Netgate pfSense vs Stormshield Network Security comparison

Netgate and Stormshield are both solutions in the Firewalls category. Additionally, 94% of Netgate users are willing to recommend the solution, compared to 85% of Stormshield users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Netgate pfSense and Stormshield Network Security based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Netgate pfSense vs. Stormshield Network Security Report (Updated: March 2025).

Buyer's Guide

Netgate pfSense vs. Stormshield Network Security

March 2025

Download the complete report

Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Vincent Hamm

CIO and President at Aim High! Inc.

I appreciate the depth of what the solution can do and the simplicity of the initial setup

We do a lot of managed services and are currently trying to get people off of L2TP VPN. Apparently, we can download a mobile config file from a configured NetGate device, and we're primarily Apple. We've experimented with it on a device that's not a production device, and we can't seem to get the phase one IPSec set correctly so that the Apple config will accept it. We've tried looking at the documentation but haven't found anything. While it's not the highest priority, it is rather frustrating. We'd like to do this, and the feature is right there, but we can't get it configured. We certainly don't want to try it on a production machine because it will break the current VPN. I would like to download the Apple mobile config so that I can tell it to configure my VPN connection to do that. We have some cross-platform things. So there's also a Windows VPN. You can download a script or a PowerShell, put it on a Windows machine, and it can connect to the VPN. It would be nice if I could say I want Mac only, Windows only, or both. I wish it could configure the IPSec phase one and phase two, or at least give me solid instructions on how to configure that. It doesn't supply out-of-the-box visibility to drive decisions. You get 75 log lines, so if you're trying to troubleshoot something, you have to look at one log and then another. It integrates with SysLog systems, but our customers are not at the level where they want to pay for some third-party SysLog system. Usually, we can get things taken care of fairly quickly. I would like to have the ability to control all my devices from one place. With Ubiquiti, you can get a controller that allows you to control all of your Wi-Fi devices, switches, and routers. From one area, you can switch to that customer and see what's happening in their environment. That's not part of pfSense. I understand why it's not because pfSense is open source and community supported. That's something that someone in the community needs to pick up and run with. It's not something the pfSense can easily implement. If they could, that'd be great.

Read full review

Ben_Ben

Network Engineer at ACS

The intrusion detection system helps our organization by automatically detecting and responding to potential threats

The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution has very good threat and content filtering switches."

"What I like the most is the configuration and that it's simple, and straightforward to maintain."

"It has very easy management and an amazing ETM configuration."

"A strong point of FortiGate is the graphical interface is complete and easy to use."

"I like several features that this product has, such as antivirus and internet navigation inspection. It is also simple to use."

"Valuable features include the Web Application Firewall, and it even has DLP (data leak prevention)."

"The user interface (UI) is very, very good."

"Security solution with a straightforward and quick setup. It's a stable and scalable product."

More Fortinet FortiGate pros

"I appreciate pfSense's foundation on FreeBSD, which enables me to leverage additional FreeBSD packages for expanded functionality."

"I can manage it easily by myself."

"The redundancy and scalability ARE very nice."

"I appreciate the depth of what you can do with pfSense and the simplicity of the initial setup. One thing we've done is create an image, and when we get a new customer who needs a device, we can put that image on there. The image gets them up to 90 percent of what we need them to have, and we only have to customize the remaining 10 percent."

"The visibility in pfSense helps optimize performance."

"pfSense allows us to spread the hours of connection and do the filtering on the pfSense site."

"A free firewall that is a good network security appliance."

"I had some outages in the network and we provide services for our company. We sell mobile credits. The terminal gets access to our own server inside the network and if one internet fails, then the other one is still up and we have a back-up link on the devices."

More Netgate pfSense pros

"The most valuable features are the IPS, the firewall function, and the price."

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed."

"I can see what traffic is going on. I can easily block any programs from attacks."

"A very robust product."

"It's an easy, straightforward management platform to use."

"I like that it works fine. Stormshield is a very good solution."

"Easily manageable in a variety of environments."

"Ease of use is the best feature of the product."

More Stormshield Network Security pros

Cons

"I would like Fortinet to add more automation to FortiGate."

"Compared to some other products, the DLP is not at par for the moment."

"The cloud features and integration could be improved."

"To the best of my knowledge, Fortinet does not have a CASB solution and Fortinet does not have a Zero trust solution."

"The user interface could be improved to make it less confusing and easier to set up."

"This product needs to have an analysis feature, rather than having the analysis done through the integration of a different product."

"Technical support for this solution can be improved."

