Cisco Secure Firewall vs Fortinet FortiGate-VM comparison

Cisco and Fortinet are both solutions in the Firewalls category. Cisco is ranked #5 with an average rating of 8.3, while Fortinet is ranked #9 with an average rating of 8.6. Cisco holds a 5.6% mindshare in Firewalls, compared to Fortinet’s 1.8% mindshare. Additionally, 83% of Cisco users are willing to recommend the solution, compared to 98% of Fortinet users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

Cisco Secure Firewall and Fortinet FortiGate-VM are well-regarded options in the cybersecurity market. Fortinet FortiGate-VM has the upper hand with its comprehensive feature set and greater ROI.

Features: Cisco Secure Firewall offers advanced threat detection, automated policy management, and dependable security automation. Fortinet FortiGate-VM provides integrated SD-WAN, a versatile security platform, and an expansive range of security functionalities.

Room for Improvement: Cisco Secure Firewall needs enhancements in analytics capabilities, reporting functions, and scalability options. Fortinet FortiGate-VM requires better integration with third-party tools, an intuitive configuration process, and improved user documentation.

Ease of Deployment and Customer Service: Cisco Secure Firewall is praised for straightforward deployment and reliable customer support. Fortinet FortiGate-VM is noted for quick deployment but has issues with customer service responsiveness.

Pricing and ROI: Cisco Secure Firewall offers good value for its price with effective security features. Fortinet FortiGate-VM has higher costs but is favored for delivering greater ROI due to its expansive feature set and performance efficiency.

To learn more, read our detailed Cisco Secure Firewall vs. Fortinet FortiGate-VM Report (Updated: March 2025).

Buyer's Guide

Cisco Secure Firewall vs. Fortinet FortiGate-VM

March 2025

Download the complete report

Helped 842,388 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of March 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.8%, up from 17.8% compared to the previous year. The mindshare of Cisco Secure Firewall is 5.6%, up from 5.5% compared to the previous year. The mindshare of Fortinet FortiGate-VM is 1.8%, up from 1.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Maharajan S

VSO at a computer software company with 501-1,000 employees

Enhances security with precise access control but has integration challenges

Overall, I would rate the product six out of ten. Because of the support and cost, I moved away from Cisco, but otherwise, it is a good product. Recommendation depends on the requirement. If lacking a proper team and being dependent on the OEM and partner, Cisco is not suitable. However, if the team is qualified with Cisco-certified people and the requirement is a big network, it can be considered. In today's hybrid work world, having an expanded gateway is more typical than having a single one. Thus, Cisco is unlikely to be recommended for a hybrid requirement unless in-house skills align. Otherwise, depending on partners and Cisco, it can be a risk. I rate the overall solution six out of ten.

Read full review

Pietro Di Blasi

Pre-Sales Analyst at a comms service provider with 51-200 employees

Organize networks efficiently while benefiting from strong reliability and support

The main use is for clients who are migrating to the cloud. We started this journey during the pandemic, and the main case is with clients who are moving to either a private or a public cloud The solution allows us to organize our networks and access within one vendor, using an integrated…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is very flexible to use."

"I have found Fortinet FortiGate to be scalable."

"The most valuable feature is the policy routing and application control."

"This product is definitely scalable."

"Reliability is the best feature. We faced some issues when we were setting it up, but the service, portal, and administration are good."

"Centralized monitoring, policy management, and virtualized appliances allow us to take control over our public and private infrastructure."

"The security features that they have are quite good. On top of that, their licensing model is quite nice where they don't charge you anything for the SD-WAN functionality for the firewall."

"It has very easy management and an amazing ETM configuration."

More Fortinet FortiGate pros

"Cisco ASA provides us with very good application visibility and control."

"Firepower NGFW has improved my organization in several ways. Before, we were trying to stamp out security threats and issues, it was a one-off type of way to attack it. I spent a lot of manpower trying to track down the individual issues or flare-ups that we would see. With Cisco's Firepower Management, we're able to have that push up to basically one monitor and one UI and be able to track that and stop threats immediately. It also gives us a little more granularity on what those threats might be."

