Cisco Secure Firewall vs McAfee StoneGate [EOL] comparison

Cisco and McAfee are both solutions in the Firewalls category. Additionally, 83% of Cisco users are willing to recommend the solution, compared to 66% of McAfee users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 30, 2025

McAfee StoneGate [EOL] and Cisco Secure Firewall compete in the network security product category. Cisco Secure Firewall appears superior due to its comprehensive features and long-term value.

Features: McAfee StoneGate [EOL] provides robust threat prevention and centralized management known for simplicity and reliability. Cisco Secure Firewall offers advanced security with high integration capabilities and adaptability suited for complex network environments.

Ease of Deployment and Customer Service: McAfee StoneGate [EOL] features straightforward deployment for smaller environments with basic support offerings. In contrast, Cisco Secure Firewall requires more complex deployment suited for intricate setups and offers extensive customer service.

Pricing and ROI: McAfee StoneGate [EOL] is noted for cost-effectiveness in upfront setup with a quick ROI for smaller networks. Cisco Secure Firewall involves a higher initial investment, promising greater long-term ROI and value for larger, complex infrastructures.

To learn more, read our detailed Firewalls Report (Updated: April 2026).

Buyer's Guide

Firewalls

April 2026

Download the complete report

Helped 893,221 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

Abhinandan Yadav

Network Security Engineer at Arrow PC Network Pvt Ltd

Unified security and sd-wan have improved uptime and cut wan costs for multi-site branches

Users report stability issues in certain versions, which requires regular updates. Real-world attacks have also highlighted the need for urgent patching of vulnerabilities.Fortinet FortiGate, while a powerful and feature-rich web firewall, could improve in areas like firmware stability, documentation, and ease of use. The learning curve can be steep for some users. For beginners, support quality can vary, and frequent updates with occasional vulnerabilities call for careful patch management. However, once Fortinet FortiGate is configured, it remains highly reliable and efficient. Customer support needs improvement, as I find it very slow, with reports from other users reflecting that customer support is inadequate.

Read full review

Phil Shiflett

Senior Manager, Network Engineering at TTi Power Equipment

Unified policies streamline network management but complex licensing requires attention

Cisco Secure Firewall has some growth opportunities in terms of visibility and control capabilities regarding managing encrypted traffic. It has the ability to analyze encrypted traffic, and there is potential for more integration with APIs and AI to enhance these capabilities. Cisco Secure Firewall needs improvement in deployment time and the capability to access the CLI during support calls. I often encounter issues when technical support uses a CLI that is not familiar to me while troubleshooting through the GUI. My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time. For the next release, they should look at the features offered by competitors such as Fortinet, including the ability to perform packet capture directly from the interface. If they enhanced their troubleshooting efficiency related to packet capture for each specific rule, it would simplify the process significantly.

Read full review

it_user935460

Computer Framework at a healthcare company with 1,001-5,000 employees

It works well with a highly-active cluster.

It is important for us in case of a disaster, or in case of a failure of one server. This means that the high availability is the most important part for us. It is important for us that the system is available and no connection is going to be lost if the system is restarting one note, or something like that. This is the main request for us for a good firewall protection product.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The email protection and VPN features are the most valuable."

"Advanced routing (RIP, OSPF, BGP, PBR). It gives you a seamless and simple integration into a large network."

"FortiGate IPS is really easy to use. I don't have any problems with this."

"FortiGate NGF is simple compared to other firewalls. It is easy to use and you don't need any training. Any person with basic firewall knowledge can use it."

"The solution is very, very easy to use, the user interface is very nice, the product offers pretty good customization, configuration has been straightforward and simple, the reporting is quite good, the initial setup is straightforward as well, and we've found the pricing to be pretty good."

"FortiGate Next Generation Firewall has IBS/IPS systems"

"FortiGate is on the cheaper end, and it offers good value."

"It's very good and very stable for businesses. It works very well."

