Cisco Secure Firewall vs Fortinet FortiGate-VM comparison

Cisco and Fortinet are both solutions in the Firewalls category. Cisco is ranked #5 with an average rating of 8.2, while Fortinet is ranked #9 with an average rating of 8.6. Cisco holds a 5.6% mindshare in Firewalls, compared to Fortinet’s 1.8% mindshare. Additionally, 83% of Cisco users are willing to recommend the solution, compared to 98% of Fortinet users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

Cisco Secure Firewall and Fortinet FortiGate-VM are well-regarded options in the cybersecurity market. Fortinet FortiGate-VM has the upper hand with its comprehensive feature set and greater ROI.

Features: Cisco Secure Firewall offers advanced threat detection, automated policy management, and dependable security automation. Fortinet FortiGate-VM provides integrated SD-WAN, a versatile security platform, and an expansive range of security functionalities.

Room for Improvement: Cisco Secure Firewall needs enhancements in analytics capabilities, reporting functions, and scalability options. Fortinet FortiGate-VM requires better integration with third-party tools, an intuitive configuration process, and improved user documentation.

Ease of Deployment and Customer Service: Cisco Secure Firewall is praised for straightforward deployment and reliable customer support. Fortinet FortiGate-VM is noted for quick deployment but has issues with customer service responsiveness.

Pricing and ROI: Cisco Secure Firewall offers good value for its price with effective security features. Fortinet FortiGate-VM has higher costs but is favored for delivering greater ROI due to its expansive feature set and performance efficiency.

To learn more, read our detailed Cisco Secure Firewall vs. Fortinet FortiGate-VM Report (Updated: January 2025).

Buyer's Guide

Cisco Secure Firewall vs. Fortinet FortiGate-VM

January 2025

Download the complete report

Helped 838,713 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of February 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.7%, up from 17.7% compared to the previous year. The mindshare of Cisco Secure Firewall is 5.6%, up from 5.6% compared to the previous year. The mindshare of Fortinet FortiGate-VM is 1.8%, up from 1.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Jordan De Sousa

Network Manager at a computer software company with 501-1,000 employees

Helped with the consolidation of tools and has a great dashboard

We have used different types of solutions. We had Cisco ASA for about 10 years, and then we switched to an on-site firewall to MX from Meraki, Cisco. For our cloud, we have Cisco Services Routers. The migration to the cloud has been a lot of work. Not all of our systems were compliant with being on the cloud so we had to work on some applications and delete some of them. For the old systems, we had to do extra work but for the newer systems, it was fine. The migration took around 18 months to migrate 99%. We had more than 2,000 on-prem firewall sites. Cisco helped with the migration to the cloud with the migration tool. Migrating MX was really easy and the tools helped us to migrate from the old ASA we had to the new MX. The cloud, firewalling, and CSR helped us from the data center on-premise approach to the cloud because at the time we didn't have a lot of experience with the cloud. It was easy to use the Cisco appliances in that space. I think that this solution has saved our IT staff time because of the ease of deployment. When I first started as a network engineer, it took a whole day to configure a firewall because of all the particularities you could potentially have at a site. I think that this solution saved our organization's time because security saves money because. At the end of the day, firewalls block threats. This solution helped with the consolidation of tools as we had all the observability tools in the solutions. Some 10 years ago we all had third-party solutions doing the observability. Now, we have the whole package and not only the firewall. We choose Cisco 10 or 20 years ago mostly because it was a market-leading solution. I also think it's because of MX's user-friendly solution that you can get on board easily. As far as CSA goes, I believe it's because you have a lot of features on the firewalls and it's the stability of course.

Read full review

Pietro Di Blasi

Pre-Sales Analyst at a comms service provider with 51-200 employees

Organize networks efficiently while benefiting from strong reliability and support

The main use is for clients who are migrating to the cloud. We started this journey during the pandemic, and the main case is with clients who are moving to either a private or a public cloud The solution allows us to organize our networks and access within one vendor, using an integrated…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The flexibility and ease of configuration are the most valuable features."

