No more typing reviews! Try our Samantha, our new voice AI agent.

Trellix Intrusion Prevention System vs WatchGuard Firebox comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Feb 15, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Intrusion Detection and Prevention Software (IDPS)
1st
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
592
Ranking in other categories
Secure Web Gateways (SWG) (2nd), Firewalls (1st), Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st), ZTNA (1st), Unified Threat Management (UTM) (1st)
Trellix Intrusion Preventio...
Ranking in Intrusion Detection and Prevention Software (IDPS)
12th
Average Rating
8.4
Reviews Sentiment
6.6
Number of Reviews
16
Ranking in other categories
No ranking in other categories
WatchGuard Firebox
Ranking in Intrusion Detection and Prevention Software (IDPS)
4th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
140
Ranking in other categories
Data Loss Prevention (DLP) (11th), Firewalls (12th), Anti-Malware Tools (6th), Endpoint Detection and Response (EDR) (10th), Application Control (3rd), Unified Threat Management (UTM) (3rd)
 

Mindshare comparison

As of July 2026, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Fortinet FortiGate is 9.2%, down from 17.6% compared to the previous year. The mindshare of Trellix Intrusion Prevention System is 3.0%, up from 2.7% compared to the previous year. The mindshare of WatchGuard Firebox is 4.2%, down from 9.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Intrusion Detection and Prevention Software (IDPS) Mindshare Distribution
ProductMindshare (%)
Fortinet FortiGate9.2%
WatchGuard Firebox4.2%
Trellix Intrusion Prevention System3.0%
Other83.6%
Intrusion Detection and Prevention Software (IDPS)
 

Featured Reviews

JK
IP Network Security Specialist at MTN Ghana
Process-Level CPU Visibility: Introduce detailed CPU-usage metrics per subsystem (e.g., IPS engine, logging) so administrators can quickly identify and address performance spikes.
Analytics with FortiAnalyzer. Being able to pull in logs not just from our FortiGates but from all our other firewalls and then get them in one view has been a game changer. Whether I’m building an executive dashboard or doing a deep dive forensics session, I get everything I need without navigating consoles.Straightforward Application Control. FortiGate spots and blocks unwanted apps (eq. like BitTorrent or streaming services) with accuracy. Segmentation with VDOMs. We’ve carved our data center into four logical ‘mini-firewalls’ enterprise, core, billing, and WAF—all on one box. Each has its own rules and logs, and any traffic between them still gets inspected. It’s like having multiple appliances without the extra hardware. Always-Up-to-Date Threat Feeds. Daily signature updates and AI-driven threat sensing mean we’re blocking the latest vulnerabilities almost as soon as they’re announced.
BS
Large account Manager at Softcell Technologies Limited
Has offered reliable threat protection and detailed network insights but could expand features beyond existing capabilities
The best features of Trellix Intrusion Prevention System include advanced ATP (Advanced Threat Protection), which uses signatures, behavior analysis, and machine learning to stop zero-day exploits and malware advanced persistent threats (APTs). They track and collect data from APTs, which allows them to track malicious files entering the environment. The system offers inline prevention and real-time automatic blocking of malicious packets before they reach the network. It integrates with the Trellix ecosystem and provides application visibility and control. The solution provides deep insight into network traffic, applications, and protocols for better information. All packets coming through the application are analyzed and reported. They share intelligence updates regularly to protect from different malicious files and sector-specific threats. It supports both on-premise and cloud environments.
Abhishek Saini - PeerSpot reviewer
Professional Services Engineer at Next7 IT
Centralized security management has improved VPN reliability and simplified daily operations
WatchGuard Firebox is a strong and reliable platform overall, but there are a few areas where improvements could make the experience even better. One area is the user interface and navigation in some management tools. While the platform is powerful, certain configurations and troubleshooting workflows can feel less intuitive compared to some newer cloud-native firewall platforms. Another point is reporting and log analysis. Although the logging features are very useful, deeper analytics and more customizable reporting dashboards would make security monitoring much more effective. Firmware upgrades and policy synchronization can sometimes require careful planning to avoid security interruptions. Overall, the core security and VPN functionality are very solid, but improving usability, reporting, and automation would make the platform even stronger. One area that could be improved is the learning curve for new administrators. While experienced engineers can work with the platform effectively, some advanced networking and security configurations can be a bit complex for junior technicians. More guided configuration workflows, smarter recommendations, and simplified troubleshooting tools would make onboarding easier. Another improvement would be more flexible reporting customization for executive-level and client-facing reports.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features of the solution are SD-WAN, filtering testing applications, web filtering, and the new VPN."
"Fortinet can pinpoint the source of the problem, so we can work with the right people to get it resolved."
"The solution’s interface is pretty user-friendly."
"Some of the best features of Fortinet FortiGate include the next-generation firewall features."
"What I like the most is the configuration and that it's simple, and straightforward to maintain."
"The web filtering feature and the intrusion protection system are the most valuable. It is a resilient appliance. I never had an issue with it in terms of any security breaches."
"The most useful feature of FortiGate IPS for me is Application Control."
"Fortinet FortiGate IPS has helped increase the efficiency of our network operations and we are experiencing fewer queries in the network and security domain."
"We use a lot of the functions this solution provides such as the firewall and the ability to check aliases, and we can monitor and show the traffic that's moving in and out."
"It has a lot of functions, such as firewall. We are administrators, and we create some rules to protect our network. We also monitor the traffic in and out and have disk encryption on-premises. When we detect malware, we scan for the virus on the PC. We can then delete or block the malware."
"It's definitely more effective compared to the next-generation firewall that has a built-in IPS."
"The best features of Trellix Intrusion Prevention System include advanced ATP (Advanced Threat Protection), which uses signatures, behavior analysis, and machine learning to stop zero-day exploits and malware advanced persistent threats (APTs)."
"There's a good dashboard you can drill down into. It helps you easily locate intrusions and the source of attacks."
"McAfee NSP is much more stable than Cisco."
"The product is worth the investment."
"It improved my security by stopping an attack to the signature base, or the behavior base."
"The most valuable feature is the protection that it offers, and the analytics are important because if there is an abnormality then it provides that information to us."
"The alarm system is valuable."
"If we don't want specific data sent out, the tool will stop that data based on the policy we have allocated to it. It has reduced the risks of sending data where it shouldn't be. I haven't faced any issues with the tool's integration capabilities."
"The throughput is great. It's perfect. We have no issues whatsoever. The management features are very powerful..."
"​Efficient to setup, run, and maintain. Saving man hours and cost in the process."
"WatchGuard Firebox simplifies my job through the policies we can define, and when we create a policy, it simplifies our workflow, which helps with our overall efficiency."
"The most important feature of this solution is the SLAs."
"The ease of use is most valuable. You can quickly train someone who hasn't seen a firewall in life. You can get people up to speed, and in a few months, they are able to manage this product very easily. It is a very user-friendly, scalable, and stable product. Its price is also spot-on."
 

