Try our new research platform with insights from 80,000+ expert users

OPNsense vs Palo Alto Networks VM-Series comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 16, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.4
Fortinet FortiGate provides cost savings, improved security, and quick ROI through reduced expenses and enhanced network performance.
Sentiment score
2.5
Entities benefited from rapid returns and cost savings with OPNsense, offering superior threat management compared to Check Point and FortiNet.
Sentiment score
7.1
Palo Alto Networks VM-Series offers strong ROI with enhanced security, increased agility, and significant time savings for users.
Clients are now comfortable and not wasting productive hours on IT support.
There's definitely an ROI. Having a centralized way of managing and applying policies across the entire organization always helps.
there is a prominent ROI
Customers can see data within a week, indicating a quick return on investment.
 

Customer Service

Sentiment score
7.0
Fortinet FortiGate's support is effective and knowledgeable, though responsiveness and expertise vary by region and specific challenges.
Sentiment score
6.4
Many users rely on forums for support, expressing mixed satisfaction with OPNsense's accessibility, cost, and technical support.
Sentiment score
7.6
Palo Alto Networks VM-Series support is responsive and professional, but some users note room for improvement in efficiency.
I would rate their support for FortiGate a nine out of ten.
They offer very accurate solutions.
The quick resolution of issues with Fortinet FortiGate is due to the support of the company and the fact that the equipment is easy to work with.
I mainly rely on community support since the solution is open source.
The support quality could be improved.
Resolving issues promptly.
They are responsive and provide high-quality assistance.
 

Scalability Issues

Sentiment score
7.3
Fortinet FortiGate effectively scales with proper design, though complexities and hardware limits can arise, requiring accurate initial sizing.
Sentiment score
6.5
OPNsense is scalable for diverse organizations, efficiently supporting different user volumes, with some challenges in high-volume voice traffic.
Sentiment score
7.6
Palo Alto Networks VM-Series is scalable, satisfying users despite some cloud integration challenges, and suitable for diverse enterprises.
They scale up really well from smaller models like the FortiGate 40 and 50 to bigger sites with the FortiGate 100 for more throughput - up to enterprise datacenters.
The variation comes in terms of the interfaces and throughputs, but from a security perspective, you get the same benefit, irrespective of whether you have an entry-level unit or an enterprise.
We determine sizing based on multiple factors: number of users, available links, traffic types, server count, services in use, and whether services will be published.
In my organization, there are 400 users, and OPNsense serves as our gateway and proxy for all of them.
Aside from these aspects, it demonstrated good scalability.
It supports routing, VPN setups, and traffic monitoring with additional packages like Snort and Suricata.
They are easy to upgrade, and with credit licensing, they scale effectively according to demand.
The solution is scalable and can easily handle an increase in the number of users.
It is easy to use with an excellent graphical user interface and extensive documentation, which contributes to its high scalability.
 

Stability Issues

Sentiment score
7.9
Fortinet FortiGate is reliable and stable with newer versions, requiring proper configuration to avoid minor glitches.
Sentiment score
8.5
OPNsense is stable with high ratings, despite issues with VPN failover, occasional bugs, and hardware compatibility concerns.
Sentiment score
8.3
Palo Alto Networks VM-Series is praised for stability and reliability, despite occasional bugs and manual interventions during upgrades.
We have not had any problems with the operating systems or maintenance of subscriptions.
The solution is very stable.
We have observed that the device is significantly more stable than before.
Stability-wise, I rate the solution a ten out of ten.
It just doesn't respond, so I have to restart it over and over again to try to figure out what the problem is.
OPNsense is the same, but it does have a way of installing the Realtek drivers, which gives you a lot more stability overall on the system.
Hardware is generally very stable.
I have not experienced any major problems or downtime.
Perfection is unlikely as the dynamic nature of traffic and constant changes can result in occasional bugs despite regular updates.
 

Room For Improvement

Fortinet FortiGate requires improved user interface, logging, compatibility, scalability, stability, VPN integration, and better documentation and support.
OPNsense faces challenges with integration, user interface, documentation, scalability, performance, and security features, needing enhancements in various areas.
Palo Alto Networks VM-Series needs better integration, scalability, documentation, cloud compatibility, and improved features to address user concerns and performance.
If I have put 10 GBPS of throughput on a firewall and I enable all of these features available, such as IPS or UTM functionalities, the throughput comes down to 1 GBPS.
By providing an integrated solution, users would have access to all features and functionalities within a single window, eliminating the need to navigate through multiple windows.
Investing in a solution that can accommodate such growth would be more cost-effective than repeatedly purchasing new hardware.
For high availability, it's crucial to have a method in place where a designated component oversees the entire process.
The user experience when we create policies can be made easier.
Some of the features include classified traffic and better blocking of newly registered DNS domains.
Integration with CSIRT across all use levels would make it easier for administrators to stay updated on the blocked entities without manual intervention.
Most customers go for partner-enabled support, which involves multiple layers, leading to delays.
When managing the firewall, it involves a Strata Cloud web browser that requires improvement to enhance deployment ease and call center efficiency.
 

