Fortinet FortiProxy vs Zscaler Internet Access comparison

Fortinet and Zscaler are both solutions in the Secure Web Gateways (SWG) category. Fortinet is ranked #11 with an average rating of 7.9, while Zscaler is ranked #2 with an average rating of 8.2. Fortinet holds a 5.8% mindshare in WSG, compared to Zscaler’s 15.6% mindshare. Additionally, 100% of Fortinet users are willing to recommend the solution, compared to 98% of Zscaler users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 4, 2024

Zscaler Internet Access and Fortinet FortiProxy compete in the network security category, focusing on web filtering, threat detection, and application control. Based on available features, Zscaler Internet Access seems to have an upper hand due to its comprehensive cloud-native security solutions.

Features: Zscaler Internet Access offers URL and application filtering, malware protection, advanced threat detection, SSL inspection, and bandwidth control. It stands out with its cloud-native architecture and ease of integration with cloud services. Fortinet FortiProxy provides granular access control, integration with other security products, enhancing DNS protection, and excellent caching capabilities.

Room for Improvement: Zscaler Internet Access may improve its reporting features for better data interpretation and ease its complex deployment process. Enhancing application integration can also be beneficial. Fortinet FortiProxy could address policy testing and management issues, improve web filtering features, and make documentation more user-friendly. Additional language support for the interface, such as French, would increase accessibility.

Ease of Deployment and Customer Service: Zscaler Internet Access supports versatile deployment across public, private, and hybrid clouds, with users experiencing minimal post-deployment issues, though some suggest enhancements in support speed. Fortinet FortiProxy, primarily on-premise, offers effective initial support but struggles to maintain consistency across infrastructures. Prompt response times are noted, but language support improvements could enhance user accessibility.

Pricing and ROI: Zscaler Internet Access is viewed as expensive, particularly for SMEs, yet provides high ROI through security enhancements and reduced management costs. Fortinet FortiProxy offers a more cost-effective solution with reasonable pricing, balancing feature offerings and potential cost savings, accessible across varied organizational needs. Both solutions report measurable ROI, with Zscaler's comprehensive coverage potentially justifying its higher cost for larger enterprises.

To learn more, read our detailed Fortinet FortiProxy vs. Zscaler Internet Access Report (Updated: April 2025).

Buyer's Guide

Fortinet FortiProxy vs. Zscaler Internet Access

April 2025

Download the complete report

Helped 847,959 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

iboss

Mindshare comparison

As of April 2025, in the Secure Web Gateways (SWG) category, the mindshare of iboss is 2.0%, up from 1.7% compared to the previous year. The mindshare of Fortinet FortiProxy is 5.8%, up from 4.6% compared to the previous year. The mindshare of Zscaler Internet Access is 15.6%, down from 17.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Secure Web Gateways (SWG)

Featured Reviews

Matt Crockford

Head of Cybersecurity at SES Water

It's easy to roll out, and their understanding of our business made it seamless

One aspect we value about iboss is its simplicity. Their customer service is brilliant, and they are super responsive and knowledgeable. It's easy to roll out, and their understanding of our business made it seamless. We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times. The user interface is highly intuitive. Our IT team picked it up with minimal training. It's arranged so that it's easy to find where things are. Another advantage is the single pane of glass console, which gives you visibility into what's happening. We're not fully there yet because we haven't implemented zero trust, but we're excited about the possibilities from the demos we've seen. We launched a POC of iboss' ChatGPT Risk Protection feature two weeks ago. AI is a great tool, but you need to be careful what you put into it. My biggest fear is employees inputting sensitive corporate information or customer PII data into one of these chatbots. I was impressed by our trial of the feature. It's exactly what we wanted. Now, when a user goes to ChatGPT, there's a banner warning them not to share information, and we can block conversations containing customer data like bank details and email addresses. I don't want to stop people from using it, but we need visibility. We've only tried it on a test group of 15 people. You can configure it to look for specific keywords or integrate it with your DLP policy if you have that configured

Read full review

Adnan Kallas

Sr. Network & Security Engineer at Data Consult

Superior threat protection with robust IPS and antivirus capabilities

The main use case is to protect internal enterprise users in an enterprise network. Users from different departments such as finance, IT, and sales who want to access the internet, search social media, or visit websites are protected from potential threats when using Fortinet FortiProxy. It allows…

