Fortinet FortiGate-VM vs SonicWall NSa comparison

Fortinet and SonicWall are both solutions in the Firewalls category. Fortinet is ranked #9 with an average rating of 8.6, while SonicWall is ranked #18 with an average rating of 8.1. Fortinet holds a 1.9% mindshare in Firewalls, compared to SonicWall’s 1.6% mindshare. Additionally, 98% of Fortinet users are willing to recommend the solution, compared to 88% of SonicWall users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

SonicWall NSa and Fortinet FortiGate-VM offer competitive solutions in network security. While SonicWall NSa excels in pricing and support, Fortinet FortiGate-VM is seen as superior for its feature set, making it worth the higher cost.

Features: SonicWall NSa is praised for its robust firewall capabilities, VPN support, and threat prevention. Fortinet FortiGate-VM is noted for its advanced security features, integration capabilities, and high performance. Users highlight Fortinet's comprehensive feature set as superior in this area.

Room for Improvement: Users of SonicWall NSa suggest improvements in firmware updates, reporting functionalities, and reliability. Fortinet FortiGate-VM users recommend enhancements in the complexity of initial setup, fine-tuning advanced features, and user interface.

Ease of Deployment and Customer Service: SonicWall NSa is generally easier to deploy with straightforward configurations, and its customer service receives positive feedback. Fortinet FortiGate-VM, while more complex to deploy, benefits from thorough documentation and responsive support. Fortinet's support quality is a strong advantage despite deployment complexities.

Pricing and ROI: SonicWall NSa is commended for its affordable setup costs and satisfactory ROI. Fortinet FortiGate-VM, despite higher initial pricing, is valued for delivering greater long-term ROI through advanced capabilities. Users find Fortinet's higher cost justified by its extensive benefits.

To learn more, read our detailed Fortinet FortiGate-VM vs. SonicWall NSa Report (Updated: January 2025).

Buyer's Guide

Fortinet FortiGate-VM vs. SonicWall NSa

January 2025

Download the complete report

Helped 831,020 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of January 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.3%, up from 17.4% compared to the previous year. The mindshare of Fortinet FortiGate-VM is 1.9%, up from 1.7% compared to the previous year. The mindshare of SonicWall NSa is 1.6%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Pietro Di Blasi

Pre-Sales Analyst at a comms service provider with 51-200 employees

Organize networks efficiently while benefiting from strong reliability and support

The main use is for clients who are migrating to the cloud. We started this journey during the pandemic, and the main case is with clients who are moving to either a private or a public cloud The solution allows us to organize our networks and access within one vendor, using an integrated…

Read full review

MohammedMateen

Network Administrator at Transgulf Readymix

Easy to scale advanced threat protection solution with knowledgeable technical support, but has occasional bugs

An area for improvement in SonicWall NSa is that sometimes, we experience bugs when upgrading, so we have to contact their technical support to fix issues. It would be much easier if this improvement was in place: if the one-time password which is built-in, was provided as an OTP for the administrator logging into the console, so that we'll have a quicker awareness of it, rather than needing to check emails for it. Having a Telegram or WhatsApp bot integrated with the device, for example, will be very helpful for us, so we can instantly take action, without us needing to log into and check our emails, meaning we'll be able to put things right faster. This may not be possible in SonicWall NSa, but I'm also looking for any kind of controller or device for the Windows server or client, e.g. Windows 11 and Windows 10 from SonicWall NSa itself, so that a security domain or the gateway of the organization would be able to identify the latest update for a product, whether that product is installed or not. This feature would be very helpful, and it's what I'd like to see in the next release.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Reliability is the best feature. We faced some issues when we were setting it up, but the service, portal, and administration are good."

"Fortigate's most valuable feature is that it doesn't need a push policy when writing rules."

"The virtual firewall feature is the most valuable. We have around 1,500 firewalls. We did not buy individual hardware, and the virtual firewalls made sense because we don't have to keep on buying the hardware. FortiGate is easier to use as compared to Checkpoint devices. It is user friendly and has a good UI. You don't need much expertise to work on this firewall. You don't need to worry much about DCLA, commands, and things like that."