Cons

"I think they need to improve more in order to be a competitor with the leaders of the field."
"However, apart from this, I don’t see a significant differentiator between FortiGate and other firewalls."
"The user interface could be improved to make it less confusing and easier to set up."
"Sometimes, we open a ticket, and it is very difficult to get a solution."
"There were quite a few problems with the stability of the system."
"At the moment, the main concern is the pricing and the type of licensing."
"They sometimes hide some features and if you want to enable them, you have to go in the CLI, enable the feature and configure it through the CLI. Customers, typically, like everything to be done by the GUI."
"Need to Improvement in Reporting"
"Some of the documentation is not as straightforward as it could be. It's much too general - especially in areas related to updates."
"Trellix Intrusion Prevention System does not provide virtual patching."
"The area of concern where the tool needs improvement is how the product prompts users at a network level that helps prevent any wireless network attacks through alerts and notifications."
"The pricing could be improved."
"The solution needs to improve the graphical interface. And they had a limitation in some of the sensor modems as well."
"We would like to have a simpler version. Some settings and functions on the McAfee console are complex and complicated. I want the management console to be simpler."
"The deployment was a little difficult, I did it myself."
"The technical support has room for improvement."
"The main problem that WatchGuard Threat Detection and Response has is that they use several tools to do the same tasks, and they are sometimes very complicated to use and very slow."
"Firebox would be improved with integration for endpoint protection solutions."
"They are working on cloud-based options. However, they do not have the options fully functional in their solution at this time."
"One other shortcoming is that there is no backup for it. We really haven't figured out how we might solve that problem. We may want to put a duplicate in... With WatchGuard, we just have the one box. If that were to fail, we'd probably be really hurting."
"I'd like a few extra features, especially around threat severity assessment."
"Its documentation could be improved. Sometimes, you need to search a bit longer to find what you are looking for."
"We use WatchGuard to manage our failover for internet. If a primary internet goes down, it does a failover to the secondary the internet. However, what it doesn't do so well is that if the primary internet has a lot of latency but it's not completely down, it doesn't do a failover to the backup in a timely manner."
"The way Secure Sign-On authentication is happening needs to be improved. When the Secure Sign-On portal is turned on, anybody who comes into the campus, whether he or she is a staff member or a guest, has to go past the initial portal. One of the shortcomings is the username. It shouldn't allow permutations or combinations with upper or lower cases. For example, when there is a username abc, it shouldn't allow ABC or Abc. It should not allow the same username, but currently, two separate people can go in. Therefore, its authentication or validation should be improved, and the case sensitiveness should be picked up. If I have restricted someone to two devices, they shouldn't be able to use different combinations of the same username and get into the third or fourth device. It shouldn't allow different combinations of alphabets to be used to log in."
 

