Fortinet FortiGate vs Sangfor NGAF comparison

Fortinet and Sangfor are both solutions in the Firewalls category. Fortinet is ranked #2 with an average rating of 8.3, while Sangfor is ranked #19 with an average rating of 7.9. Fortinet holds a 21.4% mindshare in Firewalls, compared to Sangfor’s 1.3% mindshare. Additionally, 90% of Fortinet users are willing to recommend the solution, compared to 90% of Sangfor users who would recommend it.

Fortinet FortiGate

Read 330 Fortinet FortiGate reviews

78,842 Views
58,697 Comparison Views

90% willing to recommend

Sangfor NGAF

Read 36 Sangfor NGAF reviews

5,463 Views
3,135 Comparison Views

90% willing to recommend

Fortinet FortiGate

Sangfor NGAF

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 6, 2025

Fortinet FortiGate and Sangfor NGAF compete in the network security field, providing comprehensive firewall solutions. Fortinet appears to have the upper hand due to its extensive features and high versatility, although Sangfor NGAF stands out for its user-friendly design and effective performance in targeted functions.

Features: Fortinet FortiGate offers extensive security features like VDOMs, UTM, web filtering, and application control, making it versatile in managing network security across various environments. It also provides robust VPN capabilities and intrusion prevention systems. Sangfor NGAF delivers baseline security capabilities but is highlighted for its easy interface and effective NGFW features, simplifying configuration and management.

Room for Improvement: Fortinet FortiGate could enhance licensing clarity, troubleshooting tools, and cloud integration support. Some users find its hardware configuration and firmware updates complex. Sangfor NGAF should focus on feature stability, reporting, and hardware scalability, while also addressing GUI design logic and update consistency.

Ease of Deployment and Customer Service: Fortinet FortiGate is known for efficient deployment in both on-premises and cloud environments but receives mixed reviews for technical support, varying by region. Sangfor NGAF is noted for straightforward on-premises deployment with positive feedback for user-friendliness, though technical support can sometimes lack responsiveness and expertise.

Pricing and ROI: Fortinet FortiGate offers competitive pricing, considering its features, though initial costs can be high. Users note a strong ROI due to comprehensive capabilities and long-term cost-effectiveness. Sangfor NGAF is considered more cost-effective, particularly appealing to smaller businesses with its good feature-to-price ratio.

To learn more, read our detailed Fortinet FortiGate vs. Sangfor NGAF Report (Updated: April 2025).

Buyer's Guide

Fortinet FortiGate vs. Sangfor NGAF

April 2025

Download the complete report

Helped 849,686 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Ranking in Firewalls

2nd

Average Rating

8.4

Reviews Sentiment

7.2

Number of Reviews

330

Ranking in other categories

Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)

Sangfor NGAF

Ranking in Firewalls

19th

Average Rating

8.0

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of May 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.4%, up from 17.7% compared to the previous year. The mindshare of Sangfor NGAF is 1.3%, up from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Zaid Farooqui

CIO at Indus Motor Company

Enhanced threat detection with integrated security features and good support

We are using application firewalling, WAF, and SD-WAN. The capabilities are mostly within the box. For example, you will get web application firewall WAF as part and parcel of this. SD-WAN is also bundled. It integrates with their SIEM and SOAR solutions very nicely. Lastly, the pricing point is very cost-efficient as well.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Overall security features and performance routing is good."

"The solution is easy to configure and maintain remotely."

"It performs very well."

"On a scale of one to ten, I rate this solution 10 out of 10."

"The quick resolution of issues with Fortinet FortiGate is due to the support of the company and the fact that the equipment is easy to work with."

"I would recommend using Fortinet FortiGate because of its usability."

"What I like the most is the configuration and that it's simple, and straightforward to maintain."

"The most valuable features are the policies, filtering, and configuration."

More Fortinet FortiGate pros

"In terms of the most valuable features, the IPS report is quick and updated. Performance is also valuable."

"It is a stable solution."

"Sangfor is a good solution that provides a WAF and firewall solution. Most other vendors, like Sophos and Fortinet and Cisco, only provide one solution. That's a valuable feature of Sangfor."

"Sangfor NGAF specializes in ransomware detection and helps to protect our network from ransomware threats and malware."

"Sangfor NGAF works accordingly with our customers. The solution has good performance, easy to use, and integrates well with the endpoints."

"You might try Sangfor if you are on a tight budget. The price is affordable, and Sangfor offers a lot of features. We don't have any complaints about Sangfor."

"It enables us to not only detect but also prevent various types of incoming threats, allowing us to take appropriate corrective actions and exercise control over the network."

"Particularly good in the DPI where we can inspect inbound and outbound traffic."

More Sangfor NGAF pros

Cons

"The solution can have more features in a single box that can be multi-applied to integrate everything."

"The integration with third-party tools may be something that they should work on."

"I haven't had a single issue since using Fortinet."

"One area for improvement is the performance on bandwidth demands for smaller devices, as well as better web filtering."

"They are doing good, but they can improve the distributor assignment. The availability of the product and the timeline of delivery are the main things. The distribution should be swift, and the distributor should not reach out to end customers directly. They should work as a distributor. There should also be one more local distributor. Currently, there is only one distributor in Pakistan, and the rest of them are in UAE. It is difficult to work with only one distributor. Sometimes, you don't get along with the same distributor, and that's why they should have one more distributor. Their licensing should also be improved. The activation or renewal of the product should be done from the date of renewal, not from the date on which the license expired."

"The support costs and licensing are sometimes so expensive."

"Fortinet doesn't provide multiple virtual firewalls which would facilitate end users and customers."

"This product could be improved with Active directory integration and better handling in IPsec and GRE Tunnels."

