"Web filtering is a big improvement for us. The previous version we used, the AC520, did not have that feature included. It was not very easy for us, especially because the environment had to be isolated and we needed to get updates from outside, such as Windows patches. That feature has really helped us when we are going outside to pull those patches."
"We have not had to deal with stability issues."
"It has a good security level. It is a next-generation firewall. It can protect from different types of attacks. We have enabled IPS and IDS."
"Firepower has been used for quite a few enterprise clients. Most of our clients are Fortune 500 and Firepower is used to improve their end to end firewall functionality."
"Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch."
"I like the firewall features, Snort, and the Intrusion Prevention System (IPS)."
"Provides good integrations and reporting."
"The feature set is fine and is rarely a problem."
"Good performance, stability, and virtual domain ability."
"Overall, the pricing of the solution is very good. The product offers good value."
"The ease of setting the solution up is a valuable aspect for us."
"The application control features, such as Facebook blocking and Spotify blocking, are the most valuable."
"The web filtering facility and application control are the most valuable features from the point of view of our clients. The VPN feature is also quite popular amongst our clients. Two-factor authentication is one of the good features in Fortinet. These features are important for the current scenario of security. Security has become a necessity nowadays. With cyber-attacks becoming more common, protecting an organization's data is one of the major tasks. It is also very stable and scalable, and it is very straightforward to configure. Their technical support is also good."
"The main reason why I purchased the particular unit was that it had good reviews and what other people were saying as far as its completeness and its leading capabilities in terms of endpoint security was very good."
"SSL-VPN is very useful for us and has been very reliable."
"I think that the UTM features are the most value, as it truly protects my infrastructure."
"I have used technical support quite a bit, and they are really good."
"The EEE security controls allow us to make policy restrictions, so I can customize port numbers to allow or limit control."
"Performance is a strong point."
"Troubleshooting with the solution is quite easy. If you compare the process to, for example, Fortigate, Juniper is much easier."
"Technical support is good. They quickly respond, and they even have local help here. They can actually give you an answer very quickly."
"The most valuable feature is robustness."
"The GUI is simple to use."
"The user interface is good."
"The visibility for VPN is one big part. The policy administration could be improved in terms of customizations and flexibility for changing it to our needs."
"The initial setup can be a bit complex for those unfamiliar with the solution."
"I believe that the current feature set of the device is very good and the only thing that Cisco should work on is improving the user experience with the device."
"Web filtering needs improvement because sometimes the URL is miscategorized."
"Cisco Firepower NGFW Firewall can be more secure."
"Deploying configurations takes longer than it should."
"I would like it to have faster deployment times. A typical deployment could take two to three minutes. Sometimes, it depends on the situation. It is better than it was in the past, but it could always use improvement."
"One issue with Firepower Management Center is deployment time. It takes seven to 10 minutes and that's a long time for deployment. In that amount of time, management or someone else can ask me to change something or to provide permissions, but during that time, doing so is not possible. It's a drawback with Cisco. Other vendors, like Palo Alto or Fortinet do not have this deployment time issue."
"FortiGate support could do some improvements on their IPv6 configuration. Right now it's still in the very early stage for utilizing in an enterprise level network environment."
"The biggest "gotcha" is that if the client purchases what they call the UTM shared bundle, which has unified threat management on both, it's not as easy to manage if you have more than one firewall."
"The license renewal process, annual renewal price, and the web application firewall features should be improved."
"There are just some services that aren't available. For example, the Ethernet or point-to-point protocols. They could add these services to their product offering - especially services for ISPs."
"The performance and speed are aspects of the solution that could always be improved upon."
"In the next release, maybe the documentation on how to use this solution could be improved."
"The support system could be improved."
"There are some license issues. Not every feature must have a separate license. There must be some of kind synergy between the license so we don't have to pay for every individual license that we would like to have."
"Their models for service providers could improve."
"The configuration is difficult and it should be easier."
"The training videos that are available need to be improved, and made more educative."
"It could be more secure."
"We purchased three devices and all three have been replaced under RMA."
"There are a lot of features that customers do not know about and I think that better documentation would help when it comes to learning how to use the product."
"The setup process should be improved."
"The interface could be more user-friendly."
More Cisco Firepower NGFW Firewall Pricing and Cost Advice →
Fortinet FortiGate is ranked 1st in Firewalls with 98 reviews while Juniper SRX is ranked 14th in Firewalls with 35 reviews. Fortinet FortiGate is rated 8.4, while Juniper SRX is rated 7.8. The top reviewer of Fortinet FortiGate writes "Stable, easy to set up, and offers good ROI". On the other hand, the top reviewer of Juniper SRX writes "This best in class Next-Gen firewall is elegant in its ease-of-use and architecture". Fortinet FortiGate is most compared with Cisco ASA Firewall, pfSense, Check Point NGFW, Meraki MX and Palo Alto Networks NG Firewalls, whereas Juniper SRX is most compared with Cisco ASA Firewall, Palo Alto Networks WildFire, pfSense, Meraki MX and Palo Alto Networks VM-Series. See our Fortinet FortiGate vs. Juniper SRX report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
