OPNsense vs Zscaler Cloud Firewall comparison

OPNsense and Zscaler are both solutions in the Firewalls category. OPNsense is ranked #3 with an average rating of 8.2, while Zscaler is ranked #26 with an average rating of 8.3. OPNsense holds a 11.3% mindshare in Firewalls, compared to Zscaler’s 0.4% mindshare. Additionally, 97% of OPNsense users are willing to recommend the solution, compared to 92% of Zscaler users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

OPNsense and Zscaler Cloud Firewall compete in network security solutions. Users prefer Zscaler for its advanced features, while OPNsense is valued for cost-effectiveness and customer support.

Features: OPNsense offers open-source flexibility, extensive plugin options, and community-driven support. Zscaler Cloud Firewall provides comprehensive cloud-based security, scalability, and integrated threat intelligence.

Room for Improvement: OPNsense needs more extensive documentation, better integration capabilities, and a more user-friendly interface. Zscaler requires simplified policy management, a more straightforward setup process, and lower pricing for smaller businesses.

Ease of Deployment and Customer Service: OPNsense has a straightforward deployment process supported by a strong community. Zscaler’s cloud-based model is complex but is supported by efficient customer service.

Pricing and ROI: OPNsense offers low setup costs and favorable ROI through its open-source model. Zscaler presents higher upfront costs, but users find the investment justified by the robust features and long-term benefits.

To learn more, read our detailed OPNsense vs. Zscaler Cloud Firewall Report (Updated: June 2025).

Buyer's Guide

OPNsense vs. Zscaler Cloud Firewall

June 2025

Download the complete report

Helped 856,873 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of June 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.4%, up from 17.8% compared to the previous year. The mindshare of OPNsense is 11.3%, down from 17.5% compared to the previous year. The mindshare of Zscaler Cloud Firewall is 0.4%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

Jorge Martínez

Presales Engineer at Sencinet

Offers good SD-WAN capabilities and integrates easily with Fortinet devices

I am not part of the initial setup or deployment process since I work in presales. The setup or deployment is quite easy, as you can do a one-touch deployment that automatically connects to the FortiManager cloud when you connect it to a broadband or dynamic IP, allowing you to start the configuration from that point. We usually sell it for on-premises setups. It's on the cloud only when the client has virtual machines or their own service. Sometimes they have a service on the cloud like AWS, but it's more difficult to sell now because AWS has an e-commerce option where you can buy FortiGate directly. The only thing you need is someone to manage and configure.

Read full review

Akram Zaki Hussein

System and Network Administrator at El Sadat City Language School

Robust network security and management offering a user-friendly interface, open-source flexibility, and cost-effectiveness, with challenges regarding initial setup and the absence of official support

The interface is user-friendly, but there's room for improvement in terms of intuitiveness. The bundle management aspect requires additional attention to make it more intuitive, especially for inspecting high-level traffic. This is crucial, especially for larger companies where the existing features might not be the most optimal choice, given limitations like printer constraints. For high availability, it's crucial to have a method in place where a designated component oversees the entire process. Given that OPNsense plays a pivotal role as a firewall, safeguarding against various threats, having a reliable backup ensures uninterrupted protection even if unforeseen events impact the primary virtual machine. It would be beneficial if OPNsense supported additional virtualization platforms like Hyper-V from Microsoft and VMware, similar to how Kaspersky has integrated them.

Read full review

Bhaskar Rao

Network manager admin at Yamaha

Though it helps deal with web traffic or any malicious traffic, it needs to work on its DC performance issues

The product's initial setup phase is moderate in level, so it is neither very complex nor very easy. For the deployment, my company first needs to gather all the requirements of the users and the domain names and consider how many users there are in the company. In the implementation and planning part, my company needs to consider what kind of policies we will create while ensuring that the policies are created based on the requirements of the users. There is a need to segregate the users' requirements since there are separate departments in the company, like the HR department, sales department, IT department, and manufacturing department, so that our company can create policies depending on their requirements. On-site, if you want a GRE tunnel, our company can handle GRE tunnel traffic routing and Zscaler Cloud Firewall, after which Zscaler will take action based on the policies created by our organization. For the deployments and maintenance, a team of five members consisting of two managers and three engineers is required.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is pretty straightforward to manage and has robust capabilities. I appreciate that Fortinet FortiGate can be a central controller for other Fortinet products, such as switches and access points."

"The application control features, such as Facebook blocking and Spotify blocking, are the most valuable."

"The multi-tenancy feature is most valuable. It integrates very well with FortiManager and FortiAnalyzer."

"The most valuable feature is the ease of use."

