We changed our name from IT Central Station: Here's why

Fortinet FortiGate vs Huawei NGFW comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about Fortinet FortiGate vs. Huawei NGFW and other solutions. Updated: January 2022.
564,997 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"It is one of the fastest solutions, if not the fastest, in the security technology space. This gives us peace of mind knowing that as soon as a new attack comes online that we will be protected in short order. From that perspective, no one really comes close now to Firepower, which is hugely valuable to us from an upcoming new attack prevention perspective.""It's got the capabilities of amassing a lot of throughput with remote access and VPNs.""We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government.""I have experience with URL filtering, and it is very good for URL filtering. You can filter URLs based on the categories, and it does a good job. It can also do deep packet inspection.""The Adversity Malware Protection (AMP) feature is the most valuable. It is also very easy to use. Every technical user can operate this solution without any difficulty. The dashboard of Cisco Firepower has every tool that a security operator needs. You can find every resource that you need to operate through this dashboard.""One of the nice things about Firepower is that you can set it to discover the environment. If that is happening, then Firepower is learning about every device, software operating system, and application running inside or across your environment. Then, you can leverage the discovery intelligence to get Firepower to select the most appropriate intrusion prevention rules to use for your environment rather than picking one of the base policies that might have 50,000 IPS rules in it, which can put a lot of overhead on your firewall. If you choose the recommendations, as long as you update them regularly, you might be able to get your rule set down to only 1,000 or 1,500, which is a significant reduction in a base rule set. This means that the firewall will give you better performance because there are less rules being checked unnecessarily. That is really useful.""Web filtering is a big improvement for us. The previous version we used, the AC520, did not have that feature included. It was not very easy for us, especially because the environment had to be isolated and we needed to get updates from outside, such as Windows patches. That feature has really helped us when we are going outside to pull those patches.""We have not had to deal with stability issues."

More Cisco Firepower NGFW Firewall Pros →

"The SD-WAN function is very developed. It has SD-WAN functionality with security features in one device. We can manage from one single console SD-WAN and the security policy.""The integration with Active Directory is one of the good features. Most of the customers are now looking for the Single Sign-on feature. So, being able to integrate Active Directory with the firewall is useful. It is also easy.""The simplicity of the product is great. It's very easy to use, which is a compliment we get all the time in terms of feedback.""The customization potential is quite impressive.""I only deal with it from a security analyst's point of view. I don't really get into the features of the actual FortiGate. From the security point of view, it works, and it does its job.""We use the FortiGate Sandbox to detect zero-day vulnerabilities, such as anomalies or malware, that are unknown and have not yet been discovered.""The application control features, such as Facebook blocking and Spotify blocking, are the most valuable.""I like that they have given me a solution at a fair price."

More Fortinet FortiGate Pros →

"We make use of the new data center, specifically the containerized data center which is built and reviewed by Huawei, including all the device's infrastructure.""The security is good. It's as effective as anything else on the market.""Huawei was able to assist us in the installation of their product. The installation was very fast.""The support for the solution has been excellent. If we ever had an issue they would send an engineer to help us with our problem.""I like that the initial setup is straighforward. It's also a scalable solution.""The user interface is very, very good.""The mapping features and traffic logging are good.""I had no difficulty using the Huawei NGFW."

More Huawei NGFW Pros →

Cons
"In a future release, it would be ideal if they could offer an open interface to other security products so that we could easily connect to our own open industry standard.""The central management tool is not comfortable to use. You need to have a specific skill set. This is an important improvement for management because I would like to log into Firepower, see the dashboard, and generate a real-time report, then I question my team.""Report generation is an area that should be improved.""My team tells me that other solutions such as Fortinet and Palo Alto are easier to implement.""Cisco Firepower NGFW Firewall can be more secure.""The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore.""On the VPN side, Firepower could be better. It needs more monitoring on VPNs. Right now, it's not that good. You can set up a VPN in Firepower, but you can't monitor it.""The visibility for VPN is one big part. The policy administration could be improved in terms of customizations and flexibility for changing it to our needs."

