Cisco Secure Firewall vs Stormshield Network Security comparison

Cisco Secure Firewall vs. Stormshield Network Security

December 2025

Download the complete report

Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Unified policies streamline network management but complex licensing requires attention

Phil Shiflett

Senior Manager, Network Engineering at TTi Power Equipment

Cisco Secure Firewall has some growth opportunities in terms of visibility and control capabilities regarding managing encrypted traffic. It has the ability to analyze encrypted traffic, and there is potential for more integration with APIs and AI to enhance these capabilities. Cisco Secure Firewall needs improvement in deployment time and the capability to access the CLI during support calls. I often encounter issues when technical support uses a CLI that is not familiar to me while troubleshooting through the GUI. My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time. For the next release, they should look at the features offered by competitors such as Fortinet, including the ability to perform packet capture directly from the interface. If they enhanced their troubleshooting efficiency related to packet capture for each specific rule, it would simplify the process significantly.

The intrusion detection system helps our organization by automatically detecting and responding to potential threats

Benjamin

Network Engineer at ACS2I

The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed.

More Fortinet FortiGate pros

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The integration with Active Directory is one of the good features. Most of the customers are now looking for the Single Sign-on feature. So, being able to integrate Active Directory with the firewall is useful. It is also easy."

"The features that prevent internet connections, the filtering are the most valuable because we did not have any internet protection before."

"The enterprise-level support is excellent, and we receive quick assistance from Fortinet FortiGate."

"The best features of this tool include threat protection, email filtering, and web filtering, and FortiAnalyzer's integration with the firewall and FortiSASE is beneficial."

"I value it's IPS and application control solution."

"All the features of Fortinet FortiGate are good; when customers have issues, it's very easy to talk them through the interface, and when they've got any support issues and they want to figure them out themselves, it's very easy for them to contact the FortiGate support."

"Mainly the FortiGate reporting system is very good. It guides us through all the expectations of security. Fortinet provides us all that we need for security. Also, Fortinet FortiGate is a next-generation firewall. It is much more advanced than others."

"It has a good UI and overall integration, including FortiGate Manager for controlling all firewalls from a single place."

"It's easy to integrate ASA with other Cisco security products. When you understand the technology, it's not a big deal. It's very simple."

"Collaboration with other Cisco products such as ISE and others is the most valuable feature."

"The main thing that I love the most is its policy and objects. Whenever I try to give access to a user, I can create an object via group creation in the object fields. This way, I am not able to enter a user in the policy repeatedly."

"The ASA has seen significant improvement due to the IPS."

"The IP filter configuration for specific political and Static NAT has been most valuable."

"The feature of Cisco Secure Firewall that I appreciate the most is its ability to be used via the cloud, so we don't have to deploy service engineers on-site at any time."

"Cisco products are on the pricier side; that said, they're worth it."

"It's protecting the organization against the impact of cyber threats and cybersecurity. We run manufacturing plants that have hazardous material, and we don't want that manufacturing process to be impacted by break-in exposure, cyber threats, or any other similar thing."

More Cisco Secure Firewall pros

"A very robust product."

"I like how you can configure the rules. There is the task for the rules and a task for the network configuration. It also provides SMD filtering, and it can be integrated with the active directory for the users, their mission, and the VPN configuration. We are here in Sudan, and Stormshield didn't work in Sudan for more than a decade. Stormshield is a very strong firewall and very easy to configure and maintain. I am just working with the firewall solution, and we don't have any other solutions like endpoint solutions or something like that."

"I can see what traffic is going on. I can easily block any programs from attacks."

"The most valuable features are the IPS, the firewall function, and the price."

"This solution is quick and easy to configure."

"Our organization's main concern is stability, and this is a stable solution."

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page."

"It's an easy, straightforward management platform to use."

More Stormshield Network Security pros

Cons

"One area for improvement for Fortinet FortiGate could be the price, as my clients here are small companies, and they might not have the resources or money to always buy a Fortinet FortiGate solution or FortiGate products."

