Try our new research platform with insights from 80,000+ expert users

Cato SASE Cloud Platform vs Menlo Secure comparison

Cato Networks and Menlo Security are both solutions in the ZTNA category. Additionally, 100% of Cato Networks users are willing to recommend the solution, compared to 100% of Menlo Security users who would recommend it.
Cato SASE Cloud Platform
Read 28 Cato SASE Cloud Platform reviews
  • 5,519 Views
  • 3,445 Comparison Views
100% willing to recommend
Menlo Secure
Read 4 Menlo Secure reviews
  • 45 Views
  • 33 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cato SASE Cloud Platform and Menlo Secure based on real PeerSpot user reviews.

Find out in this report how the two ZTNA solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cato SASE Cloud Platform vs. Menlo Secure Report (Updated: March 2025).
Buyer's Guide
Cato SASE Cloud Platform vs. Menlo Secure
March 2025
Download the complete report
Helped 846,617 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cato SASE Cloud Platform
Average Rating
8.8
Reviews Sentiment
7.7
Number of Reviews
28
Ranking in other categories
WAN Optimization (1st), Cloud Access Security Brokers (CASB) (6th), Software Defined WAN (SD-WAN) Solutions (4th), WAN Edge (4th), ZTNA as a Service (4th), Secure Access Service Edge (SASE) (5th)
Menlo Secure
Average Rating
9.2
Reviews Sentiment
6.9
Number of Reviews
4
Ranking in other categories
Secure Web Gateways (SWG) (31st), Firewalls (51st), ZTNA (27th), Cloud Security Remediation (7th)
 

Featured Reviews

Alexander Azikov - PeerSpot reviewer
Provide a seamless experience for end users with internet duplication feature
The setup and onboarding process is very straightforward - I'd rate it a ten out of ten for ease. We use CatoCloud as our cloud provider. They have points of presence, and we connect to the nearest one to our physical location. All the routing, inspection, and logic for what to route, block, or allow happens in the cloud, not on the local device. Our deployment took a couple of weeks because we installed the sites manually. If we had a team to help switch locally, it could have been done in a week. The deployment process is straightforward. We set up all the sites in their cloud system; then, they ship the sockets directly to the location or our main office. We connect the device to the internet, it gets activated, we assign it to a specific site inside the cloud, and it's online and ready to use. It's very easy.
Read full review
Olivier DALOY - PeerSpot reviewer
Secures users wherever they are and enable us to inspect SSL traffic, but we encountered too many issues
The solution should have no impact but it does have a bit of impact on end-users. For example, we encountered some issues in the downloads that took longer than they did without using Menlo. That is clearly not transparent for users. We expected not to have any latency when downloading anything from the internet with Menlo compared to without Menlo. We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution. In other words, we hope to get the same level of protection, while reducing the number of visible bugs, issues, latencies, impacts on performance, et cetera, that we have today with Menlo. We already solved most of them, but we still have too many such instances of issues with Menlo, even though it is protecting us for sure. The weak point of the solution is that it has consumed far too much of my team's time, taking them away from operations and projects and design. It took far too much time to implement it and get rid of all of the live issues that we encountered when our users started using the solution. The good point is that I'm sure it is protecting us and it's probably protecting us more than any other solution, which is something I appreciate a lot as a CISO. But on the other hand, the number of issues reported by the users, and the amount of time that has been necessary for either my team or the infrastructure team to spend diagnosing, troubleshooting, and fixing the issues that we had with the solution was too much. And that doesn't include the need to still use our previous solution, Blue Coat, that we have kept active so that whatever is not compatible or doesn't work with Menlo, can be handled by that other solution. It is far too demanding in terms of effort and workload and even cost, at the end of the day. That is why we decided to transition to another solution. If we had known in the beginning that we would not be able to get rid of Blue Coat, we probably would not have chosen Menlo because we were planning to replace Blue Coat with something that was at least able to do the same and more. We discovered that it was able to do more but it was not able to replace it, which is an issue. It is not only a matter of cost but is also a matter of not being able to reduce the number of partners that you have to deal with. In addition, they could enhance the ability to troubleshoot. Whenever a connection going through Menlo fails for any reason, being able to troubleshoot what the configuration of Menlo should be to allow it through would help, as would knowing what level of additional risk we would be taking with that configuration.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Unified management and internet duplication are our most valuable features. They provide a seamless experience for end users—if one link goes down, they can still work without noticing."
"It's a cloud-based solution that integrates well with everything."
"The main features we use are the firewall and secure web gateway."
"The most valuable feature of Cato Networks is the CASB and the documentation is useful."
"When I first encountered Cato, I didn't know how to use it, but after a week of training, I could onboard our systems to it, so the solution was easy to learn and navigate."
"We appreciate the optimization and acceleration of the performance of SDP users."
"The visibility control and security aspects are amazing."
"The most valuable features of Cato Networks are the always-on VPN for remote workers and centralized management. Additionally, web filtering and antivirus are good."
More Cato SASE Cloud Platform pros
"The fact that it is a cloud proxy solution is another feature we like. For example, if you acquire a new company, you can use it to protect that new company without the need to install anything physically on their networks."
"For us, the primary goal is protection on the web, and that's extremely important. We're not using any of the other services at this time. The web part is key to the success of the organization. It gives us the ability to protect. It can isolate. It opens the session in an isolated format so that the code isn't running locally. It is running over in the Menlo environment, not in ours. It is not running on the local computer, whereas if you were to go to a normal website, it would run Java or something else on the local machine and potentially execute the malicious code locally. So, it does give us that level of protection."
"Accessing the internet with a proxy from anywhere is the most valuable feature. It ensures that users are only able to browse legitimate websites. If they happen to go to a legitimate website with a malicious payload, the isolation feature will take care of that."
"It has reduced security events to follow up on. While it is not 100%, there has been probably a 90% or more reduction. We were getting hit left, right, and center constantly from people browsing the Internet and hitting bad websites. It was not just bad websites that were stood up to be malicious, but good sites that were compromised."
 