"FortiGate is very simple to manage and easy to use."

"The simplicity of the configuration and the stability of the product are most valuable. The VPN concentrator is very useful."

"I have found Fortinet FortiGate to be scalable."

"It's very easy to configure."

"Whenever I need something, Fortinet improves and updates the software for me."

More Fortinet FortiGate pros

"The setup is simple."

"It's a very simple solution to manage."

"The tool's most valuable feature is its ability to deploy it on live physical hardware. Specifically, when providing firewall services for clients, we can leverage such hardware appliances to support multiple customers on the same hardware."

"We are able to closely monitor the usages of individual users and see their usage habits and other items, including the data itself, which gives us quite a bit of visibility."

"The most valuable feature is the WAN optimization."

"Scalability is an excellent selling point for FortiGate VM."

"It is a complete package, and it has complete offerings. It fit the needs, and our customer is happy with it."

"The most valuable features of Fortinet FortiGate-VM are its flexibility and scalability. This solution is available as a license, which allows us to activate it based on the specific needs of the customer. This gives us and the customer a great deal of versatility and customization options."

More Fortinet FortiGate-VM pros

"It has excellent stability."

"I really like the performance; there are no delays and no latency, which is a unique quality in firewalls nowadays."

"I like this solution because we are focused on VPN and have many brands that need to link a VPN and have security, like ransomware, spyware, and basic protection."

"The functionality is the same whether it is on hardware or a virtual appliance. The interface is the same. It's nice that it's standardized."

"SonicWall NSa's most valuable features are the ease of configuration and the GUI."

"The most valuable feature is the sandbox."

"The ease of configuration is excellent."

"It is a very stable solution."

More SonicWall NSa pros

Cons

"Technical support needs to be improved."

"Currently, without the additional reporting module, we only have access to basic reporting."

"Reporting is limited to providing an external appliance for improving the reporting capabilities of the FortiAnalyzer. It does not offer a central management and is also sold separably as an appliance."

"The feature which gives us a lot of pain is ASIC architecture."

"They can do more tests before they release new versions because I would like to be more assured. We had some experiences where they release something new and great, but some of the old features are disabled or they don't work well, which impacts the product satisfaction. The manufacturer should be able to prove that everything works or not only that it might work. This is applicable to most of the other services, software, and hardware companies. They all should work on this. We cannot trust every new release, such as a beta release, on the first day. We wait for some comments on the forums and from other companies that we know. We always wait a few weeks before we use the updated version. They should also extend the VPN client application, especially for Linux versions. Currently, it has an application for Linux devices, but it doesn't work the way we want to connect to the VPN. They use only the old connection, not the new one. They have VPN client applications for Windows and Mac, but they can add more useful features to better manage the devices and monitor the current health of each device. Such features would be helpful for our company."

"It would be ideal if they had some sort of GUI interface for troubleshooting and diagnostics."

"It is quite new for us, and we need to go more in-depth into the monitoring tools. It provides different features that we need to do what we want. So far, it is okay for us. In terms of improvement, in the future, they can provide a faster implementation of features. Some of the features are first available in other solutions. Fortinet sometimes takes a little bit longer than other solutions, such as Check Point, to implement new features."

"Their software support needs improvement. I would prefer to have better support for bug fixes. Sometimes, we open a ticket, and it is very difficult to get a solution. Specifically, we are not at all happy with their support for load balancing."

More Fortinet FortiGate cons

"his is not a good solution for enterprises. It's better for smaller companies."

"The user interface needs to be improved."

"In the first two releases of FortiOS 5.6, we had some trouble with the SSL VPN service. Sometimes it stopped working, and the IPS daemon too."

"The solution should provide more useful GUI features."

"I have had a data issue with physical devices that could improve."

"The GUI could be improved."

"Technical support could be improved."

"The tool does not have a good name in the market, consisting of enterprise-class businesses, making it an area where the product lacks and needs to improve."

More Fortinet FortiGate-VM cons

"It is not scalable. If your enterprise is growing hard then you have to buy another, bigger product. Maybe if you use it virtually it is more scalable."

"It only has a single power interface, which has limitations in terms of high availability."

