Try our new research platform with insights from 80,000+ expert users

KerioControl vs Palo Alto Networks NG Firewalls comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 6, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.5
Fortinet FortiGate is valued for affordability, cost savings, enhanced security, operational efficiency, quick implementation, and long-term ROI benefits.
Sentiment score
7.0
KerioControl provides cost savings through bandwidth optimization, VPN efficiency, and management ease, despite concerns about rising licensing fees.
Sentiment score
7.6
Palo Alto Networks NG Firewalls offer strong ROI through enhanced security, threat prevention, and operational efficiency despite a high initial cost.
Clients are now comfortable and not wasting productive hours on IT support.
The automation part is giving us a cost benefit and speed; we can react faster.
It's a very useful tool to mitigate and protect your enterprise.
Their user-friendly interface and Panorama central management, which provides a comprehensive overview, make them an ideal investment.
The solution helped reduce downtime, which is crucial in time-sensitive industries like manufacturing.
 

Customer Service

Sentiment score
7.0
Fortinet FortiGate's customer service varies, with praise for responsiveness but criticism for slow, sometimes inadequate technical support.
Sentiment score
5.5
KerioControl's support is responsive yet sometimes delayed, with users desiring faster response times and fewer additional charges.
Sentiment score
7.4
Palo Alto Networks NG Firewalls' support experiences vary, with mixed reviews on responsiveness, expertise, and regional satisfaction influencing customer opinions.
I would rate their support for FortiGate a nine out of ten.
They offer very accurate solutions.
The quick resolution of issues with Fortinet FortiGate is due to the support of the company and the fact that the equipment is easy to work with.
I have never needed to contact customer support as the product is easy to use.
Their response time is within one hour.
They offer fast and competent assistance.
They provide fast response and rapid remediation of problems.
 

Scalability Issues

Sentiment score
7.3
Fortinet FortiGate scales well for diverse enterprises, though planning and licensing are crucial to avoid hardware limitations.
Sentiment score
6.9
KerioControl is ideal for small to medium businesses, offering robust features but may require upgrades for extensive scaling.
Sentiment score
7.2
Palo Alto Networks NG Firewalls are scalable, with mixed reviews on hardware limitations and better scalability through cloud deployments.
They scale up really well from smaller models like the FortiGate 40 and 50 to bigger sites with the FortiGate 100 for more throughput - up to enterprise datacenters.
The variation comes in terms of the interfaces and throughputs, but from a security perspective, you get the same benefit, irrespective of whether you have an entry-level unit or an enterprise.
We determine sizing based on multiple factors: number of users, available links, traffic types, server count, services in use, and whether services will be published.
KerioControl has met some of the network infrastructure needs yet could improve in terms of scalability.
Cloud deployments benefit from auto-scaling, allowing for automatic adjustments to firewall capacity based on demand.
It is important to assess the infrastructure size before choosing a model.
Palo Alto Networks NG Firewalls are scalable and reliable.
 

Stability Issues

Sentiment score
7.9
Fortinet FortiGate is generally stable and reliable, with minor issues arising from new features, firmware updates, or hardware constraints.
Sentiment score
7.4
KerioControl offers reliable performance with robust security for small to medium enterprises, despite minor hardware and configuration issues.
Sentiment score
8.4
Palo Alto Networks NG Firewalls are praised for stability, high throughput, and reliability, outperforming competitors like Cisco and Fortinet.
We're experiencing 99.999% availability consistently.
I would rate the stability of Fortinet FortiGate a ten out of ten.
We have not had any problems with the operating systems or maintenance of subscriptions.
With appropriately configured policies, these firewalls can provide robust network security.
After the upgrade, we are experiencing performance issues.
I have not experienced any outages or issues.
 

Room For Improvement

Fortinet FortiGate needs enhancements in firmware, usability, integration, support, reporting, VPN, cloud integration, and documentation for seamless use.
KerioControl needs improvements in VPN, user interface, support, performance, diagnostics, scalability, reliability, licensing, and logging features.
Palo Alto Networks NG Firewalls need better pricing, support, integration, management, documentation, and performance to address user challenges.
By providing an integrated solution, users would have access to all features and functionalities within a single window, eliminating the need to navigate through multiple windows.
Investing in a solution that can accommodate such growth would be more cost-effective than repeatedly purchasing new hardware.
The constant daily revisions necessitate meticulous identification of the relevant documents to prevent the use of outdated information that could jeopardize our environment.
When performance degrades due to full packet inspection, the solution should be to increase the computing power within the same firewall, not to recommend upgrading to a larger, more expensive model.
Further integration into a unified system could improve usability.
Palo Alto Networks NG Firewalls lack built-in multi-factor authentication, requiring the purchase of a third-party tool to implement this essential security feature.
 