Cons

"They can't do one-to-one NAT (Network Address Translation) in AP (their access point), and that is something that Palo Alto can do."
"A little tweaking or improvement of the UI in terms of logging when troubleshooting would be an improvement because it's very detailed."
"The price could be better."
"Web application firewalling (WAF) is a feature we would like to have in this solution and does not exist yet."
"Cato Networks security could be better."
"The tool needs to be more granular. Its reports are not very in-depth."
"For a packaged solution, needing external intervention or a system integrator to get other features not offered by Cato Networks could be an area for improvement. Cato Networks does what it's meant to do and is even overstretching capabilities when introducing new features. The product can only have very few features added on top of what its currently doing. Managed service providers can deliver the extra features you'd need. It's a set of managed services, and what Cato Networks does is very comprehensive. So, for the time being, when the actual incarnation of the SASE solution is deployed, Cato Networks is a very effective product. Naturally, technology will evolve, so everybody knows that in three, four, or five years, there will be a new kid on the block, a new game. Still, at the moment, Cato Networks only needs to improve a little regarding SASE delivery. The product is doing very well, but one feature the Cato Networks team is doing right is preparing for the future through deploying the SSE 360, so the security service is at that edge. It's an excellent strategy to prepare for the future. SSE 360 is what Cato Networks should invest in the most to keep prospering."
"I would like to see better integration with identity providers."
More Cato SASE Cloud Platform cons
"Currently, I don't have a good way to see which of my rules are being used in the access control lists. I have numerous entries, but are they all still needed? A report that would show me my list of who is allowed and whether we're actually using it would be useful because I can then go clean up my list. It would be easier to manage. We would eliminate the vulnerability of unused services."
"The user monitoring could still be improved."
"In the best of all worlds, we wouldn't have to make any exceptions. However, that is a big ask because a lot of that depends on how websites are constructed. For example, there are some very complex, application-oriented sites that we end up making exceptions for. It is really not that big an issue for us to make the exceptions. We feel like we are doing that without a huge impact on our security posture, but we do have to make some exceptions for complex sites, e.g., mostly SaaS-type sites and applications."
"We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution."
 