"FortiGate is really good. We have been using it for quite some time. Initially, when we started off, we had around 70 plus devices of FortiGate, but then Check Point and Palo Alto took over the place. From the product perspective, there are no issues, but from the account perspective, we have had issues. Fortinet's presence in our company is very less. I don't see any Fortinet account managers talking to us, and that presence has diluted in the last two and a half or three years. We have close to 1,500 firewalls. Out of these, 60% of firewalls are from Palo Alto, and a few firewalls are from Check Point. FortiGate firewalls are very less now. It is not because of the product; it is because of the relationship. I don't think they had a good relationship with us, and there was some kind of disconnect for a very long time. The relationship between their accounts team and my leadership team seems to be the reason for phasing out FortiGate."

More Fortinet FortiGate cons

"It should integrate with LDAP, Active Directory, etc, to improve the way in which the traces and connections of each IP, or user connected through the firewall, are shown."

"I have been using WireGuard VPN because it is a lot faster and more secure than an open VPN. However, in the latest version of pfSense, they have removed this feature, which is one of the main features that I need. They should include this feature."

"Evaluation and contracting could be improved."

"The access control aspect of the product could be improved."

"The technical support needs to be improved."

"Performance Optimization Documentation could use improvement. The base setup is great but with higher bandwidth, it is really hard to find good documentation on how to tweak the setup to get the most out of your connection."

"The GUI. There are TONS of plugins for pfSense, as such, if a user wants to add quite a bit of functionality, the GUI will feel a little congested."

"I would like to see an additional wizard added to pfSense when you add some of their other packages. You can add a package from pfSense to do a particular task, but you need to be a product expert or willing to spend time on the Internet for hours and hours to figure out how to configure some of those features correctly."

More Netgate pfSense cons

"With Stormshield, there are difficulties joining things, and it can be complex depending on the architecture."

"The biggest issue was their support department was not able to help us, then everything stops. This is a no-go area for me."

"The product must improve its pricing."

"The SD card could be more secure."

"This solution has a big problem with web filtering and it needs to be improved."

"A more user-friendly interface would be helpful."

"Not all the fields are activated yet and we were informed that it will take at least one month."

"This is not a next-generation firewall."

More Stormshield Network Security cons

Pricing and Cost Advice

"Price-wise, it's at a good price point for our market."

"Fortinet is competitive price-wise."

"If you compare Fortinet FortiGate with Sophos and other firewall products available in the market, this solution is affordable."

"I would rate the pricing a five out of ten"

"In the Asian economy in which we operate, FortiGate is expensive."

"It is more expensive than Sophos. Fortinet is overall more expensive than Sophos. The small range of Fortinet, such as 60F and 80F, is more expensive than the small range of Sophos. Sophos is cheaper. In addition, if you jump from 80F Series to 100F Series, the price doubles."

"The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."

"The solution requires a license annually, it is not a user license, you can have as many users as your want. I must renew the license regularly per device."

More Fortinet FortiGate pricing and cost advice

"Netgate pfSense Community Edition is great and free. For Netgate pfSense Plus, we have to buy Netgate's boxes, and the pricing is great."

"From Sonic Wall, their price is much higher, because for every feature that you want to add, you have to pay. I can do the same things with pfSense, but everything is included in one price."

"We just have a yearly support subscription."

"I would recommend it for a small business or a startup as a starting point. It's also good for companies that are on a tight budget."

"The solution software does not require a license, it is free. The support contract is about $600 dollars."

"The pricing is lower than some of its competitors."

"I use the free version."

"I prefer the software licensing model."

More Netgate pfSense pricing and cost advice

"The pricing could be better."

"I think the price is good."

"We chose Stormshield for its price, as the Azure firewall was too expensive."

"We bought a three-year license, and we renew it whenever it expires. The price could be better. It's always very expensive."

"The SN200 series costs between $500 USD and $600 USD per year, whereas the SN700 series costs approximately $1,000 annually."

"The price of this solution and the price of support are ok."

"For mid-sized companies, they sell their appliances for good prices."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

845,406 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Computer Software Company

15%

Comms Service Provider

11%

Educational Organization

Government

Computer Software Company

22%

Comms Service Provider

16%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Help me find the best open source router

You don't really specify what type of router you are looking for but if you are talking about a gateway router I reco...

See all answers

How do I choose between Fortinet FortiGate and pfSense?

Fortinet’s Fortigate is a firewall solution we use and are very much satisfied with its performance. We find Fortigat...

See all answers

What is the difference between PfSense and OPNsense?

Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and cl...

See all answers

What do you like most about Stormshield Network Security?

Ease of use is the best feature of the product.

See all answers

What is your experience regarding pricing and costs for Stormshield Network Security?

We pay for the quality we receive.

See all answers

What needs improvement with Stormshield Network Security?

