We changed our name from IT Central Station: Here's why

Juniper SRX vs Palo Alto Networks WildFire comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about Fortinet, Check Point, Netgate and others in Firewalls. Updated: January 2022.
565,304 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most important feature is the intensive way you can troubleshoot Cisco Firepower Firewalls. You can go to the bit level to see why traffic is not handled in the correct way, and the majority of the time it's a networking issue and not a firewall issue. You can solve any problem without Cisco TAC help, because you can go very deeply under the hood to find out how traffic is flowing and whether it is not flowing as expected. That is something I have never seen with other brands.""The most valuable feature that Cisco Firepower NGFW provides for us is the Intrusion policy.""Web filtering is a big improvement for us. The previous version we used, the AC520, did not have that feature included. It was not very easy for us, especially because the environment had to be isolated and we needed to get updates from outside, such as Windows patches. That feature has really helped us when we are going outside to pull those patches.""The integration of network and workload micro-segmentation helps a lot to provide unified segmentation policies across east-west and north-south traffic. One concrete example is with Cisco ACI for the data center. Not only are we doing what is called a service graph on the ACI to make sure that we can filter traffic east-west between two endpoints in the same network, but when we go north-south or east-west, we can then leverage what we have on the network with SGTs on Cisco ISE. Once you build your matrix, it is very easy to filter in and out on east-west or north-south traffic.""I have integrated it for incidence response. If there is a security event, the Cisco firewall will automatically block the traffic, which is valuable.""One of the nice things about Firepower is that you can set it to discover the environment. If that is happening, then Firepower is learning about every device, software operating system, and application running inside or across your environment. Then, you can leverage the discovery intelligence to get Firepower to select the most appropriate intrusion prevention rules to use for your environment rather than picking one of the base policies that might have 50,000 IPS rules in it, which can put a lot of overhead on your firewall. If you choose the recommendations, as long as you update them regularly, you might be able to get your rule set down to only 1,000 or 1,500, which is a significant reduction in a base rule set. This means that the firewall will give you better performance because there are less rules being checked unnecessarily. That is really useful.""It is one of the fastest solutions, if not the fastest, in the security technology space. This gives us peace of mind knowing that as soon as a new attack comes online that we will be protected in short order. From that perspective, no one really comes close now to Firepower, which is hugely valuable to us from an upcoming new attack prevention perspective.""I have experience with URL filtering, and it is very good for URL filtering. You can filter URLs based on the categories, and it does a good job. It can also do deep packet inspection."

More Cisco Firepower NGFW Firewall Pros →

"The most valuable feature is robustness.""It is very fast and very easy to maintain. Another nice part of it is that you can easily extract the logs and move them over to a security operations center.""I like the Junos OS, which has been very good for me. It's very clever.""Performance is a strong point.""Great as an inter-segmentation firewall or border or arch-firewall.""The CLI works perfectly.""I have used technical support quite a bit, and they are really good.""The user interface is good."

More Juniper SRX Pros →

"You have better control because you define apps. You just don't define ports. You define apps, and the apps are monitored in the traffic. It is more specific than the Cisco firewall when it comes to our needs.""The most valuable feature for us is the VPN.""The backup is the best feature.""The most valuable features of this solution are sandbox capabilities.""The scalability is acceptable.""Remote access is excellent.""What I like about Palo Alto is that it is a complete product, with everything in it.""The solution is easy to use and the Panorama feature is good. The software management or the malware blocking and some authentication management system are good."

More Palo Alto Networks WildFire Pros →

Cons
"An area of improvement for this solution is the console visualization.""The initial setup could be simplified, as it can be complex for new users.""On the VPN side, Firepower could be better. It needs more monitoring on VPNs. Right now, it's not that good. You can set up a VPN in Firepower, but you can't monitor it.""I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. So, I would like to see a lot of improvements here.""We cannot have virtual domains, which we can create with FortiGate. This is something they should add in the future. Additionally, there is a connection limit and the FMC could improve.""Cisco makes horrible UIs, so the interface is something that should be improved.""When you make any changes, irrespective of whether they are big or small, Firepower takes too much time. It is very time-consuming. Even for small changes, you have to wait for 60 seconds or maybe more, which is not good. Similarly, when you have many IPS rules and policies, it slows down, and there is an impact on its performance.""We're getting support but there's a big delay until we get a response from their technical team. They're in the USA and we're in Africa, so that's the difficulty. When they're in the office, they respond."