"The base firewall features are quite valuable to us."

"The secure web gateway module and the application control module are valuable. HA operations are very easy."

"The interface is very good."

"SSL-VPN is very useful for us and has been very reliable."

"This solution has solid UTM features combined with a nice GUI."

"The response is very quick and they can visually resolve our problems in a short period."

"The security features that they have are quite good. On top of that, their licensing model is quite nice where they don't charge you anything for the SD-WAN functionality for the firewall."

More Fortinet FortiGate pros

"It provides security for our company and users."

"I haven't had any major problems so I haven't had to open a ticket with technical support."

"The firewall and policy side are easy to use."

"The most valuable feature must be AnyConnect. We have quite a few customers who use it. It is easy to use and the stablest thing that we have. We have experienced some issues on all our VPN clients, but AnyConnect has been the stablest one."

"The solution offers very easy configurations."

"The most valuable feature is that it has the ability to divide the network into three parts; internal, external, and DMZ."

"Their performance is most valuable."

"One of the most valuable features is the AMP. It's very good and very reliable when it comes to malicious activities, websites, and viruses."

More Cisco Secure Firewall pros

"The product is quite user-friendly so we didn't have a lot of issues that needed to be addressed."

"The most valuable feature is that its IPsec works perfectly."

"Technical support is very helpful."

"One notable feature is the SD-WAN, which is a strong component of the FortiGate-VM. The fabric feature is also good, but not all customers use FortiGate's networking components, such as the switches."

"The most valuable features of Fortinet FortiGate-VM are the servers, analyzer, and track protection."

"Its interface is good. It comes with a lot of features, and its performance is also very good."

"Web filtering and the IPS functionality."

"The ease of access and user-friendly setup is a valuable feature. Fortinet proves to be particularly straightforward to configure, offering simplicity without complexity. Moreover, visibility is easily attainable due to certain factors. Price, implementation, and budget considerations play a role. When it comes to Cisco implementation, the process tends to be more intricate, which many customers find unfavourable for their business needs."

More Fortinet FortiGate-VM pros

Cons

"The solution could be more secure and stable."

"The stability could be a bit better."

"Fortinet already improved FortiGate, but in the current market, many brands of security devices have improved together. Fortinet still needs to catch up with market standards. Fortinet is lacking in features in comparison to competitors."

"Fortinet FortiGate needs to improve the logging and reporting. Additionally, the next-generation application's policies should be improved. When they were released they had bugs."

"I'm not sure if it's something that they already have or are developing something, however, we need some dedicated features for container security."

"We had some issues in the beginning while setting it up, but after doing the firmware update, it is working fine."

"I feel that the reporting needs to be improved."

"My only complaint about FortiGate is a lack of QinQ VLAN tunneling. I haven't found this feature in any Fortinet product. You can do this on all Cisco routers, including the smaller models. However, QinQ isn't available on the biggest, most expensive Fortinet units. They still don't have that. I think now we're on software version 6.0, and they still haven't found a solution for QinQ. It isn't a dealbreaker, but that's my main complaint."

More Fortinet FortiGate cons

"The price and SD-WAN capabilities are the areas that need improvement."

"It is surprising that you need to have a virtual appliance for the Firepower Management Center. It is not good if you have to setup a VMware server just for it."

"I would like to see them add more next-generation features so that you don't need a lot of appliances to do just one task. It should be a single solution."

"The ASA needs to incorporate the different modules you have to integrate to achieve UTM functions, especially for small businesses."

"It needs to provide the next-generation firewall features that other vendors provide, like data analytics, telemetry, and deep packet inspection."

"The Sandbox and the Web Censoring in this solution need to be improved."

"Cisco could improve its score by developing more features that integrate seamlessly with various applications and investing in hardware acceleration to enhance performance."

