Try our new research platform with insights from 80,000+ expert users

Cisco Secure Firewall vs Huawei NGFW comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 16, 2024
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Number of Reviews
316
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Cisco Secure Firewall
Ranking in Firewalls
5th
Average Rating
8.2
Number of Reviews
406
Ranking in other categories
Cisco Security Portfolio (3rd)
Huawei NGFW
Ranking in Firewalls
30th
Average Rating
7.2
Reviews Sentiment
7.2
Number of Reviews
22
Ranking in other categories
Unified Threat Management (UTM) (13th)
 

Mindshare comparison

As of November 2024, in the Firewalls category, the mindshare of Fortinet FortiGate is 19.8%, up from 17.1% compared to the previous year. The mindshare of Cisco Secure Firewall is 5.7%, down from 6.0% compared to the previous year. The mindshare of Huawei NGFW is 0.7%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

DineshKumar28 - PeerSpot reviewer
Sep 25, 2024
Effective threat prevention with responsive customer support
We are using Fortinet FortiGate as a firewall Fortinet FortiGate has been invaluable. It has helped save costs due to its various features, reliable performance, very good UI, low latency, and stability. The Threat Intel engine in Fortinet FortiGate is highly rated for its effectiveness in…
Daniel Going - PeerSpot reviewer
Jun 26, 2022
Is intuitive in terms of troubleshooting, easy to consume, and stable
We use it for data center security for both the north-south and east-west. With Firepower, you get the next-generation functionality and the next-generation firewall features. Traditionally, when you have a layer three access list, it's really tricky to get the flexibility you need to allow staff…
Muhammad-Nadeem - PeerSpot reviewer
Jun 14, 2023
A scalable and easy-to-setup product that can be used to configure different policies for specific users
In other next-generation firewalls, if you are creating virtual systems, they will create separate hardware resources for different virtual systems. Other products will create a different routing table when we create a routing protocol. In Huawei, the routing table, control plan, and data plan will share the resources. Every virtual system should have separate resources, routing tables, and hardware resources. We have created multiple segments and virtual systems, and we don't want one segment to communicate with another. The product must divide the virtual firewalls with different utilization systems. The hardware, routing switch, and security bundle should be separate and different. The solution does not have sandboxing features. It should provide a sandboxing solution. It should also work on zero-day attacks. The solution should be comparable with the products provided by Palo Alto, Check Point, and Cisco.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"This solution made it very easy to manage our bandwidth."
"The GUI is good."
"Whenever I need something, Fortinet improves and updates the software for me."
"Initial setup is easy to configure."
"It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall. You don't need to pay some other company for another product to do that for you. The firewall can do that for you. So, it's an easy-to-use product for people to be independent. They don't need to rely on other vendors to do what the firewall can do. They can do everything."
"It has improved our organization with control data."
"The reporting and monitoring are very good."
"I like several features that this product has, such as antivirus and internet navigation inspection. It is also simple to use."
"Its security and filtering are most valuable. Every layer of data that comes into the organization goes through it. After setting up the criteria, it automatically filters the traffic. We don't have to check it often."
"The greatest benefit for the organization is the confidence that we are secured."
"The solution is pretty easy to deploy."
"We have multiple secure internal networks linked with our plants. We are from a oil company, so we have multiple plant areas which need to have restricted network access. Therefore, we are using it for restricting access to the plant area."
"The technical support is excellent. I would rate it as 10 out of 10. When there has been an issue, we have had a good response from them."
"I work with Cisco and other partners, but the Cisco team is the best team in our country. When I call them, they always help us."
"The main thing that I love the most is its policy and objects. Whenever I try to give access to a user, I can create an object via group creation in the object fields. This way, I am not able to enter a user in the policy repeatedly."
"Valuable features include AnyConnect, double translations, and an independent IPS module."
"The support for the solution has been excellent. If we ever had an issue they would send an engineer to help us with our problem."
"The stability is fine. I would rate the stability a nine out of ten."
"The setup is quite easy."
"Huawei support is excellent. I rate it 10 out of 10."
"The solution's performance is good with IPSec."
"The mapping features and traffic logging are good."
"It enables us to configure different policies and restrictions for specific users within the same subnet."
"The operational management dashboard is easy to use for the customers."
 

