Given the summaries, I prefer Sophos XG over Fortinet FortiGate primarily due to its quicker and simpler setup times, with instances of being operational within an hour, contrasting FortiGate's reports of up to three months for deployment. Additionally, Sophos XG's user feedback highlights a higher satisfaction in terms of the return on investment and a notable reduction in management headaches, indicating a more streamlined and efficient user experience.
pfSense is a powerful and reliable network security appliance primarily used for security purposes such as firewall and VPN or traffic shaping, network management, and web filtering. It is commonly used by small businesses and managed service providers to protect their customers' networks and enable remote access through VPNs.
PFSENSE turns out to be very economical, the license is free and for little money you get very good support
If you need to buy hardware onto which to install PfSense, go with their boxes on their website, they are great.
PFSENSE turns out to be very economical, the license is free and for little money you get very good support
If you need to buy hardware onto which to install PfSense, go with their boxes on their website, they are great.
Based on user feedback, the overall consensus is that the solution has received positive reception. Users have expressed satisfaction with various aspects, highlighting its quality, functionality, and value for money. They appreciate its user-friendly interface and the convenience it offers. Additionally, users have praised the prompt and helpful customer support provided. Some users have also mentioned the product's durability and reliability. The user reviews indicate a favorable experience with the solution.
We are not paying any licensing fees. OPNsense is completely free for us.
It costs about $1000.
We are not paying any licensing fees. OPNsense is completely free for us.
It costs about $1000.
Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.
Cisco devices are for sure costly and budget could be an important constrain on selecting them as our security solution.
I have to admit that the price is high. But I think it's worth it if the stability of your solution counts for you.
Cisco devices are for sure costly and budget could be an important constrain on selecting them as our security solution.
I have to admit that the price is high. But I think it's worth it if the stability of your solution counts for you.
Cisco Meraki MX appliances are next-generation firewalls with all the advanced security services needed for today’s IT security. The appliances are ideal for organizations considering a unified threat management (UTM) solution for branch offices, data centers, distributed sites, or campuses. Since Meraki MX is 100% cloud-managed, installation and remote management are simple and zero-touch.
The Meraki UTM is excellent when you buy the Advanced Security license. If you buy a different license you lost all the valuable functions.
It can always improve pricewise regarding throughput.
The Meraki UTM is excellent when you buy the Advanced Security license. If you buy a different license you lost all the valuable functions.
It can always improve pricewise regarding throughput.
Zscaler Internet Access is a cloud-native security service edge (SSE) platform. Its main purpose is to provide AI-powered protection for all users, all applications, and all locations. The solution replaces other legacy network security solutions to stop advanced attacks and prevent data loss by using a comprehensive zero trust approach.
The pricing is an issue. It is expensive compared to other firewalls on the market.
Our monthly fee is around R3000.
The pricing is an issue. It is expensive compared to other firewalls on the market.
Our monthly fee is around R3000.
Palo Alto Networks NG Firewalls are next-generation firewalls used for security to protect networks from threats and attacks. It is used for perimeter security, data center protection, and managing secure access to environments. Users highlight the NGFW's effectiveness in providing comprehensive security without impacting network performance. Users appreciate its ease of use, particularly in setup and ongoing management, making it a favored choice for businesses looking to secure their cloud environments.
Annually, the licensing costs are too much.
The licensing is annual, and there aren't any additional fees on top of that.
Annually, the licensing costs are too much.
The licensing is annual, and there aren't any additional fees on top of that.
Azure Firewall is a user-friendly, intuitive, cloud-native firewall security solution that provides top-of-the-industry threat protection for all your Azure Virtual Network resources. Azure Firewall is constantly and thoroughly analyzing all traffic and data packets, making it a very valuable and secure fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability. Azure Firewall allows users to create virtual IP addresses and provides for secure DDoS protection for the virtual machines on your network. It also provides fast and efficient east-west and north-south traffic security.
Azure Firewall is a managed, cloud-based network security service built to protect your Azure Virtual Network resources. It is a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.
Azure Firewall is quite an expensive product.
The licensing module is good.
Azure Firewall is quite an expensive product.
The licensing module is good.
Check Point NGFW is a next generation firewall that enables safe usage of internet applications by blocking malicious applications and unblocking safe applications. Check Point NGFW, which uses deep packet inspection to identify and control applications, has features such as application and user control and integrated intrusion prevention (IPS), as well as more advanced malware prevention capabilities like sandboxing.
