Netgate pfSense vs Stormshield Network Security comparison

Netgate and Stormshield are both solutions in the Firewalls category. Additionally, 93% of Netgate users are willing to recommend the solution, compared to 85% of Stormshield users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Netgate pfSense and Stormshield Network Security based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Netgate pfSense vs. Stormshield Network Security Report (Updated: February 2026).

Buyer's Guide

Netgate pfSense vs. Stormshield Network Security

February 2026

Download the complete report

Helped 881,707 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Read full review

Michael-Collins

Chief information security officer at Center for Information Management, Inc.

Provides visibility that enables users to make data-driven decisions

pfSense flexibility overall is pretty good. They are making some really big improvements. That said, they're a long way from enterprise. They advertise things that they don't have. I've worked for probably 30% of the Corporate 100, and they won't tolerate the high availability and it being as buggy as it is. The fact that if you configure it incorrectly without any visual indications that it's not done in the way Netscape does, then it will not only break the firewall, it will break both firewalls. The only way you can even try to recover is by getting new images from Netgate. You have to open up a tech support case, download the image for, then reimage the firewalls, and reapply your configuration. The fact that you can completely brick your firewalls just by having a configuration that they allow, and they don't even don't tell you there's a problem until they both go down. That's totally unacceptable in an enterprise. As a standalone firewall, they're excellent. As an enterprise, we're not touching it with a ten-foot pole. It’s difficult to configure and use add-on features. It's really easy to add them. On the website, they say “Oh, we do this, this, and this.” However, they do a lot through third-party add-ons. The problem is, if there's any problems at all, the very first thing they want you to do is disable those add-ons. So that's not really supporting anything. There are two ways that firewalls are viewed: talking to the firewall and talking through the firewall. If you're talking about “to the firewall,” then it's a very robust, very secure firewall. However, it doesn't have things that they claim helps with protecting data, most of it's third party. If you want to do all these things that are typically associated with enterprise-level firewalls, most of them are done by a third party. It's not actually cooked into their product. I like their OSPF. I wish it was more current. The only bugs that are in the OSPF are ones that have been known about for almost two years. Maybe they're they're victims of their own success. Their growth curve has outstripped their technical support and has outstripped their ability to develop. They're just growing so fast. They're trying to do everything. Updates from third parties can take too long. For example, if there's a problem with a package and no available update is available, you have to wait. Since it's via a third party, there's no definable schedule, as the update needs to come from a third-party open organization with no financial interest to make the process faster. Sometimes, there's more finger-pointing than resolution. In, OSPF, they give you lots of information. However, when it comes to hardcore troubleshooting of different routing zones or things like that, then you had to keep dropping down to the CLI in order to get it. And that's where your experience can change quite a bit. If you're running OSPF on Cumulus or some of the other big routing or switching solutions, then they're running much newer versions of it, which are all bug-patched and fixed. However, pfSense is running on an operating system that is not theirs. They don't necessarily have full control over it. When you get a real enterprise firewall, and when you hook up the redundancy, you expect redundancy to work and be predictable. And never ever will the redundancy crash your system. If you don't create the interfaces in the exact same order on both firewalls every single time, if so much as one interface is out of order, if the command line is different because of the way the operating system works, you will slowly corrupt your configuration to the point where it'll break.

Read full review

Benjamin

Network Engineer at ACS2I

The intrusion detection system helps our organization by automatically detecting and responding to potential threats

The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"You can create multiple Virtual Domains (VDOMs), which are treated as separate firewall instances."

"ROI is exceptionally good."

"It is a scalable solution."

"The setup is easy."

"Fortinet FortiGate is stable; I am told that Fortinet FortiGate is one of the best solutions available, and I believe it."

"FortiGate's web and URL filtering are unlike any other firewall I've used. The functionality of URL filtering in those solutions is problematic because everything is encrypted, and firewalls can't break that encryption protocol. Fortinet has an SSL proxy, so the encryption is done before the packet ever leaves the FortiGate. The URL filter is definitely one of the most helpful features."

"The reporting and monitoring are very good."

"The most useful features are application control, web filtering, and SD-WAN."

More Fortinet FortiGate pros

"It's a good solution for end-users. It's pretty easy to work with."

