Fortinet FortiGate-VM vs Palo Alto Networks NG Firewalls comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary
Updated on Jul 11, 2023

We performed a comparison between Fortinet FortiGate-VM and Palo Alto Networks NG Firewalls based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

Features: Fortinet FortiGate-VM is highly regarded for its robust security features, including geofencing, firewalling, IPS, antivirus, and a user-friendly interface. Palo Alto Networks NG Firewalls excel in embedded machine learning, real-time attack prevention, and the ability to accurately identify applications.

Fortinet FortiGate-VM needs enhancements in key activation, log management, cloud management, MFA offerings, web filter options, application inspection, GUI features, bandwidth issues, VPN connectivity, pricing, performance, and documentation. Palo Alto Networks NG Firewalls require improvements in SD-WAN customization, best practices, machine learning capabilities, troubleshooting tools,next-generation capabilities, rule creation, monitoring interface, bug fixing, configuration support, IoT security, traffic shaping, machine learning for virus prevention, security functions, usability, training programs, SSL inspection, external dynamic list feature, internet filtering, API integration, and bug fixing.

Service and Support: Some customers have praised the support team of Fortinet FortiGate-VM for their quick response times and knowledge. However, other customers have mentioned slow response times and difficulties in finding information quickly. Customer service for Palo Alto Networks NG Firewalls has received mixed reviews. Some customers have praised the knowledgeable support team and timely issue resolution. However, others have mentioned difficulties in reaching the support team and issues with the support ticketing system.

Ease of Deployment: The setup process for Fortinet FortiGate-VM is generally straightforward and easy, while Palo Alto Networks NG Firewalls is not complex and easy. Prior knowledge can simplify Fortinet's setup, whereas Palo Alto may require proper planning.

Pricing: Fortinet offers flexible pricing options with no extra expenses, while Palo Alto is considered pricier. Nevertheless, Palo Alto is known for its reliability and high performance as a firewall solution.

ROI: Fortinet FortiGate-VM offers enhanced stability and heightened security. Palo Alto Networks NG Firewalls provide greater visibility, reporting capabilities, and streamlined management.

Comparison Results: Fortinet FortiGate-VM is the preferred solution as it is highly recommended due to its easy setup, robust security features, cost-effectiveness, and satisfactory ROI. Users find it user-friendly, easy to deploy, and with an intuitive interface.

To learn more, read our detailed Fortinet FortiGate-VM vs. Palo Alto Networks NG Firewalls Report (Updated: March 2024).
765,386 professionals have used our research since 2012.
Q&A Highlights
Question: Features comparison between Palo Alto and Fortinet firewalls
Answer: Hi PaloAlto is better when working on app control feature and special virtual wire links. Execpt that specific point, Fortinet is above. Best Regards, Damien
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The Intrusion Prevention System and the web filtering are both working well.""​Easy to implement, and it is also reliable.​""FortiGate firewalls are user-friendly, and I like the security profiling features.""It has improved our organization with control data.""Fortinet FortiGate appears to be scalable.""Good performance, stability, and virtual domain ability.""Valuable features include the Web Application Firewall, and it even has DLP (data leak prevention).""The solution is stable."

More Fortinet FortiGate Pros →

"The most valuable features are the IPS and Antivirus.""The solution integrates well with other Fortinet products.""The ease of access and user-friendly setup is a valuable feature. Fortinet proves to be particularly straightforward to configure, offering simplicity without complexity. Moreover, visibility is easily attainable due to certain factors. Price, implementation, and budget considerations play a role. When it comes to Cisco implementation, the process tends to be more intricate, which many customers find unfavourable for their business needs.""The most valuable features we have found to be the VPN, ease of use, and overall simplicity.""The user interface is the most valuable aspect of the solution.""We like FortiGate-VM's IPS features and its ability to create multiple virtual firewalls.""It's a very simple solution to manage.""This product is affordable and it's a good, high-performance appliance."

