• Home
  • Netgate pfSense vs. Palo Alto Networks PA-Series

Netgate pfSense vs Palo Alto Networks PA-Series comparison

Cancel
You must select at least 2 products to compare!
Fortinet Logo
Fortinet FortiGate
Read 306 Fortinet FortiGate reviews
120,425 views|88,209 comparisons
90% willing to recommend
Netgate Logo
Netgate pfSense
Read 128 Netgate pfSense reviews
141,467 views|120,595 comparisons
92% willing to recommend
Palo Alto Networks Logo
Palo Alto Networks PA-Series
Read 28 Palo Alto Networks PA-Series reviews
266 views|212 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Netgate pfSense vs. Palo Alto Networks PA-Series
May 2024
Executive Summary

We performed a comparison between Netgate pfSense and Palo Alto Networks PA-Series based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Netgate pfSense vs. Palo Alto Networks PA-Series Report (Updated: May 2024).
Download the complete report
772,649 professionals have used our research since 2012.
Featured Review
Taimoor Khan
Helpful support, good UI, and provides excellent visibility
The solution has helped our clients secure their network efficiently. It offers security across multiple sites and helps monitor traffic effectively.
Paulo Janeiro LJT
No license required, improved intrusion prevention, but difficult to configure
We have found that this solution is better at keeping our business safe by having improved intrusion prevention than competitors.
Bryan Kenneth De La Cruz
Enabled us to monitor remote workers and take necessary actions, such as blocking problematic IP addresses
After the implementation here, especially since I work in the data center, I've noticed the significance of security. For example, Veeam, CDL, and... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The customization potential is quite impressive.""The license management is very valuable. You can get a new license each year, or you can enroll every two to four years. You can get the logs, and you will get the information on the risk in your network and the entire organization. With this information, you can take action on your actives, computers, or devices. You can bring your own device as an SSE.""The Intrusion Prevention System and the web filtering are both working well.""Initial setup is straightforward. There weren't too many issues with setting it up. It takes one hour or so.""Centralized monitoring, policy management, and virtualized appliances allow us to take control over our public and private infrastructure.""The most valuable features are the possibility of having one fabric for switching on security.""The initial installation is very straightforward.""The security features are about the best that I've seen anywhere."

More Fortinet FortiGate Pros →

"Open source and support are valuable. I have community support.""I have found the firewall portion for the blocking most valuable.""The solution is fairly scalable when it comes to integrating with other applications and data sets.""It works. I put pfSense in, and it works. I can't think of any trouble I ever had with it. It runs on heat-sensitive appliances. They don't need a fan, so they don't overheat. It is affordable, fast, and very high-speed. It is built on BSD Unix, and it pretty much runs on any Intel processor.""A valuable feature is that the solution is open source.""Firewall system for small, medium, and large data networks. It allows you to provide security to your environment: DMZ networks, LAN, WAN, etc.""The plugins or add-ons are most valuable. Sometimes, they are free of charge, and sometimes, you have to pay for them, but you can purchase or download very valuable plugins or add-ons to perform internal testing of your network and simulate a denial-of-service attack or whichever attack you want to simulate. You can also remote and monitor your network and see where the gap is. Did you forget a printer port? Most attacks at the moment are happening through printers, and they can tell you immediately that you forgot to close the port of the printer. There are more than one million printers that are in danger, and everybody knows that hackers are using them to enter the network. So, you can download plugins to protect your network.""The classic features such as content inspection, content protection, and the application-level firewall, are the most important."

More Netgate pfSense Pros →

"A valuable feature that we can consider is the deployment time, which is significantly reduced. It is almost 90% faster compared to other solutions.""The solution provides good customer support.""The documentation is great.""The direct profiles is a valuable feature.""It has its own logging system. You can go to monitoring and check the logs to see if a connection is getting blocked. You can use multiple types of logs to check if a file or a port is getting blocked or if there are any TCP resets from the source or destination. It's easy to troubleshoot with the monitoring and logging it provides.""The solution is robust.""I like the tool's security and web filtering features.""It is scalable. But that depends on what model you are using."

