Cisco Secure Firewall vs Zyxel Unified Security Gateway comparison

Cisco Secure Firewall vs. Zyxel Unified Security Gateway

Download the complete report

Helped 860,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Unified policies streamline network management but complex licensing requires attention

Phil Shiflett

Senior Manager, Network Engineering at TTi Power Equipment

Cisco Secure Firewall has some growth opportunities in terms of visibility and control capabilities regarding managing encrypted traffic. It has the ability to analyze encrypted traffic, and there is potential for more integration with APIs and AI to enhance these capabilities. Cisco Secure Firewall needs improvement in deployment time and the capability to access the CLI during support calls. I often encounter issues when technical support uses a CLI that is not familiar to me while troubleshooting through the GUI. My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time. For the next release, they should look at the features offered by competitors such as Fortinet, including the ability to perform packet capture directly from the interface. If they enhanced their troubleshooting efficiency related to packet capture for each specific rule, it would simplify the process significantly.

A robust appliance that is reasonably priced and straightforward to set up

Alexander Azikov

It Manager at Diamond Braces

Although manageable, the user interface is a little bit slow and could be improved. There are two user interface options available, namely the basic and the advanced. The basic UI is not very good and doesn't have a lot of features, although it is fast. The advanced UI allows me to do whatever I want, but this is where the issue of speed exists. At one of our sites, the CPU utilization was very high, and for no reason. Technical support needs to be more responsive to requests.

More Fortinet FortiGate pros

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most important features with FortiGate are the web filter and application controls. We can control our internet usage and use the web filter for application purposes."

"I like that they have given me a solution at a fair price."

"The most important features of Fortinet FortiGate are the Intrusion Prevention System (IPS) and firewall control applications."

"The most useful functionality of Fortinet FortiGate is the user interface, multiple engines, and their cloud with the latest integrations. Additionally, the Security Fabric tool is very good."

"Fortinet FortiGate provides excellent security against ransomware attacks."

"Its user interface is good, and it is always working fine."

"It is easy to manage, and it doesn't need much knowledge from the team. It is a stable device, and there are many features that are included out of the box."

"The pricing is excellent. It's much less expensive than Cisco."

"The most valuable features for my client are the ASDM and monitoring."

"The technical team is always available when we have problems."

"There is a good relationship between real throughput, meaning the root performance, and the data sheet performance."

"When it comes to the integration among Cisco tools, we find it easy. It's a very practical integration with other components as well."

"The Firepower IPS, based on Snort technology, has an amazing detection engine and historical analysis capability of files that eases threat investigations a lot."

"The initial setup is easy."

"Their performance is most valuable."

"The important features are IPS intrusion prevention, anti-malware, and anti-spam."

More Cisco Secure Firewall pros

"The solution can scale well."

"This is a capable appliance and the standard features work well for us."

"The most valuable features of the solution stem from web filtering, malware protection, and antivirus."

Cons

"I would prefer to have more detailed logs within the FortiGate products themselves rather than relying on a separate tool."

"Fortinet technical support is lacking, as OEM support is slightly better. Improvement in their technical support could include response time as well as having more technically sound people in tech support."

"Fortinet currently has many products bundled with FortiGate including the basic firewall and load balancer, and I think that that they need to have separate product portfolios for each of these specialized services."

"In an incident, after a restart, Fortinet FortiGate did not connect to FortiGuard servers. Due to that reason, on the customer end, all websites got blocked."

"Improvements for Fortinet FortiGate could be made by making it easier to implement on networks and simpler to add users and accounts that utilize this solution. That's basically the only challenge that I see."

"In most cases, the IPS engine uses too many resources, which makes Fortinet FortiGate devices unstable."

"Performance on the box and technical support are areas where Fortinet FortiGate can be improved."

"The UI could be improved."

More Fortinet FortiGate cons

"It is expensive."

"There may have been one or two incidences of malicious threats."

"Tech support could not answer all of our questions. I had to do research on the web to solve my issues."

"If you need to reschedule a call with the support team when you face a new issue with the product, then it may get a bit of a problem to get a hold of someone from the support team of Cisco."

"The solution is overcomplicated in some senses. Simplifying it would be an improvement."