"This solution has good security, and it's a good product. You can trust Cisco, and there's support as well, which is really good."

"The most valuable feature is that it has the ability to divide the network into three parts; internal, external, and DMZ."

"It is much better than most of the other firewalls that I have worked with."

"What I found the most valuable about Cisco Secure Firewall is that if a client is educated about the solution, it can help him or her avoid many problems and mistakes."

"ASA 5505 and ASA 5506 are very powerful tools to use in a business environment, and provide a lot of security."

"Protecting our landscape in general and being able to see logging when things aren't going as set out in policies are valuable features. Our security department is keen on seeing the logging."

More Cisco Secure Firewall pros

"Initial setup was quite straightforward, as we can simply head to the required sections to apply the planned network."

"High network throughput while providing leading edge network security technology for a competitive price."

"We are able to closely monitor the usages of individual users and see their usage habits and other items, including the data itself, which gives us quite a bit of visibility."

"The most valuable features of this solution are the integration within the environment, with centralized reporting."

"One top feature is the ability to use the appliance as a WLAN controller for up to 10 access points with the new 5.6 firmware."

"I find the simplicity to be most valuable."

"The interface is decent."

"The most valuable feature is the WAN optimization."

More Fortinet FortiGate-VM pros

Cons

"They should improve high CPU and memory usage that occurs."

"You do need some IT knowledge in order to effectively work with the solution."

"Backup can be improved."

"Pricing for it is a bit high. It could be cheaper."

"FortiLink is the interface on the firewall that allows you to extend switch management across all of your switches in the network. The problem with it is that you can't use multiple interfaces unless you set them up in a lag. Only then you can run them. So, it forces you to use a core type of switch to propagate that management out to the rest of the switches, and then it is running the case at 200. It leaves you with 18 ports on the firewall because it is also a layer-three router that could also be used as a switch, but as soon as you do that, you can't really use them. They could do a little bit more clean up in the way the stacking interface works. Some use cases and the documentation on the FortiLink checking interface are a little outdated. I can find stuff on version 5 or more, but it is hard to find information on some of the newer firmware. The biggest thing I would like to see is some improvement in the switch management feature. I would like to be able to relegate some of the ports, which are on the firewall itself, to act as a switch to take advantage of those ports. Some of these firewalls have clarity ports on them. If I can use those, it would mean that I need to buy two less switches, which saves time. I get why they don't, but I would still like to see it because it would save a little bit of space in the server rack."

"I need user-behavior analytics, to find threat scenarios from inside the organization, insider attacks. That would be very helpful for us. In addition, I would like next-generation features for small and medium businesses. These businesses require UTM, all in one product. Fortinet must include it."

"The configuration part was challenging, especially converting configurations from another OEM to FortiGate."

"We were not able to build a full-mesh VPN; however, I am not sure if this was the fault of Fortinet FortiGate."

More Fortinet FortiGate cons

"The initial setup can be a bit complex for those unfamiliar with the solution."

"The virtual firewalls don't work very well with Cisco AnyConnect."

"It needs more tunneling capabilities."

"I would like it if there was a centralized way to manage policies, then sticking with the network functions on the actual devices. That is probably the thing that frustrates me the most. I want a way that you can manage multiple policies at several different locations, all at one site. You then don't have to worry about the connectivity piece, in case you are troubleshooting because connectivity is down."

"The worst part of the entire solution, and this is kind of trivial at times, is that management of the solution is difficult. You manage FireSIGHT through an internet browser. I've had Cisco tell me to manage it through Firefox because that's how they develop it. The problem is, depending on the page you're on, they don't function in the same way. The pages can be very buggy, or you can't resize columns in this one, or you can't do certain things in that one. It causes a headache in managing it."

"Virtual patching would be helpful for servers that are not able to update patches due to compatibility issues."