More Palo Alto Networks PA-Series Pros →

Cons
"The solution could be more secure and stable.""Fortinet FortiGate needs to improve the logging and reporting. Additionally, the next-generation application's policies should be improved. When they were released they had bugs.""The reports are very basic.""With the reports, you can see it, and you can get good feelings so upper management can go, "Oh, wow. That looks pretty." However, it's very basic.""It can be a little bit more user-friendly in terms of policy definition and implementation. It seems a little bit complicated, and it could be simplified.""I would like to see a more intuitive dashboard.""One issue that I have had is that sometimes I need to monitor the traffic, so I need to filter it according to the user and which user is using it the most. I experience a bottleneck most of the time, particularly at the peak time when the number of contracts and users are at maximum.""The price of FortiGate should be reduced because there are some other leading products that are cheaper."

More Fortinet FortiGate Cons →

"The solution could use better reporting. They need to offer more of it in general. Right now, the graphics aren't the best. If you need to provide a report to a manager, for example, it doesn't look great. They need to make it easier to understand and give users the ability to customize them.""They can improve the dynamic of the input of IPs from outside.""It was difficult to configure our web printer through the solution. This process could be easier. Additionally, integration with SD-WAN solution.""There are several levels of firewall configuration such as beginner, advanced, and expert configurations. At each level, it becomes more complex and more tricky to set up the firewall. For example, if you want to install the firewall on your computer system, it would be a lot easier if it just tells you that this is the internet NIC and this is the Wi-Fi NIC.""It should integrate with LDAP, Active Directory, etc, to improve the way in which the traces and connections of each IP, or user connected through the firewall, are shown.""The solution’s interface must be improved.""As an open-source solution, there are so many loopholes happening within the product. By design, no one is taking ownership of it, and that is worrisome to me.""I've never tried it in large environments. All my clients are small businesses with a handful of employees, so I am not sure how it works in large environments. I keep up with recent versions, and there's nothing I'm waiting for, and nothing breaks when I get a new version."

More Netgate pfSense Cons →

"There seem to be some issues with TAC (Technical Assistance Center) or Palo Alto support. Anytime you open a case, a level one engineer joins, and then you have to escalate it to level two or three. The support system has changed in the past few years, and that's something they need to look into.""The SD-WAN feature of Palo Alto Networks is not good compared to FortiGate.""The UI definitely needs work. In my opinion, the UI could be simpler and more user-friendly for the average user.""Currently, they are not protected with any data security when they work from home or outside the network. They surf the Internet directly and should implement a proxy or firewall to monitor the data between the endpoint and the internet.""The interface is complex.""The web interface is slow.""Palo Alto Networks PA-Series is expensive. We would like to see additional threat hunting features.""Palo Alto Networks PA-Series is complicated to configure compared to one of its competitors."

More Palo Alto Networks PA-Series Cons →

Pricing and Cost Advice
  • "Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."
  • "These boxes are not that expensive compared to what they can do, their functionality, and the reporting you receive. Fortinet licensing is straightforward and less confusing compared to Cisco."
  • "Go for long term pricing negotiated at the time of purchase."
  • "Work through partners for the best pricing."
  • "The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."
  • "Easy to understand licensing requirements."
  • "​We saved a bundle by not needing all the past appliances from an NGFW.​"
  • "The cost is too high... They have to focus on more features with less cost for the customer. If you see the market, where it's going, there are a lot of players offering more features for less cost."

    • More Fortinet FortiGate Pricing and Cost Advice →

  • "PFSENSE turns out to be very economical, the license is free and for little money you get very good support"
  • "Unless they have specific requirements that demand a particular device, I always suggest pfSense specifically because of the absence of pricing and licensing."
  • "Spend at least $300 or more on a good pfSense box. Use a hard drive, and not a USB flash drive for pfSense storage."
  • "It's open source (and free - as in beer and speech), but also has commercial support."
  • "If you need to buy hardware onto which to install PfSense, go with their boxes on their website, they are great."
  • "It works quite well for an open source product."
  • "From Sonic Wall, their price is much higher, because for every feature that you want to add, you have to pay. I can do the same things with pfSense, but everything is included in one price."
  • "There are a few features not included, and when you have to use those features, you have to pay for them."