"I'm the expert when it comes to Linux systems, however, with the pfSense, due to the web interface, the rest of the staff can actually make changes to it as required without me worrying about whether they've opened up ports incorrectly or not. The ease of use for non-expert staff is very good."

"I like pfSense's reports and how I can control access to the policies on the firewall."

"We really like that it is quite simple to use and straightforward."

"My company mainly works in the health and educational domain, schools and universities. I prevent the improper use of content from schools and universities. I defend the medical records for the patients in our hospitals. That is the main use case for me for the firewall."

"The initial setup is straightforward."

"Open source and support are valuable. I have community support."

"It is a robust tool that can replace your consumer-grade firewall router solution."

More Netgate pfSense pros

"The solution has improved my organization because I can see what traffic is happening and I can use it to block and prevent attacks."

"This solution is quick and easy to configure."

"I like how you can configure the rules. There is the task for the rules and a task for the network configuration. It also provides SMD filtering, and it can be integrated with the active directory for the users, their mission, and the VPN configuration. We are here in Sudan, and Stormshield didn't work in Sudan for more than a decade. Stormshield is a very strong firewall and very easy to configure and maintain. I am just working with the firewall solution, and we don't have any other solutions like endpoint solutions or something like that."

"I can see what traffic is going on. I can easily block any programs from attacks."

"The most valuable features are the IPS, the firewall function, and the price."

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed."

"A very robust product."

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page."

More Stormshield Network Security pros

Cons

"When considering the policy of the vendors, they do not offer much of a discount policy, making the licensing model an area that needs improvement."

"Fortinet FortiGate can improve performance. There was a huge challenge in terms of CPU and memory where the IPS engine would keep triggering. There were random spikes of overutilization in the CPU and memory resources. They have to work on CPU and memory stability considering these IPS engines. A few versions were very unstable."

"A couple of things I've seen that need improvement, especially in terms of a hard coding. The driver-level active moment really is out-of-the-box and we have to have contact the customer support and sometimes it is difficult to resolve."

"The user interface of the Fortinet FortiGate management console could be more intuitive and user-friendly, and the log analysis and reporting features could be enhanced to provide more flexibility and customizable insights."

"The support from Fortinet FortiGate could improve. They are not easily accessible when we need them. They could improve their response time."

"The performance can be improved."

"Technical support could be better. You don't always get the level of help you need right away."

"To the best of my knowledge, Fortinet does not have a CASB solution and Fortinet does not have a Zero trust solution."

More Fortinet FortiGate cons

"One of the features I know they are working on and would like to see improved is the single pane of glass. They have a beta feature available right now that is good, but I would like to see that more developed and made available to customers sooner rather than later. It is currently very basic."

"User interface is a little clumsy."

"They can improve the dynamic of the input of IPs from outside."

"PfSense's interface could be improved. For example, the menu is ordered alphabetically instead of logically. The reboot button should be located near the shutdown, but it's in alphabetical order. Also, Netgear should create a home license for pfSense Plus for non-commercial use."

"The user interface needs improvement. Even though it's a system that's easy to get working upon installation, the configurations are not intuitive."

"Some of the features I am looking for are still not there in pfSense, like, for example, content control. Because I have kids, I want to control the content or what they watch. There is a feature in pfSense called pfBlocker, but it is limited."

"It needs to be more secure."

"A way to clean squid cache from the GUI."

More Netgate pfSense cons

"The filtering configuration could be better. We have some difficulties with the filtering configuration and the filter extension. It's not that easy. It's not that straightforward. In the next release, I would like to see a reporting system. Stormshield doesn't have any tutorials on how to do the configuration and things like that. They just have documentation on the website. If you want to configure, for example, Cisco or Fortinet, you can find tutorials on YouTube. They show you how to configure the features, and so on. In Stormshield, there is nothing on social media or the internet on how to configure different things. The lack of documentation or the lack of material makes it difficult for others to adopt this solution."

"Stormshield Network Security is quite expensive."

"It could be better if it were more user-friendly. It's too complicated for us to use it. The price could be better as well."

"With Stormshield, there are difficulties joining things, and it can be complex depending on the architecture."

"This is not a next-generation firewall."

"The biggest issue was their support department was not able to help us, then everything stops. This is a no-go area for me."

"This solution has a big problem with web filtering and it needs to be improved."

