Fortinet FortiGate vs Juniper SRX comparison

Cancel
You must select at least 2 products to compare!
Cisco Logo
98,383 views|65,159 comparisons
Fortinet Logo
164,508 views|128,317 comparisons
Juniper Logo
21,063 views|15,451 comparisons
Comparison Buyer's Guide
Executive Summary
Updated on Mar 16, 2022

We performed a comparison between Fortinet Fortigate and Juniper SRX based on our users’ reviews in four categories. After reading all of the collected data, you can find our conclusion below.

  • Ease of Deployment: For the most part, users of Fortinet Fortigate feel that deploying it is relatively easy and straightforward. One reviewer noted that Fortinet Fortigate is so easy to set up that it could be deployed in just a couple of clicks. Juniper SRX is viewed similarly. However, one reviewer feels that Fortinet Fortigate is much easier for new users to deploy than Juniper SRX.
  • Features: Fortinet Fortigate users find it to be reliable and point out that it has many valuable features, including its ability to be deployed either on the cloud or on-premises and its user interface. However, reviewers say that its monitoring and reporting features have room for improvement.

    Users of Juniper SRX note that it is a highly scalable solution. Furthermore, they note that Juniper’s firewall features are highly valuable. However, some users feel that its UI could be improved upon.
  • Pricing: Users of Fortinet Fortigate feel that it is pretty affordable. Reviewers of Juniper SRX feel that it is an expensive solution to use.
  • Service and Support: Users of both solutions note that, for the most part, they are supported by excellent technological support teams.

Comparison of Results: Based on the parameters we compared, Fortinet Fortigate seems to be a superior solution. All other things being more or less equal, our reviewers felt that Juniper SRX’s user interface as well as its pricing could be improved.

To learn more, read our detailed Fortinet FortiGate vs. Juniper SRX Report (Updated: January 2023).
670,400 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"I have access to the web version of Cisco Talos to see the reputation of IP addresses. I find this very helpful. It provides important information for my company to obtain the reputation of IP addresses. The information in Talos is quite complete.""The most important feature is the intensive way you can troubleshoot Cisco Firepower Firewalls. You can go to the bit level to see why traffic is not handled in the correct way, and the majority of the time it's a networking issue and not a firewall issue. You can solve any problem without Cisco TAC help, because you can go very deeply under the hood to find out how traffic is flowing and whether it is not flowing as expected. That is something I have never seen with other brands.""So far, it has been very stable.""We found the initial setup to be easy.""The main thing that I love the most is its policy and objects. Whenever I try to give access to a user, I can create an object via group creation in the object fields. This way, I am not able to enter a user in the policy repeatedly.""The solution offers very easy configurations.""With the pandemic, people began working from home. That was a pretty big move, having all our users working from a home. More capacity needed to be added to our remote VPN. ASA did this very well.""The features that are most valuable within the firewall are the IPS as well as the Unified Communications. We also really like the dynamic grouping."

More Cisco Secure Firewall Pros →

"The most valuable features of Fortinet FortiGate are the APIs. They are the most widely known.""The solution is very user-friendly.""The scalability of Fortinet FortiGate is good.""Initial setup is easy to configure.""I have found Fortinet FortiGate to be scalable.""It is simple to manage, and there are a lot of functionalities in the same box.""I like Fortinet's cloud management. It allows me to manage all my devices in different branches for three cloud accounts. Even though I use on-prem devices, I can manage everything on the cloud.""The performance is good."

More Fortinet FortiGate Pros →

"It is very fast and very easy to maintain. Another nice part of it is that you can easily extract the logs and move them over to a security operations center.""It's easily scalable.""The Juniper SRX series is easy to use.""It is a complete security bundle. The cloud-based Sky Advanced Threat Prevention feature is very valuable. I am 100% satisfied with the performance of the Juniper firewall. It has a very good throughput. It works very fine. We use our firewall as a site-to-site VPN or Software-Defined Wide Area Network (SD-WAN). In both cases, it has a very good and optimum performance. Their service support is very good in India. I get really good support from the Juniper team.""The command line in Juniper SRX is extremely powerful, in my opinion. It's one of the best command lines I've used in networking products.""I like that Juniper SRX is easy to use, scalable, and stable with good performance.""The solution is stable, inexpensive, and works well for medium size companies.""I like the Junos OS, which has been very good for me. It's very clever."