    • More Netgate pfSense Pricing and Cost Advice →

  • "Palo Alto’s pricing is way higher than any other solution provider."
  • "While other firewalls may come with a higher cost, when you consider the cost in relation to the services and features that Palo Alto offers, it is clear that Palo Alto is delivering excellent value."
  • "Compared to other vendors, Palo Alto Networks PA-Series is expensive."
  • "Palo Alto is more expensive than FortiGate."
  • "The pricing is a bit on the higher side."
  • "The product is expensive."
  • "We have to pay a yearly licensing fee for the solution."
  • "The tool's pricing was reasonable when we bought the product. We pay around 60,000 dollars per year."

    • More Palo Alto Networks PA-Series Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    See Recommendations
    772,649 professionals have used our research since 2012.
    Questions from the Community
    Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Read all 3 answers   →
    What is the biggest difference between Sophos XG and FortiGate?
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Read all 13 answers   →
    What are the biggest technical differences between Sophos UTM and Fortine...
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Read all 11 answers   →
    Help me find the best open source router
    Top Answer:You don't really specify what type of router you are looking for but if you are talking about a gateway router I… more »
    How do I choose between Fortinet FortiGate and pfSense?
    Top Answer:Fortinet’s Fortigate is a firewall solution we use and are very much satisfied with its performance. We find Fortigate… more »
    Read all 5 answers   →
    What is the difference between PfSense and OPNsense?
    Top Answer:Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and… more »
    What do you like most about Palo Alto Networks PA-Series?
    Top Answer:The reporting feature and application ID functionality within Palo Alto Networks PA-Series are incredibly valuable to… more »
    Read all 13 answers   →
    What is your experience regarding pricing and costs for Palo Alto Network...
    Top Answer:The licensing is great. We renew it, and it works. The pricing is fair. I rate the pricing a five out of ten.
    Read all 11 answers   →
    What needs improvement with Palo Alto Networks PA-Series?
    Top Answer:I don't have any specific suggestions for improving the Palo Alto Networks PA-Series at the moment. I find it to be a… more »
    Read all 14 answers   →
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Learn More
    Fortinet
    Netgate
    Video Not Available
    Palo Alto Networks
    Video Not Available
    Overview

    Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

    pfSense is a powerful and reliable network security appliance primarily used for security purposes such as firewall and VPN or traffic shaping, network management, and web filtering. It is commonly used by small businesses and managed service providers to protect their customers' networks and enable remote access through VPNs. 

    The solution is praised for its stability, user-friendly interface, scalability potential, open-source nature, free cost, easy installation, firewall capabilities, security features, flexibility, and simplicity. Overall, pfSense is a cost-effective solution for enterprises that need a VPN for their employees.

    pfSense Key Features

    pfSense has many key features and capabilities, including:

    • Strength and accuracy: pfSense is able to always follow either default or custom rules, making it a stronger firewall than some of its competitors. It also filters traffic separately, whether it’s coming from your internal network of devices or the open internet, allowing you to set different rules and policies for each.

    • Flexibility: pfSense can work both as a basic firewall and as a complete security system because it gives you the flexibility to integrate additional features as code where necessary.

    • Open-source: Because it is open-source, not only is pfSense free to use, but community members can contribute to the code to make it a better software.

    • User-friendly: Usually firewall products are not user-friendly because they often include complex settings, options, and features that require fine-tuning. pfSense’s interface is simple, direct, and easy to use.

    • WireGuard Support: Instead of building your own VPN using pfSense, or settling for a commercial VPN provider, you can directly integrate WireGuard with the pfSense firewall.

    • Speed Management and Fault Tolerance: pfSense’s multi-WAN feature allows your system to continue operating in case components fail.

    • Well-supported: pfSense regularly has security and feature updates. It also has a documentation site and a well-informed and knowledgeable support forum.

    Reviews from Real Users

    Below is some feedback from PeerSpot Users who are currently using the solution.

    Bojan O., CEO at In.sist d.o.o., says, “The classic features, such as content inspection, content protection, and the application-level firewall, are the most important."

    Another PeerSpot user, a chef at a media company, explains what he finds most valuable about pfSense: "The plugins or add-ons are most valuable. Sometimes, they are free of charge, and sometimes, you have to pay for them, but you can purchase or download very valuable plugins or add-ons to perform internal testing of your network and simulate a denial-of-service attack or whichever attack you want to simulate. You can also remote and monitor your network and see where the gap is."