The price is high in comparison to other solutions.
We pay $5,000-$6,000 a year.
The price is high in comparison to other solutions.
We pay $5,000-$6,000 a year.
WatchGuard Firebox is a versatile security solution primarily used for security purposes such as firewalling, VPN, and protecting networks from outside and inside threats. It is also used for routing, multi-factor authentication, vulnerability management, and segregating industrial networks from corporate networks.
Very competitive pricing regarding throughput compared to other alternatives.
Cheap.
Very competitive pricing regarding throughput compared to other alternatives.
Cheap.
Getting licenses in our country, Ghana, is not easy. Though, once we have them, adding them is quick (about a day).
The pricing was a factor for us, and we felt that the price was good.
Getting licenses in our country, Ghana, is not easy. Though, once we have them, adding them is quick (about a day).
The pricing was a factor for us, and we felt that the price was good.
Palo Alto Networks WildFire is a highly effective cloud-based advanced threat protection (ATP) solution that organizations in a wide variety of fields trust to help them keep safe from digital threats. It is designed to enable businesses to confront even the most evasive threats and resolve them. It combines many techniques to maximize the level of threat protection available to users.
It IS a bit expensive, but I think you get what you pay for. Value is there.
It's not particularly cheap, but it is absolutely worth it.
It IS a bit expensive, but I think you get what you pay for. Value is there.
It's not particularly cheap, but it is absolutely worth it.
Sophos UTM is a unified threat management platform designed to protect your businesses from known and emerging malware including viruses, rootkits and spyware. The solution provides a complete network security package with everything your organization needs in a single modular appliance.
The licensing model is very straightforward, it's a bit pricey, but for what you get, it's well worth it.
If you can afford it, go for a small Check Point, as it is easier to manage.
The licensing model is very straightforward, it's a bit pricey, but for what you get, it's well worth it.
If you can afford it, go for a small Check Point, as it is easier to manage.
Juniper SRX is a next-generation security solution that enables users to expand and secure their networks without incurring heavy costs or sacrificing performance.
The prices are very good as compared to other vendors.
Pricing is good. Most of the costs are in the UTM (IDS/IPS, virus scanning, etc) subscription.
The prices are very good as compared to other vendors.
Pricing is good. Most of the costs are in the UTM (IDS/IPS, virus scanning, etc) subscription.
Untangle NG Firewall is an open-source firewall and gateway security platform that helps keep networks safe while accessing the internet. It offers a free core firewall platform with paid add-ons, and a cloud-based management platform with a variety of deployment options for smaller teams. The solution also has a cloud-based management console for remote management that can either be deployed on premises or as SaaS, and virtualized or cloud-based. It also has flexible deployment options, including third-party hardware, as a virtual machine, or as a turnkey appliance. Untangle NG Firewall is ideal for small IT teams with limited budgets.
It is the most cost-effective to use.
We pay $350 USD per year for the solution. There are no additional costs. As long as you're not using a physical appliance, that's all you need.
It is the most cost-effective to use.
We pay $350 USD per year for the solution. There are no additional costs. As long as you're not using a physical appliance, that's all you need.
FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.
The pricing and licensing are not as expensive as its competitors.
It is an expensive solution if you are migrating from an open source solution.
The pricing and licensing are not as expensive as its competitors.
It is an expensive solution if you are migrating from an open source solution.
SonicWall NSa dispenses advanced threat protection using a high-performance security platform. The NSa series implements intuitive deep learning technologies in the SonicWall Capture Cloud Platform to dispatch the automated real-time threat detection and deterrence enterprise organizations need today. SonicWall Network Security appliance (NSa) series is best for mid-sized organizations to distributed enterprises and data centers.
SonicWall NSa series next-generation firewalls (NFGWS) combine two very robust security ideologies to deliver advanced threat protection to keep users’ networks safe. Boosting SonicWall’s multi-engine advanced threat protection (ATP) is their Real-time Deep Memory Inspection (RTDMI™). The RTDMI intuitively identifies and stops aggressive zero-day threats and vicious malware by investigating memory directly. This real-time process allows SonicWall RTDMI to be accurate, lessen false positives and discover and alleviate malicious threats and attacks. SonicWall’s single-pass Reassembly-Free Deep Packet Inspection (RFDPI) will audit every byte of each and every packet by investigating both outbound and inbound traffic on the firewall. By combining the SonicWall Capture Cloud Platform along with on-box offerings such as intrusion prevention, web/URL filtering, and anti-malware, the NSa series is able to block the most malicious and dangerous threats at the gateway.
