"The Firepower+ISE+AMP for endpoint integration is something that really stands it out with other vendor solutions. They have something called pxGrid and i think it is already endorsed by IETF. This allows all devices on the network to communicate."
"Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch."
"The most valuable features of this solution are advanced malware protection, IPS, and IDS."
"I like the firewall features, Snort, and the Intrusion Prevention System (IPS)."
"Provides good integrations and reporting."
"Its Snort 3 IPS has better flexibility as far as being able to write rules. This gives me better granularity."
"We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government."
"The most valuable feature that Cisco Firepower NGFW provides for us is the Intrusion policy."
"The thing that I like the most is that they're very willing to work with us to resolve issues that they haven't taken care of before in their product."
"The best part about FortiGate-VM is its strong security."
"The most valuable feature is geofencing, where we can block all access from all non-domestic locations."
"Good for the servers and can stop network attacks, including spam."
"We are able to closely monitor the usages of individual users and see their usage habits and other items, including the data itself, which gives us quite a bit of visibility."
"It is a complete package, and it has complete offerings. It fit the needs, and our customer is happy with it."
"The VM it's very quick for deployment. If we need to have a POC for a customer, if we don't have any hardware physically at our premises, at our store, in our office, we can download the VM from Fortinet and install all the VM to their environment in order to run it. If we have a customer that says "let's start tomorrow" we are able to do that in a way that's not possible with a hardware version."
"In spite of the solution being inexpensive, it has everything one would need."
"Its portal is user-friendly. I am able to manage the user data and access control through this device."
"The most valuable feature is the IPSec forwarding."
"The solution is easy to integrate."
"The initial setup was straightforward."
"There are plenty of features available, such as Full Guard and WAN."
"Having a firewall solution with a data quota is very important when the bandwidth is limited, which really distinguishes it from other products."
"The performance has been good overall."
"We are using it as a security shield. It does not allow access before that in case we have restricted a few things from users, so it helps me in that."
"The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore."
"The configuration in Firepower Management Center is very slow. Deployment takes two to three minutes. You spend a lot of time on modifications. Whereas, in FortiGate, you press a button, and it takes one second."
"I would like it to have faster deployment times. A typical deployment could take two to three minutes. Sometimes, it depends on the situation. It is better than it was in the past, but it could always use improvement."
"The visibility for VPN is one big part. The policy administration could be improved in terms of customizations and flexibility for changing it to our needs."
"I believe that the current feature set of the device is very good and the only thing that Cisco should work on is improving the user experience with the device."
"Cisco makes horrible UIs, so the interface is something that should be improved."
"The solution could offer better control that would allow the ability to restrictions certain features from a website."
"Deploying configurations takes longer than it should."
"The one thing that could be improved is the integration with the exchange. The gateway level controls can be enhanced a bit more. For example, it's still little here and there. You do get malicious attacks and suspicious emails like spam. It's not like Sophos where we got a lot of spam email, and yet, it's still relatively vulnerable. It can be upgraded, maybe with a fifth-generation firmware that it is ready for unknown threats."
"The interface needs to be updated and simplified."
"The solution is fairly complex."
"It has a monitoring tool, but it could be improved."
"The interface of the solution could be improved."
"VM should be more optimized."
"One thing that can be better is added automation. And, on top of that, enhanced security when it comes to the automation itself."
"The costs could be lowered."
"The implementation policy needs improvment."
"The VPN is an area that can be improved."
"Sometimes, users are timed out intermittently."
"The VPN needs to be improved."
"It should have better VPN protection. Some of the VPN applications are not blocked by this firewall. Some VPNs are able to get through this firewall, which is why I am planning to replace this firewall with a good one in the near future."
"Cyberoam UTM needs to have more certifications with third-parties, such as NSS Labs."
"When it comes to web filtering and application filtering, it does not contain enough signatures to determine all of the sites that need to be blocked."
"While the security features are excellent, they could be improved."
Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.
FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.
Fortinet FortiGate-VM is ranked 12th in Firewalls with 67 reviews while Sophos Cyberoam UTM is ranked 5th in Unified Threat Management (UTM) with 23 reviews. Fortinet FortiGate-VM is rated 8.2, while Sophos Cyberoam UTM is rated 7.6. The top reviewer of Fortinet FortiGate-VM writes "Flexible with good cloud management and a straightforward user interface". On the other hand, the top reviewer of Sophos Cyberoam UTM writes "Useful data quota features, but scalability is an issue and the signature database could be enhanced". Fortinet FortiGate-VM is most compared with Azure Firewall, Fortinet FortiGate, Palo Alto Networks VM-Series, OPNsense and Sophos UTM, whereas Sophos Cyberoam UTM is most compared with Fortinet FortiGate, Sophos XG, Sophos UTM, Cisco ASA Firewall and OPNsense. See our Fortinet FortiGate-VM vs. Sophos Cyberoam UTM report.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.