Setup Cost

Fortinet FortiGate is cost-effective compared to peers, with reasonable licensing costs despite initial setup fees and optional features.
OPNsense is a cost-effective, flexible solution for enterprises, preferred over costly alternatives like FortiGate and Palo Alto.
Palo Alto Networks' VM-Series pricing is high but justified by advanced security features, with flexible licensing aiding budget management.
The most expensive part is the renewal of the license subscription.
FortiGate is priced lower than Palo Alto.
Last year, I renewed the support for three years, which can sometimes be expensive but depends on the security benefits and how it helps us.
It's a free solution.
It is a free solution, and when you compare it to alternatives like FortiGate, which is quite powerful but also costly, the value becomes evident.
I would rate the pricing a nine out of ten, especially considering the availability of a free community edition.
Palo Alto is expensive in terms of pricing, particularly when comparing features to cost.
The cost involves purchasing through a vendor, which might mark up due to the supply chain.
Pricing for Palo Alto Networks is higher than other OEMs, but considering the robustness and features, it gains customer trust.
 

Valuable Features

Fortinet FortiGate offers robust VPN, strong security features, user-friendly management, high scalability, affordability, and seamless integration capabilities.
OPNsense is valued for its flexibility, user-friendly interface, robust features, frequent updates, and compatibility with useful plugins.
Palo Alto Networks VM-Series excels in threat prevention, scalability, and user-friendly management, integrating advanced security features and cloud services.
The firewall, IPS, and VPN functions are the most valuable features.
FortiGate provides solid protection against viruses, malware, and other threats.
Within the same dashboard, you get to see the security profiles, the type of traffic that's passing through, the top applications that are being consumed, etc.
The most valuable features include the basic firewall functionality and the GeoIP location services.
One of the most valuable features is the network checking.
OPNsense is easy to use and open source.
We use these tools to prevent all known and unknown threats using Palo Alto Networks' Wildfire and other data filtering tools to gather information, analyze traffic, manage malicious traffic, and offer visibility, control, and attack prevention.
Palo Alto's robust threat intelligence supports new updates, and I can open cases directly with their Threat Intelligence team.
The DNS security significantly enhances security through visibility and detection, allowing control over crucial traffic like DNS, which is often exploited by ransomware.
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
333
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
OPNsense
Ranking in Firewalls
3rd
Average Rating
8.4
Reviews Sentiment
6.7
Number of Reviews
40
Ranking in other categories
No ranking in other categories
Palo Alto Networks VM-Series
Ranking in Firewalls
11th
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
64
Ranking in other categories
Advanced Threat Protection (ATP) (9th)
 

Mindshare comparison

As of May 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.4%, up from 17.7% compared to the previous year. The mindshare of OPNsense is 11.5%, down from 17.6% compared to the previous year. The mindshare of Palo Alto Networks VM-Series is 0.8%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

EhabAli - PeerSpot reviewer
Efficient, user-friendly, and affordable
In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.
Eddy Ramirez - PeerSpot reviewer
Good interface and firewall capabilities and overall easy to use
The security has improved as we can isolate the network. We can do attrition prevention via a tool that comes with the solution. We can have a VPN solution in place for those that work from home, outside the network, in a secure manner. We also like that it offers good authentication. It offers radius-based authentication, which has been useful for the company. The main platform is under the Open VPN firewall. The solution has high availability. When we have different ISPs, we can actually load balance those links or actually put some priority or even classify the traffic that might go into one ISP or another.
AshwaniTyagi - PeerSpot reviewer
Advanced protection and good integration capabilities with good reliability
We use Palo Alto Networks VM-Series to offer services to our customers as a managed security service provider. We provide solutions and services to our customers across the globe. For example, if I want to host a firewall in the cloud or somewhere where the physical appliance is not a possibility…
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
851,491 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
20%
Computer Software Company
14%
Comms Service Provider
7%
Manufacturing Company
6%
Computer Software Company
16%
Comms Service Provider
13%
Government
7%
Educational Organization
6%
Computer Software Company
17%
Financial Services Firm
14%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
What is the difference between PfSense and OPNsense?
Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and cl...
What do you like most about OPNsense?
What I like the most about OPNsense is that it offers an easy-to-use dashboard for device management and control.
What is your experience regarding pricing and costs for OPNsense?
The pricing is competitive when compared to vendors like Palo and FortiNet.
Features comparison between Palo Alto and Fortinet firewalls
In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it...
How does Azure Firewall compare with Palo Alto Networks VM Series?
Both products are very stable and easily scalable. The setup of Azure Firewall is easy and very user-friendly and the...
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
No data available
No data available
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
1. Deciso B.V. 2. iXsystems, Inc.  3. EuroBSDCon  4. Netgate  5. Claranet  6. Voleatech  7. Open Systems AG  8. Securebit AG  9. Proxmox Server Solutions GmbH  10. AVM Computersysteme Vertriebs GmbH  Additional customers include: T-Systems International GmbH, Deutsche Telekom AG, Vodafone GmbH, 1&1 IONOS SE, OVHcloud, Hetzner Online GmbH, Strato AG, PlusServer GmbH, Host Europe GmbH, United Internet AG, 1&1 Versatel Deutschland GmbH, QSC AG, Bechtle AG, Cancom SE, Computacenter AG & Co. oHG, T-Systems Multimedia Solutions GmbH, Atos SE, Capgemini SE, Accenture plc, IBM Corporation, Hewlett Packard Enterprise Company, Cisco Systems, Inc.
Warren Rogers Associates
Find out what your peers are saying about OPNsense vs. Palo Alto Networks VM-Series and other solutions. Updated: April 2025.
851,491 professionals have used our research since 2012.