More Fortinet FortiGate-VM Pros →

"I found Palo Alto NG firewalls more intuitive compared to other products. I value the capability to identify a cloud solution.""Mechanically, all firewalls work in a similar fashion, but what makes Palo Alto different is that it also has some of the threat hunt capabilities. It is a little bit better than other vendors.""I like to install Palo Alto mainly on the data center side to have visibility into all VLANs. That gives full visibility into the core.""All the features are valuable, but my main one is the straightforward and well-designed GUI. I'm over 50 and have been in this business since the internet started. I'm not a GUI guy; I prefer using the command line. The product's GUI is excellent, and so is the threat intelligence. It's also straightforward to configure and flexible. The solution even has good networking, such as VLAN and subinterfaces, which is great because, in my experience, if the firewall is good, then the router usually isn't and vice-versa, but Palo Alto has both.""In my opinion, Palo Alto has consistently been one of the best firewalls for enterprise security.""Operationally, it is easier, and the manageability and their security features are good.""The solution allows us to set parameters on where our users can go. We can block certain sites or ads if we want to.""I like that it has high security."

More Palo Alto Networks NG Firewalls Pros →

Cons
"​It needs to improve its ISP load balancing.​""Palo Alto has a feature called WildFire Analysis that is unavailable in FortiGate. WildFire is better than a sandbox because it can address zero-day threats and vulnerabilities. It can immediately identify zero-day threats from the cloud.""Pricing for it is a bit high. It could be cheaper.""Fortinet FortiGate should improve the VPN tokens.""I would like to see more advanced developments of a wireless controller in the future.""The cloud features can be improved.""It does not have key authentication for admin access.""There are mainly two areas of improvement in Fortinet FortiGate— the licensing cost and the timing of upgrading licenses for boxes."

More Fortinet FortiGate Cons →

"The costs could be lowered.""The product is satisfactory. I haven't identified any features to improve, and based on the number of deployments I've handled with FortiGate-VM, there haven't been any complaints from the customer's side.""The graphical user interface should be enhanced.""I have worked on some of the largest and smallest solutions that Fortinet sells and they all scale really well.""Support could be improved a little.""If I could add one feature, it would be free security profiles.""The log settings and filters could use some improvement.""The management tools should be more user-friendly."

More Fortinet FortiGate-VM Cons →

"The SD-WAN product is fairly new. They could probably improve that in terms of customizing it and making the configuration a little bit easier.""Sometimes some of the applications the customer has do not respond as they normally should.""I am in GCC in the Middle East. The support that we are getting from Palo Alto is disastrous. The problem is that the support ticket is opened through the distributor channel. Before opening a ticket, we already do a lot of troubleshooting, and when we open a ticket, it goes to a distributor channel. They end up wasting our time again doing what we have already done. They execute the same things and waste time. The distributor channel's engineer tries to troubleshoot, and after spending hours, they forward the ticket to Palo Alto. It is a very time-consuming process. The distributor channels also do not operate 24/7, and they are very lazy in responding to the calls.""The initial configuration is complicated to set up.""Palo Alto Networks NG Firewalls work slowly for vulnerability management. Its performance could be faster.""Technical support is an area that could be improved.""Support should be improved, wait times can be long.""I would like to see more integration."

More Palo Alto Networks NG Firewalls Cons →

Pricing and Cost Advice
  • "Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."
  • "These boxes are not that expensive compared to what they can do, their functionality, and the reporting you receive. Fortinet licensing is straightforward and less confusing compared to Cisco."
  • "Go for long term pricing negotiated at the time of purchase."
  • "Work through partners for the best pricing."
  • "The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."
  • "Easy to understand licensing requirements."
  • "​We saved a bundle by not needing all the past appliances from an NGFW.​"
  • "The cost is too high... They have to focus on more features with less cost for the customer. If you see the market, where it's going, there are a lot of players offering more features for less cost."
  • More Fortinet FortiGate Pricing and Cost Advice →

  • "The pricing and licensing are not as expensive as its competitors."
  • "It is an expensive solution if you are migrating from an open source solution."
  • "If you are in a licensed solution, like Cisco or Palo Alto, it is cheaper. I do recommend using it with a license, because it is a security solution and it needs updates.​"
  • "​The basic pricing in Austria is OK, but asking for special offers, e.g., NPOs, NGOs, trade up, and/or trade in, is always useful.​"
  • "​It is on par with what you receive. It can be expensive upfront."
  • "It would be nice to have the ability to extend FortiGuard subscriptions at a reasonable yearly cost versus a bulk three year pricing.​"
  • "The price is expensive compared with other vendors, like Cisco and Huawei."
  • "The best part of Fortinet is the license is bundled together, so it is easy to use and apply."
  • More Fortinet FortiGate-VM Pricing and Cost Advice →