"The user interface is a little clunky and difficult to work with. Some things aren't as easy as they should be."

More Cisco Secure Firewall cons

"In the first two releases of FortiOS 5.6, we had some trouble with the SSL VPN service. Sometimes it stopped working, and the IPS daemon too."

"When new versions are deployed they tend to be a little buggy, so they should be more fully tested before release."

"Interoperability could be improved."

"The interface of the solution could be improved."

"The interface needs to be updated and simplified."

"The performance could be better. Some features need to have quality control when the switch is working. The dedicated bandwidth for some users is not reliable."

"They could simplify the troubleshooting process."

"The tool does not have a good name in the market, consisting of enterprise-class businesses, making it an area where the product lacks and needs to improve."

More Fortinet FortiGate-VM cons

Pricing and Cost Advice

"The license for Fortinet FortiGate is affordable in my country."

"We purchased a five-year bundle package, which worked out cheaper than competing solutions."

"The price of Fortinet FortiGate is reasonable for an SME."

"It's expensive, but compared to the competition it's okay."

"Fortinet costs are 25% lower than the high-cost provider. There is an equipment cost and a recurring monthly cost for licenses and technical support."

"The pricing is flexible."

"The price of Fortinet FortiGate is better than Cisco, Check Point, and Palo Alto. In terms of pricing, it's probably a better-priced firewall solution overall."

"It's a very full-featured and it's priced well solution."

More Fortinet FortiGate pricing and cost advice

"Cisco, as we all know, is expensive, but for the money you are paying, you know that you are also getting top-notch documentation as well as support if needed."

"Licensing is quite difficult to get your head around. My biggest challenge is to understand the details, the inner relations. Luckily, to some extent, we have enterprise agreements, but licensing for me is a real black box."

"We pay a lot of money for it."

"The licensing package is good, but the licensing fee should be decreased."

"This is an expensive product, although when you buy this solution, you can do many things so it provides good value for the investment."

"It's a brilliant firewall, and the fact that it comes with a perpetual license really does go far in terms of helping the organization in not having to deal with those costs on an annual basis. That is a pain point when it comes to services like the ones we have on Fortigate. That's where we really give Cisco firewalls the thumbs up."

"The pricing of Cisco firewalls, in the security market, is fair."

"It is expensive. There is a cost for everything. There is per year license cost and support cost. There is also a cost for any training, any application, and any resource. Things are very costly to do with Cisco. Other brands are cheaper. They are also more flexible in terms of training, subscription, and licensing. They give lots and lots of years free. They provide more than Cisco."

More Cisco Secure Firewall pricing and cost advice

"The customer must buy his own license."

"There is no additional cost. Once you get the licensing fee, you're good."

"The product is expensive. Users can opt for a one-year, two-year, three-year, or five-year subscription model when it comes to licensing."

"At present, the SD-WAN licenses are on an annual basis."

"I rate the product price a seven on a scale of one to ten, where one is a low price, and ten is a high price."

"It would be nice to have the ability to extend FortiGuard subscriptions at a reasonable yearly cost versus a bulk three year pricing."

"It is more expensive than its competitor, e.g. Sophos."

"The price of the solution could be less expensive. There are some features that have to be purchased separately that have their own license."

More Fortinet FortiGate-VM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

838,713 professionals have used our research since 2012.

Comparison Review

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Mar 11, 2015

Cisco ASA vs. Palo Alto Networks

Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Read full review

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Educational Organization

40%

Computer Software Company

13%

Manufacturing Company

Government

Computer Software Company

20%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Which is better - Fortinet FortiGate or Cisco ASA Firewall?

One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...

See all answers

How does Cisco's ASA firewall compare with the Firepower NGFW?

It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...

See all answers

Which is better - Meraki MX or Cisco ASA Firewall?

Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...

See all answers

Features comparison between Palo Alto and Fortinet firewalls

In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it...