"Improvement is needed in terms of the technical support of the manufacturer."

More Stormshield Network Security cons

Pricing and Cost Advice

"It is cost-effective, and provides a good value for your money. The pricing, and license renewal, is very reasonable for us."

"The pricing is reasonable."

"Its pricing is good. The advantages of Fortinet FortiGate over its competitors include good pricing and meeting our requirements at a lower cost."

"We purchased a five-year bundle package, which worked out cheaper than competing solutions."

"Fortinet is reasonable in pricing and licensing. Overall, FortiGate is affordable. The licensing fee can be a little high, depending on the budget for your project."

"FortiGate Next Generation Firewall is an expensive solution."

"The pricing for this solution is good."

"Fortinet FortiGate is reasonably priced."

More Fortinet FortiGate pricing and cost advice

"I use the product's free version."

"The solution's pricing is comparable to other products."

"pfSense is excellent for a low total cost of ownership. pfSense pricing is extremely competitive, and it delivers exactly what is advertised."

"We are using the open-source version, not the commercial one."

"The pricing is lower than some of its competitors."

"pfSense pricing is reasonable."

"There is no licensing fee except for the enterprise support, if you want it."

"PfSense's pricing is reasonable. However, support is relatively expensive for smaller customers, and you need to pay per device to get it. So if Customer A is having an issue, I have to get support, and then I have to get support for Customer B, and so on. It would be nice as a managed services provider to get support for my company rather than individual devices."

More Netgate pfSense pricing and cost advice

"The price of this solution and the price of support are ok."

"We bought a three-year license, and we renew it whenever it expires. The price could be better. It's always very expensive."

"For mid-sized companies, they sell their appliances for good prices."

"The pricing could be better."

"The SN200 series costs between $500 USD and $600 USD per year, whereas the SN700 series costs approximately $1,000 annually."

"We chose Stormshield for its price, as the Azure firewall was too expensive."

"I think the price is good."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

881,707 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

12%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Comms Service Provider

13%

Computer Software Company

12%

Manufacturing Company

Educational Organization

Comms Service Provider

17%

Computer Software Company

16%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	357
Midsize Enterprise	133
Large Enterprise	189

By reviewers
Company Size	Count
Small Business	168
Midsize Enterprise	33
Large Enterprise	29

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	5
Large Enterprise	2

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Help me find the best open source router

You don't really specify what type of router you are looking for but if you are talking about a gateway router I reco...

See all answers

How do I choose between Fortinet FortiGate and pfSense?

Fortinet’s Fortigate is a firewall solution we use and are very much satisfied with its performance. We find Fortigat...

See all answers

What is the difference between PfSense and OPNsense?

Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and cl...

See all answers

What advice do you have for others considering Stormshield Network Security?

The tool is like a firewall and works well. I don't have any issue with it. I rate it an eight out of ten.

See all answers

Comparisons

Sophos Firewall vs Fortinet FortiGate

Compared 20% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 13% of the time

Palo Alto Networks NG Firewalls vs Fortinet FortiGate

Compared 4% of the time

OPNsense vs Fortinet FortiGate

Compared 3% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 3% of the time

More Fortinet FortiGate Competitors

OPNsense vs Netgate pfSense

Compared 55% of the time

Sophos Firewall vs Netgate pfSense

Compared 6% of the time

Cisco Secure Firewall vs Netgate pfSense

Compared 2% of the time

KerioControl vs Netgate pfSense

Compared 2% of the time

Juniper SRX Series Firewall vs Netgate pfSense

Compared 1% of the time

More Netgate pfSense Competitors

WatchGuard Firebox vs Stormshield Network Security

Compared 8% of the time

OPNsense vs Stormshield Network Security

Compared 7% of the time

Sophos Firewall vs Stormshield Network Security

Compared 7% of the time

Palo Alto Networks NG Firewalls vs Stormshield Network Security

Compared 5% of the time

Sophos UTM vs Stormshield Network Security

Compared 5% of the time

More Stormshield Network Security Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

January 2026

Download Fortinet FortiGate product report

Buyer's Guide

Netgate pfSense

January 2026

Download Netgate pfSense product report

Buyer's Guide

Stormshield Network Security

January 2026

Download Stormshield Network Security product report

Also Known As

Fortinet FortiGate Next-Generation Firewall

No data available

NETASQ Firewalls

Overview

Fortinet FortiGate is a versatile network security tool offering features like VPN, firewall, web filtering, intrusion prevention, and scalability. It is known for its performance and integration with other Fortinet products, making it a preferred choice for robust cybersecurity.