Read full review

ShanavasVK

Consultant at Essentra PIC

Helps maintain a consistent posture of internet security while getting rid of VPN and hovering into zero trust

There could be a better way for the tool to categorize the traffic. For example, the tool does exceptions and everything overall. If I want to give guest access or provide access to guest users or any other internet access and if it does not go through the SSL inspection because, in our company, we can't have the root certificate on a device that we don't manage, which can be called out as an exception or an exclusion, but that doesn't provide a proper reflection of the picture of what is happening in the environment. There are granularities bringing it down. The tool I used or still have is Zscaler Cloud Connector to protect the cloud environment, which can have a bit more user-friendly installation and setup, and it would help a lot. The deployment process of Zscaler Cloud Connector needs to be more user-friendly. Improvements are required in the exception category. For example, suppose I report on a monthly basis what the breaches and traffic violating the SSL inspection area are coming from. In that case, I may find that half of them may be coming through some guest network, meaning the tool doesn't differentiate between the guest or normal networks or the corporate networks. Having options to differentiate different networks would be ideal so that it can show a true picture of things to users, as half of the things in the tool are not in our control and are not of our concern.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times."

"Our primary use case for this product is DLP,"

"Valuable features: Within the filter: Controls (Web categories, applications, and Allow/Block list) and Network (local Subnets). Within the reporter: Logs (Event Log) and Reports."

"First of all, the security policies are essential. I do not have to rely solely on Active Directory for our users."

"Granular setup, which was able to set different levels of filters using the OUs in the AD."

"It was a very easy product to install. It can be deployed very fast."

"Technical support is pretty sharp and very responsive."

"iboss is among the few products providing inline filtering where no application is needed on the device."

More iboss pros

"I liked the tool's ability to provide detailed access control. For example, we could allow users to watch YouTube videos but not post comments. This level of control wasn't available in FortiGate."

"It helps to secure the networks at the DNA level and ensure proper identification and filtering of DNS traffic."

"We can use Fortinet FortiProxy configuration for your network."

"It seamlessly integrates with various security products, enhancing threat intelligence and improving indicators of compromise."

"It is a really stable solution."

"The tool's most valuable feature is its granular access control. For example, users can browse the main site if you allow access to Amazon, but it stops them from visiting secondary Amazon websites without specific permission. This granular control is really helpful."

"The most valuable features of Fortinet FortiProxy are its simplicity and performance."

"The solution's stability is good."

More Fortinet FortiProxy pros

"Zscaler excels in security protection and the cloud is always up-to-date. It does not matter if you are a small or big organisation, you will receive the same security quality."

"Zscalar Internet Access is for Internet security, like an Internet security gateway. I like how it runs seamlessly in the background with a single sign-on. The controls you can have on devices for Internet security are good, and it doesn't impact speed wherever you're connected. Overall, I think it's very good so far."

"Zscaler offers a centralized DLP solution for web, endpoint, and email."

"The most valuable feature is the ability to drop packets."

"Zscaler Web Security protects our users in remote locations from internet threats - even if they are not connected to our network."

"The policies are very intuitive and easy to configure, with very little possibility of messing things up."

"Zscaler covers all the features needed to replace a VPN or proxy solution. They are good. They've been on the market for 15 years now, so they are mature enough."

"The most valuable feature is bandwidth control."

More Zscaler Internet Access pros

Cons

"Their on-premise hardware's network interface is capped at one gigabit, which is sort of a problem. If you stand a filter up where all traffic flows through that, according to them, in order to go above a gigabit, you have to have multiple devices, which in today's IT seems a little bit silly. They could easily put in an SFP port into their device that could accommodate 10 gigs or at least offer a box."

"To scale up, a new iboss Node Blade Chassis must be purchased."

"Sometimes when you call in support, you get someone who is just following a sheet. It feels like a runaround. You feel that you are running into that support wall."

"File integrity monitoring would be very advantageous as an additional feature."

"I am currently doing a PoC of the zero trust aspect of it. Compared to other similar solutions, it is hard to get around each feature. It takes a while to get used to it."

"The area I would like to see improvement in is the ability with in the reporter to navigate directly to the content the user is traversing. It is kind of there, but it's not perfect. Quite frequently, I receive links that lead me to pages with error messages."

"The reporting feature needs improvement."