"The most valuable feature is the interface, which is very user friendly. We are utilizing most of the features, like content filtering. The firewall is powerful."

"Fortinet FortiGate is easy to use."

"Unified Threat Management (UTM) features."

"The web controls are what I appreciate about Fortinet FortiGate. We have extensive controls over areas where we could block external-facing IPs, external URLs. We can do geo-fencing with the firewalls, which is a good feature."

More Fortinet FortiGate pros

"The solution has high availability."

"OPNsense is easy to scale when running on the hardware."

"The most valuable features are reporting, the Sensei plugin, and firewall capabilities."

"OPNsense is very stable, easy to upgrade, and maintain."

"One of the most valuable features is the network checking. Additionally, the firewall and web filtering functionalities are highly useful."

"It's open source."

"The feature I find most valuable, is that the program helped me to realize all the requested functionality that was needed."

"We have been operating here in our lab for several months, and everything appears to be extremely stable."

More OPNsense pros

"The visibility and log availability offered are highly valued for troubleshooting purposes, and this is a key factor driving customer interest in the firewall module."

"Since it is really customizable, I can use it and avoid enabling access to the full network."

"If malicious traffic attacks our on-premises servers, then it gets blocked by Zscaler Cloud Firewall."

"The product’s firewall and VPN package are fantastic compared to any other solution."

"It provides in-depth visibility into your network, ensuring that traffic flowing into your organization, be it from offices or individual users, is effectively filtered and secured through multiple layers of protection."

"The initial setup is straightforward."

"The scalability is okay. We have around 2200 people using this solution."

"The solution is scalable."

More Zscaler Cloud Firewall pros

Cons

"Some of the filtering is not robust, you can escape it with a VPN. Some of the users bypass some of the filters. It catches some but it also misses some, that area could be improved. It's functioning reasonably but there's room for improvement in that area."

"There are some complex administration tasks in their administration portal. That needs to be improved."

"Bandwidth usage in reporting could be improved for Fortinet FortiGate."

"There's always something new that can be added or fixed."

"The cloud features can be improved."

"The central management for the FortiGate Fortinet Firewall needs improvement. They have the manager to do the essential management for both SD-WAN and for the security policy. They should also improve the SD-WAN function."

"FortiLink is the interface on the firewall that allows you to extend switch management across all of your switches in the network. The problem with it is that you can't use multiple interfaces unless you set them up in a lag. Only then you can run them. So, it forces you to use a core type of switch to propagate that management out to the rest of the switches, and then it is running the case at 200. It leaves you with 18 ports on the firewall because it is also a layer-three router that could also be used as a switch, but as soon as you do that, you can't really use them. They could do a little bit more clean up in the way the stacking interface works. Some use cases and the documentation on the FortiLink checking interface are a little outdated. I can find stuff on version 5 or more, but it is hard to find information on some of the newer firmware. The biggest thing I would like to see is some improvement in the switch management feature. I would like to be able to relegate some of the ports, which are on the firewall itself, to act as a switch to take advantage of those ports. Some of these firewalls have clarity ports on them. If I can use those, it would mean that I need to buy two less switches, which saves time. I get why they don't, but I would still like to see it because it would save a little bit of space in the server rack."

"Scalability is one of the disadvantages. When it comes to scalability, you have to actually change the box. If you want to upgrade it, you need to actually change the existing box and probably you take the system off to other sites."

More Fortinet FortiGate cons

"An area for improvement in OPNsense is the hardware, which needs to be updated more frequently. DNS blocking is another good feature I want to be added to the solution. pfSense has a peer-blocking feature that I also want to see in OPNsense."

"The support for OPNsense is good because we have documents available on the internet. The support could improve a little."

"The only thing that I would like to see improved is the Insight or the NetFlow analysis part. It would be good to have the possibility to dig down on the Insight platform. Right now, we can easily do only a few analyses. If this page becomes more powerful, it surely will be a well-adopted platform."

"We did not like the fact that you have to configure everything with the graphic user interface. We have used other firewalls, such as FortiGate, that you can configure via code. OPNsense is not easy to integrate. When you are deploying via GitHub or another source repository, this is not possible. That's one thing we didn't like much."

"The logging could improve in OPNsense."

"The solution would not be suitable for anything large-scale."

"There are a few weaknesses. For example, there is a lack of some features that I have in certain commercial products."

"I think the most important thing is that it should be easily accessible, but currently, that doesn't seem to be the case. We need a hardware platform that's based on common standards and open computing principles, which would be like a commodity and benefit us greatly."