More Cisco Firepower NGFW Firewall Cons →

"The user interface and the GUI need improvement.""We purchased three devices and all three have been replaced under RMA.""The configuration is difficult and it should be easier.""In the next release, I would like to have a better web interface. It needs to be more user-friendly. Right now, you can only access many features through the console.""It was very difficult to deal with and required a lot of support, and the UI is very poor.""The capacity can be limiting. We have outgrown its capacity. You can only scale up to a certain extent, depending on the device purchased.""Juniper SRX's UI is very bad.""The training videos that are available need to be improved, and made more educative."

More Juniper SRX Cons →

"When you contact support, there is no guarantee that they will be available to help you tackle the issue that you are facing.""When comparing this solution to others it is not as good overall.""The configuration should be made a little bit easier. I understand why it is as it is, but there should be a way to make it easier from the user side.""Management and web filtering can be improved. There should also be better reporting, particularly around web filtering.""It would be nice if there was an easier way to install and deploy it, such as through the inclusion of wizards.""Our main concern is that everything has to be synced with the WildFire Cloud and has to be checked through the subscription.""The system performance degrades after the solution has been deployed for some time. The data that it gives us becomes a little bit slow. When you try to get some data for troubleshooting, it seems like it's working hard to extract that data.""The only complaint that we receive from our customers is in regards to the price."

More Palo Alto Networks WildFire Cons →

Pricing and Cost Advice
  • "Cisco pricing is premium. However, they gave us a 50 to 60 percent discount."
  • "There are additional implementation and validation costs."
  • "Cisco, as we all know, is expensive, but for the money you are paying, you know that you are also getting top-notch documentation as well as support if needed."
  • "This product requires licenses for advanced features including Snort, IPS, and malware detection."
  • "This product is expensive."
  • "For me, personally, as an individual, Cisco Firepower NGFW Firewall is expensive."
  • "The price of Firepower is not bad compared to other products."
  • "The solution was chosen because of its price compared to other similar solutions."
  • More Cisco Firepower NGFW Firewall Pricing and Cost Advice →

  • "Compared to other vendors, the pricing of this solution is good."
  • "The product itself is costly and the price of migration is very high."
  • "This is an expensive product."
  • "The price is reasonable."
  • "The price could improve, it is a bit expensive."
  • "Its price is reasonable. In India, most of the products have a similar price. There is only a 5% to 10% variation in the price of different brands."
  • "There is a licensing fee."
  • "In general, their price definitely couldn't be cheaper."
  • More Juniper SRX Pricing and Cost Advice →

  • "We pay between $3,000 and $4,000 CAD ($2,200 - $3,000 USD) per year to maintain this solution."
  • "This solution is very pricey and it depends on the package that you implement."
  • "I think they should lower the price of this solution"
  • "The pricing is highly expensive."
  • "This is an expensive product and the market for Palo Alto in Poland could be much bigger if the pricing was comparable to Fortinet."
  • "The price is a bit higher than the other products such as TrendMicro, or FireEye."
  • "Pricing could be improved."
  • "We are on an annual subscription. When we purchased the firewall, we had activated this solutions license for a minimum of one year. The price of the solution is fair."
  • More Palo Alto Networks WildFire Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    565,304 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: 
    When you compare these firewalls you can identify them with different features, advantages, practices and… more »
    Top Answer: 
    The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
    Top Answer: 
    It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Top Answer: 
    Full-fledged routing and switching alongside NGFW functions. No need to invest in another router for advanced/dynamic… more »
    Top Answer: 
    I'm not sure we are satisfied fully with the pricetag of Juniper SRX, but we understand why the dealer prices it this… more »
    Top Answer: 
    Its logging is very good, but we would like to have an easier way of creating more reports. We would like to be able to… more »
    Top Answer: 
    FortiGate has a lot going for it and I consider it to be the best, most user-friendly firewall out there. What I like… more »
    Top Answer: 
    When looking to change our ASA Firewall, we looked into Palo Alto’s WildFire. It works especially in preventing advanced… more »
    Top Answer: 
    The solution is easy to use and the Panorama feature is good. The software management or the malware blocking and some… more »
    Comparisons
    Also Known As
    Cisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWv
    SRX
    Learn More
    Overview

    Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
    small/branch offices to high performance data centers and service providers. Available in a wide
    range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
    defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
    Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
    features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
    volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
    for increased performance, high availability configurations, and more.
    Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
    deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
    the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
    can deliver micro-segmentation to protect east-west network traffic.
    Cisco firewalls provide consistent security policies, enforcement, and protection across all your
    environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
    delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
    SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
    greater simplicity, visibility, and efficiency.
    Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