"SSL decryption: We had issues with learners using apps instead of using web browsers. This type of encryption is tough for any appliance in a BYOD environment."

More iboss cons

"Integration with existing infrastructure was generally easy, especially if you had tools like LDAP. However, I had to go through a lot of documentation as it was my first time working with a proxy server. We did experience some issues with certain web applications not working properly after implementing Fortinet FortiProxy."

"Fortinet FortiProxy should integrate AI/ML technologies. Its pricing needs to be more flexible."

"Fortinet FortiProxy should improve by adding more documentation and guides."

"I see that the solution's interface is not in French...It would be good for our company if we could have the tool interface in French."

"Its power supply process for some of the proxies needs improvement."

"For IT administrators and managers, the reporting features are the main issues that should be addressed in order to improve the performance, security, and effective utilization of the product."

"Its web filtering capabilities could be improved."

"Sometimes it's not easy to use during large deployments of workstations."

"One thing that needs to be improved is their presence in China. I'm not sure if that's a Zscaler thing or if it's a problem with all vendors in this space, but it would be nice to have better coverage in China. This concern is a common one for vendors across the board when dealing with the Chinese market."

"The performance needs improvement. Some areas create performance issues and, depending on the use cases, require reconfiguration to perform again."

"If they can also integrate with the multi-factor authentication to prompt users to do another, second-factor authentication, that would be ideal."

"I don't know whether it's Zscaler or not, however, sometimes I can't access my time management. I need to wait and try again a few hours later. Typically, if I let some time pass, I can access it again."

"They could provide more time for the onboarding the training of an IT person."

"In terms of usage, here in the GCC, it's still growing a growing market, so the combination of DLP, data leak prevention, to a certain extent is fine. But what it requires is user-based access or role-based access. The solution needs to grow into that, which definitely takes time. There's not an easy way to integrate it, when you have a cloud-based solution."

"The solution's pricing is on the higher side. It would be better if it could be lower."

More Zscaler Internet Access cons

Pricing and Cost Advice

"It is expensive compared to one of its competitors."

"It is probably in line with other solutions, but I do not deal with the financial side."

"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."

"We have not priced the solution recently, but they were competitive with other vendors in the past."

"The overall pricing for iboss is very competitive and transparent."

"It is a cost-effective solution."

"Price-wise, Fortinet FortiProxy is moderate - not the highest among competitors, but not cheap either."

"It can be considered expensive, with a limited lifespan and support that eventually requires updating to newer solutions."

"The solution is neither too expensive nor very cheap."

"The tool's pricing is in the middle."

"It offers a more cost-effective solution than alternatives like FortiMail, FortiGate, and various Barracuda devices."

"It is quite expensive. It does its job, but it is quite expensive for what we need."

"The pricing for Zscaler Internet Access could be made cheaper."

"Be aware that you will need to invest some time and money to adapt your environment for Zscaler (traffic redirection, software deployment, authentication, etc)."

"If we need any extra features, the price will increase."

"We pay around 6,500 INR per user per year, which is very expensive. I would rate Zscaler's pricing one out of five."

"It is costlier than other solutions."

"The solution is a little bit expensive. On a scale of one to five, I would rate it as a three."

"Because it's a cloud solution, we pay on a yearly basis. It is affordable and includes tech support and all features."

More Zscaler Internet Access pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Secure Web Gateways (SWG) solutions are best for your needs.

See recommendations

847,959 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

12%

Manufacturing Company

Government

Financial Services Firm

14%

Computer Software Company

14%

Government

Manufacturing Company

Educational Organization

22%

Computer Software Company

14%

Financial Services Firm

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about iboss?

Content filtering is the most useful feature of iboss.

See all answers

What needs improvement with iboss?

I have the same complaint about them that I have about other software companies. Sometimes when you call in support, ...

See all answers

What is your primary use case for iboss?

We are a PreK-12 public school district, and we use iboss to filter internet content for our students at home and sta...

See all answers

What do you like most about Fortinet FortiProxy?

The tool's most valuable feature is traffic inspections.

See all answers

What needs improvement with Fortinet FortiProxy?

One issue is the limitation in using Fortinet FortiProxy for remote users, as it requires users to be members of the ...

See all answers

What advice do you have for others considering Fortinet FortiProxy?

Before implementing Fortinet FortiProxy, study your enterprise architecture and know your needs. Consider using the h...