Licensed features provide application control, content filtering, antivirus, and anti-malware all in a single appliance.
The CPUs are not able to compete with a similar price point to the Fortinet, WatchGuard, or Palo Alto product.
Licensed features provide application control, content filtering, antivirus, and anti-malware all in a single appliance.
The CPUs are not able to compete with a similar price point to the Fortinet, WatchGuard, or Palo Alto product.
Kerio Control is a popular security product for small and medium-sized businesses. It is a next-generation firewall that provides unified threat management without complexity. Kerio Control provides advanced anti-virus protection and industry-leading web and content application filtering, and has a secure VPN.
Search and compare.
Pricing is good, but the licensing took a lot of time.
Search and compare.
Pricing is good, but the licensing took a lot of time.
Sophos XGS is a comprehensive network security solution designed to protect organizations from advanced threats. It combines next-generation firewall capabilities with advanced threat protection, web filtering, and application control.
The price of the solution is reasonable and their target market is small to medium-sized companies.
The license for Sophos XGS is for three years, paid on a yearly basis. Everything is included with the license; there are no additional fees.
The price of the solution is reasonable and their target market is small to medium-sized companies.
The license for Sophos XGS is for three years, paid on a yearly basis. Everything is included with the license; there are no additional fees.
Palo Alto Networks VM-Series is a highly effective advanced threat protection (ATP) solution and firewall that can be hosted on cloud computing technologies designed by many different companies. It decreases the amount of time that it will take administrators to respond to threats. Users that deploy VM-series have 70% less downtime than those who use similar firewalls. Neither protection nor efficiency are concerns when this next-generation firewall is in play.
For what you get, it does do what it says. It is a good value for an enterprise firewall.
The licensing is pretty much like everyone else.
For what you get, it does do what it says. It is a good value for an enterprise firewall.
The licensing is pretty much like everyone else.
Sangfor Next Generation Firewall (also known as NGAF) is a converged security solution providing protection against advanced threat, malware, viruses, ransomware and web-based attacks using integrated security features like firewall, IPS, anti-virus, anti-malware, APT, URL filtering, Cloud Sandbox, and WAF. As the world's first AI-enabled and fully integrated Next Generation Firewall & Web Application Firewall (WAF), NGAF offering the security visibility, real-time detection and response, simplified operation and maintenance and high-performance application layer security needed to operate an enterprise network in total security. Tested and proven to provide cutting-edge network security by ICSA Labs and endorsed by Gartner Inc., NGAF harnesses the power of Sangfor’s Neural-X threat intelligence and analytics platform and Engine Zero’s innovative malware detection to provide next-generation protection for today’s enterprise.
It costs about 8 to 10 thousand dollars per year for 500 users, standard licensing fees included.
Sangfor is cheaper than competing vendors.
It costs about 8 to 10 thousand dollars per year for 500 users, standard licensing fees included.
Sangfor is cheaper than competing vendors.
ZyWALL USG Series delivers high-access quality to help businesses satisfy the demand for always-online communications. For internal deployments, the ZyWALL USG Series provides active-passive High-Availability (HA) service to support device or connection failover.
This gateway is pretty cheap.
The price of Zyxel Unified Security Gateway is good compared to other similar products in the market.
This gateway is pretty cheap.
The price of Zyxel Unified Security Gateway is good compared to other similar products in the market.
For mid-sized companies, they sell their appliances for good prices.
The SN200 series costs between $500 USD and $600 USD per year, whereas the SN700 series costs approximately $1,000 annually.
For mid-sized companies, they sell their appliances for good prices.
The SN200 series costs between $500 USD and $600 USD per year, whereas the SN700 series costs approximately $1,000 annually.
Barracuda CloudGen Firewall is a comprehensive network security solution that provides advanced protection for organizations of all sizes. It offers next-generation firewall capabilities, including application control, intrusion prevention, and web filtering.
It is a product with a very transparent model of licensing. In the sense of hidden expenses, they do not exist with this model.
We evaluated a lot of different options. We concluded that Barracuda NG Firewall provided the most features for an exemplary price.
It is a product with a very transparent model of licensing. In the sense of hidden expenses, they do not exist with this model.