  • "Annually, the licensing costs are too much."
  • "Pricing is yearly, but it depends. You could pay on a yearly basis, or every three years. If you want to add a device or two, there would be an additional cost. Also, if you want to do an assessment, or other similar add-on, you have to pay accordingly for the additional service."
  • "It will be worth your time to hire a contractor to set it up and configure it for you, especially if you are not very knowledgeable with PA firewalls."
  • "Don't buy a device with more power than you really need, because licensing depends on the cost of the box you have."
  • "The licensing is annual, and there aren't any additional fees on top of that."
  • "The price of this product should be reduced."
  • "The pricing is competitive in the market."
  • "This is an expensive product, which is why some of our customers don't adopt it."
  • More Palo Alto Networks NG Firewalls Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    765,386 professionals have used our research since 2012.
    Answers from the Community
    Donny Lee
    ABHILASH TH - PeerSpot reviewerABHILASH TH
    Reseller

    Hi,


    Both FT and PA have compelling features for large Enterprises. I would like to add a few good points about Fortinetwhich might be helpful ( from my 13 years of engagement with them as Distributor and Partner)


    Fortinet: 


    Have higher throughput; which comes with competitive rates


    Wide range of models to select to meet your requirement, without spending heavliy


    Outstanding customer support and very active customer care team


    Easly available skilled resources from the channel for deployment and post-implementation support 


    Regards


    Abhilash



    Alexander Denisenko - PeerSpot reviewerAlexander Denisenko
    User

    Hello. The question is what you are going to have as a result of application

    Questions from the Community
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Top Answer:In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it… more »
    Top Answer:Both of these solutions are excellent options that provide flexible scalability and solid security Fortinet Fortigate… more »
    Top Answer:It’s easy to integrate the solution with our network infrastructure.
    Top Answer:Azure Firewall Vs. Palo Alto Network NG Firewalls Both solutions provide stellar stability and security. Azure… more »
    Top Answer:Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat… more »
    Top Answer:The configuration is quite simple to understand.
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    FortiGate Virtual Appliance, FortiGate-VM
    Palo Alto NGFW, Palo Alto Networks Next-Generation Firewall
    Learn More
    Overview

    Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

    FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.

    Palo Alto Networks NG Firewalls are next-generation firewalls used for security to protect networks from threats and attacks. It is used for perimeter security, data center protection, and managing secure access to environments. Users highlight the NGFW's effectiveness in providing comprehensive security without impacting network performance. Users appreciate its ease of use, particularly in setup and ongoing management, making it a favored choice for businesses looking to secure their cloud environments.

    The firewall provides application control, malware protection, scalability, stability, user-friendly interface, threat hunt capabilities, application visibility and awareness, URL filtering, traffic monitoring, machine learning for attack prevention, a unified platform for all security capabilities, DNS security, VPN, and embedded machine learning. Palo Alto Networks NG Firewalls is easy to manage, reliable, and balances security and network performance well. It also provides complete visibility through logs and alerting.

    Palo Alto Networks NG Firewalls Features

    Palo Alto Networks NG Firewalls has many valuable key features. Some of the most useful ones include:

    • Secure Application Enablement (App-ID, User-ID, Content-ID)
    • Malware Detection and Prevention (threat prevention service, buffer overflows and port scans, anti-malware capabilities, command-and-control protection, and WildFire)
    • DNS Security (URL filtering, predict and block malicious domains, signature-based protection, extensible cloud-based architecture)
    • Panorama Security Management (including graphical views and analytics, manage rules and dynamic updates, customizable application command center (ACC), log collection mode, physical or virtual appliance)
    • Threat Intelligence (high-fidelity threat intelligence, priority alerts, automatic extraction and sharing of prevention indicators, native integration with Palo Alto Networks products)