"Their software support needs improvement. I would prefer to have better support for bug fixes. Sometimes, we open a ticket, and it is very difficult to get a solution. Specifically, we are not at all happy with their support for load balancing."

"The firmware updates are sometimes not stable. The stability issues can vary, sometimes happening once a month or quarterly. New firmware updates can occasionally introduce bugs, causing some policies to fail. We then have to raise a ticket, and Fortinet usually provides a fix within a few days."

"Fortinet FortiGate could improve by having a frequent ask questions(FAQ) area for people to receive quick answers to popular questions. Additionally, it would be beneficial to have an SMS notification feature. For example, if you cannot access your email you could receive an SMS message."

"The solution's stability should be improved because it is extremely unstable."

"We had some issues in the beginning while setting it up, but after doing the firmware update, it is working fine."

"Fortinet technical support is lacking, as OEM support is slightly better."

"We understand that FortiGate cannot be standalone without others, such as FortiManager, so for small businesses, if FortiGate can provide something similar to FortiManager, it will be better."

More Fortinet FortiGate cons

"It's not unexpected, but it's a common scenario where customers request dual layers of security. For instance, when dealing with regulatory compliance, especially in financial sectors regulated by entities like the Central Bank, having two distinct units is often mandated. If a client predominantly uses a solution like Palo Alto, they may need to incorporate another vendor such as Cisco or Forti. Importantly, there's a significant disparity in interfaces and management platforms between these vendors, necessitating careful consideration when integrating them into the overall security architecture"

"For the new line of FTDs, the performance could be improved. We sometimes have issues with the 41 series, depending what we activate. If we activate too many intrusion policies, it affects the CPU."

"it is not very user-friendly for the administration."

"Sometimes my customers say that Cisco Firewalls are a bit more difficult compared to Fortigate or Palo Alto. There is complexity in the configuration and the GUI could be improved."

"The stability could be better because we have a lot of issues with the stability of Cisco Firepower."

"The use of it has really bogged down our response time for certain problems, given we have to go through AT&T for everything."

"The Cisco ASA device needs overall improvement, as configurations alone do not completely secure my network."

"In Firepower, there is an ability to search and dig into a search, which is nice. However, I'm not a super fan of the way it scrolls. If you want to look at something live, it's a lot different. You're almost waiting. With the ASDM, where it just flows, you can really see it. The second someone clicks something or does something, you'll see it. The refresh rate on the events in Firepower is not as smooth."

More Cisco Secure Firewall cons

"The SD card could be more secure."

"Improvement is needed in terms of the technical support of the manufacturer."

"It could be better if it were more user-friendly. It's too complicated for us to use it. The price could be better as well."

"A more user-friendly interface would be helpful."

"This is not a next-generation firewall."

"Not all the fields are activated yet and we were informed that it will take at least one month."

"This solution has a big problem with web filtering and it needs to be improved."

"The biggest issue was their support department was not able to help us, then everything stops. This is a no-go area for me."

More Stormshield Network Security cons

Pricing and Cost Advice

"While slightly more affordable than competitors, it remains relatively expensive due to its inclusive subscription."

"It scales well if you know what to buy from a physical box standpoint. They seem to offer something for every level."

"The main reason we chose Fortinet FortiGate was that the price was better than the competition."

"I would rate pricing to be about four or five out of ten, it is reasonable."

"Pricing for this product is comparatively lower than other products. It's an affordable solution, but when expanding the number of users, they'll ask you to replace the model, so that's an added cost."

"There is a subscription-based model to use Fortinet FortiGate. We pay annually for the solution along with the support. If you want to have all the updates, and security patches you will need to renew your support."

"If the customer is looking for SD-WAN, it comes free with FortiGate."

"Work through partners for the best pricing."

More Fortinet FortiGate pricing and cost advice

"I am happy with the product in general, including the pricing."

"It was initially heavy on my pocket, but it soon actualised its worth."