    T.O., a VP of Business Development at a tech services company, mentions, "What I found most valuable is the cost of the platform, the flexibility of the platform, and the fact that the ongoing fees are not there as they are with the competitor."



    PA-Series constitute the full range of our ML-Powered Next-Generation Firewall physical appliances that are easy to deploy into your organization’s network and purposefully designed for simplicity, automation, and integration. No matter where you need protection, our PA-Series ML-Powered Next-Generation Firewalls are architected to provide consistent protection to your entire network – from your headquarters and office campus, branch offices and data center to your mobile and remote workforce.

    Sample Customers
    1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
    Nerds On Site Inc., RKC Development Inc., Expertech, Fisher's Technology, Ncisive, Consulting, CPURX, Vaughn's Computer House Calls, Imeretech LLC, Digital Crisis, Carolina Digital Phone, Technigogo Technology Services, The Simple Solution, SwiftecITInc, Rocky Mountain Tech Team, Free Range Geeks, Alaska Computer Geeks, Lark Information Technology, Renaissance Systems Inc., Cutting Edge Computers, Caretech LLC, GoVanguard, Network Touch Ltd, P.C. Solutions.Net, Vision Voice and Data Systems LLC, Montgomery Technologies, Techforce, Concero Networks, ASONInc, CPS Electronics and Consulting, Darkwire.net LLC, IT Specialists, MBS-Net Inc., VOICE1 LLC, Advantage Networking Inc., Powerhouse Systems, Doxa Multimedia Inc., Pro Computer Service, Virtual IT Services, A&J Computers Inc., Envision IT LLC, CommunicaONE Inc., Bone Computer Inc., Amax Engineering Corporation, QPG Ltd. Co., IT 101 Inc., Perfect Cloud Solutions, Applied Technology Group Inc., The Digital Sun Group LLC, Firespring
    Information Not Available
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company15%
    Comms Service Provider7%
    Manufacturing Company6%
    REVIEWERS
    University9%
    Manufacturing Company9%
    Comms Service Provider8%
    Marketing Services Firm8%
    VISITORS READING REVIEWS
    Computer Software Company14%
    Comms Service Provider12%
    Government8%
    Educational Organization6%
    REVIEWERS
    Computer Software Company35%
    Manufacturing Company24%
    Financial Services Firm12%
    Government6%
    VISITORS READING REVIEWS
    Computer Software Company25%
    Manufacturing Company12%
    Construction Company7%
    University6%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business28%
    Midsize Enterprise32%
    Large Enterprise40%
    REVIEWERS
    Small Business69%
    Midsize Enterprise19%
    Large Enterprise12%
    VISITORS READING REVIEWS
    Small Business34%
    Midsize Enterprise19%
    Large Enterprise47%
    REVIEWERS
    Small Business41%
    Midsize Enterprise17%
    Large Enterprise41%
    VISITORS READING REVIEWS
    Small Business40%
    Midsize Enterprise22%
    Large Enterprise38%
    Buyer's Guide
    Netgate pfSense vs. Palo Alto Networks PA-Series
    May 2024
    Free Report: Netgate pfSense vs. Palo Alto Networks PA-Series
    Find out what your peers are saying about Netgate pfSense vs. Palo Alto Networks PA-Series and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    772,649 professionals have used our research since 2012.

    Netgate pfSense is ranked 1st in Firewalls with 128 reviews while Palo Alto Networks PA-Series is ranked 16th in Firewalls with 28 reviews. Netgate pfSense is rated 8.6, while Palo Alto Networks PA-Series is rated 8.6. The top reviewer of Netgate pfSense writes "User-friendly, easy to manage the firewall, rule-wise and interface-wise". On the other hand, the top reviewer of Palo Alto Networks PA-Series writes "Offers trained customer support, stability and ease of use ". Netgate pfSense is most compared with OPNsense, Sophos XG, KerioControl, Sophos UTM and Cisco Secure Firewall, whereas Palo Alto Networks PA-Series is most compared with OPNsense, SonicWall NSa, Sophos XG, Juniper SRX Series Firewall and WatchGuard Firebox. See our Netgate pfSense vs. Palo Alto Networks PA-Series report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.