"We're getting support but there's a big delay until we get a response from their technical team. They're in the USA and we're in Africa, so that's the difficulty. When they're in the office, they respond."

"Integration aspects and traffic shaping need improvement."

More Cisco Secure Firewall cons

"The management tools should be more user-friendly."

"Integrating multi-factor authentication with FortiGate-VM can be challenging. While multi-factor authentication is important, not all customers have it enabled. Integration with third-party solutions like ManageEngine or Duo can be complex and sometimes problematic during testing."

"It is difficult to size the VM in terms of machine resources, and for this reason, clients prefer the appliance."

"They could provide more integration options with different platforms."

"I have worked on some of the largest and smallest solutions that Fortinet sells and they all scale really well."

"The reporting is not as good as it is with other firewalls and it should be improved."

"Fortinet FortiGate-VM should improve its asset identification, wherein the device can identify assets on the network, like computers."

"It has a monitoring tool, but it could be improved."

More Fortinet FortiGate-VM cons

Pricing and Cost Advice

"Setup costs and pricing depends on many variables, but it's mostly affordable."

"The price is fair compared to the other competitors."

"In terms of the market, it's not a cheap product, but it's cost-effective."

"The license is too expensive to renew. The license renewal process is also complex."

"The pricing for this solution is good."

"The price for the device and software is high. However, the solution is of good quality and has a lot of features."

"I had to pay for the license for the firewall, but it is guaranteed to have updates. I expect a good service for it. It was about €1000 for a year, and there was no additional cost."

"The price is high compared to some of the other solutions."

More Fortinet FortiGate pricing and cost advice

"I like the Smart Licensing, because it is more dynamic and easier to keep track of where you are at. If we have a high availability firewall pair and they are deployed in active/standby rather than active/active, I would expect that we would only pay for one set of licenses because you are using only one firewall at any one time. The other is there just for resiliency. The licensing, from a Firepower perspective, still requires you to have two licenses, even if the firewalls are in active/standby, which means that you pay for the two licenses, even though you might only be using one firewall any one time. This is probably not the best way to do it and doesn't represent the best value for money. This could be looked at to see if it could be done in a fairer way."

"It's affordable."

"Spec the right hardware model and choose the right license for your needs."

"We pay a lot of money for it."

"The pricing and licensing structure of the firewall is fair and reasonable."

"Cisco is considered to be an expensive solution."

"I think Cisco's price is in the right space now. They have discounts for customers at various levels. I think they're in the right spot. However, Cisco can be expensive when you factor in these additional features."

"This is an expensive product, although when you buy this solution, you can do many things so it provides good value for the investment."

More Cisco Secure Firewall pricing and cost advice

"The best part of Fortinet is the license is bundled together, so it is easy to use and apply."

"Our license is yearly, but we're thinking of going monthly. I think it's somewhere around 100,000 for VM04. Nowadays, everyone wants to be a hacker, so we believe in security. That's why we also have third-party people that we involve to make sure that we're secure. I don't think the costs are too bad. You still want to get advice from people who worked in security for many years, so you add a third party. The third party also said they would give their share like 100K, or 200K or something like that, so I don't think it's too expensive for security. I think it just adds more trust."

"There is no additional cost. Once you get the licensing fee, you're good."

"Installation does not require another license making it an inexpensive solution."

"I rate the product price a seven on a scale of one to ten, where one is a low price, and ten is a high price."

"The solution could be better priced."

"It is an expensive solution."

"The price is expensive compared with other vendors, like Cisco and Huawei."

More Fortinet FortiGate-VM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

842,388 professionals have used our research since 2012.

Comparison Review

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Mar 11, 2015

Cisco ASA vs. Palo Alto Networks

Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Read full review

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Educational Organization

42%

Computer Software Company

13%

Manufacturing Company

Government

Computer Software Company

20%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Which is better - Fortinet FortiGate or Cisco ASA Firewall?

One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...

See all answers

How does Cisco's ASA firewall compare with the Firepower NGFW?

It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...