"One issue with Firepower Management Center is deployment time. It takes seven to 10 minutes and that's a long time for deployment. In that amount of time, management or someone else can ask me to change something or to provide permissions, but during that time, doing so is not possible. It's a drawback with Cisco. Other vendors, like Palo Alto or Fortinet do not have this deployment time issue."

"The virtual firewalls don't work very well with Cisco AnyConnect."

"There are some limitations with SSL. Regarding the security assessment for the ISO 27000 standard, there are certain features that Cisco needs to scale up. Not all products support it, so you need to be slightly careful, especially on the site track."

More Cisco Secure Firewall cons

"Sometimes it reboots when you least expect it, and that's the main issue."

"The product has some scalability and data management issues where improvements are required."

"Although manageable, the user interface is a little bit slow and could be improved."

Pricing and Cost Advice

"It is an inexpensive solution."

"Fortinet bundles FortiGate with other products and because of this, the price is a little expensive to some SMB enterprises."

"It is a good product from a price perspective versus functionality."

"Licensing is usually on a three-year period."

"We saved a bundle by not needing all the past appliances from an NGFW."

"Work through partners for the best pricing."

"If you compare Fortinet FortiGate with Sophos and other firewall products available in the market, this solution is affordable."

"We just pay a flat monthly fee to the vendor for the support."

More Fortinet FortiGate pricing and cost advice

"It is a great solution for medium or big enterprises, not so much for small businesses, mainly due to the financial costs."

"Cisco Firepower is a great solution, but it is expensive compared to others that can provide similar benefits for much less."

"They have a lot of different models but most of them are really expensive."

"Cisco is always expensive, but you get what you pay for. It is expensive for a reason. It is a good solution, and good solutions cost money."

"Pricing is why we had to go for a UTM. For us to achieve what we needed, if we had gone with the ASA, the cost would have been high compared to getting one box (UTM)."

"It's a brilliant firewall, and the fact that it comes with a perpetual license really does go far in terms of helping the organization in not having to deal with those costs on an annual basis. That is a pain point when it comes to services like the ones we have on Fortigate. That's where we really give Cisco firewalls the thumbs up."

"The licensing is not good, it's confusing. I'm an engineer so I don't care about the actual price that much but the licensing part is confusing."

"ASA pricing seems high compared to other firewalls, such as the Sophos XG models."

More Cisco Secure Firewall pricing and cost advice

"This gateway is pretty cheap."

"The price of Zyxel Unified Security Gateway is good compared to other similar products in the market."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

860,592 professionals have used our research since 2012.

Comparison Review

it_user206346

Security Consultant at Webernetz.net - Network Security Consulting

Mar 11, 2015

Cisco ASA vs. Palo Alto Networks

Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

Top Industries

By visitors reading reviews

Computer Software Company

15%

Educational Organization

12%

Comms Service Provider

Manufacturing Company

Educational Organization

31%

Computer Software Company

16%

University

Manufacturing Company

Comms Service Provider

19%

Computer Software Company

17%

Retailer

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

Which is better - Fortinet FortiGate or Cisco ASA Firewall?

One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet Fort...

How does Cisco's ASA firewall compare with the Firepower NGFW?

It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cis...

Which is better - Meraki MX or Cisco ASA Firewall?

Cisco Adaptive Security Appliance (ASA) software is the operating software for the Cisco ASA suite. It supports netw...

What do you like most about Zyxel Unified Security Gateway?

The most valuable features of the solution stem from web filtering, malware protection, and antivirus.

What is your experience regarding pricing and costs for Zyxel Unified Security Gateway?

The price of Zyxel Unified Security Gateway is good compared to other similar products in the market.

What needs improvement with Zyxel Unified Security Gateway?

If you have very secure data, Zyxel Unified Security Gateway will not be very useful. My company doesn't have to deal...

