Southern Cross Hospitals, Verge Health, University of Portsmouth, Austrian Airlines, The Heinz Endowments
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization21%
    Computer Software Company15%
    Comms Service Provider8%
    Manufacturing Company5%
    REVIEWERS
    Comms Service Provider16%
    Manufacturing Company11%
    Computer Software Company9%
    Financial Services Firm9%
    VISITORS READING REVIEWS
    Computer Software Company22%
    Comms Service Provider9%
    Financial Services Firm7%
    Government6%
    REVIEWERS
    Comms Service Provider15%
    Computer Software Company13%
    Financial Services Firm13%
    Educational Organization9%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm8%
    Manufacturing Company7%
    Government7%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise32%
    Large Enterprise41%
    REVIEWERS
    Small Business53%
    Midsize Enterprise23%
    Large Enterprise24%
    VISITORS READING REVIEWS
    Small Business31%
    Midsize Enterprise17%
    Large Enterprise52%
    REVIEWERS
    Small Business33%
    Midsize Enterprise28%
    Large Enterprise39%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise17%
    Large Enterprise58%
    Buyer's Guide
    Fortinet FortiGate-VM vs. Palo Alto Networks NG Firewalls
    November 2023
    Find out what your peers are saying about Fortinet FortiGate-VM vs. Palo Alto Networks NG Firewalls and other solutions. Updated: November 2023.
    745,341 professionals have used our research since 2012.

    Fortinet FortiGate-VM is ranked 8th in Firewalls with 30 reviews while Palo Alto Networks NG Firewalls is ranked 6th in Firewalls with 76 reviews. Fortinet FortiGate-VM is rated 8.8, while Palo Alto Networks NG Firewalls is rated 8.8. The top reviewer of Fortinet FortiGate-VM writes "Flexible with good cloud management and a straightforward user interface". On the other hand, the top reviewer of Palo Alto Networks NG Firewalls writes "Provides zero trust implementation, more visibility, and eliminated security holes". Fortinet FortiGate-VM is most compared with Azure Firewall, Palo Alto Networks VM-Series, OPNsense, Fortinet FortiOS and Netgate pfSense, whereas Palo Alto Networks NG Firewalls is most compared with Azure Firewall, Check Point NGFW, Meraki MX, Sophos XG and Netgate pfSense. See our Fortinet FortiGate-VM vs. Palo Alto Networks NG Firewalls report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.