More Juniper SRX Pros →

Cons
"It would be great if some of the load times were faster.""They should work on making it a little more intuitive for users and not quite as complex. Still, it's a good product.""The only improvement that we could make is maybe [regarding] the roadmap, to have better visibility as to what we are targeting ahead in the next few quarters.""Third-party integrations could be improved.""I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. So, I would like to see a lot of improvements here.""We're getting support but there's a big delay until we get a response from their technical team. They're in the USA and we're in Africa, so that's the difficulty. When they're in the office, they respond.""I would like to see them add more next-generation features so that you don't need a lot of appliances to do just one task. It should be a single solution.""Sometimes, it is not easy to troubleshoot. You need to know where to go. It took me quite awhile. It's like, "Okay, if it doesn't go smoothly here, then go find the documentation." Once you do it, it is not so bad. However, it is sometimes a steep learning curve on the troubleshooting part of it."

More Cisco Secure Firewall Cons →

"The solution is very expensive.""Currently, FortiGate is providing SSL VPN. But they're missing some features that are available in Palo Alto's SSL VPN.""The firmware needs improvement because there are bugs when a new release comes through. Sometimes, the configuration changes, and it's a bit harder to see where the fail is. The first time that you have the firmware, it tends to have some issues, and it's better to wait a bit to update the equipment.""They have to just improve its performance when we enable all UTM features. When you enable all the features, the performance of FortiGate, as well as of Sophos and SonicWall, goes down.""I would like reporting to be improved and should offer a lot more tools to monitor the products.""The support from Fortinet FortiGate could improve. They are not easily accessible when we need them. They could improve their response time.""FortiGate should have a better way of detecting and managing the system memory because otherwise if the memory is too low, a system restart is required.""I don't really have anything negative to say as far as Fortinet firewalls are concerned. If anything, they can support a user a little bit better. They can stop being so time-sensitive about how much time the support call has taken, and they can help you do it yourself."

More Fortinet FortiGate Cons →

"Juniper SRX could improve by adding an IPX feature.""The solution's configurations and syntax are specific and more complicated than other platforms.""The user interface is something that Juniper needs to improve.""I would like to have a better web UI for administration. Juniper could simplify the web UI and make it more compatible with mobile devices.""The reporting is lacking.""I've noticed that the management interface could use some updates and upgrades.""The interface could be more user-friendly.""I think Juniper SRX should have a GUI. Some of the competitors are already implementing GUI for the firewall."

More Juniper SRX Cons →

Pricing and Cost Advice
  • "The price is comparable."
  • "We sell Cisco ASA Firewall as a bundle — the price is very cheap. If a customer were to go for renewal direct from Cisco, then the price would be quite high."
  • "It definitely competes with the other vendors in the market."
  • "The price for Firepower is more expensive than FortiGate. The licensing is very complex. We usually ask for help from Solutel because of its complexity. I have a Cisco account where I can download the VPN client, then connect. Instead, I create an issue with Solutel, then Solutel solves the case."
  • "I know that licensing for some of the advanced solutions, like Intrusion Prevention and Secure Malware Analytics, are nominal costs."
  • "It is affordable. The hardware is not that expensive anymore. It is a matter of licensing these days."
  • "Cisco is not for a small mom-and-pop shop because of the cost, but if you're in a regulated industry where a breach could cost you a million dollars, it's a bargain."
  • "I like the Smart Licensing, because it is more dynamic and easier to keep track of where you are at. If we have a high availability firewall pair and they are deployed in active/standby rather than active/active, I would expect that we would only pay for one set of licenses because you are using only one firewall at any one time. The other is there just for resiliency. The licensing, from a Firepower perspective, still requires you to have two licenses, even if the firewalls are in active/standby, which means that you pay for the two licenses, even though you might only be using one firewall any one time. This is probably not the best way to do it and doesn't represent the best value for money. This could be looked at to see if it could be done in a fairer way."
  • More Cisco Secure Firewall Pricing and Cost Advice →

