We performed a comparison between OPNsense and Palo Alto Networks PA-Series based on real PeerSpot user reviews.
Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It is easy to use and performs very well."
"It's an easy solution to set up."
"The IPsec tunnels are very easily created, and quite interoperable with devices from other vendors."
"The virtual firewall feature is the most valuable. We have around 1,500 firewalls. We did not buy individual hardware, and the virtual firewalls made sense because we don't have to keep on buying the hardware. FortiGate is easier to use as compared to Checkpoint devices. It is user friendly and has a good UI. You don't need much expertise to work on this firewall. You don't need to worry much about DCLA, commands, and things like that."
"The security fabric is excellent."
"The pricing is great and very reasonable."
"The security features are about the best that I've seen anywhere."
"The most valuable features of Fortinet FortiGate are the ease of use and the UI. It has always provided me with what I needed. I have no need for additional costs that other solutions have, such as Sophos."
"URL blocking, Wireguard, Tail Scale, Engine Blocker, and VPN are the most valuable features for me."
"What I like the most about OPNsense is that it offers an easy-to-use dashboard for device management and control."
"It's open source."
"The DNS-level filtering is impressive for thwarting time scanners."
"I feel that its valuable features are that it is simple and free."
"I have found the solution has some great features overall, such as guest access capabilities, dashboards, and ease of use. There is plenty of documentation and support and it has the plugins that I needed."
"We have been operating here in our lab for several months, and everything appears to be extremely stable."
"It has an open license. It works very well, and there is an update every month."
"It offers application-based policy enforcement. Palo Alto Networks firewalls help us recognize protocol anomalies, contrasting with other vendors that may require policies based on port numbers. With Palo Alto Networks, the port number isn't a constraint because their devices handle protocol traffic at Layer 7, allowing for accurate identification of protocol usage and port numbers. They can identify which protocol actually uses which port."
"It is a scalable solution."
"The solution is used for security and IoT security."
"A valuable feature that we can consider is the deployment time, which is significantly reduced. It is almost 90% faster compared to other solutions."
"The cloud-based aspect helps significantly. It integrates seamlessly with other Palo products like Prisma Cloud, offers robust VPN protection, and it's all in one convenient package."
"It is scalable. But that depends on what model you are using."
"The solution is robust."
"The product's initial setup process was simple."
"They sometimes hide some features and if you want to enable them, you have to go in the CLI, enable the feature and configure it through the CLI. Customers, typically, like everything to be done by the GUI."
"There are problems with the custom reporting of the unique traffic. The data is there, but it is too difficult for us to extract."
"Fortinet doesn't provide multiple virtual firewalls which would facilitate end users and customers."
"NGN, reporting and controls."
"Fortinet already improved FortiGate, but in the current market, many brands of security devices have improved together. Fortinet still needs to catch up with market standards. Fortinet is lacking in features in comparison to competitors."
"I would like to see better pricing in the next release, as well as a simplification of the installation."
"For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial."
"Fortinet FortiGate needs to improve the logging and reporting. Additionally, the next-generation application's policies should be improved. When they were released they had bugs."
"The logging could improve in OPNsense."
"We did not like the fact that you have to configure everything with the graphic user interface. We have used other firewalls, such as FortiGate, that you can configure via code. OPNsense is not easy to integrate. When you are deploying via GitHub or another source repository, this is not possible. That's one thing we didn't like much."
"In terms of improvement, the performance could be enhanced."
"The reporting part could be better."
"When using the solution at the beginning was difficult. There was a steep learning curve."
"Given that OPNsense plays a pivotal role as a firewall, safeguarding against various threats, having a reliable backup ensures uninterrupted protection even if unforeseen events impact the primary virtual machine."
"The interface needs to be simplified. It is not user-friendly."
"I think the most important thing is that it should be easily accessible, but currently, that doesn't seem to be the case. We need a hardware platform that's based on common standards and open computing principles, which would be like a commodity and benefit us greatly."
"Palo Alto should integrate artificial intelligence for security purposes in the background for well-known threats and new risks coming to the market."
"The product's high prices are an area of concern where improvements are required."
"The solution’s pricing could be improved because it is an expensive solution."
"Palo Alto Networks PA-Series is complicated to configure compared to one of its competitors."
"There seem to be some issues with TAC (Technical Assistance Center) or Palo Alto support. Anytime you open a case, a level one engineer joins, and then you have to escalate it to level two or three. The support system has changed in the past few years, and that's something they need to look into."
"I have found that the tool works well for me, but there are areas where security testing and protection could be improved, especially in virtual or cloud environments. However, in this project, once we deployed it, we haven't encountered any issues. The cost is currently manageable, but as we migrate fully into the cloud, additional features like capacity upgrading and improvements to hardware resources will be necessary, especially since our equipment consists of older generation switches and routers. So, I'm looking for additional capabilities in these areas."
"The product must provide multiple threat detection features."
"In future releases, maybe Palo Alto can enhance and enlarge their portfolio with SIEM solutions. They already have an endpoint protection solution, SOAR solution, that's fine. But when it comes to standalone IDS/IPS solution or email security solution, for example, we don't have any product in that category for Palo Alto."
OPNsense is ranked 3rd in Firewalls with 36 reviews while Palo Alto Networks PA-Series is ranked 16th in Firewalls with 28 reviews. OPNsense is rated 8.4, while Palo Alto Networks PA-Series is rated 8.6. The top reviewer of OPNsense writes "Robust network security and management offering a user-friendly interface, open-source flexibility, and cost-effectiveness, with challenges regarding initial setup and the absence of official support". On the other hand, the top reviewer of Palo Alto Networks PA-Series writes "Offers trained customer support, stability and ease of use ". OPNsense is most compared with Netgate pfSense, Sophos XG, Untangle NG Firewall, Sophos UTM and IPFire, whereas Palo Alto Networks PA-Series is most compared with SonicWall NSa, Juniper SRX Series Firewall, Sophos XG, Netgate pfSense and WatchGuard Firebox. See our OPNsense vs. Palo Alto Networks PA-Series report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.