"They're not too expensive. They're a little more expensive than other products, but you are getting the name, the company, and the support."

"ASA pricing seems high compared to other firewalls, such as the Sophos XG models."

"The pricing of Cisco's boxes is pretty good."

"It's a brilliant firewall, and the fact that it comes with a perpetual license really does go far in terms of helping the organization in not having to deal with those costs on an annual basis. That is a pain point when it comes to services like the ones we have on Fortigate. That's where we really give Cisco firewalls the thumbs up."

"It would be nice if pricing could do more to reflect the economy of the country where the product is being implemented."

"Cisco Firepower is a great solution, but it is expensive compared to others that can provide similar benefits for much less."

More Cisco Secure Firewall pricing and cost advice

"For mid-sized companies, they sell their appliances for good prices."

"I think the price is good."

"The pricing could be better."

"The price of this solution and the price of support are ok."

"We chose Stormshield for its price, as the Azure firewall was too expensive."

"The SN200 series costs between $500 USD and $600 USD per year, whereas the SN700 series costs approximately $1,000 annually."

"We bought a three-year license, and we renew it whenever it expires. The price could be better. It's always very expensive."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

881,082 professionals have used our research since 2012.

Comparison Review

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Mar 11, 2015

Cisco ASA vs. Palo Alto Networks

Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

Top Industries

By visitors reading reviews

Computer Software Company

12%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Computer Software Company

15%

Manufacturing Company

Comms Service Provider

University

Comms Service Provider

16%

Computer Software Company

15%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	357
Midsize Enterprise	133
Large Enterprise	188

By reviewers
Company Size	Count
Small Business	180
Midsize Enterprise	126
Large Enterprise	212

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	5
Large Enterprise	2

Questions from the Community

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

Which is better - Fortinet FortiGate or Cisco ASA Firewall?

One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...

How does Cisco's ASA firewall compare with the Firepower NGFW?

It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...

Which is better - Meraki MX or Cisco ASA Firewall?

Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...

What advice do you have for others considering Stormshield Network Security?

The tool is like a firewall and works well. I don't have any issue with it. I rate it an eight out of ten.

Sophos Firewall vs Fortinet FortiGate

Comparisons

Compared 20% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 6% of the time

OPNsense vs Fortinet FortiGate

Compared 4% of the time

Palo Alto Networks NG Firewalls vs Fortinet FortiGate

Compared 3% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 3% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks NG Firewalls vs Cisco Secure Firewall

Compared 11% of the time

Palo Alto Networks WildFire vs Cisco Secure Firewall

Compared 9% of the time

Check Point Quantum Force (NGFW) vs Cisco Secure Firewall

Compared 4% of the time

OPNsense vs Cisco Secure Firewall

Compared 3% of the time

Netgate pfSense vs Cisco Secure Firewall

Compared 3% of the time

More Cisco Secure Firewall Competitors

Netgate pfSense vs Stormshield Network Security

Compared 11% of the time

WatchGuard Firebox vs Stormshield Network Security

Compared 8% of the time

Sophos Firewall vs Stormshield Network Security

Compared 8% of the time

OPNsense vs Stormshield Network Security

Compared 7% of the time

SonicWall NSv vs Stormshield Network Security

Compared 3% of the time

More Stormshield Network Security Competitors

Product Reports

Download Fortinet FortiGate product report

Fortinet FortiGate

January 2026

Download Cisco Secure Firewall product report

Cisco Secure Firewall

January 2026

Stormshield Network Security

January 2026

Download Stormshield Network Security product report

Also Known As

Fortinet FortiGate Next-Generation Firewall

Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall, Cisco Secure Firewall ASA Virtual - BYOL

NETASQ Firewalls

Overview

Fortinet FortiGate is a versatile network security tool offering features like VPN, firewall, web filtering, intrusion prevention, and scalability. It is known for its performance and integration with other Fortinet products, making it a preferred choice for robust cybersecurity.