More Fortinet FortiGate pros

"Our company operates in Saudi Arabia, primarily working with government sectors. If any hardware malfunctions, the defective device is removed, and we receive a replacement from the reseller. We have not encountered any issues related to delays in receiving replacements for malfunctioning devices which has been beneficial."

"The most valuable feature is stability."

"There is a good relationship between real throughput, meaning the root performance, and the data sheet performance."

"The ASDM makes it very easy to navigate and manage the firewall."

"All the specific features you find within the NextGen firewall are quite useful."

"The most stable firewall I’ve ever worked with. Once you get the ASA set up properly, it can run for a whole year without any major issues, apart from the normal daily administration."

"Cisco Secure Firewall's ability to unify policies across our environment is pretty good."

"The most valuable feature would be the IP blocking. It gets rid of things that you don't need in your environment."

More Cisco Secure Firewall pros

"The stability of the product is fantastic; it is a really proven system and I never had any type of problem where the system was unstable or had a software failure."

"It works well with a highly-active cluster."

"It has given us better application control."

"High availability is very consistent and provides good firewalling and stability."

"We did not have issues with scalabiliy."

Cons

"We haven't tapped into most of the functionalities that Fortinet FortiGate offers because we're using it just for gateway security. One of the things that I would prefer is a more expansive use of their analyzer. They could do more work on FortiAnalyzer in terms of the data and the information coming from it."

"There are some tiny bugs that sometimes affect the operations. In the past revision of it, there was a bug. Because of the bug, we had to downgrade the version. It happened only with the last revision."

"I feel that the reporting needs to be improved."

"There is room for improvement in pricing."

"Fortinet FortiGate IPS could improve the configuration. In some use cases, there can be some configuration conflicts."

"It could always be more secure."

"Their support can be better, and there should be better policies for immediate replacement in critical situations."

"I would like to see improvements in Fortinet FortiGate regarding the active-active scenario. The active-active scenario is supported but not recommended, whereas other vendors are implementing active-active without issues. Perhaps in the future, we could effectively use both firewalls to increase the throughput. If there are two boxes, they both should be able to work."

More Fortinet FortiGate cons

"I work for a school, so getting licensing and getting the budget for Cisco Secure Firewall for certain products is a challenge. It's good to have them, however, it costs us a lot."

"They call it a smart license which means that your device will connect to the internet. This is a little bit of a headache for some customers."

"The one thing that the ASAs don't have is a central management point. We have a lot of our environments on FTD right now. So, we are using a Firewall Management Center (FMC) to manage all those. The ASAs don't really have that, but they are easy to use if you physically go into them and manage them."

"When comparing the graphical interface of this solution to other vendors it is more difficult to configure. There is a higher learning curve for administrators in this solution."

"The price and SD-WAN capabilities are the areas that need improvement."

"When comparing the graphical interface of this solution to other vendors it is more difficult to configure."

"One area where the ASA could be improved is that it doesn't have AMP. When you get an ASA with the Firepower model, ASA with FTD, then you have advanced malware protection."

"The product is expensive. A 5580 series costs more than $50000."

More Cisco Secure Firewall cons

"HA failover is not stable."

"The hardware needs improving as we had a lot of problems with the hard drive reliability, both with the firewall and the intrusion protection system."

"After some experience with the solution, we had to do some redesign, but generally, we were happy with the product."

Pricing and Cost Advice

"Their licensing costs are annual. The UTM feature license along with their support is called FortiCare. We include that as a part of the annual maintenance cost. Palo Alto or Juniper also have an annual subscription charge for UTM. Price, of course, can always be more competitive, but it is not the most expensive product. The price-performance ratio is quite high for FortiGate."

"In terms of the market, it's not a cheap product, but it's cost-effective."

"There is a subscription-based model to use Fortinet FortiGate. We pay annually for the solution along with the support. If you want to have all the updates, and security patches you will need to renew your support."

"The product is a little bit expensive."

"There is a need to pay for a license for the product."

"There is no challenge in Fortinet FortiGate pricing."

"We just pay a flat monthly fee to the vendor for the support."

"The pricing is flexible."