"It's very hard to manage this box. You really need a lot of skills to operate the SonicWall. There is training and the like, but it's just hard to manage. Even if you have the knowledge, there are too many options. The menus are not very clear, where you should find the information."

"An area for improvement would be SonicWall NSa's integration with antiviruses."

"Certain features like SD-WAN are sometimes confusing to configure."

"I would like to see better integration."

"The product likely isn't a good fit for a large organization."

"Competitors provide SSL encryption licenses for free, whereas SonicWall only provides two licenses by default, but you have to pay for the rest of the licenses."

More SonicWall NSa cons

Pricing and Cost Advice

"Work through partners for the best pricing."

"The license for Fortinet FortiGate is affordable in my country."

"The support subscription for the solution is annual. You are paying for support and there are two levels of support, professional and advanced."

"The price of Fortinet FortiGate is reasonable for an SME."

"The pricing is fair."

"If you purchase a one-year subscription with the hardware and then you want to renew for the second year, it is very costly."

"Setup cost may be not so low, as you expect, because it depends on different factors, but TCO for 5 years may pleasantly surprise you."

"I give the pricing a nine out of ten."

More Fortinet FortiGate pricing and cost advice

"It has a flexible pay-as-you-go pricing model."

"This solution is very expensive."

"I would rate the product's pricing as four out of five."

"The best part of Fortinet is the license is bundled together, so it is easy to use and apply."

"The price of this product is great compared to others."

"Licensing is pretty standard. It's approximately 15% of the total cost per year as a subscription cost."

"There are no additional costs beyond the standard fee."

"Installation does not require another license making it an inexpensive solution."

More Fortinet FortiGate-VM pricing and cost advice

"When implemented properly, the total cost of operation is very low."

"SonicWall NSa's pricing is subscription-based and I rate it a six out of ten."

"Normally, when we buy any product, we buy it with a five-year service built into it. Later on, depending on the growth of the organization, we go for a new one or an upgrade."

"SonicWall is a one-time purchase and there is no renewal license."

"Additional resources are too expensive."

"You need their analyzer to properly generate reports. This is an expensive, licensed feature, with a complex application or appliance back-end."

"The return on investment is very good."

"There are different pricing models for SonicWall NSa."

More SonicWall NSa pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

831,020 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Computer Software Company

20%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

15%

Educational Organization

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Features comparison between Palo Alto and Fortinet firewalls

In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it...

See all answers

Which would you recommend - FortiGate VM or Azure Firewall?

Both of these solutions are excellent options that provide flexible scalability and solid security. Fortinet Fortigat...

See all answers

What do you like most about Fortinet FortiGate-VM?

An enhanced security solution for any kind of alert that we have configured.

See all answers

What do you like most about SonicWall NSa?

The product blocks access when I visit unrecognized websites.

See all answers

What is your experience regarding pricing and costs for SonicWall NSa?

SonicWall is much cheaper compared to Fortinet, particularly regarding renewal and licensing costs.

See all answers

What needs improvement with SonicWall NSa?

I would like more free VPN licenses. It would be beneficial if they could enhance the analytics part. It needs to be ...

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 23% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 13% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 11% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

Azure Firewall vs Fortinet FortiGate-VM

Compared 31% of the time

Palo Alto Networks VM-Series vs Fortinet FortiGate-VM

Compared 6% of the time

Cisco Secure Firewall vs Fortinet FortiGate-VM

Compared 4% of the time

Zyxel Unified Security Gateway vs Fortinet FortiGate-VM

Compared 4% of the time

Fortinet FortiOS vs Fortinet FortiGate-VM

Compared 3% of the time

More Fortinet FortiGate-VM Competitors

Sophos XG vs SonicWall NSa

Compared 15% of the time

SonicWall TZ vs SonicWall NSa

Compared 13% of the time

Meraki MX vs SonicWall NSa

Compared 9% of the time

Cisco Secure Firewall vs SonicWall NSa

Compared 6% of the time

OPNsense vs SonicWall NSa

Compared 5% of the time

More SonicWall NSa Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

January 2025

Download Fortinet FortiGate product report

Buyer's Guide

Fortinet FortiGate-VM

January 2025

Download Fortinet FortiGate-VM product report

Buyer's Guide

SonicWall NSa

December 2024

Download SonicWall NSa product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

FortiGate Virtual Appliance, FortiGate-VM

NSA 250M, NSA 2600, NSA 3600, NSA 4600, NSA 5600, Dell SonicWALL NSA

Learn More

Fortinet

SonicWall

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform.

