Try our new research platform with insights from 80,000+ expert users

Cisco Secure Firewall vs Huawei NGFW comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 16, 2024
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
317
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Cisco Secure Firewall
Ranking in Firewalls
6th
Average Rating
8.2
Reviews Sentiment
7.5
Number of Reviews
406
Ranking in other categories
Cisco Security Portfolio (4th)
Huawei NGFW
Ranking in Firewalls
31st
Average Rating
7.2
Reviews Sentiment
7.2
Number of Reviews
22
Ranking in other categories
Unified Threat Management (UTM) (13th)
 

Mindshare comparison

As of December 2024, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.5%, up from 17.3% compared to the previous year. The mindshare of Cisco Secure Firewall is 5.8%, down from 5.9% compared to the previous year. The mindshare of Huawei NGFW is 0.8%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

DineshKumar28 - PeerSpot reviewer
Effective threat prevention with responsive customer support
We are using Fortinet FortiGate as a firewall Fortinet FortiGate has been invaluable. It has helped save costs due to its various features, reliable performance, very good UI, low latency, and stability. The Threat Intel engine in Fortinet FortiGate is highly rated for its effectiveness in…
Daniel Going - PeerSpot reviewer
Is intuitive in terms of troubleshooting, easy to consume, and stable
Licensing is complex, and I'd like it to be simplified. This is an area for improvement. If we could create a Firepower solution that became like an SD-WAN or a SASE solution in a box, then perhaps we could exploit that on remote sites. We've already kind of got that with Meraki, but if we could pull out some of the features from ASA Firepower and make those available in SD-WAN in SASE, then it would be pretty cool.
Muhammad-Nadeem - PeerSpot reviewer
A scalable and easy-to-setup product that can be used to configure different policies for specific users
In other next-generation firewalls, if you are creating virtual systems, they will create separate hardware resources for different virtual systems. Other products will create a different routing table when we create a routing protocol. In Huawei, the routing table, control plan, and data plan will share the resources. Every virtual system should have separate resources, routing tables, and hardware resources. We have created multiple segments and virtual systems, and we don't want one segment to communicate with another. The product must divide the virtual firewalls with different utilization systems. The hardware, routing switch, and security bundle should be separate and different. The solution does not have sandboxing features. It should provide a sandboxing solution. It should also work on zero-day attacks. The solution should be comparable with the products provided by Palo Alto, Check Point, and Cisco.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Allows for firewall rules to be programmed and named in a way that makes it “readable”"
"The license management is very valuable. You can get a new license each year, or you can enroll every two to four years. You can get the logs, and you will get the information on the risk in your network and the entire organization. With this information, you can take action on your actives, computers, or devices. You can bring your own device as an SSE."
"The interface is very good."
"The wireless control is helpful."
"It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall. You don't need to pay some other company for another product to do that for you. The firewall can do that for you. So, it's an easy-to-use product for people to be independent. They don't need to rely on other vendors to do what the firewall can do. They can do everything."
"The CLI is robust and powerful, enabling rapid, consistent changes via SSH."
"The most valuable feature of Fortinet FortiGate is security. They are known for efficiency and are on the top of Gartner Quadrant reviews. Fortinet FortiGate has an easy-to-use platform with a good graphical interface. The configuration is simple and the solution provides an overall good layer of security."
"I appreciate FortiGate's flexibility, which allows for centralized management through FortiManager."
"If you compare the ASA and the FirePOWER, the best feature with FirePOWER is easy to use GUI. It has most of the same functionality in the Next-Generation FirePOWER, such as IPS, IPS policies, security intelligence, and integration and identification of all the devices or hardware you have in your network. Additionally, this solution is user-friendly."
"Filtering is the best feature."
"We are using the Cisco AnyConnect for our end-user VPN with the ASA."
"It joins all branches and permits employees to work outside their offices, but everything is based on high securities standards (PCI compliance)."
"Cisco ASA provides us with very good application visibility and control."
"It is very stable compared to other firewall products."
"If you have a solution that is creating a script and you need to deploy many implementations, you can create a script in the device and it will be the same for all. After that, you just have to do the fine tuning."
"The solution is excellent for enterprise-level networks."
"The setup is quite easy."
"We have found the initial setup to be straightforward."
"The operational management dashboard is easy to use for the customers."
"The solution's implementation is pretty easy."
"The security is good. It's as effective as anything else on the market."
"The tool helps us to integrate with other brands."
"The solution's performance is good with IPSec."
"I am impressed with the product's antivirus features, strong encryption, policy implementation and easier installation."
 