  • "The price of the license and warranty can be better because it is very expensive."
  • "It's expensive, but compared to the competition it's okay."
  • "In terms of the market, it's not a cheap product, but it's cost-effective."
  • "Fortinet Secure SD-WAN delivered the lowest total cost of ownership (TCO) per Mbps among all other vendors."
  • "I had to pay for the license for the firewall, but it is guaranteed to have updates. I expect a good service for it. It was about €1000 for a year, and there was no additional cost."
  • "It is more expensive than Sophos. Fortinet is overall more expensive than Sophos. The small range of Fortinet, such as 60F and 80F, is more expensive than the small range of Sophos. Sophos is cheaper. In addition, if you jump from 80F Series to 100F Series, the price doubles."
  • "The license is yearly. We pay for the top end. It's called 360."
  • "Here in Brazil, we're going through difficult economic times and the tax on the dollar is high. All the solutions from minor competitors are growing in the market. The prices have come more competitive."
  • More Fortinet FortiGate Pricing and Cost Advice →

  • "This is an expensive product."
  • "The price is reasonable."
  • "The price could improve, it is a bit expensive."
  • "Its price is reasonable. In India, most of the products have a similar price. There is only a 5% to 10% variation in the price of different brands."
  • "There is a licensing fee."
  • "In general, their price definitely couldn't be cheaper."
  • "It is best suited to an enterprise-level, as the mid-range companies may find that the cost is not affordable."
  • "When you consider performance, price, and features, maybe Juniper is not so cost-effective compared to other solutions like MikroTik."
  • More Juniper SRX Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    670,400 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and… more »
    Top Answer:One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet… more »
    Top Answer:It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Top Answer:We have Meraki Mx devices now, we are looking to replace them. But that is because the Meraki MX platform lacks SSL… more »
    Top Answer:The solution is stable, inexpensive, and works well for medium size companies.
    Top Answer:The pricing is very inexpensive which is the main reason I bought the solution. One device costs around 50 EUR through… more »
    Comparisons
    Also Known As
    Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    SRX
    Learn More
    Overview

    The Cisco Secure Firewall portfolio delivers greater protections for your network against an increasingly evolving and complex set of threats. With Cisco, you’re investing in a foundation for security that is both agile and integrated- leading to the strongest security posture available today and tomorrow.

      From your data center, branch offices, cloud environments, and everywhere in between, you can leverage the power of Cisco to turn your existing network infrastructure into an extension of your firewall solution, resulting in world class security controls everywhere you need them.

      Investing in a Secure Firewall appliance today gives you robust protections against even the most sophisticated threats without compromising performance when inspecting encrypted traffic. Further, integrations with other Cisco and 3rd party solutions provides you with a broad and deep portfolio of security products, all working together to correlate previously disconnected events, eliminate noise, and stop threats faster.

      Fortinet FortiGate is an innovative line of firewalls that aim to protect organizations from all types of web-based network threats. They come in a wide variety of product types. Fortinet FortiGate’s solutions are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.

      Fortinet FortiGate provides users with next-generation firewall solutions that provide proven protection with unmatched performance across the network, from internal segments to data centers to cloud environments. You can protect every part of your network without exception. Additionally, your protections can be managed from a single central location. This ensures that the task of protecting your network is infinitely easier to accomplish.

      Benefits of Fortinet FortiGate

      Some of the benefits of using Fortinet FortiGate include:

      • The ability to manage your firewalls from a centralized automated control console. Fortinet FortiGate’s FortiManager enables administrators to exercise control of their firewalls in a streamlined manner. Administrators have full visibility and control over their system from a single location. It utilizes automation that collects information in real time, which greatly simplifies and reduces the cost of running various types of workflows. Administrators can free up resources by automating the most basic tasks.
      • The ability to produce uniform, appropriate, and coordinated responses to threats across networks. Fortinet FortiGate’s FortiGuard feature generates system protections in near real time. This allows administrators to address threats to the system with custom-made solutions that can be uniformly enforced.
      • The ability to scale up your security to fit your changing security needs. Fortinet FortiGate’s design allows users to accelerate the transfer of data between users and escalate the number of users that are covered without compromising security of performance. This means that users can grow their networks and continue to collaborate without worrying about the system slowing down or coming under attack.

