What Is The Biggest Difference Between Fortinet FortiGate and Juniper SRX?

I dont like the GUI and CLI command. It is hard to manage the firewall, their GUI is not a user friendly and some advance configurations you have to do through CLI. When it comes to Fortigate, it is easy to manage and many advanced features you can do through GU.

- SSL VPN, you need additional appliance to do SSL VPN functionality with Juniper.
- With Fortigagte you can manage wireless AP very easily ( builr-in wireless controller).
- Licensing with Juinper is very complicated and you need license for almost every feature.
- Webtraffic inspection with proxy is much better in Fortigate. In general, security features with Fortigate is better than Juniper.

Firewall selection should be based on business need from a security standpoint. Both firewalls are good at what they do and depending on what you want. If I want to do more than just deep packet inspection like SSL VPN, SDWAN and application visibility/heuristics, I'll choose fortigate. Easy to manage via GUI, SDWAN capabilities.

There is no chance for any comparison between FortiGate and SRX, as FortiGate is one of the best and most popular next-gen firewall, while the SRX, well, I would not even recommend it to you for layer 3/4 filtration.

FortiGate is one of the most popular and respected Next-Gen firewalls for its functionality, simplicity, effectiveness and price. In addition to that, features, such as web filtering, traffic shaping and reporting are available are great, neat and user-friendly FortiGate, while you would not find the same in the SRX.

As for the SRX, the GUI is very poor, and CLI is very complicated and the OS has many bugs. I personally faced a bug while working with it in my previous work, as it was not receiving ARP replies from the server, which brought the almost the entire server farm down out of the blue. In addition to that, its application layer inspection is pretty poor.

Basically, I would not say that SRX is the worst, but it is pretty bad, and I definitely do not recommend it. Nor do I say that FortiGate is the best, but it is one of the best. Especially for the perimeter layer.

Both are good, it’s all about cost when comparing these two. Fortinet is more cost effective, however, Juniper is a leader in the security and has a more proven track record.

You can’t go wrong on either platform.

Well, I think you need to understand where the company go, and try to plan ahead in order to get the best results not only now but in the future (as much as you can).

for example we are planing to migrate to Fortinet, we think that "Security Fabric" could give us a plus in a long time.
Fortinet got a lot of products, Forti-Switch, AP, gateway, even client, that works if you need the Company laptops fulfill the policy.

Well I don't know much about Juniper but I think cant be a bad Firewall, just try to determine what you really need and what you think could need in the future.

We have not reviewed the juniper line.
We decided to move to FortiGate due to the Lower cost of ownership.
FortiGate is pretty easy to figure out and configure.
I have some experience with Cisco ASA, and none with FortiGate NG firewalls.
With no formal training, I was able to figure out the FortiGate and manage its NG Features.

I really like the captive portal feature for our guest network. It has nice VLAN features in terms of separating our network. also anti-virus is good, It is easy to use and performs very well.
Ability to set up remote systems is the most valuable feature for Fortinet.

Both Firewall are good and capable to handing the packet inspection, fortigate is easy and most wildly used today in the market, Juniper is old and gold have more power. Juniper is best firewall compare to fortigate or another as well. All other part depend on company requirement. Thanks.