Cons

"It claims it does DLP, but the degree and level of controls are very basic."
"The price of FortiGate should be reduced because there are some other leading products that are cheaper."
"Its price could be better."
"We were not able to build a full-mesh VPN; however, I am not sure if this was the fault of Fortinet FortiGate."
"In the balance between links feature normally you can just choose one option to balance. It would be better for the solution to have more than one option, preferably three."
"The firewall engine is not so strong as of now, in my opinion... My second concern is that, while they have Zero-day vulnerability and anti-malware features, the threat engine needs to be strengthened, its efficiency can be increased."
"Its reporting and pricing need improvement."
"MTBF: Hardware failure is more common when compared to SonicWall or Cisco ASA."
"One of the challenges we've had with the Cisco ASA is the lack of a strong controller or central management console that is dependable and reliable all the time."
"I wouldn't give them a ten. Nobody is perfect. I'll give them a nine because they help me with any issues I've had."
"Cisco Secure Firewall's integration with cloud providers has room for improvement. We could do more in terms of integration, for example, if we had a tag on an instance."
"The policies module in FMC specifically isn't the most user-friendly. Coming from Cisco ASA, Cisco ASA is a little bit easier to use. When you get into particularly complex deployments where you have a lot of different interfaces and all that kind of stuff, it's a little bit tricky. Some usability improvements there would be nice."
"ASDM can be improved."
"Cisco ASA is not a next-generation firewall product."
"Cisco wasn't first-to-market with NGFWs... they should look at what other vendors are doing and try not only to be on the same wavelength but a little bit better."
"MSSP oriented interface: I would like a single console which would allow me to manage settings creating consistency across all customers."
"The solution could be cheaper."
"The user interface could be more user-friendly."
"The solution is scalable but it is difficult because you need to purchase new systems, it is not just one click."
"The solution could be more secure and have better integration."
"The WAF capability in the Huawei Firewall is missing."
"The solution does not have sandboxing features."
"Huawei also need to improve spam techniques and add a web application firewall. Currently, Huawei does not have a built-in web application firewall (WAF) like Fortinet does."
"The documentation needs to be improved. When they retire old models, they also retire the documentation. However, if you are still using an older model, you still need access to that documentation. And yet, they go ahead and removed it. It's gone. You are therefore stuck with a device with no documentation and technical support that isn't very helpful as they also remove support assistance as well."
 

Pricing and Cost Advice

"I think that the pricing is fair."
"​We saved a bundle by not needing all the past appliances from an NGFW.​"
"The price of FortiGate is comparable to that of most other firewall solutions and is more affordable than Cisco."
"The cost of Fortinet FortiGate is competitive and not expensive compared to other enterprise- grade solutions. On average, the license cost per year is around seventy percent of the firewall's purchase price."
"While Fortinet FortiGate has a higher price point compared to Sophos XG, its user-friendly interface justifies the cost."
"The price depends on the size of the company. From the beginning, you just want to know the internet bandwidths, speed, and the number of users to be able to offer the right product and model. They have a lot of products in FortiGate according to the size of the company, like 200D and 300D."
"If the customer is looking for SD-WAN, it comes free with FortiGate."
"The price is really low. It's cheap in comparison to the cost of Cisco or CheckPoint, for example."
"There is room for improvement in the pricing when compared to the market. Although, when you compare the benefits of support from Cisco, you can adjust the value and it becomes comparable, because you usually need very good support. So you gain value there with this device."
"Everything with Cisco is expensive. My advice is that there are a lot better options out in the market now."
"Cisco is cheaper than Check Point although it is not as cheap as Fortigate. But with the latest improvements in hardware and speed, the pricing is okay."
"I'd say it's probably well-priced."
"Cisco pricing is premium. However, they gave us a 50 to 60 percent discount."
"It is more expensive than the other solutions."
"The ROI is good. Using ASA, we have saved 10% to 20% on our costs."
"The licensing features are getting more complicated. These should be simplified."
"The solution is inexpensive."
"Huawei is 30% cheaper than Arista."
"The pricing is cheap."
"The price of the license of this solution is high."
"Huawei is priced lower than most competitors."
"Licensing fees are billed on an annual basis."
"The solution isn't cheap. It's market price."
"I believe that we are entitled to a one-year extension on our licensing."
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
824,106 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
 

Top Industries

By visitors reading reviews
Educational Organization
22%
Computer Software Company
14%
Comms Service Provider
6%
Manufacturing Company
6%
Educational Organization
35%
Computer Software Company
15%
Government
5%
Manufacturing Company
5%
Computer Software Company
18%
Financial Services Firm
10%
Comms Service Provider
8%
Educational Organization
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...
Which is better - Meraki MX or Cisco ASA Firewall?
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...
What do you like most about Huawei NGFW?
The solution's implementation is pretty easy.
What is your experience regarding pricing and costs for Huawei NGFW?
The pricing is quite cheap compared to other NGFWs like Palo Alto or Cisco.
What needs improvement with Huawei NGFW?
Huawei should improve their threat intelligence. They need to have a more diversified platform and continuously updat...
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
Huawei USG Firewalls, USG9500 Series, USG6600 Series, USG6300 Series
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
KMITL, Peking University
Find out what your peers are saying about Cisco Secure Firewall vs. Huawei NGFW and other solutions. Updated: December 2024.
824,106 professionals have used our research since 2012.