More Fortinet FortiGate pricing and cost advice

"Commercial leasing is the best option."

"With the bundling mode with Duo licensing, it's now better. It's better to have one simplified global licensing mode, and this is what Cisco has done with bundling. The next-generation firewalls include a set of features such as filtering, emails, and IPS. This combination offers the best way for customers to manage their operating expenses."

"Pricing is high, but it is essentially a corporate decision."

"There are licensing costs."

"The Cisco licensing agreement in Bangladesh is different than the one in India and in Dubai. It is not a problem, but if you want to subscribe to the yearly subscription, the original cost is really high. Also, if you go for an anti-virus, you pay for an additional yearly subscription."

"Pricing depends on partnerships and certifications."

"When we purchased the firewall, we had to take the security license for IPS, malware protection, and VPN. If we are using high availability, we have to take a license for that. We also have to pay for hardware support and technical support. Its licensing is on a yearly basis."

"The licensing scheme is completely confusing, and they need to streamline it. They have classic licensing and a new type of licensing now. Also, the licensing for the actual firewall is separate from the one for TAC support."

More Cisco Secure Firewall pricing and cost advice

Information not available

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

893,221 professionals have used our research since 2012.

Comparison Review

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Mar 11, 2015

Cisco ASA vs. Palo Alto Networks

Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

10%

Comms Service Provider

10%

Manufacturing Company

Financial Services Firm

Computer Software Company

10%

Manufacturing Company

Financial Services Firm

Comms Service Provider

No data available

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	367
Midsize Enterprise	135
Large Enterprise	193

By reviewers
Company Size	Count
Small Business	190
Midsize Enterprise	129
Large Enterprise	232

No data available

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Which is better - Fortinet FortiGate or Cisco ASA Firewall?

One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...

See all answers

How does Cisco's ASA firewall compare with the Firepower NGFW?

It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...

See all answers

Which is better - Meraki MX or Cisco ASA Firewall?

Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...

See all answers

Ask a question

Earn 20 points

Comparisons

Sophos Firewall vs Fortinet FortiGate

Compared 18% of the time

Palo Alto Networks NG Firewalls vs Fortinet FortiGate

Compared 5% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 3% of the time

Check Point Quantum Force (NGFW) vs Fortinet FortiGate

Compared 3% of the time

OPNsense vs Fortinet FortiGate

Compared 3% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks WildFire vs Cisco Secure Firewall

Compared 10% of the time

Palo Alto Networks NG Firewalls vs Cisco Secure Firewall

Compared 9% of the time

Check Point Quantum Force (NGFW) vs Cisco Secure Firewall

Compared 4% of the time

Netgate pfSense vs Cisco Secure Firewall

Compared 3% of the time

Palo Alto Networks VM-Series vs Cisco Secure Firewall

Compared 2% of the time

More Cisco Secure Firewall Competitors

Check Point Quantum Force (NGFW) vs McAfee StoneGate [EOL]

Compared 32% of the time

More McAfee StoneGate [EOL] Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

May 2026

Download Fortinet FortiGate product report

Buyer's Guide

Cisco Secure Firewall

May 2026

Download Cisco Secure Firewall product report

Buyer's Guide

Firewalls

April 2026

Download McAfee StoneGate [EOL] product report

Also Known As

Fortinet FortiGate Next-Generation Firewall

Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall, Cisco Secure Firewall ASA Virtual - BYOL

McAfee Next Generation Firewall, Stonesoft, Intel Next Generation Firewall, Intel Security StoneGate

Overview

Fortinet FortiGate is a versatile network security tool offering features like VPN, firewall, web filtering, intrusion prevention, and scalability. It is known for its performance and integration with other Fortinet products, making it a preferred choice for robust cybersecurity.