SonicWall NSa dispenses advanced threat protection using a high-performance security platform. The NSa series implements intuitive deep learning technologies in the SonicWall Capture Cloud Platform to dispatch the automated real-time threat detection and deterrence enterprise organizations need today. SonicWall Network Security appliance (NSa) series is best for mid-sized organizations to distributed enterprises and data centers.

SonicWall NSa series next-generation firewalls (NFGWS) combine two very robust security ideologies to deliver advanced threat protection to keep users’ networks safe. Boosting SonicWall’s multi-engine advanced threat protection (ATP) is their Real-time Deep Memory Inspection (RTDMI™). The RTDMI intuitively identifies and stops aggressive zero-day threats and vicious malware by investigating memory directly. This real-time process allows SonicWall RTDMI to be accurate, lessen false positives and discover and alleviate malicious threats and attacks. SonicWall’s single-pass Reassembly-Free Deep Packet Inspection (RFDPI) will audit every byte of each and every packet by investigating both outbound and inbound traffic on the firewall. By combining the SonicWall Capture Cloud Platform along with on-box offerings such as intrusion prevention, web/URL filtering, and anti-malware, the NSa series is able to block the most malicious and dangerous threats at the gateway.

Additionally, SonicWall firewalls supply absolute protection by executing complete inspection and decryption of SSH and TLS/SSL encryption connections - no matter the port or protocol. The firewall takes a deep dive into each and every packet (the header and data) routing out any anomalies, zero-day intrusions, threats, and protocol non-compliance. Users can also define unique criteria specific to their organization to ensure their networks remain safe. This aggressive deep packet inspection is able to identify and block malicious attacks, stop dangerous malware downloads, prevent the spread of infections, and defeat command and control (C&C) communications and data exfiltration. Protocols involving inclusion and exclusion allow users complete control to decide, based on specific governance policies, organizational policies, or government or legal compliance, which traffic is to be investigated for decryption or inspection.

SonicWall Nsa offers enterprise organizations the network control and fluid flexibility they desire using an intrusion prevention system (IPS), VPN, real-time visualization, and other advanced powerful security features, making it a popular firewall solution in today's marketplace.

Reviews from Real Users

“The features that I have found most valuable are the firewalling, which is very good, and the GUI which is very intuitive. It is easy to use and provides great security.” - Network Engineer at a maritime company

“What's valuable in SonicWall NSa is the ATP (advanced threat protection). It can protect users from malicious links. SonicWall NSa also has a Sandboxing service that is very helpful for us, especially when end users accidentally click on malicious links. Another valuable feature of this solution is that it is very useful for site-to-site VPN connectivity issues. SonicWall NSa has very good hardware. I also love that SonicWall has very good technical support, who are very knowledgeable, provide good suggestions, and they're easy to reach.” - Mohammed M., Network Administrator at Transgulf Readymix

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Security7 Networks, COOPENAE

Orange County Rescue Mission, First Source, Michaels & Taylor, Green Clinic Health System, Aspire Chiltern Skills and Enterprise Centre, UnitedStack, Faith Lutheran College Redlands, Celtic Manor Resort, Star Kay White, Air Works, Unimat Life, NHS Yorkshire and Humber Commissioning Support (YHCS), Hutt City Council, Mato Grosso do Sul, Nspyre

Buyer's Guide

Fortinet FortiGate-VM vs. SonicWall NSa

January 2025

Free Report: Fortinet FortiGate-VM vs. SonicWall NSa

Find out what your peers are saying about Fortinet FortiGate-VM vs. SonicWall NSa and other solutions. Updated: January 2025.

DOWNLOAD NOW

831,020 professionals have used our research since 2012.

See our Fortinet FortiGate-VM vs. SonicWall NSa report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.