Setup Cost

Fortinet FortiGate offers competitive pricing with upfront affordability, simple licensing, and long-term value, despite potentially high renewal costs.
KerioControl is affordable with robust features, though some find the licensing model complex and renewal costs concerning.
Palo Alto Networks NG Firewalls are costly but provide robust security, with pricing based on contract length and features.
The most expensive part is the renewal of the license subscription.
FortiGate is priced lower than Palo Alto.
Last year, I renewed the support for three years, which can sometimes be expensive but depends on the security benefits and how it helps us.
The price for the product is rated as ten out of ten.
Palo Alto Networks NG Firewalls are expensive.
Palo Alto Networks NG Firewalls come at a premium, exceeding the cost of most competitors by 45 percent.
Colleagues looking for the cheapest and fastest firewall can still use Palo Alto Networks NG Firewalls because they are affordable.
 

Valuable Features

Fortinet FortiGate delivers robust security features and intuitive management, offering scalable and affordable network protection solutions.
KerioControl offers comprehensive security, ease of use, reliable VPN, and a user-friendly interface for efficient management and protection.
Palo Alto Networks NG Firewalls provide advanced threat prevention, application control, and integrate various security capabilities into a user-friendly platform.
The firewall, IPS, and VPN functions are the most valuable features.
FortiGate provides solid protection against viruses, malware, and other threats.
In terms of security, we have not experienced any security flaws or loopholes, and it has proven to be quite stable.
The most valuable features include geo-tagging, which blocks all other IPs except for the specified accounts, and web filtering.
The most valuable features of Palo Alto Networks NG Firewalls are DNS sync calls, enabled security features, and Wildfire.
Threat Vault allows us access to a comprehensive threat database, enabling us to get detailed information on threats and how to mitigate them.
The most valuable feature of Palo Alto Networks NG Firewalls is Cortex Data Lake.
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
357
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
KerioControl
Ranking in Firewalls
34th
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
57
Ranking in other categories
Intrusion Detection and Prevention Software (IDPS) (20th), Unified Threat Management (UTM) (11th)
Palo Alto Networks NG Firew...
Ranking in Firewalls
7th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
194
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of June 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.4%, up from 17.8% compared to the previous year. The mindshare of KerioControl is 1.5%, up from 1.0% compared to the previous year. The mindshare of Palo Alto Networks NG Firewalls is 3.5%, up from 3.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

Vasu Gala - PeerSpot reviewer
A stable solution with an intuitive interface and quick customer service
I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.
Constantnos Achilleos - PeerSpot reviewer
Leveraging geo-tagging and web filtering for enhanced network security
The solution is used for site-to-site VPN connections and it is valued for its cost efficiency and easy connectivity. It is especially beneficial for multi-site VPNs and is used in about fifteen different components KerioControl has provided a financial benefit as it allows purchasing one license…
AmjadKhan1 - PeerSpot reviewer
Provides inline protection with a unified view and anti-spyware capabilities
I would rate Palo Alto Networks NG Firewalls ten out of ten because it is the best. Our disaster recovery site utilizes Palo Alto Networks Next-Generation Firewalls. We are also in the process of upgrading the firewalls at our 365 sites in Pakistan to Palo Alto Networks firewalls. While budget firewalls may advertise comparable features, they often fall short of effectively detecting viruses, threats, and ransomware. In contrast, Palo Alto Networks NG Firewalls, combined with Cortex XDR, provide comprehensive threat intelligence and detection capabilities, ensuring superior security coverage. I recommend conducting a proof of concept before selecting a firewall. This will allow you to evaluate different options and determine which best suits your needs. While Palo Alto offers robust firewall solutions, it's essential to compare them with other vendors to ensure you make an informed decision.
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
857,028 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
15%
Computer Software Company
15%
Comms Service Provider
7%
Manufacturing Company
6%
Computer Software Company
23%
Financial Services Firm
9%
Comms Service Provider
9%
Media Company
8%
Computer Software Company
14%
Financial Services Firm
10%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
What do you like most about KerioControl?
The solution provides feasibility regarding cyber privacy.
What is your experience regarding pricing and costs for KerioControl?
KerioControl offers good pricing as one license covers all features needed without extra payment. The price for the p...
What needs improvement with KerioControl?
The logs could be improved for better clarity. It is difficult to understand when there is a threat attack, and handl...
What is a better choice, Azure Firewall or Palo Alto Networks NG Firewalls?
Azure Firewall Vs. Palo Alto Network NG Firewalls Both solutions provide stellar stability and security. Azure Firew...
Features comparison between Palo Alto and Fortinet firewalls
In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it...
Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
No data available
Palo Alto NGFW, Palo Alto Networks Next-Generation Firewall
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
Triton Technical, McDonald's
SkiStar AB, Ada County, Global IT Services PSF, Southern Cross Hospitals, Verge Health, University of Portsmouth, Austrian Airlines, The Heinz Endowments
Find out what your peers are saying about KerioControl vs. Palo Alto Networks NG Firewalls and other solutions. Updated: June 2025.
857,028 professionals have used our research since 2012.