We evaluated a lot of different options. We concluded that Barracuda NG Firewall provided the most features for an exemplary price.
Forcepoint Next Generation Firewall is a versatile and comprehensive solution for perimeter security, offering features such as SD-WAN, IPS, VPN, and cloud or on-premises subscription keys. It is preferred by many clients over Cisco and is used for obligation redundancy, VPN access, and as the main point of security in infrastructure.
The big advantage of this solution is that we can select the right model for our requirements, which is not too expensive.
Forcepoint is very expensive but it's really secure.
The big advantage of this solution is that we can select the right model for our requirements, which is not too expensive.
Forcepoint is very expensive but it's really secure.
Huawei's Next-Generation Firewall (NGFW) is a cutting-edge security solution designed to protect networks from advanced threats. With its advanced threat detection and prevention capabilities, the Huawei NGFW ensures the highest level of network security.
Licensing fees are billed on an annual basis.
The price of the license of this solution is high.
Licensing fees are billed on an annual basis.
The price of the license of this solution is high.
CloudGuard Network Security is a firewall solution that provides network security for cloud environments. It protects against cyber threats with multi-layered security for public, private, and hybrid clouds.
On average, it is normally on the lower end, being less expensive than Palo Alto or Cisco.
It is more expensive than other solutions and would be more competetive in the market if it came down in price.
On average, it is normally on the lower end, being less expensive than Palo Alto or Cisco.
It is more expensive than other solutions and would be more competetive in the market if it came down in price.
Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud first world. Its flagship services, Zscaler Internet Access and Zscaler Private Access, create fast, secure connections between users and applications, regardless of device, location, or network. Zscaler services are 100% cloud-delivered and offer the simplicity, enhanced security, and improved user experience that traditional appliances or hybrid solutions are unable to match. Used in more than 185 countries, Zscaler operates the world’s largest cloud security platform, protecting thousands of enterprises and government agencies from cyberattacks and data loss.
The licensing is on a yearly basis. It is somewhere around 30 or 40 pounds per user for our organization.
There are licensing costs, and I would not say that it's a cheap vendor.
The licensing is on a yearly basis. It is somewhere around 30 or 40 pounds per user for our organization.
There are licensing costs, and I would not say that it's a cheap vendor.
Hillstone E-Series is a comprehensive network security solution designed to protect organizations from advanced threats. It offers a range of features including a firewall, intrusion prevention system (IPS), virtual private network (VPN), and application control.
The cost per year for licensing, and hardware, is approximately $850 for the basic plan.
Hillstone's pricing is economical and neither very high nor very low.
The cost per year for licensing, and hardware, is approximately $850 for the basic plan.
Hillstone's pricing is economical and neither very high nor very low.
The price is very competitive and the licensing is easy.
It is very reasonably priced as compared to other solutions in the market.
The price is very competitive and the licensing is easy.
It is very reasonably priced as compared to other solutions in the market.
GajShield Next Generation Firewall (NGFW) is a cutting-edge cybersecurity solution designed to protect organizations from advanced threats and secure their network infrastructure. With its advanced features and robust capabilities, GajShield NGFW offers comprehensive security, high performance, and simplified management.
It was about 15% cheaper compared to Sophos.
The price of the GajShield Next Generation Firewall is very attractive when compared to other solutions.
It was about 15% cheaper compared to Sophos.
The price of the GajShield Next Generation Firewall is very attractive when compared to other solutions.
LANCOM R&S®Unified Firewalls offer small and medium-sized enterprises a customized complete solution for state-of-the-art security and Unified Threat Management (UTM). The next-generation Firewalls provide reliable cyber security, either stand-alone or operated via the LANCOM Management Cloud (LMC).
PA-Series constitute the full range of our ML-Powered Next-Generation Firewall physical appliances that are easy to deploy into your organization’s network and purposefully designed for simplicity, automation, and integration. No matter where you need protection, our PA-Series ML-Powered Next-Generation Firewalls are architected to provide consistent protection to your entire network – from your headquarters and office campus, branch offices and data center to your mobile and remote workforce.
Palo Alto’s pricing is way higher than any other solution provider.
Palo Alto is more expensive than FortiGate.
Palo Alto’s pricing is way higher than any other solution provider.
Palo Alto is more expensive than FortiGate.
WiJungle is an Unified Network Security Gateway that enables organizations to manage and secure their entire network through a single window.