See all answers

Which is the better security solution - Cisco Umbrella or Zscaler?

Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried. Zs...

See all answers

Which is better, Zscaler internet access or Netsckope CASB?

We researched Netskope but ultimately chose Zscaler. Netskope is a cloud access security broker that helps identify ...

See all answers

What do you like most about Zscaler Internet Access?

The solution has reduced cyberattacks.

See all answers

Comparisons

Cisco Umbrella vs iboss

Compared 15% of the time

Netskope vs iboss

Compared 13% of the time

Cloudflare One vs iboss

Compared 11% of the time

Prisma Access by Palo Alto Networks vs iboss

Compared 9% of the time

Cato SASE Cloud Platform vs iboss

Compared 8% of the time

More iboss Competitors

Fortinet FortiGate SWG vs Fortinet FortiProxy

Compared 55% of the time

Forcepoint Secure Web Gateway vs Fortinet FortiProxy

Compared 8% of the time

Cisco Umbrella vs Fortinet FortiProxy

Compared 6% of the time

Cisco Web Security Appliance vs Fortinet FortiProxy

Compared 6% of the time

F5 BIG-IP Access Policy Manager (APM) vs Fortinet FortiProxy

Compared 4% of the time

More Fortinet FortiProxy Competitors

Cisco Umbrella vs Zscaler Internet Access

Compared 23% of the time

Netskope vs Zscaler Internet Access

Compared 14% of the time

Microsoft Defender for Cloud Apps vs Zscaler Internet Access

Compared 11% of the time

Prisma Access by Palo Alto Networks vs Zscaler Internet Access

Compared 8% of the time

More Zscaler Internet Access Competitors

Product Reports

Buyer's Guide

iboss

April 2025

Download iboss product report

Buyer's Guide

Fortinet FortiProxy

April 2025

Download Fortinet FortiProxy product report

Buyer's Guide

Zscaler Internet Access

March 2025

Download Zscaler Internet Access product report

Also Known As

iBoss Cloud Platform

FortiProxy

ZIA

Overview

iboss offers a comprehensive security platform designed for diverse use cases such as web filtering, data loss protection, corporate proxy services, and URL filtering.

iboss integrates advanced features to address dynamic security needs, leveraging its strength in SASE, ZTNA, AI initiatives, and cloud integration, while ensuring seamless operations for remote work. It excels in historical forensics, malware protection, and flexible cloud deployments. Users benefit from comprehensive traffic scanning, robust malware detection, and PaaS capabilities that reduce hardware management. An intuitive admin console ensures efficient management with content filtering and low false positives. SSL decryption enhances security, while DLP protects data in AI conversations. Deployment is rapid and scalable, allowing effortless integration with emerging technologies.

What features does iboss offer?

Granular Web Filtering: Provides precise control over web content access.
Traffic Scanning: Monitors data through multiple ports for security breaches.
Malware Detection: Ensures superior protection against malware threats.
PaaS Capabilities: Eliminates need for hardware management.
SSL Decryption: Enhances data protection by decrypting secure connections.
DLP Capabilities: Safeguards data during AI interactions.

What benefits and ROI should users consider?

Scalability: Adapts quickly to growing demands and emerging tech integration.
Rapid Deployment: Reduces time to implement security measures.
User-Friendly Admin Console: Facilitates efficient operations management.
Low False Positives: Increases accuracy of threat detection systems.

iboss finds significant application in sectors such as education, where web filtering for K-12 is crucial, and in corporate environments requiring robust proxy services and URL filtering for network security. Its adaptability is essential in scenarios demanding flexible, decentralized security frameworks, particularly for remote work setups.

iboss

Fortinet FortiProxy is a secure web gateway that provides advanced web filtering, malware protection, and SSL inspection capabilities. It is designed to protect organizations from web-based threats and prevent data loss by enforcing granular policies for web access. FortiProxy is available as a physical or virtual appliance and can be deployed on-premises or in the cloud. FortiProxy uses a combination of signature-based and behavior-based detection techniques to identify and block known and unknown threats. It also includes advanced features such as sandboxing and machine learning to detect and prevent zero-day attacks. FortiProxy can inspect SSL traffic to detect and block threats hidden in encrypted traffic. FortiProxy provides granular control over web access by allowing administrators to create policies based on user identity, device type, time of day, and other factors. It also includes pre-defined categories for web filtering, such as social media, gambling, and adult content. FortiProxy can also enforce compliance with regulatory requirements such as GDPR and HIPAA. FortiProxy integrates with Fortinet's Security Fabric, allowing it to share threat intelligence with other Fortinet products and provide a coordinated response to threats. It also includes a web-based management console that provides real-time visibility into web traffic and allows administrators to quickly respond to security incidents.