    High-performance security with advanced, integrated threat intelligence, delivered on the industry's most scalable and resilient platform. SRX Series gateways set new benchmarks with 100GbE interfaces and feature Express Path technology, which enables up to 1 Tbps performance for the data center.
    WildFire™ cloud-based threat analysis service is the industry’s most advanced analysis and prevention engine for highly evasive zero-day exploits and malware. The cloud-based service employs a unique multi-technique approach combining dynamic and static analysis, innovative machine learning techniques, and a groundbreaking bare metal analysis environment to detect and prevent even the most evasive threats.
    Offer
    Learn more about Cisco Firepower NGFW Firewall
    Learn more about Juniper SRX
    Learn more about Palo Alto Networks WildFire
    Sample Customers
    Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield
    7-Eleven, AARNet Pty Ltd, Allegro Networks, alltours GmbH, Apollo Hotel Papendrecht, Armstrong Atlantic State University, Atlantech Online, Availity, Bajaj Capital, Baloise Insurance, BancABC, BAS Group, Black Lotus, Blue Box, Borealis, Carilion Clinic, Catholic Health System, CATV, Champlain College, Chinas Ministry of Railways, China University of Mining and Technology (CUMT), Cloud Dynamics, CloudSeeds, Cloudwatt, CODONiS, Colt Technology Services, Cork Internet Exchange, CSS Versicherung AG, CyrusOne, Danish Crown, Deloitte Belgium, Department of Energy, Divona Telecom, DQE Communications, DreamHost, European Government Agency, Expedient, Financial Market Information Services Provider, Fluidata, Fonality, Fox Sports, Global Financial Institution, Global Investment Bank, Global Investment Company, Energy Sciences Network (ESnet), Goethe University, HEAnet, High Performance Networks Inc., Hillenbrand
    Novamedia, Nexon Asia Pacific, Lenovo, Samsonite, IOOF, Sinogrid, SanDisk Corporation
    Top Industries
    REVIEWERS
    Comms Service Provider22%
    Financial Services Firm16%
    Manufacturing Company8%
    Non Profit8%
    VISITORS READING REVIEWS
    Comms Service Provider33%
    Computer Software Company21%
    Government7%
    Manufacturing Company4%
    REVIEWERS
    Comms Service Provider43%
    Financial Services Firm17%
    Energy/Utilities Company6%
    Computer Software Company6%
    VISITORS READING REVIEWS
    Comms Service Provider37%
    Computer Software Company23%
    Government6%
    Financial Services Firm3%
    REVIEWERS
    Comms Service Provider17%
    Government17%
    Financial Services Firm11%
    Retailer11%
    VISITORS READING REVIEWS
    Comms Service Provider26%
    Computer Software Company23%
    Government7%
    Energy/Utilities Company4%
    Company Size
    REVIEWERS
    Small Business43%
    Midsize Enterprise28%
    Large Enterprise29%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise13%
    Large Enterprise65%
    REVIEWERS
    Small Business41%
    Midsize Enterprise22%
    Large Enterprise37%
    VISITORS READING REVIEWS
    Small Business32%
    Midsize Enterprise23%
    Large Enterprise45%
    REVIEWERS
    Small Business51%
    Midsize Enterprise12%
    Large Enterprise37%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise11%
    Large Enterprise71%
    Find out what your peers are saying about Fortinet, Check Point, Netgate and others in Firewalls. Updated: January 2022.
    565,304 professionals have used our research since 2012.

    Juniper SRX is ranked 14th in Firewalls with 35 reviews while Palo Alto Networks WildFire is ranked 1st in Advanced Threat Protection (ATP) with 18 reviews. Juniper SRX is rated 7.8, while Palo Alto Networks WildFire is rated 8.2. The top reviewer of Juniper SRX writes "This best in class Next-Gen firewall is elegant in its ease-of-use and architecture". On the other hand, the top reviewer of Palo Alto Networks WildFire writes "Good technical support and provides automatic analysis that saves us time in filtering email". Juniper SRX is most compared with Fortinet FortiGate, Cisco ASA Firewall, pfSense, Meraki MX and Palo Alto Networks VM-Series, whereas Palo Alto Networks WildFire is most compared with Fortinet FortiGate, Cisco ASA Firewall, Proofpoint Email Protection, Zscaler Internet Access and Cloudflare.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.