More Cisco Firepower NGFW Firewall Cons →

"It should provide better visibility over the network and more information in the form of reports for the end users. Its installation should also be easier.""The logs need to be better. They need to be more visible and easier to access.""The support is the main thing that needs to be improved.""The user interface could be improved.""I would like to see a more intuitive dashboard.""The command line is complicated, and the interface could be better.""There are some cloud-based features that could be much more flexible than they currently are.""Technical support could be better. You don't always get the level of help you need right away."

More Fortinet FortiGate Cons →

"The solution requires a more interactive dashboard. That would make it easier than playing with configurations the way we have to now.""The solution could be more secure and have better integration.""The solution doesn't seem to be very mature. Our networking team says they are experiencing a lot of issues in the firewalls and some routers.""The documentation needs to be improved. When they retire old models, they also retire the documentation. However, if you are still using an older model, you still need access to that documentation. And yet, they go ahead and removed it. It's gone. You are therefore stuck with a device with no documentation and technical support that isn't very helpful as they also remove support assistance as well.""Wi-Fi scanning and Wi-Fi analysis would be useful features to include in the future.""I would like to see an antivirus solution included with the product.""With the Huawei firewall, none of the features comes at the top. We found out later that customer support is really not good. For this firewall, because of our customers' routine, for example, every six months they'll do a penetration test to find weaknesses. So whenever they came up with VAPT reports, they are looking to Huawei for help. I think that's basically because it's a different culture. Chinese culture and our culture is different. They have always tried to help find some excuses or say some other things that cannot help you solve the problem immediately.""The solution is scalable but it is difficult because you need to purchase new systems, it is not just one click."

More Huawei NGFW Cons →

Pricing and Cost Advice
  • "Cisco pricing is premium. However, they gave us a 50 to 60 percent discount."
  • "There are additional implementation and validation costs."
  • "Cisco, as we all know, is expensive, but for the money you are paying, you know that you are also getting top-notch documentation as well as support if needed."
  • "This product requires licenses for advanced features including Snort, IPS, and malware detection."
  • "This product is expensive."
  • "For me, personally, as an individual, Cisco Firepower NGFW Firewall is expensive."
  • "The price of Firepower is not bad compared to other products."
  • "The solution was chosen because of its price compared to other similar solutions."
  • More Cisco Firepower NGFW Firewall Pricing and Cost Advice →

  • "Fortinet is the least expensive solution."
  • "It's very affordable."
  • "Setup cost may be not so low, as you expect, because it depends on different factors, but TCO for 5 years may pleasantly surprise you."
  • "The Indian market is different than the European and American markets. When you compare they need to be a bit more aggressive on pricing."
  • "I think that the pricing is fair."
  • "For our organization, the licensing costs are approximately $7,000 per year."
  • "It's an expensive solution."
  • "The price is okay."
  • More Fortinet FortiGate Pricing and Cost Advice →

  • "Licensing fees are billed on an annual basis."
  • "The price of the license of this solution is high."
  • "When you compare the price with other products, it's quite cost-effective. But the problem is always after, let's say, two years or three years later because they are not able to provide updates or patches very quickly."
  • "I believe that we are entitled to a one-year extension on our licensing."
  • More Huawei NGFW Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    564,997 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: 
    When you compare these firewalls you can identify them with different features, advantages, practices and… more »
    Top Answer: 
    The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
    Top Answer: 
    It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Top Answer: 
    As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Top Answer: 
    In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it… more »
    Top Answer: 
    I have experience on both from Disti and channel experience. Please find below my comments (nothing new as such)… more »
    Top Answer: 
    We make use of the new data center, specifically the containerized data center which is built and reviewed by Huawei… more »
    Top Answer: 
    I believe that we are entitled to a one-year extension on our licensing.
    Top Answer: 
    The solution could be more secure and have better integration. The bandwidth management utilization could stand… more »
    Comparisons
    Also Known As
    Cisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWv
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Huawei USG Firewalls, USG9500 Series, USG6600 Series, USG6300 Series
    Learn More
    Overview

    Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
    small/branch offices to high performance data centers and service providers. Available in a wide
    range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
    defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
    Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
    features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
    volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
    for increased performance, high availability configurations, and more.
    Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
    deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
    the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
    can deliver micro-segmentation to protect east-west network traffic.
    Cisco firewalls provide consistent security policies, enforcement, and protection across all your
    environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
    delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
    SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
    greater simplicity, visibility, and efficiency.
    Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

    The FortiGate family of NG firewalls provides proven protection with unmatched performance across the network, from internal segments, to data centers, to cloud environments. FortiGates are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.

    In addition to all the functions of conventional firewalls, Huawei NGFW also provides more advanced security functions, such as IPS and anti-malware functions, to identify applications and prevent application-layer threats. Huawei NGFW provides a global context awareness architecture for granular controls based on application, content, time, user, attack, and location (ACTUAL). The innovative SmartPolicy technology and management interfaces that can be easily integrated simplify the O&M management. The Intelligence Awareness Engine (IAE) uses an integrated architecture to perfectly balance security and performance. Huawei NGFW provides next-generation security featuring comprehensive protection, granular control, and OM simplicity to meet the requirements of enterprise networks on access control, scope of protection, usability, and performance in the new ICT landscape.

    Offer
    Learn more about Cisco Firepower NGFW Firewall
    Learn more about Fortinet FortiGate
    Learn more about Huawei NGFW
    Sample Customers
    Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield
    Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here
    KMITL, Peking University
    Top Industries
    REVIEWERS
    Comms Service Provider22%
    Financial Services Firm16%
    Manufacturing Company8%
    Non Profit8%
    VISITORS READING REVIEWS
    Comms Service Provider33%
    Computer Software Company21%
    Government7%
    Manufacturing Company4%
    REVIEWERS
    Comms Service Provider14%
    Computer Software Company10%
    Financial Services Firm9%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Comms Service Provider37%
    Computer Software Company20%
    Government5%
    Educational Organization4%
    VISITORS READING REVIEWS
    Comms Service Provider40%
    Computer Software Company20%
    Financial Services Firm6%
    Cloud Provider5%
    Company Size
    REVIEWERS
    Small Business43%
    Midsize Enterprise28%
    Large Enterprise29%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise13%
    Large Enterprise65%
    REVIEWERS
    Small Business47%
    Midsize Enterprise25%
    Large Enterprise28%
    VISITORS READING REVIEWS
    Small Business35%
    Midsize Enterprise25%
    Large Enterprise40%
    REVIEWERS
    Small Business50%
    Midsize Enterprise13%
    Large Enterprise38%
    Find out what your peers are saying about Fortinet FortiGate vs. Huawei NGFW and other solutions. Updated: January 2022.
    564,997 professionals have used our research since 2012.

    Fortinet FortiGate is ranked 1st in Firewalls with 101 reviews while Huawei NGFW is ranked 25th in Firewalls with 8 reviews. Fortinet FortiGate is rated 8.4, while Huawei NGFW is rated 7.2. The top reviewer of Fortinet FortiGate writes "Stable, easy to set up, and offers good ROI". On the other hand, the top reviewer of Huawei NGFW writes "Good interface and easy to set up but needs more documentation". Fortinet FortiGate is most compared with Cisco ASA Firewall, pfSense, Check Point NGFW, Meraki MX and SonicWall TZ, whereas Huawei NGFW is most compared with Cisco ASA Firewall, Palo Alto Networks NG Firewalls, Palo Alto Networks VM-Series, Check Point NGFW and Sophos UTM. See our Fortinet FortiGate vs. Huawei NGFW report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.