      Reviews from Real Users

      Fortinet FortiGate’s firewall solutions are cutting edge. They stand out from competitors for a number of reasons. Two major ones are the robustness and power of their firewalls. Fortinet FortiGate’s firewall provides users with many valuable features that allow them to maximize what they can do with the solution. These firewalls enable users to use a single piece of software to accomplish tasks that often require the use of multiple pieces of software.

      PeerSpot user Eric S., a Solutions Engineer and Consultant at a tech-services company, notes the robustness of this solution when he writes, "One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises. You can actually do both. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. They're pretty reliable and consistent. One of the reasons why I started using the product was their single pane of management. I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface.”

      PeerSpot user Jim M., a network admin at Penobscot Valley Hospital, notes the power of Fortinet FortiGate’s security software when he writes, "It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall.”

      Juniper SRX is a next-generation security solution that enables users to expand and secure their networks without incurring heavy costs or sacrificing performance.

      Benefits of Juniper SRX

      Some of the benefits of using Juniper SRX include:

      • Easily manage and view every aspect of your system’s security. Juniper SRX enables users to manage their security from a centralized location. The central control center can control and view every Juniper connected device in a user’s network. Once a device meets the desired security requirements, an administrator can configure the device’s policy to match the other machines in their network. This both simplifies the way that the network operations run and decreases the number of resources that are needed to ensure that operations run smoothly.
      • Secure your system with a flexible and comprehensive security suite. Juniper SRX’s firewalls are flexible enough that they always match the type of applications that they are supposed to be protecting. Its security features uniformly protect your applications. This is true regardless of how your application is deployed. It can integrate with everything from cloud-based applications to those stored on physical servers in a data center. This makes it easy for administrators to maintain consistency across their systems.
      • Protect yourself from advanced threats. Juniper SRX is equipped with powerful security automation features. They can detect a wide range of known and unknown threats as soon as they appear. Once malware is detected, Juniper SRX begins to analyze it and determines what response fits the situation. Additionally, the threats are prioritized according to their severity. Administrators are then given a selection of response options from which they can choose. This enables users to prevent the spread of these threats.
      • Increase your ability to scale your security. Juniper SRX makes it easy for users to scale up their security to meet their specific needs. Its service processing cards (SPC) are designed to enable a user to meet all of their needs. Administrators do not need to buy specific hardware every time that they need to get something done. Their SPCs can be quickly and easily customized. The addition of SPCs enables users to scale up according to the particular project that they are working on at that time.
      • Reduce the number of resources that you need to expend. Juniper SRX enables users to add expansion modules to their network without expanding the cost to run their network. They accommodate growth without adding to the overall cost. Administrators will not need to spend money on more space, cooling power, or maintenance. Additionally, they will not have to dedicate more time to maintaining the network. Your network may grow, but the cost of running your system will not.

      Reviews from Real Users

      Juniper SRX stands out among their competitors for a number of reasons. Two major ones are their central management capabilities and the robustness of their suite of security features. Juniper SRX is designed to make it easy for users to take control of their network’s security. From one location, administrators can manage all aspects of their infrastructure’s security. The many features that it offers allows users to tailor their security to meet their specific needs.

      Shashidhara N., director of technology solutions & services at Connectivity IT Services Private Limited, writes, “On the SRX box, it has what I call a one model concept for security. I work especially with hybrid environments. With an SRX we have a single management dashboard. We can manage the internal framework easily with the centralized management component. You can work with threat prevention, you can work with integration, you can work with traffic management. Another good part about SRX is that you have opportunities for automation. Another thing that is very good is that all the operating systems for all Juniper boxes are the same. You do not work on different operating systems using different boxes.”