Fortinet FortiProxy is a comprehensive web security solution that provides advanced protection against web-based threats and allows organizations to enforce granular policies for web access.

Fortinet

Zscaler Internet Access is a cloud-native security service edge (SSE) platform. Its main purpose is to provide AI-powered protection for all users, all applications, and all locations. The solution replaces other legacy network security solutions to stop advanced attacks and prevent data loss by using a comprehensive zero trust approach.

Zscaler Internet Access Features

Zscaler Internet Access has many valuable key features. Some of the most useful ones include:

Proxy (native SSL)
IPS and advanced protection
Cloud sandbox
DNS security
Cloud firewall
URL filtering
Bandwidth control
DNS filtering
Cloud DLP w/EDM and IDM
Cloud access security broker (CASB)
Cloud security posture management (CSPM)
CloudBrowser isolation
Cloud secure web gateway (SWG)
Zero trust network access (ZTNA)
Digital experience monitoring

Zscaler Internet Access Benefits

There are several benefits to implementing Zscaler Internet Access. Some of the biggest advantages the solution offers include:

Fast access with zero infrastructure: Zscaler Internet Access creates a fast, seamless user experience because of its direct-to-cloud architecture. With no infrastructure, Zscaler Internet Access helps you eliminate backhauling, which improves performance and simplifies network administration.

Threat intelligence: By using threat intelligence, Zscaler Internet Access can stop ransomware, zero-day malware, and advanced attacks via Inline inspection of all internet traffic, including SSL decryption, and a suite of AI-powered cloud security services.

Consistent security: With Zscaler Internet Access, your security policy goes everywhere your users go. When you move security to the cloud, all users, applications, devices, and locations remain protected and secure based on identity and context.

Hybrid workforce: Zscaler Internet Access enables secure access to all external and internal apps from anywhere, so remote work is not an issue. You can also enforce business policies that follow the user, making security identical regardless of location.

Reviews from Real Users

Below are some reviews and helpful feedback written by Zscaler Internet Access users.

A Service Manager at a construction company says, "There are a bunch of different capabilities that are valuable within the platform. We use quite a lot of them, but not everything. The ones that are most important to us are the URL Filtering and the application control. For our needs, the cloud-native proxy architecture is a very good solution. This architecture helps with cyber threats because we inspect most of the traffic and we can see that a lot of threats are stopped directly in the secure web gateway."

Owen N., Security Architect at Claro Enterprise Solutions, explains that the solution’s most valuable features include “The integration of the gateway that inspects all ports and protocols. So, there is threat prevention; The cloud sandbox; VNS security; Access control that will protect URL filtering and the cloud firewall; Data protection that will protect your gateway, like your CASB or your cloud DLP; The capabilities of this will point your traffic to Zscaler Cloud.”

An Architecture Senior Manager at an insurance company mentions, "The data loss prevention feature is the most valuable. It stops our users from inadvertently leaking our customers' data to the Internet or anywhere else it shouldn't go." He also adds, “The solution provides quick access to cloud services, securing our data and allowing us to inspect all our traffic.”

Zscaler

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.

Information Not Available

Ulster-Greene ARC, BanRegio, HDFC, Ralcorp Holdings Inc., British American Tobacco, Med America Billing Services Inc., Lanco Group, Aquafil, Telefonica, Swisscom, Brigade Group

Buyer's Guide

Fortinet FortiProxy vs. Zscaler Internet Access

April 2025

Free Report: Fortinet FortiProxy vs. Zscaler Internet Access

Find out what your peers are saying about Fortinet FortiProxy vs. Zscaler Internet Access and other solutions. Updated: April 2025.

DOWNLOAD NOW

847,959 professionals have used our research since 2012.

See our Fortinet FortiProxy vs. Zscaler Internet Access report.

See our list of best Secure Web Gateways (SWG) vendors.

We monitor all Secure Web Gateways (SWG) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.