Pricing and Cost Advice

"The solution has reasonable pricing. It has a yearly subscription. The pricing depends on the permit to code. Sometimes, we need to increase the permit, and the cost will automatically change. There's no fixed cost. Unless we request additional modules such as DNS security, ELP, and decent features, there will be no additional cost."
"The platform is expensive."
"Cato Networks is an expensive product, but it works out of the box, so that's the usual trade-off, make versus buy. If you decide to buy a product that doesn't require much programming, then you'd want to go for Cato Networks, which will work naturally, and immediately without any complex setup. However, the product is a little bit more expensive than the competitors. On a scale of one to five, I'd rate the pricing for Cato Networks as four."
"You pay yearly based on the speed of your network. If you increase the speed of your network, you increase the cost for your throughput. It is by bandwidth for the most part and then licenses for VPN. There is some per-seat licensing for VPN access, but the majority of it is minimal. It is like $30 a year per client. The rest is based on how much bandwidth you'll use. You pay for that upfront for the year, and if you have to increase it, you increase it, and then they let you send more data through. There are no additional costs in addition to the standard licensing fees."
"Cato Networks seems more expensive than Cisco Meraki."
"The pricing is on the higher side, almost an eight out of ten."
"The solution's pricing is flexible."
"The price is not an issue for us, as it is priced more competitively than some other vendors."
More Cato SASE Cloud Platform pricing and cost advice
"We save a ton of money and time. Previously, the numerous hits that we were receiving from our security tools, prior to implementing them, had to all be chased down, dispositioned, and endpoints had to be reimaged. It was just a ton of effort to do all that. That is where the savings from time and money come in."
"The solution is expensive. It's more expensive than the solution I previously used. Compared with the other cloud-based solutions, it's very competitive."
"It is appropriately priced for what they're doing for us. Considering the protection provided, I feel their pricing is spot-on."
report
See which vendors are best for you
Use our free recommendation engine to learn which ZTNA solutions are best for your needs.
See recommendations
846,617 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
27%
Manufacturing Company
11%
Financial Services Firm
8%
Comms Service Provider
5%
Computer Software Company
18%
Financial Services Firm
15%
Manufacturing Company
8%
University
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Cato Networks?
The solution is a simple WAN solution. We've onboarded the socket on the Cato platform, and it provides connectivity. There is no complex routing.
See all answers
What is your primary use case for Cato Networks?
We have been using Cato Networks as a solution for firewall and secure web gateway.
See all answers
What advice do you have for others considering Cato Networks?
I would definitely recommend Cato Networks to other users. I'd rate the solution nine out of ten.
See all answers
Ask a question
Earn 20 points
 

Comparisons

Zscaler Zero Trust Exchange Platform vs Cato SASE Cloud Platform Logo
Zscaler Zero Trust Exchange Platform vs Cato SASE Cloud Platform
Compared 16% of the time
Prisma Access by Palo Alto Networks vs Cato SASE Cloud Platform Logo
Prisma Access by Palo Alto Networks vs Cato SASE Cloud Platform
Compared 14% of the time
Netskope vs Cato SASE Cloud Platform Logo
Netskope vs Cato SASE Cloud Platform
Compared 11% of the time
Fortinet FortiGate vs Cato SASE Cloud Platform Logo
Fortinet FortiGate vs Cato SASE Cloud Platform
Compared 8% of the time
Cloudflare One vs Cato SASE Cloud Platform Logo
Cloudflare One vs Cato SASE Cloud Platform
Compared 8% of the time
More Cato SASE Cloud Platform Competitors
Cisco Umbrella vs Menlo Secure Logo
Cisco Umbrella vs Menlo Secure
Compared 22% of the time
Talon vs Menlo Secure Logo
Talon vs Menlo Secure
Compared 15% of the time
Zscaler Internet Access vs Menlo Secure Logo
Zscaler Internet Access vs Menlo Secure
Compared 12% of the time
Netskope Next Gen Secure Web Gateway vs Menlo Secure Logo
Netskope Next Gen Secure Web Gateway vs Menlo Secure
Compared 11% of the time
Prisma Access by Palo Alto Networks vs Menlo Secure Logo
Prisma Access by Palo Alto Networks vs Menlo Secure
Compared 11% of the time
More Menlo Secure Competitors
 

Product Reports

Buyer's Guide
Cato SASE Cloud Platform
April 2025
Cato SASE Cloud Platform reportDownload Cato SASE Cloud Platform product report
Buyer's Guide
Menlo Secure
March 2025
Menlo Secure reportDownload Menlo Secure product report
 

Also Known As

Cato Networks
Menlo Security Web Security, Menlo Web Security
 

Overview

Cato Networks is a leading SASE (Secure Access Service Edge) platform, combining SD-WAN and network security to obtain a cloud-native service. Cato Networks optimizes and secures application access for users and identities. The platform delivers a next-generation secure networking architecture that minimizes legacy IT infrastructures’ complexity, costs, and risks. The goal of Cato Suite is to connect any user to any application securely and optimally.

Cato Suite runs on a private global network of more than 65 PoPs (points of presence) connected via SLA-backed network providers. The service can connect branches, data centers, users, and clouds. Cato can be deployed in stages to augment legacy network services.

Cato Suite delivers end-to-end route optimization for WAN and cloud traffic. The architecture is self-healing, enabling a high service uptime.

Cato Features

Cato Cloud has a global backbone to deliver a reliable, global network. Here are some key SD-WAN features of Cato Cloud.