Fortinet FortiGate stands out as a comprehensive cybersecurity solution with strong performance and ease of configuration. It delivers unified threat management, integrating features such as dynamic routing, SD-WAN support, and centralized management. Despite its strengths, improvements in the web interface's stability, pricing structures, and reporting capabilities are needed. Users seek better integration with third-party tools and automation advancements to enhance the experience further. These enhancements, alongside improvements in bandwidth management and the reduction of licensing costs, are points of interest for users looking to capitalize on FortiGate's extensive capabilities.

What are Fortinet FortiGate's key features?

VPN: Ensures secure remote connections.
Firewall: Protects against unauthorized access.
Web Filtering: Blocks malicious sites and content.
Application Control: Manages and controls applications.
Intrusion Prevention: Detects and prevents vulnerabilities.
SSL Inspection: Enhances security by inspecting encrypted traffic.

What benefits should be considered when evaluating Fortinet FortiGate?

Affordability: Offers cost-effective security solutions.
Reliability: Known for consistent and stable performance.
Integration: Seamlessly integrates with other Fortinet products.
Comprehensive Protection: Provides broad threat protection capabilities.

Fortinet FortiGate is widely implemented across industries as a primary firewall system for securing internet gateways and safeguarding data centers. It supports businesses in achieving SD-WAN integration and enhances cybersecurity by providing essential features like antivirus, web filtering, and application control. Enterprises utilize FortiGate for securing remote connections and ensuring compliance with security standards, making it adaptable for different network sizes and industries.

Fortinet

Cisco Secure Firewall provides comprehensive network security with advanced features such as application visibility, URL filtering, and malware protection. It combines a user-friendly interface with robust VPN capabilities, making it a reliable choice for varying network environments and industry applications.

Cisco Secure Firewall offers exceptional protection with its integration into Cisco's broader ecosystem, ensuring enhanced threat detection and policy unification. Despite its complexity in command-line interfaces and management, Cisco Secure Firewall remains a potent tool for safeguarding data. It is widely adopted for edge security, VPN services, perimeter defense, and traffic segmentation, especially in hybrid settings. Essential sectors like banking and telecom benefit from its stable connectivity and centralized security management. Though there are challenges with costs and support for third-party APIs, the firewall's scalability and high availability provide comprehensive support for protecting network assets.

What are the key features of Cisco Secure Firewall?

Application Visibility: Offers in-depth visibility of application traffic to monitor and protect against threats.
Advanced Malware Protection: Protects against known and emerging malware threats with powerful detection capabilities.
URL Filtering: Manages and restricts access to websites, enhancing organizational data security.
VPN Capabilities: Ensures secure remote access and encrypted communication through strong VPN features.
Integration with Cisco Ecosystem: Enhances security measures with seamless integration with Cisco's suite of security tools.

What benefits and ROI should be expected from Cisco Secure Firewall?

Comprehensive Protection: Offers multi-layered security for diverse network environments, increasing overall data protection.
Performance Efficiency: High availability and scalability lead to improved network performance and resource management.
Management Simplification: Centralized security management streamlines policy deployment across networks.
Enhanced Threat Detection: Integration capabilities improve threat detection and mitigation for better security posture.

Cisco Secure Firewall is widely implemented across sectors like banking, education, ISPs, and telecoms. It fortifies data centers and network edge security, delivering strong protection for client access, hybrid environments, and intrusion prevention. In these industries, firewall solutions ensure secure connectivity and manage RTU traffic effectively, leveraging centralized management and integration with Cisco's security tools.

Cisco

NETASQ's integrated intrusion prevention engine uses protocol conformity analysis, application filtering and antivirus analysis to inspect authorized traffic flows and strengthen application security. NETASQ enables you to establish and configure user-based security policies, giving you greater control over which network resources each user is authorized to access.

Stormshield

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.

ACESUR group, Ministry of Education Oman, Anios Laboratories, Zain, DLM Location