More Fortinet FortiGate cons

"The support offered by the product has certain shortcomings where improvements are required. The knowledge levels and response time of the support team need improvement."

"They need to improve their research team and they need to study their data to analyze it and build the product."

"The web interface needs to be improved, making it more user-friendly."

"Sangfor NGAF could improve the policies and default criteria. They could be much better."

"Sangfor has recently increased their prices."

"I believe that IAM and NGFW need to merge into a single box, instead of there being two separate box solutions."

"I feel Sangfor should follow the hierarchy and close deals via resellers instead of closing it all with their own team."

"There is room for improvement in dependency on certain infrastructure, like the DNS dependency on the current DNS server that the company has. It should be standalone. It should not depend on any other DNS server."

More Sangfor NGAF cons

Pricing and Cost Advice

"If you purchase a one-year subscription with the hardware and then you want to renew for the second year, it is very costly."

"Its pricing is fine. It is on a yearly basis. Other than the licensing fee, there is no extra fee."

"Fortinet is competitive price-wise."

"The price of Fortinet FortiGate is affordable. Most of our customers are on a three-year license to use the solution. All the features and support are included in the price."

"The price of FortiGate is average and I would say that based on the top five products available on the market, it is in the affordable range."

"Fortinet is reasonable in pricing and licensing. Overall, FortiGate is affordable. The licensing fee can be a little high, depending on the budget for your project."

"The price of FortiGate is comparable to that of most other firewall solutions and is more affordable than Cisco."

"In terms of the market, it's not a cheap product, but it's cost-effective."

More Fortinet FortiGate pricing and cost advice

"In my opinion, the price of the tool is good in the Pakistani market. We can easily get discounts if needed."

"The pricing is reasonable."

"If one is very cheap and ten is very expensive, I rate the tool's price as three out of ten."

"For four to five physical appliances for a licensed firewall, it costs approximately $4,000."

"It costs about 8 to 10 thousand dollars per year for 500 users, standard licensing fees included."

"For over 2000 users, the cost is around 5000 to 6000 USD. If you want a web application firewall, you have to purchase an additional license for it."

"The product is very cost-effective compared to other brands or vendors."

"-"

More Sangfor NGAF pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

849,686 professionals have used our research since 2012.

Comparison Review

it_user216600

Senior Technical Consultant with 51-200 employees

Jan 3, 2016

Sophos UTM vs. Fortinet FortiGate

I have used both Sophos and Fortinet products in production and I have found the Sophos UTM appliances (hardware and virtual) to be a better fit most of the time -- with a few caveats which I will touch on below. In both instances, the transition from TMG will be mostly straightforward. The main…

Read full review

Top Industries

By visitors reading reviews

Educational Organization

21%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Computer Software Company

13%

Manufacturing Company

10%

Financial Services Firm

Educational Organization

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage at large. In my opinion, Fortinet would be the best option and l use Fortinet too...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know the firewalls change every 5 to 7 years as stated but you really do need to upg...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite good. The most valuable features for me are their web and email filtering. I wou...

See all answers

What do you like most about Sangfor NGAF?

I think Sangfor NGAF is more valuable than Cisco products because of its simplicity and ease of management. If I compare it with Palo Alto and Cisco, both are quite complex products. And if I compa...

See all answers

What is your experience regarding pricing and costs for Sangfor NGAF?

The licensing cost is quite high compared to other available firewalls in the market.

See all answers

What needs improvement with Sangfor NGAF?

The cost of licensing is very high compared to other firewalls available here. There should be improvements in hardware scalability, allowing for more storage and memory capacity. Making the soluti...

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 22% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 13% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 11% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

Sophos XG vs Sangfor NGAF

Compared 16% of the time

Palo Alto Networks NG Firewalls vs Sangfor NGAF

Compared 4% of the time

Sophos XGS vs Sangfor NGAF

Compared 4% of the time

Netgate pfSense vs Sangfor NGAF

Compared 4% of the time

Check Point NGFW vs Sangfor NGAF

Compared 3% of the time

More Sangfor NGAF Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

April 2025

Download Fortinet FortiGate product report

Buyer's Guide

Sangfor NGAF

April 2025

Download Sangfor NGAF product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

Sangfor NGAF Firewall Platform

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Sangfor Next Generation Firewall (also known as NGAF) is a converged security solution providing protection against advanced threat, malware, viruses, ransomware and web-based attacks using integrated security features like firewall, IPS, anti-virus, anti-malware, APT, URL filtering, Cloud Sandbox, and WAF. As the world's first AI-enabled and fully integrated Next Generation Firewall & Web Application Firewall (WAF), NGAF offering the security visibility, real-time detection and response, simplified operation and maintenance and high-performance application layer security needed to operate an enterprise network in total security. Tested and proven to provide cutting-edge network security by ICSA Labs and endorsed by Gartner Inc., NGAF harnesses the power of Sangfor’s Neural-X threat intelligence and analytics platform and Engine Zero’s innovative malware detection to provide next-generation protection for today’s enterprise.

Sangfor

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

The Ministry of Science, Technology, and Innovation (Indonesia), Lawson, Inc. (Philippines), Universiti Sultan Zainal Abidin (Indonesia), TEK Automotive (Italy), etc.

Buyer's Guide

Fortinet FortiGate vs. Sangfor NGAF

April 2025

Free Report: Fortinet FortiGate vs. Sangfor NGAF

Find out what your peers are saying about Fortinet FortiGate vs. Sangfor NGAF and other solutions. Updated: April 2025.

DOWNLOAD NOW

849,686 professionals have used our research since 2012.

See our Fortinet FortiGate vs. Sangfor NGAF report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.