Juniper vSRX and OPNsense are two competing firewall solutions. Based on user reviews, OPNsense seems to have the upper hand in multiple aspects due to its user-friendliness and customization options.
Features: Juniper vSRX has advanced threat protection, scalability, and integration with other Juniper products. OPNsense offers ease of use, comprehensive plugins, and more customization options.
Room for Improvement: Juniper vSRX could simplify its configuration processes and speed up support response times. OPNsense needs better documentation, more frequent updates, and improved official support.
Ease of Deployment and Customer Service: Juniper vSRX has a more complex deployment process requiring specialized knowledge and professional but slow customer service. OPNsense has an easier deployment model suitable for various environments with responsive community support but less structured official support.
Pricing and ROI: Juniper vSRX is seen as a higher-cost solution with significant ROI for large enterprises. OPNsense provides a cost-effective solution with quicker ROI, especially appealing to small to medium-sized businesses due to its open-source nature.
The response time for a critical priority one issue was over four hours and they only responded because we threatened legal action for them violating our support contract.
They say they will respond in 24 hours, but I have received responses in a maximum of one hour, which is impressive.
The technical support from Fortinet FortiGate is 24 hours a day seven days a week, and 365 days a year.
I know a couple of people on the forum that actually develop the tool, and they are helpful.
Within approximately an hour or two I was receiving a response, I was really impressed with the support.
The heavy part was the Azure part, and we are specialists there.
FortiWAN supports OSPF but does not support the BGP protocol.
Fortinet VPN and DDoS capabilities are great, yet we need to provide a solution that enables CASB and integration to the cloud.
The relationship between their accounts team and my leadership team seems to be the reason for phasing out FortiGate.
Our primary focus is to ensure the protection of customers' and consumers' data and critical IT/Dynamic infrastructure.
For high availability, it's crucial to have a method in place where a designated component oversees the entire process.
The problem is integration with a virtual server.
The devices will usually fail way before reaching the capacity advertised in the data sheets, especially when you activate several of the features the device can handle.
The solution is working and it is still stable even across all of these devices and servers.
We have over 10,000 users behind it.
We only use OPNsense now. We migrated from FortiGate.
It is especially scalable if you use the VM version because you only have to provision more resources.
If a customer is starting in the cloud and has 100 or 200 users, I would always recommend OPNsense.
The cost of the original deployment fell below £5,000, and licenses are priced at around £3,000.
Every time you upgrade your license, you also get insurance for the equipment.
Overall, FortiGate is affordable.
There are no licensing costs for OPNsense.
The main cost is the hardware.
I believe that costs between $900 to $1000 a year.
All of these issues were resolved in v5.2.
Stability has dramatically improved over the previous main version branch of FortiOS; 5.2.x and 5.4.x are stable enough for critical environments.
Overall, the devices have been very stable.
When I check to see if the second one would take over, it failed.
There are no bugs or glitches.
It appears to be rather reliable, though, with the stated data points above, it is not yet ready for the enterprise yet.
The two most valuable features are VPN and firewalling.
WiFi network for visitors isolated from our corporate WiFi network using only one unit
Allows for firewall rules to be programmed and named in a way that makes it 'readable'
The most valuable thing about this product is that it is very easy to use.
With the visibility, you can see the data source, data destination, the source port, destination port, protocols, the most used, the malicious files that have been detected and blocked, the countries the customer has visited, and the IPs based on Suricata.
The VPN server feature is the most valuable.
Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.
Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.
What are the key features of Fortinet FortiGate?Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.
Juniper vSRX is a virtualized security platform that provides advanced threat protection for virtualized and cloud environments. It offers a comprehensive set of security features, including firewall, VPN, intrusion prevention system (IPS), and unified threat management (UTM).
With its scalable architecture, the vSRX can be easily deployed and managed across multiple virtual machines, making it ideal for organizations with dynamic and distributed networks. It also supports high-performance data processing, ensuring minimal impact on network performance.
vSRX is designed to integrate seamlessly with Juniper's broader security ecosystem, enabling centralized management and visibility across the entire network.
OPNsense is widely used for firewall functionalities, intrusion detection, VPN and IPSec, content filtering, securing network traffic, and remote access. It protects internal networks and manages servers securely, suitable for small to medium-sized businesses.
OPNsense is a comprehensive firewall solution leveraging open-source technology. It integrates with third-party modules like WireGuard and CrowdSec, enhancing its security capabilities. Offering on-premises and cloud deployment, it features an intuitive graphical interface, advanced reporting, VPN functionality, IDS/IPS features, and high scalability. Users find it ideal for small businesses and home networks due to its stability and ease of use. Frequent updates and an active community support its continuous improvement. However, it needs advancements in VPN selection, scalability, and technical documentation. Enhanced high availability, threat intelligence, and integration with virtualization platforms are required. User feedback suggests improvements in connectivity, alerting, traffic monitoring, and antivirus protection.
What are the key features of OPNsense?OPNsense is implemented across various industries to secure network infrastructure and ensure reliable connectivity. In fintech, it safeguards sensitive financial data while maintaining compliance. Educational institutions deploy it to protect student information and enable secure remote learning environments. Healthcare organizations use it to secure patient data and comply with HIPAA regulations. By integrating with tools like WireGuard and CrowdSec, businesses enhance their cybersecurity posture and streamline network management, making OPNsense a versatile choice for diverse operational needs.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