Fortinet FortiGate stands out as a comprehensive cybersecurity solution with strong performance and ease of configuration. It delivers unified threat management, integrating features such as dynamic routing, SD-WAN support, and centralized management. Despite its strengths, improvements in the web interface's stability, pricing structures, and reporting capabilities are needed. Users seek better integration with third-party tools and automation advancements to enhance the experience further. These enhancements, alongside improvements in bandwidth management and the reduction of licensing costs, are points of interest for users looking to capitalize on FortiGate's extensive capabilities.

What are Fortinet FortiGate's key features?

VPN: Ensures secure remote connections.
Firewall: Protects against unauthorized access.
Web Filtering: Blocks malicious sites and content.
Application Control: Manages and controls applications.
Intrusion Prevention: Detects and prevents vulnerabilities.
SSL Inspection: Enhances security by inspecting encrypted traffic.

What benefits should be considered when evaluating Fortinet FortiGate?

Affordability: Offers cost-effective security solutions.
Reliability: Known for consistent and stable performance.
Integration: Seamlessly integrates with other Fortinet products.
Comprehensive Protection: Provides broad threat protection capabilities.

Fortinet FortiGate is widely implemented across industries as a primary firewall system for securing internet gateways and safeguarding data centers. It supports businesses in achieving SD-WAN integration and enhances cybersecurity by providing essential features like antivirus, web filtering, and application control. Enterprises utilize FortiGate for securing remote connections and ensuring compliance with security standards, making it adaptable for different network sizes and industries.

Fortinet

Cisco Secure Firewall provides comprehensive network security with advanced features such as application visibility, URL filtering, and malware protection. It combines a user-friendly interface with robust VPN capabilities, making it a reliable choice for varying network environments and industry applications.

Cisco Secure Firewall offers exceptional protection with its integration into Cisco's broader ecosystem, ensuring enhanced threat detection and policy unification. Despite its complexity in command-line interfaces and management, Cisco Secure Firewall remains a potent tool for safeguarding data. It is widely adopted for edge security, VPN services, perimeter defense, and traffic segmentation, especially in hybrid settings. Essential sectors like banking and telecom benefit from its stable connectivity and centralized security management. Though there are challenges with costs and support for third-party APIs, the firewall's scalability and high availability provide comprehensive support for protecting network assets.

What are the key features of Cisco Secure Firewall?

Application Visibility: Offers in-depth visibility of application traffic to monitor and protect against threats.
Advanced Malware Protection: Protects against known and emerging malware threats with powerful detection capabilities.
URL Filtering: Manages and restricts access to websites, enhancing organizational data security.
VPN Capabilities: Ensures secure remote access and encrypted communication through strong VPN features.
Integration with Cisco Ecosystem: Enhances security measures with seamless integration with Cisco's suite of security tools.

What benefits and ROI should be expected from Cisco Secure Firewall?

Comprehensive Protection: Offers multi-layered security for diverse network environments, increasing overall data protection.
Performance Efficiency: High availability and scalability lead to improved network performance and resource management.
Management Simplification: Centralized security management streamlines policy deployment across networks.
Enhanced Threat Detection: Integration capabilities improve threat detection and mitigation for better security posture.

Cisco Secure Firewall is widely implemented across sectors like banking, education, ISPs, and telecoms. It fortifies data centers and network edge security, delivering strong protection for client access, hybrid environments, and intrusion prevention. In these industries, firewall solutions ensure secure connectivity and manage RTU traffic effectively, leveraging centralized management and integration with Cisco's security tools.

Cisco

StoneGate is a Highly Available Firewall/VPN. The StoneGate fault-tolerant VPN maintains sessions across multiple VPN devices and multiple Internet or network connections, regardless of device or connection failures. StoneGate provides Security, Manageability, Availability, and Scalability thus reducing network security complexity and costs. Stonesoft was the inventor of high availability for security solutions and a recognized leader in network security.

McAfee

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.

Avency, R€SLER Oberfl_chentechnik GmbH, MAUSER Group, CEMEX, Cegedim, Fusion Media Networks

Find out what your peers are saying about Fortinet, Netgate, Sophos and others in Firewalls. Updated: April 2026.

DOWNLOAD NOW

893,221 professionals have used our research since 2012.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.