  • Optimizes traffic flows: The Cato Suite can individually optimize traffic flows in the last mile - from the customer’s location to the point of presence, and also between PoPs. This feature eliminates the need for internet providers to hand off traffic to each other, avoiding the resulting latency and congestion.
  • Controls and manages bandwidth: The software-defined overlay is encrypted across the entire cloud infrastructure. This overlay uses application-aware routing, analyzing latency and loss data to choose the best route according to network conditions. These features, like protocol priority marking, enable the system to ensure the performance of real-time applications.
  • Delivers redundancy and failover: By connecting the points of presence with multiple Tier-1 IPs, Cato builds the redundancy needed to ensure security and highly available service.
  • Cloud-native: Cato is built as a scalable, resilient, and elastic cloud service.
  • Converged: The platform converges SD-WAN and network security into a single infrastructure framework.
  • Secures all edges: Cato Network can secure and optimize traffic from all users, locations, applications, and clouds.

What challenges does Cato Network solve?

  • Migration to SD-WAN

MPLS (multi-protocol label switching) networks are usually expensive and limited in their capacity. Cato simplifies migrating to a faster, higher-capacity internet and SASE cloud. Cato SD-WAN appliances enable customers to improve usable capacity and resiliency.

  • Global connectivity optimization

Customers who suffer from the challenge of high latency and network inconsistency can use Cato to deliver a consistent connection and user experience to access on-premises and cloud applications.

  • Securing branch internet access

Cato’s complete network security stack connects all branch locations to the Cato cloud, therefore protecting all traffic, both internet-bound and WAN, with enterprise-grade, cloud-based security services. This capability avoids having to backhaul internet traffic to a data center or hub or having to implement stand-alone cloud security solutions.

  • Cloud acceleration and control

Organizations using Cato notice an acceleration of cloud traffic. Cato achieves this by routing all traffic from the edges to the PoP closest to the data center. Because of the close distance between the two, the latency is near zero.

Reviews from Real Users

An IT manager/project coordinator at a healthcare company says that “[Cato is] a cloud-based solution that integrates well with everything. They are the classic SaaS solution.”

Yeong-Gi L., a network engineer at Snetsystems, notes that “The solution is very stable. The scalability is quite good. Technical support was always helpful and responsive. The integration capabilities are not a problem at all.”

"The most valuable feature is that it also works as a next-gen firewall because it has security features," says Lorenzo S., senior solutions consultant Lead at MDI.

Cato Networks

Menlo Security Secure Application Access

Menlo Security Secure Application Access makes zero trust access easy, giving users secure connectivity to private applications, including web and legacy applications. At the core of Secure Application Access is the Menlo Secure Cloud Browser, which fetches, secures and delivers the content for users.

In addition to providing simple-to-deploy, clientless ZTA, Secure Application Access and the Menlo Secure Cloud Browser protect applications from attacks such as session hijacking, cookie manipulation, and other tactics that employ protocol manipulation.

Secure Application Access protects applications from Internet threats and provides granular controls for added protection of the application and associated data. These security controls include Read-only/Read-write, Upload/download, Copy/paste, AV scanning, Sandboxing, and Data Loss Prevention.

Last Mile Data Protection

Menlo Last-Mile Data Protection identifies and prevents sensitive data from leaving your company by meticulously inspecting all file uploads and user input across browsing sessions. Leveraging the Secure Cloud Browser, users are protected from the internet and you can protect your organization from data loss with comprehensive traffic monitoring and controls. This approach addresses the growing concerns surrounding data leakage in the age of AI tools like ChatGPT.

By identifying sensitive data through file types, regular expressions, or predefined libraries, Menlo Last-Mile Data Protection empowers security teams to regulate data input into AI platforms and prevent unauthorized uploads. This capability provides crucial protection for intellectual property, PII, and other confidential information.

The solution leverages the Menlo Cloud Security Platform's visibility and control over traffic to reliably detect and prevent data leaks originating from both browser submission forms and non-browser traffic. With the ability to inspect encrypted web traffic, Menlo Last-Mile Data Protection enforces DLP policies consistently across all users and devices, ensuring comprehensive data protection.

Menlo Security
 

Sample Customers

Paysafe, AdRoll, Pet Lovers Centre, Arlington Orthopedics, Humphreys & Partners Architects
Information Not Available
Buyer's Guide
Cato SASE Cloud Platform vs. Menlo Secure
March 2025
Free Report: Cato SASE Cloud Platform vs. Menlo Secure
Find out what your peers are saying about Cato SASE Cloud Platform vs. Menlo Secure and other solutions. Updated: March 2025.
DOWNLOAD NOW
846,617 professionals have used our research since 2012.
See our Cato SASE Cloud Platform vs. Menlo Secure report.
See our list of best ZTNA vendors.

We monitor all ZTNA reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.