See all answers

Which would you recommend - FortiGate VM or Azure Firewall?

Both of these solutions are excellent options that provide flexible scalability and solid security. Fortinet Fortigat...

See all answers

What do you like most about Fortinet FortiGate-VM?

An enhanced security solution for any kind of alert that we have configured.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 23% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 13% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

Meraki MX vs Fortinet FortiGate

Compared 5% of the time

Sophos UTM vs Fortinet FortiGate

Compared 2% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks WildFire vs Cisco Secure Firewall

Compared 10% of the time

Netgate pfSense vs Cisco Secure Firewall

Compared 6% of the time

Palo Alto Networks NG Firewalls vs Cisco Secure Firewall

Compared 4% of the time

Meraki MX vs Cisco Secure Firewall

Compared 4% of the time

OPNsense vs Cisco Secure Firewall

Compared 4% of the time

More Cisco Secure Firewall Competitors

Azure Firewall vs Fortinet FortiGate-VM

Compared 30% of the time

Palo Alto Networks VM-Series vs Fortinet FortiGate-VM

Compared 5% of the time

Zyxel Unified Security Gateway vs Fortinet FortiGate-VM

Compared 4% of the time

Fortinet FortiOS vs Fortinet FortiGate-VM

Compared 3% of the time

KerioControl vs Fortinet FortiGate-VM

Compared 3% of the time

More Fortinet FortiGate-VM Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

February 2025

Download Fortinet FortiGate product report

Buyer's Guide

Cisco Secure Firewall

February 2025

Download Cisco Secure Firewall product report

Buyer's Guide

Fortinet FortiGate-VM

February 2025

Download Fortinet FortiGate-VM product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall

FortiGate Virtual Appliance, FortiGate-VM

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.

The core features of Cisco Secure Firewall are multifaceted:

Advanced threat protection is achieved through a combination of intrusion prevention, malware detection, and URL filtering technologies.
For secure access, the firewall presents multiple options, including VPN, remote access, and single sign-on.
Its network segmentation capability is vital in creating barriers within the network to safeguard critical assets.
The firewall is scalable, effectively serving small businesses to large enterprises.
Management is streamlined through Cisco DNA Center, a central management system.

The benefits of deploying Cisco Secure Firewall are substantial. It significantly reduces the risk of cyberattacks, thereby enhancing the security posture of an organization. This security also translates into increased productivity, as secure access means uninterrupted work. Compliance with industry regulations is another advantage, as secure access and network segmentation align with many regulatory standards. Additionally, it helps in reducing IT costs by automating security tasks and simplifying management processes.

In practical scenarios, Cisco Secure Firewall finds diverse applications. It's instrumental in protecting branch offices from cyberattacks, securing remote access for various stakeholders, safeguarding cloud workloads, and segmenting networks to isolate sensitive areas.

User reviews from PeerSpot reflect an overall positive experience with the Cisco Secure Firewall. Users appreciate its ease of configuration, good management capabilities, robust protection, user-friendly interface, and scalability. However, some areas for improvement include better integration capabilities with other vendors, maturity, control over bandwidth for end-users, and addressing software bugs.

In summary, Cisco Secure Firewall is a comprehensive, versatile, and reliable security solution that effectively meets the security needs of various organizations. It offers a balance of advanced protection, user-friendly management, and scalability, making it a valuable asset in the realm of network security.

Cisco

FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.

Fortinet

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.

Security7 Networks, COOPENAE

Buyer's Guide

Cisco Secure Firewall vs. Fortinet FortiGate-VM

January 2025

Free Report: Cisco Secure Firewall vs. Fortinet FortiGate-VM

Find out what your peers are saying about Cisco Secure Firewall vs. Fortinet FortiGate-VM and other solutions. Updated: January 2025.

DOWNLOAD NOW

838,713 professionals have used our research since 2012.

See our Cisco Secure Firewall vs. Fortinet FortiGate-VM report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.