Sophos XG vs Fortinet FortiGate

Comparisons

Compared 20% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 12% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

Meraki MX vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

Palo Alto Networks WildFire vs Cisco Secure Firewall

Compared 9% of the time

Palo Alto Networks NG Firewalls vs Cisco Secure Firewall

Compared 7% of the time

Netgate pfSense vs Cisco Secure Firewall

Compared 5% of the time

OPNsense vs Cisco Secure Firewall

Compared 4% of the time

Meraki MX vs Cisco Secure Firewall

Compared 3% of the time

More Cisco Secure Firewall Competitors

Netgate pfSense vs Zyxel Unified Security Gateway

Compared 15% of the time

OPNsense vs Zyxel Unified Security Gateway

Compared 12% of the time

Fortinet FortiGate-VM vs Zyxel Unified Security Gateway

Compared 7% of the time

WatchGuard Firebox vs Zyxel Unified Security Gateway

Compared 6% of the time

FortiGate Next Generation Firewall (NGFW) vs Zyxel Unified Security Gateway

Compared 2% of the time

More Zyxel Unified Security Gateway Competitors

Product Reports

Fortinet FortiGate

Download Fortinet FortiGate product report

Cisco Secure Firewall

Download Cisco Secure Firewall product report

Unified Threat Management (UTM)

Download Zyxel Unified Security Gateway product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Adaptive Security Appliance, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall

No data available

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Cisco Secure Firewall stands as a robust and adaptable security solution, catering to organizations of all sizes. It's designed to shield networks from a diverse array of cyber threats, such as ransomware, malware, and phishing attacks. Beyond mere protection, it also offers secure access to corporate resources, beneficial for employees, partners, and customers alike. One of its key functions includes network segmentation, which serves to isolate critical assets and minimize the risk of lateral movement within the network.

The core features of Cisco Secure Firewall are multifaceted:

Advanced threat protection is achieved through a combination of intrusion prevention, malware detection, and URL filtering technologies.
For secure access, the firewall presents multiple options, including VPN, remote access, and single sign-on.
Its network segmentation capability is vital in creating barriers within the network to safeguard critical assets.
The firewall is scalable, effectively serving small businesses to large enterprises.
Management is streamlined through Cisco DNA Center, a central management system.

The benefits of deploying Cisco Secure Firewall are substantial. It significantly reduces the risk of cyberattacks, thereby enhancing the security posture of an organization. This security also translates into increased productivity, as secure access means uninterrupted work. Compliance with industry regulations is another advantage, as secure access and network segmentation align with many regulatory standards. Additionally, it helps in reducing IT costs by automating security tasks and simplifying management processes.

In practical scenarios, Cisco Secure Firewall finds diverse applications. It's instrumental in protecting branch offices from cyberattacks, securing remote access for various stakeholders, safeguarding cloud workloads, and segmenting networks to isolate sensitive areas.

User reviews from PeerSpot reflect an overall positive experience with the Cisco Secure Firewall. Users appreciate its ease of configuration, good management capabilities, robust protection, user-friendly interface, and scalability. However, some areas for improvement include better integration capabilities with other vendors, maturity, control over bandwidth for end-users, and addressing software bugs.

In summary, Cisco Secure Firewall is a comprehensive, versatile, and reliable security solution that effectively meets the security needs of various organizations. It offers a balance of advanced protection, user-friendly management, and scalability, making it a valuable asset in the realm of network security.

Cisco

ZyWALL USG Series delivers high-access quality to help businesses satisfy the demand for always-online communications. For internal deployments, the ZyWALL USG Series provides active-passive High-Availability (HA) service to support device or connection failover.

With Device HA Pro service, the ZyWALL USG Series also supports instant failover, so connections are always maintained when a failover event occurs. For external deployments, the ZyWALL USG Series features multi- WAN load balancing/failover and a comprehensive mobile broadband USB modem support list for WAN backup operations. The ZyWALL USG Series also supports IPSec load balancing and failover, providing additional resilience for mission-critical VPN failover with VTI Interface deployments.

ZyWALL USG110/210/310 thoroughly protects networks with industry-leading firewall, Anti-Malware/ Virus, Anti-Spam, Content Filtering, IDP, and Application Patrol functionality. Regulate unauthorized use of Web applications over your network, such as Facebook, Google apps, and Netflix, among others. Zyxel security measures are enhanced with SSL Inspection, blocking threats hidden in SSL-encrypted connections while facilitating deeper policy enforcement. Furthermore, newly improved Content Filtering 2.0 enhances HTTPS Domain Filter, Browser SafeSearch, and Geo IP Blocking for an array of security enhancements to ensure clean Web connections.

Zyxel

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.

Information Not Available

Cisco Secure Firewall vs. Zyxel Unified Security Gateway