Pricing and Cost Advice

"Fortinet FortiGate as a less expensive solution than Palo Alto."
"The pricing is flexible."
"The pricing depends on the FortiGate model we are using, ranging from $3,000 to $20,000 US dollars."
"It's a very full-featured and it's priced well solution."
"We pay for the solution annually."
"It is somewhat expensive compared to other solutions such as Sophos."
"There is an annual license to use this solution. The prices have been increasing over the years."
"FortiGate Next Generation Firewall costs our company around $12000 per year."
"The tool is competitively priced."
"I rate the product’s pricing an eight out of ten."
"Despite the fact that there is always room for improvement, the current pricing of the solution is still lower compared to its competitors."
"Each one, for the primary unit, was $8,600 and the High Availability unit was $2,000. That's with three years of subscription and support and the Total Security Suite."
"They have an annual subscription license. Initially, we had opted for three years. After that, we went for another three years, and after that, we have been doing it yearly. They also have a license for five years."
"It's an affordable tool"
"I think the larger firewall packages are much better because a normal firewall is not enough for these times. You need IPS, APT, and all the security features of a firewall that you can buy."
"The licensing contract we have is on a three-year basis. There aren't any costs in addition to the standard licensing fees—usually, every three years, we just purchase or renew the same license and we are okay. Every six years, we completely change the firewall, but that's the usual schema. So after three years, we just renew the licenses for another three years, and then after that particular period of time, we just purchase another firewall equivalent to the ones that we currently use."
"Cheap."
"It's in the medium range. Its price is pretty good considering the functions and add-ons that are used."
report
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Comms Service Provider
10%
Computer Software Company
9%
Manufacturing Company
9%
Financial Services Firm
7%
Manufacturing Company
12%
Comms Service Provider
11%
Financial Services Firm
9%
Construction Company
7%
Comms Service Provider
12%
Manufacturing Company
8%
Computer Software Company
8%
Construction Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business369
Midsize Enterprise139
Large Enterprise195
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise6
Large Enterprise6
By reviewers
Company SizeCount
Small Business101
Midsize Enterprise30
Large Enterprise17
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
What needs improvement with McAfee Network Security Platform?
Trellix Intrusion Prevention System does not provide virtual patching. Patching involves updates on the OS side to ad...
What is your primary use case for McAfee Network Security Platform?
We do not use Trellix Intrusion Prevention System; rather, we sell the Trellix Intrusion Prevention System solution. ...
What advice do you have for others considering McAfee Network Security Platform?
I have experience working with other tools, specifically Trellix solutions such as DLP, EDR, and MDR, as well as with...
What is your primary use case for WatchGuard Firebox?
We are providing our services to all WatchGuard customers in the region.
What is your primary use case for WatchGuard Firebox?
We just use it as a secondary WiFi device. We're a small office and we needed to set up a WiFi device for a few of ou...
What is your primary use case for WatchGuard Firebox?
We're a hospital and we use it for developing our incoming and outgoing policies, and we also use it for VPN.
 

Also Known As

Fortinet FortiGate Next-Generation Firewall
McAfee Network Security Platform, McAfee NSP, IntruShield Network Intrusion Prevention System, IntruShield Network IPS
WatchGuard Threat Detection and Response, WatchGuard Application Control, WatchGuard Data Loss Prevention, WatchGuard Gateway AntiVirus, WatchGuard Intrusion Prevention Service
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
Desjardins Group, HollyFrontier, Nubia, Agbar, WNS Global Services, INAIL, Universidad de Las Américas Puebla (UDLAP), Cook County, China Pacific Insurance, Bank Central Asia, California Department of Corrections and Rehabilitation, City of Chicago, Macquarie Telecom, Sutherland Global Services, Texas Tech University Health Sciences Center, United Automotive Electronic Systems
Ellips, Diecutstickers.com, Clarke Energy, NCR, Wrest Park, Homeslice Pizza, Fortessa Tableware Solutions, The Phoenix Residence
Find out what your peers are saying about Trellix Intrusion Prevention System vs. WatchGuard Firebox and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.