See all answers

Which is better - Meraki MX or Cisco ASA Firewall?

Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...

See all answers

Features comparison between Palo Alto and Fortinet firewalls

In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it...

See all answers

Which would you recommend - FortiGate VM or Azure Firewall?

Both of these solutions are excellent options that provide flexible scalability and solid security. Fortinet Fortigat...

See all answers

What do you like most about Fortinet FortiGate-VM?

An enhanced security solution for any kind of alert that we have configured.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 22% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 13% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

SonicWall NSa vs Fortinet FortiGate

Compared 2% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks WildFire vs Cisco Secure Firewall

Compared 9% of the time

Netgate pfSense vs Cisco Secure Firewall

Compared 5% of the time

Palo Alto Networks NG Firewalls vs Cisco Secure Firewall

Compared 5% of the time

Meraki MX vs Cisco Secure Firewall

Compared 4% of the time

OPNsense vs Cisco Secure Firewall

Compared 4% of the time

More Cisco Secure Firewall Competitors

Azure Firewall vs Fortinet FortiGate-VM

Compared 28% of the time

Palo Alto Networks VM-Series vs Fortinet FortiGate-VM

Compared 5% of the time

Zyxel Unified Security Gateway vs Fortinet FortiGate-VM

Compared 4% of the time

KerioControl vs Fortinet FortiGate-VM

Compared 4% of the time

Fortinet FortiOS vs Fortinet FortiGate-VM

Compared 3% of the time

More Fortinet FortiGate-VM Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

March 2025

Download Fortinet FortiGate product report

Buyer's Guide

Cisco Secure Firewall

March 2025

Download Cisco Secure Firewall product report

Buyer's Guide

Fortinet FortiGate-VM

March 2025

Download Fortinet FortiGate-VM product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall

FortiGate Virtual Appliance, FortiGate-VM

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.

The core features of Cisco Secure Firewall are multifaceted:

Advanced threat protection is achieved through a combination of intrusion prevention, malware detection, and URL filtering technologies.
For secure access, the firewall presents multiple options, including VPN, remote access, and single sign-on.
Its network segmentation capability is vital in creating barriers within the network to safeguard critical assets.
The firewall is scalable, effectively serving small businesses to large enterprises.
Management is streamlined through Cisco DNA Center, a central management system.

The benefits of deploying Cisco Secure Firewall are substantial. It significantly reduces the risk of cyberattacks, thereby enhancing the security posture of an organization. This security also translates into increased productivity, as secure access means uninterrupted work. Compliance with industry regulations is another advantage, as secure access and network segmentation align with many regulatory standards. Additionally, it helps in reducing IT costs by automating security tasks and simplifying management processes.

In practical scenarios, Cisco Secure Firewall finds diverse applications. It's instrumental in protecting branch offices from cyberattacks, securing remote access for various stakeholders, safeguarding cloud workloads, and segmenting networks to isolate sensitive areas.

User reviews from PeerSpot reflect an overall positive experience with the Cisco Secure Firewall. Users appreciate its ease of configuration, good management capabilities, robust protection, user-friendly interface, and scalability. However, some areas for improvement include better integration capabilities with other vendors, maturity, control over bandwidth for end-users, and addressing software bugs.

In summary, Cisco Secure Firewall is a comprehensive, versatile, and reliable security solution that effectively meets the security needs of various organizations. It offers a balance of advanced protection, user-friendly management, and scalability, making it a valuable asset in the realm of network security.

Cisco

FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.

Fortinet

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.

Security7 Networks, COOPENAE

Buyer's Guide

Cisco Secure Firewall vs. Fortinet FortiGate-VM

March 2025

Free Report: Cisco Secure Firewall vs. Fortinet FortiGate-VM

Find out what your peers are saying about Cisco Secure Firewall vs. Fortinet FortiGate-VM and other solutions. Updated: March 2025.

DOWNLOAD NOW

842,388 professionals have used our research since 2012.

See our Cisco Secure Firewall vs. Fortinet FortiGate-VM report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.