      Pradip J., the owner of Shree Atharva Sales Corporation, writes, “It is a complete security bundle. The cloud-based Sky Advanced Threat Prevention feature is very valuable. I am 100% satisfied with the performance of the Juniper firewall. It has a very good throughput. It works very fine. We use our firewall as a site-to-site VPN or Software-Defined Wide Area Network (SD-WAN). In both cases, it has a very good and optimum performance.Their service support is very good in India. I get really good support from the Juniper team."

      Offer
      Learn more about Cisco Secure Firewall
      Learn more about Fortinet FortiGate
      Learn more about Juniper SRX
      Sample Customers
      There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
      Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here
      7-Eleven, AARNet Pty Ltd, Allegro Networks, alltours GmbH, Apollo Hotel Papendrecht, Armstrong Atlantic State University, Atlantech Online, Availity, Bajaj Capital, Baloise Insurance, BancABC, BAS Group, Black Lotus, Blue Box, Borealis, Carilion Clinic, Catholic Health System, CATV, Champlain College, Chinas Ministry of Railways, China University of Mining and Technology (CUMT), Cloud Dynamics, CloudSeeds, Cloudwatt, CODONiS, Colt Technology Services, Cork Internet Exchange, CSS Versicherung AG, CyrusOne, Danish Crown, Deloitte Belgium, Department of Energy, Divona Telecom, DQE Communications, DreamHost, European Government Agency, Expedient, Financial Market Information Services Provider, Fluidata, Fonality, Fox Sports, Global Financial Institution, Global Investment Bank, Global Investment Company, Energy Sciences Network (ESnet), Goethe University, HEAnet, High Performance Networks Inc., Hillenbrand
      Top Industries
      REVIEWERS
      Financial Services Firm16%
      Comms Service Provider13%
      Computer Software Company9%
      Government8%
      VISITORS READING REVIEWS
      Computer Software Company20%
      Comms Service Provider18%
      Government7%
      Educational Organization5%
      REVIEWERS
      Comms Service Provider17%
      Financial Services Firm10%
      Computer Software Company9%
      Manufacturing Company7%
      VISITORS READING REVIEWS
      Comms Service Provider20%
      Computer Software Company19%
      Government6%
      Educational Organization5%
      REVIEWERS
      Comms Service Provider40%
      Financial Services Firm18%
      Energy/Utilities Company5%
      Educational Organization5%
      VISITORS READING REVIEWS
      Computer Software Company21%
      Comms Service Provider19%
      Government8%
      Financial Services Firm5%
      Company Size
      REVIEWERS
      Small Business35%
      Midsize Enterprise25%
      Large Enterprise40%
      VISITORS READING REVIEWS
      Small Business28%
      Midsize Enterprise18%
      Large Enterprise53%
      REVIEWERS
      Small Business47%
      Midsize Enterprise24%
      Large Enterprise29%
      VISITORS READING REVIEWS
      Small Business30%
      Midsize Enterprise20%
      Large Enterprise50%
      REVIEWERS
      Small Business46%
      Midsize Enterprise19%
      Large Enterprise35%
      VISITORS READING REVIEWS
      Small Business27%
      Midsize Enterprise16%
      Large Enterprise57%
      Buyer's Guide
      Fortinet FortiGate vs. Juniper SRX
      January 2023
      Find out what your peers are saying about Fortinet FortiGate vs. Juniper SRX and other solutions. Updated: January 2023.
      670,400 professionals have used our research since 2012.

      Fortinet FortiGate is ranked 1st in Firewalls with 89 reviews while Juniper SRX is ranked 10th in Firewalls with 31 reviews. Fortinet FortiGate is rated 8.4, while Juniper SRX is rated 8.0. The top reviewer of Fortinet FortiGate writes "SSL proxy makes URL filtering easier because the encryption is done before the packet ever leaves ". On the other hand, the top reviewer of Juniper SRX writes "Scalable with good technical support and works well for larger organizations". Fortinet FortiGate is most compared with pfSense, Sophos XG, Check Point NGFW, Meraki MX and Fortinet FortiGate-VM, whereas Juniper SRX is most compared with Palo Alto Networks WildFire, pfSense, Meraki MX, Check Point NGFW and Sophos XG. See our Fortinet FortiGate vs. Juniper SRX report.

      See our list of best Firewalls vendors.

      We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.