More OPNsense cons

"They do not provide a few components that are fundamental to differentiate the products"

"I don't have the visibility of a control dashboard or a network management system."

"There are several areas for improvement. Firstly, the GUI is outdated, with noticeable lags and delays, especially when generating reports for past transactions."

"Because it's on cloud, it doesn't allow application of extra settings."

"The product could improve its integration with some legacy systems."

"We are having some issues with internet access being denied when organizational ID-based policies change. For example, a lower level employee ends up getting the same level of access as that of a higher level employee."

"If I can get rid of Jetscaler, I will use Twingate for sure."

"Apart from the issues associated with the product in areas like the DC performance issues and DC failover, Zscaler Cloud Firewall's IP should not have a proxy IP."

More Zscaler Cloud Firewall cons

Pricing and Cost Advice

"It's very affordable."

"The pricing is fair."

"The price is fine."

"For our organization, the licensing costs are approximately $7,000 per year."

"If you are looking for a quality product, it will come at a higher price. Expecting them to be significantly cheaper is unrealistic. In terms of pricing, it is a bit costly. However, the functionality and support offered are worth it."

"The price of Fortinet FortiGate could improve, it is expensive."

"I find it quite reasonable."

"The license of Fortinet FortiGate should be reduced."

More Fortinet FortiGate pricing and cost advice

"I'm using the free version of OPNsense. I didn't check the pricing for the solution because I still need to test it before getting the approval to purchase OPNsense, and it isn't easy to get approval from the higher-ups."

"I've used the free version. My computer with two network cards at home allows me to try as many different software options as I want. I did pay for the license, but it was for the Zenarmor license, which is the packet inspection tool. They use AI for packet inspection, which integrates with OPNsense and pfSense."

"We are using the paid version."

"I would rate the pricing a nine out of ten, especially considering the availability of a free community edition."

"There are no licensing costs for OPNsence."

"OPNsense is an open-source solution and it is free to use."

"OPNsense is open source software so at this time it is free for us to use."

"It is a free solution, and when you compare it to alternatives like FortiGate, which is quite powerful but also costly, the value becomes evident."

More OPNsense pricing and cost advice

"The product is a bit expensive compared to the solutions offered by its competitors, like Palo Alto. There is a need to make yearly payments towards the license in charges associated with the product."

"It is not the most budget-friendly solution, but it's important to consider its overall value."

"There is an annual license required for the use of the Zscaler Cloud Firewall."

"There are licensing costs, and I would not say that it's a cheap vendor."

"Zscaler is priced too high compared to the cost of Fortinet."

"It comes at a significantly reduced cost while ensuring control and effectiveness."

"There are different subscription models available."

"On a scale from one to ten, where one is cheap, and ten is expensive, I rate the solution's pricing an eight out of ten."

More Zscaler Cloud Firewall pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

856,873 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

15%

Computer Software Company

15%

Comms Service Provider

Manufacturing Company

Computer Software Company

16%

Comms Service Provider

14%

Government

Educational Organization

Computer Software Company

15%

Financial Services Firm

12%

Manufacturing Company

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

What is the difference between PfSense and OPNsense?

Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and cl...

See all answers

What do you like most about OPNsense?

What I like the most about OPNsense is that it offers an easy-to-use dashboard for device management and control.

See all answers

What is your experience regarding pricing and costs for OPNsense?

The pricing is competitive when compared to vendors like Palo and FortiNet.

See all answers

Which lesser known firewall product has the best chance at unseating the market leaders?

Netscope, Zscaler if they continue route they are on now. FIrewalls needs great deal of automation on each end, datac...

See all answers

What do you like most about Zscaler Cloud Firewall?

The product’s firewall and VPN package are fantastic compared to any other solution.

See all answers

What is your experience regarding pricing and costs for Zscaler Cloud Firewall?

Zscaler Cloud Firewall is quite expensive compared to competitors. However, it offered moderate value for money.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 21% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 12% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 11% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

Check Point NGFW vs Fortinet FortiGate

Compared 3% of the time

More Fortinet FortiGate Competitors

Netgate pfSense vs OPNsense

Compared 36% of the time

IPFire vs OPNsense

Compared 14% of the time

Sophos XG vs OPNsense

Compared 8% of the time

Sophos XGS vs OPNsense

Compared 4% of the time

Untangle NG Firewall vs OPNsense

Compared 4% of the time

More OPNsense Competitors

Azure Firewall vs Zscaler Cloud Firewall

Compared 15% of the time

Check Point NGFW vs Zscaler Cloud Firewall

Compared 9% of the time

Palo Alto Networks NG Firewalls vs Zscaler Cloud Firewall

Compared 9% of the time

Cisco Secure Firewall vs Zscaler Cloud Firewall

Compared 5% of the time

Cisco Multicloud Defense vs Zscaler Cloud Firewall

Compared 5% of the time

More Zscaler Cloud Firewall Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

June 2025

Download Fortinet FortiGate product report

Buyer's Guide

OPNsense

May 2025

Download OPNsense product report

Buyer's Guide

Zscaler Cloud Firewall

May 2025

Download Zscaler Cloud Firewall product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