    Palo Alto Networks NG Firewalls Benefits

    There are several benefits to implementing Palo Alto Networks NG Firewalls. Some of the biggest advantages the solution offers include:

    • Dedicated management interface for managing and initial configuration of the device
    • Regular threat signatures and updates
    • Import addresses and URL objects from the external server
    • Configure and manage with REST API integration
    • Great throughput and connection speed is fair even in high traffic load
    • Deep visibility into the network activity through Application and Command Control
    • Easy to manage and very user friendly

    Reviews from Real Users

    Below are some reviews and helpful feedback written by Palo Alto Networks NG Firewalls users.

    A Solutions Architect at a communications service provider says, “The product stability and level of security are second to none in the industry. We value the security of our client's infrastructure so these features are valuable to us. An example of a very valuable feature behind Palo Alto is the application-aware identifiers that help the firewall know what its users are trying to do. It can block specific activities instead of just blocking categories. For example, you can block an application, or all unknown applications.”

    PeerSpot user Gerry H., CyberSecurity Network Engineer at a university, mentions that the solution has a “Nice user interface, good support, is stable, and has extensive logging capabilities.” He also adds, “Wildfire has been a very good feature. This solution provides a unified platform that natively integrates all security capabilities, which is 100% important to us. This is a great feature.”

    Eric S., Network Analyst at a recreational facilities/services company, states, "With its single pane of glass, it makes monitoring and troubleshooting a bit more homogeneous. We are not looking at multiple platforms and monitoring management tools. It is more efficient from that perspective. It is more of a common monitoring and control system for multiple aspects of what used to be different systems. It provides efficiency and time savings."

    Sample Customers
    1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
    Security7 Networks, COOPENAE
    SkiStar AB, Ada County, Global IT Services PSF, Southern Cross Hospitals, Verge Health, University of Portsmouth, Austrian Airlines, The Heinz Endowments
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company15%
    Comms Service Provider8%
    Manufacturing Company6%
    REVIEWERS
    Computer Software Company16%
    Comms Service Provider14%
    Manufacturing Company11%
    Financial Services Firm9%
    VISITORS READING REVIEWS
    Computer Software Company22%
    Comms Service Provider10%
    Financial Services Firm7%
    Manufacturing Company6%
    REVIEWERS
    Comms Service Provider15%
    Financial Services Firm14%
    Computer Software Company13%
    Educational Organization9%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm9%
    Manufacturing Company7%
    Government7%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise32%
    Large Enterprise41%
    REVIEWERS
    Small Business54%
    Midsize Enterprise19%
    Large Enterprise27%
    VISITORS READING REVIEWS
    Small Business31%
    Midsize Enterprise19%
    Large Enterprise51%
    REVIEWERS
    Small Business35%
    Midsize Enterprise27%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business24%
    Midsize Enterprise17%
    Large Enterprise58%
    Buyer's Guide
    Fortinet FortiGate-VM vs. Palo Alto Networks NG Firewalls
    March 2024
    Find out what your peers are saying about Fortinet FortiGate-VM vs. Palo Alto Networks NG Firewalls and other solutions. Updated: March 2024.
    765,386 professionals have used our research since 2012.

    Fortinet FortiGate-VM is ranked 8th in Firewalls with 113 reviews while Palo Alto Networks NG Firewalls is ranked 6th in Firewalls with 161 reviews. Fortinet FortiGate-VM is rated 8.4, while Palo Alto Networks NG Firewalls is rated 8.6. The top reviewer of Fortinet FortiGate-VM writes "It's a solidly stable device with minimal downtime". On the other hand, the top reviewer of Palo Alto Networks NG Firewalls writes "We get reports back from WildFire on a minute-by-minute basis". Fortinet FortiGate-VM is most compared with Azure Firewall, Palo Alto Networks VM-Series, Fortinet FortiOS, OPNsense and Netgate pfSense, whereas Palo Alto Networks NG Firewalls is most compared with Check Point NGFW, Azure Firewall, Meraki MX, Sophos XG and Netgate pfSense. See our Fortinet FortiGate-VM vs. Palo Alto Networks NG Firewalls report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.