Cons

"It would be nice if FortiGate incorporated some built-in endpoint protection features. I would also like a built-in SOC dashboard for managing multiple Fortinet firewalls."
"The Web-filter in this solution is not very good."
"Fortinet FortiGate could improve by adding FortiAnalyzer to its solution, we should not have to use another solution. FortiAnalyzer can provide more detailed information."
"You do need some IT knowledge in order to effectively work with the solution."
"There are some problems that support cannot give you a logical reason as to why it happened. For example, I had a case where I was dealing with a WhatsApp application that was giving issues. Technical support gave more than one reason it could be giving issues, but none of them solved the problem. Eventually I solved the problem, but it was far from the solutions that support had given."
"We have an issue with hotel guest vouchers."
"Backup can be improved."
"We were not able to build a full-mesh VPN; however, I am not sure if this was the fault of Fortinet FortiGate."
"I have used Fortinet, Palo Alto, and Check Point previously and I prefer the process of everything working together."
"They need to do an overhaul of the management console."
"The annual subscription cost is a bit high. They should try to make it comparable to other offerings. We have a number of Chinese products here in Pakistan, which are already, very cheap and have less annual maintenance costs compared to Cisco."
"The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore."
"Recently, we have been having an issue with the ASA firewall. We haven't found the root cause yet and are still working on it. We failed over the firewall from active to passive and suddenly that resolved the issue. We are now working to find the root cause."
"They could improve by having more skilled, high-level engineers that are available around the clock. I know that's an easy thing to say and a hard thing to do."
"I think they need to review their whole UI because it feels like it was created by a whole bunch of different teams of developers who didn't fully talk to each other. The net policy screen is just a mess. It should look like the firewall policy screen, and they should both act the same, but they don't. I feel like it's two different buildings or programming, who don't talk to each other, and that really annoys me."
"The integration between the on-prem proxy world and the cloud proxy would benefit us. One single policy setting would make sense."
"Wi-Fi scanning and Wi-Fi analysis would be useful features to include in the future."
"The solution doesn't seem to be very mature. Our networking team says they are experiencing a lot of issues in the firewalls and some routers."
"Huawei NGFW should have better reporting and a dashboard for the visibility of traffic."
"One issue is integration. Huawei can't detect Indicators of Compromise (IoC). I can get a lot of information about security, but can't automatically input the EP, domain URL, and file hashes I get from Hackersworld into my blocklist."
"The solution could be more secure and have better integration."
"There needs to be more security equipment for the solution."
"The solution could be cheaper."
"The solution requires a more interactive dashboard. That would make it easier than playing with configurations the way we have to now."
 

Pricing and Cost Advice

"The price of Fortinet FortiGate could improve, it is expensive."
"Fortigate's pricing is competitive."
"The price is fine."
"Our licensing costs are on a yearly basis."
"The solution requires a license annually, it is not a user license, you can have as many users as your want. I must renew the license regularly per device."
"Go for long term pricing negotiated at the time of purchase."
"The pricing is justified. It's a little pricey, but what you pay for is what you get."
"Its price is reasonable. They have a clear pricing policy. It is not complicated by the number of VPN users at a time. We know what the price is. The yearly subscription for the security license is rather high, but it is all included for whatever number of users you have and the kind of functions you need."
"The product is expensive."
"They have a lot of different models but most of them are really expensive."
"We sell Cisco ASA Firewall as a bundle — the price is very cheap. If a customer were to go for renewal direct from Cisco, then the price would be quite high."
"This product is expensive."
"Pretty much everything is included in the price for what we are using."
"Licensing is quite difficult to get your head around. My biggest challenge is to understand the details, the inner relations. Luckily, to some extent, we have enterprise agreements, but licensing for me is a real black box."
"Although I am not directly involved in dealing with the pricing aspect of the Cisco Secure Firewall, I know that the licensing has improved over the years."
"The pricing and licensing are getting more complicated, and I'd like that to be simpler."
"Licensing fees are billed on an annual basis."
"The solution is inexpensive."
"When you compare the price with other products, it's quite cost-effective. But the problem is always after, let's say, two years or three years later because they are not able to provide updates or patches very quickly."
"Huawei is priced lower than most competitors."
"I believe that we are entitled to a one-year extension on our licensing."
"Huawei is 30% cheaper than Arista."
"The solution isn't cheap. It's market price."
"The price of the license of this solution is high."
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
815,690 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
 

Top Industries

By visitors reading reviews
Educational Organization
22%
Computer Software Company
15%
Manufacturing Company
6%
Comms Service Provider
6%
Educational Organization
32%
Computer Software Company
15%
Government
5%
Manufacturing Company
5%
Computer Software Company
18%
Financial Services Firm
11%
Comms Service Provider
7%
Educational Organization
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
Which is better - Fortinet FortiGate or Cisco ASA Firewall?
One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...
How does Cisco's ASA firewall compare with the Firepower NGFW?
It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...
Which is better - Meraki MX or Cisco ASA Firewall?
Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...
What do you like most about Huawei NGFW?
The solution's implementation is pretty easy.
What is your experience regarding pricing and costs for Huawei NGFW?
It's very cheap. It's significantly cheaper than Cisco. If a Cisco license costs $100, the Huawei equivalent is about...
What needs improvement with Huawei NGFW?
Based on the threat prevention signatures, they need updates. They should add some machine learning features and Mach...
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
Huawei USG Firewalls, USG9500 Series, USG6600 Series, USG6300 Series
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
KMITL, Peking University
Find out what your peers are saying about Cisco Secure Firewall vs. Huawei NGFW and other solutions. Updated: October 2024.
815,690 professionals have used our research since 2012.