The product must improve its pricing.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 23% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 10% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

Meraki MX vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

OPNsense vs Netgate pfSense

Compared 34% of the time

Sophos XG vs Netgate pfSense

Compared 9% of the time

KerioControl vs Netgate pfSense

Compared 4% of the time

Cisco Secure Firewall vs Netgate pfSense

Compared 3% of the time

Sophos XGS vs Netgate pfSense

Compared 1% of the time

More Netgate pfSense Competitors

OPNsense vs Stormshield Network Security

Compared 6% of the time

WatchGuard Firebox vs Stormshield Network Security

Compared 6% of the time

Palo Alto Networks NG Firewalls vs Stormshield Network Security

Compared 6% of the time

Sophos XG vs Stormshield Network Security

Compared 5% of the time

Cisco Secure Firewall vs Stormshield Network Security

Compared 4% of the time

More Stormshield Network Security Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

March 2025

Download Fortinet FortiGate product report

Buyer's Guide

Netgate pfSense

March 2025

Download Netgate pfSense product report

Buyer's Guide

Stormshield Network Security

March 2025

Download Stormshield Network Security product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

No data available

NETASQ Firewalls

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Netgate pfSense is widely leveraged by organizations for its comprehensive capabilities in firewalls, VPN servers, and bandwidth management. It suits LAN, WAN, and DMZ networks, offering secure, scalable, and efficient networking solutions.

Netgate pfSense stands out in diverse environments with its enterprise-grade features and cost-effective operations compared to competitors like Cisco. Deployed as an edge device, it optimizes routing, ad-blocking, content filtering, and traffic shaping. Users benefit from its versatile configurations, robust firewall protection, VPN functionality, and ISP load balancing. The open-source nature allows for extensive customization, integrating plugins like Snort and pfBlockerNG, and compatibility with third-party tools enhances its utility. The intuitive GUI combined with detailed logging and centralized management fortifies network security.

What features define Netgate pfSense?

Firewall: Provides robust network security through advanced filtering and stateful packet inspections.
VPN: Ensures secure remote access with high-performing VPN capabilities.
Load Balancing: Efficiently distributes traffic across multiple ISPs, ensuring uptime and performance.
Customization: Supports various plugins for enhanced functionality, tailor-made to specific needs.
Scalability: Adapts easily to varying network demands, providing high availability and flexibility.

What benefits should be considered for ROI?

Cost-Effectiveness: Delivers premium features at a fraction of the cost of traditional network appliances.
Flexibility: Offers a customizable solution that integrates well with existing infrastructure.
Community Support: Backed by a strong user community offering insights and troubleshooting resources.
Security: Supports VLAN segmentation, enhancing protection and management of network traffic.

Organizations in industries such as finance, healthcare, and education find Netgate pfSense integral due to its advanced security features and cost benefits. Its scalable architecture and strong VPN support are crucial for industries requiring stringent data protection and reliable remote access. The adaptability of pfSense makes it suitable for dynamic environments seeking comprehensive, secure networking solutions.

Netgate

NETASQ's integrated intrusion prevention engine uses protocol conformity analysis, application filtering and antivirus analysis to inspect authorized traffic flows and strengthen application security. NETASQ enables you to establish and configure user-based security policies, giving you greater control over which network resources each user is authorized to access.

Stormshield

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Nerds On Site Inc., RKC Development Inc., Expertech, Fisher's Technology, Ncisive, Consulting, CPURX, Vaughn's Computer House Calls, Imeretech LLC, Digital Crisis, Carolina Digital Phone, Technigogo Technology Services, The Simple Solution, SwiftecITInc, Rocky Mountain Tech Team, Free Range Geeks, Alaska Computer Geeks, Lark Information Technology, Renaissance Systems Inc., Cutting Edge Computers, Caretech LLC, GoVanguard, Network Touch Ltd, P.C. Solutions.Net, Vision Voice and Data Systems LLC, Montgomery Technologies, Techforce, Concero Networks, ASONInc, CPS Electronics and Consulting, Darkwire.net LLC, IT Specialists, MBS-Net Inc., VOICE1 LLC, Advantage Networking Inc., Powerhouse Systems, Doxa Multimedia Inc., Pro Computer Service, Virtual IT Services, A&J Computers Inc., Envision IT LLC, CommunicaONE Inc., Bone Computer Inc., Amax Engineering Corporation, QPG Ltd. Co., IT 101 Inc., Perfect Cloud Solutions, Applied Technology Group Inc., The Digital Sun Group LLC, Firespring

ACESUR group, Ministry of Education Oman, Anios Laboratories, Zain, DLM Location

Buyer's Guide

Netgate pfSense vs. Stormshield Network Security

March 2025

Free Report: Netgate pfSense vs. Stormshield Network Security

Find out what your peers are saying about Netgate pfSense vs. Stormshield Network Security and other solutions. Updated: March 2025.

DOWNLOAD NOW

845,406 professionals have used our research since 2012.

See our Netgate pfSense vs. Stormshield Network Security report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.