No data available

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

OPNsense is widely used for firewall functionalities, intrusion detection, VPN and IPSec, content filtering, securing network traffic, and remote access. It protects internal networks and manages servers securely, suitable for small to medium-sized businesses.

OPNsense is a comprehensive firewall solution leveraging open-source technology. It integrates with third-party modules like WireGuard and CrowdSec, enhancing its security capabilities. Offering on-premises and cloud deployment, it features an intuitive graphical interface, advanced reporting, VPN functionality, IDS/IPS features, and high scalability. Users find it ideal for small businesses and home networks due to its stability and ease of use. Frequent updates and an active community support its continuous improvement. However, it needs advancements in VPN selection, scalability, and technical documentation. Enhanced high availability, threat intelligence, and integration with virtualization platforms are required. User feedback suggests improvements in connectivity, alerting, traffic monitoring, and antivirus protection.

What are the key features of OPNsense?

Strong Firewall: Robust firewall capabilities for securing network traffic.
Intrusion Detection and Prevention: Effective IDS/IPS for threat mitigation.
VPN Functionality: Comprehensive VPN support including WireGuard.
Content Filtering: DNS-level filtering for enhanced security.
Advanced Reporting: In-depth traffic analysis and reporting features.
High Scalability: Supports growing network demands.
Integration Capabilities: Works with third-party modules like CrowdSec.
Intuitive GUI: User-friendly graphical interface enhances usability.

What benefits should users look for in OPNsense reviews?

Security: High level of protection for internal networks.
Manageability: Easy management of servers and network traffic.
Cost-Effective: Open-source nature reduces costs.
Reliability: Stable performance suitable for small and medium-sized businesses.
Community Support: Active community and frequent updates.

OPNsense is implemented across various industries to secure network infrastructure and ensure reliable connectivity. In fintech, it safeguards sensitive financial data while maintaining compliance. Educational institutions deploy it to protect student information and enable secure remote learning environments. Healthcare organizations use it to secure patient data and comply with HIPAA regulations. By integrating with tools like WireGuard and CrowdSec, businesses enhance their cybersecurity posture and streamline network management, making OPNsense a versatile choice for diverse operational needs.

OPNsense

Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud first world. Its flagship services, Zscaler Internet Access and Zscaler Private Access, create fast, secure connections between users and applications, regardless of device, location, or network. Zscaler services are 100% cloud-delivered and offer the simplicity, enhanced security, and improved user experience that traditional appliances or hybrid solutions are unable to match. Used in more than 185 countries, Zscaler operates the world’s largest cloud security platform, protecting thousands of enterprises and government agencies from cyberattacks and data loss.

Check more details: https://www.zscaler.com/produc...

Zscaler

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

1. Deciso B.V. 2. iXsystems, Inc. 3. EuroBSDCon 4. Netgate 5. Claranet 6. Voleatech 7. Open Systems AG 8. Securebit AG 9. Proxmox Server Solutions GmbH 10. AVM Computersysteme Vertriebs GmbH Additional customers include: T-Systems International GmbH, Deutsche Telekom AG, Vodafone GmbH, 1&1 IONOS SE, OVHcloud, Hetzner Online GmbH, Strato AG, PlusServer GmbH, Host Europe GmbH, United Internet AG, 1&1 Versatel Deutschland GmbH, QSC AG, Bechtle AG, Cancom SE, Computacenter AG & Co. oHG, T-Systems Multimedia Solutions GmbH, Atos SE, Capgemini SE, Accenture plc, IBM Corporation, Hewlett Packard Enterprise Company, Cisco Systems, Inc.

Zenith Live, Azure, Carlsberg Group

Buyer's Guide

OPNsense vs. Zscaler Cloud Firewall

June 2025

Free Report: OPNsense vs. Zscaler Cloud Firewall

Find out what your peers are saying about OPNsense vs. Zscaler Cloud Firewall and other solutions. Updated: June 2025.

DOWNLOAD NOW

856,873 professionals have used our research since 2012.

See our OPNsense vs. Zscaler Cloud Firewall report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.