"It is one of the fastest solutions, if not the fastest, in the security technology space. This gives us peace of mind knowing that as soon as a new attack comes online that we will be protected in short order. From that perspective, no one really comes close now to Firepower, which is hugely valuable to us from an upcoming new attack prevention perspective."
"There are no issues that we are aware of. It does its job silently in the background."
"The dashboard is the most important thing. It provides good visibility and makes management easy. Firepower also provides us with good application visibility and control."
"If configured, Firepower provides us with application visibility and control."
"The solution offers very easy configurations."
"The customer service/technical support is very good with this solution."
"The most valuable features of this solution are advanced malware protection, IPS, and IDS."
"One of the most valuable features of Firepower 7.0 is the "live log" type feature called Unified Event Viewer. That view has been really good in helping me get to data faster, decreasing the amount of time it takes to find information, and allowing me to fix problems faster. I've found that to be incredibly valuable because it's a lot easier to get to some points of data now."
"It's user-friendly and easy to operate."
"The application control features, such as Facebook blocking and Spotify blocking, are the most valuable."
"It's super reliable. I don't think I've ever had a reliability issue with it."
"The initial setup is straightforward."
"The stability of the solution is excellent, as it is with other Fortinet products."
"The solution is stable."
"What I like the most is the configuration and that it's simple, and straightforward to maintain."
"The most valuable feature of this solution is the analytics."
"We are able to block whatever we want to block by using this product. It provides all required security features, such as content filtering, VPN, in one box. Before switching to SonicWall, we had specified all required features."
"Its user interface and simplicity are the most favorite parts for our clients. They find it stable and easy to use. Its performance is also good."
"Good VPN connection."
"The site-to-site VPN connections, content filtering, and in our current remote working situation, SSL VPN remote desktop connectivity are the most valuable features."
"SonicWall TZ is very user-friendly and has network MAC binding. Additionally, the firewall works well."
"It's a very cost-effective solution."
"We are very much happy with the support."
"The performance has been very good. Overall, the solution is quite stable."
"It would be great if some of the load times were faster."
"One issue with Firepower Management Center is deployment time. It takes seven to 10 minutes and that's a long time for deployment. In that amount of time, management or someone else can ask me to change something or to provide permissions, but during that time, doing so is not possible. It's a drawback with Cisco. Other vendors, like Palo Alto or Fortinet do not have this deployment time issue."
"The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore."
"The intelligence has room for improvement. There are some hackers that we haven't seen before and its ability to detect those types of attacks needs to be improved."
"The solution could offer better control that would allow the ability to restrictions certain features from a website."
"This product is managed using the Firepower Management Center (FMC), but it would be better if it also supported the command-line interface (CLI)."
"The change-deployment time can always be improved. Even at 50 seconds, it's longer than some of its competitors. I would challenge Cisco to continue to improve in that area."
"We cannot have virtual domains, which we can create with FortiGate. This is something they should add in the future. Additionally, there is a connection limit and the FMC could improve."
"The integration with third-party tools may be something that they should work on."
"Backup can be improved."
"The logs need to be better. They need to be more visible and easier to access."
"It's my understanding that more of the current generation features could be brought in. There could be more integration with EDRs, for example."
"To the best of my knowledge, Fortinet does not have a CASB solution and Fortinet does not have a Zero trust solution."
"We had a minor problem where there was a major system upgrade on the hardware platfrom and the Mac client was not available as soon as it might have been. The PC client was available immediately, but we had to wait a month or so, before there was a mac client. I was slightly irritated that it was not ready on time, but it was eventually resolved."
"There are some problems that support cannot give you a logical reason as to why it happened. For example, I had a case where I was dealing with a WhatsApp application that was giving issues. Technical support gave more than one reason it could be giving issues, but none of them solved the problem. Eventually I solved the problem, but it was far from the solutions that support had given."
"Some of the software stability could improve."
"You need to be a certificate holder to set it up and configure it. It's really important because it looks easy, but it is complex. You need to have the knowledge and experience. But this is normal for technical products. It's not a product for regular user. It's for technical people. You need to have skills."
"Its reporting can be improved. Currently, we cannot directly get the user names. It only shows the IP, which makes it a bit confusing because we need to use the IP to find the user. If we could directly get the name of the user, it would be better."
"The VPN that is available in the new version is a bit bulky and slower in speed."
"The monitoring is a little bit confusing."
"We require centralized monitoring of the network features, which they have but they are not to the level that we require."
"FortiGate has a client DNS in the firewall, but SonicWall doesn't have that. To create or configure a site-to-site VPN tunnel, we have to give a DNS name. Currently, we have to get the DNS name from a third party and then include it in SonicWall, whereas FortiGate has its own client DNS, so it provides a DNS name, and it does not require a third party. There should be a graphical option to view the network utilization and bandwidth usage."
"The marketing of SonicWall has to be increased. Currently, when it comes to firewalls, most people go for Cisco and Palo Alto. SonicWall should improve its marketing and branding policies to increase sales. Other than that, it is good."
"There is a point I don't like about SonicWall in the past and now. Most of the destinations we look at when we're detecting some user using too much bandwidth or something like that, SonicWall just gave us destination IP address, instead of the full qualified domain name. I think that's the most important part that is still missing. I think that's the most important for us."
Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.
The FortiGate family of NG firewalls provides proven protection with unmatched performance across the network, from internal segments, to data centers, to cloud environments. FortiGates are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.
Fortinet FortiGate is ranked 1st in Firewalls with 97 reviews while SonicWall TZ is ranked 11th in Firewalls with 36 reviews. Fortinet FortiGate is rated 8.4, while SonicWall TZ is rated 8.4. The top reviewer of Fortinet FortiGate writes "Stable, easy to set up, and offers good ROI". On the other hand, the top reviewer of SonicWall TZ writes "Easy to implement, fairly stable, and supports SSL-DPI". Fortinet FortiGate is most compared with Cisco ASA Firewall, pfSense, Check Point NGFW, Meraki MX and Sophos UTM, whereas SonicWall TZ is most compared with Cisco ASA Firewall, Sophos XG, Meraki MX, pfSense and SonicWall NSa. See our Fortinet FortiGate vs. SonicWall TZ report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.