Fortinet FortiGate stands out as a comprehensive cybersecurity solution with strong performance and ease of configuration. It delivers unified threat management, integrating features such as dynamic routing, SD-WAN support, and centralized management. Despite its strengths, improvements in the web interface's stability, pricing structures, and reporting capabilities are needed. Users seek better integration with third-party tools and automation advancements to enhance the experience further. These enhancements, alongside improvements in bandwidth management and the reduction of licensing costs, are points of interest for users looking to capitalize on FortiGate's extensive capabilities.

What are Fortinet FortiGate's key features?

VPN: Ensures secure remote connections.
Firewall: Protects against unauthorized access.
Web Filtering: Blocks malicious sites and content.
Application Control: Manages and controls applications.
Intrusion Prevention: Detects and prevents vulnerabilities.
SSL Inspection: Enhances security by inspecting encrypted traffic.

What benefits should be considered when evaluating Fortinet FortiGate?

Affordability: Offers cost-effective security solutions.
Reliability: Known for consistent and stable performance.
Integration: Seamlessly integrates with other Fortinet products.
Comprehensive Protection: Provides broad threat protection capabilities.

Fortinet FortiGate is widely implemented across industries as a primary firewall system for securing internet gateways and safeguarding data centers. It supports businesses in achieving SD-WAN integration and enhances cybersecurity by providing essential features like antivirus, web filtering, and application control. Enterprises utilize FortiGate for securing remote connections and ensuring compliance with security standards, making it adaptable for different network sizes and industries.

Fortinet

Netgate pfSense is an open-source firewall and router software known for scalability, cost-effectiveness, and community support. It includes customizable packages for varied network management needs, offering solid performance and straightforward management for diverse setups.

Netgate pfSense provides an impressive range of functionalities including firewall capabilities, VPN options, and extensive customization through packages. Its low resource usage and high availability make it viable for businesses of all sizes, especially when dealing with tailored network demands. Despite its strengths, users suggest improvements in ease of use, mobile compatibility, and support for plug-ins. Enhanced centralized management, better documentation, and additional security features are frequent requests.

What are the key features of Netgate pfSense?

Scalability: Suits any network size from small home setups to large enterprises.
Open-source: Offers transparency and flexibility, allowing for community-driven development.
Firewall Capabilities: Provides robust protection against unauthorized access.
VPN Options: Supports secure remote connectivity with various VPN protocols.
Customizable Packages: Allows users to personalize functionalities to fit network needs.
High Availability: Ensures continuous network operations with redundancy features.
Load Balancing: Distributes traffic efficiently across multiple paths or connections.
Traffic Shaping: Manages bandwidth allocation to optimize network performance.

What benefits should users consider in reviews?

Cost-effectiveness: Significant savings due to low operational costs and open-source nature.
Performance: Reliable service delivery with minimal hardware demands.
User-friendly Interface: Intuitive design that simplifies complex network management.
Community Support: Access to extensive community resources for troubleshooting and advice.
Comprehensive Documentation: Detailed guides and tutorials to facilitate installation and configuration.

In education and healthcare, Netgate pfSense is employed for secure connectivity and efficient traffic management, accommodating distinct demands of remote access and content filtering. Organizations in these sectors often utilize features such as load balancing and VPNs to maintain secure and reliable network operations while integrating with services like Active Directory for streamlined identity management. Small to medium-sized enterprises benefit from its affordability and robust functionality, making it a go-to choice for managed service environments requiring effective network security and control.

Netgate

NETASQ's integrated intrusion prevention engine uses protocol conformity analysis, application filtering and antivirus analysis to inspect authorized traffic flows and strengthen application security. NETASQ enables you to establish and configure user-based security policies, giving you greater control over which network resources each user is authorized to access.

Stormshield

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Nerds On Site Inc., RKC Development Inc., Expertech, Fisher's Technology, Ncisive, Consulting, CPURX, Vaughn's Computer House Calls, Imeretech LLC, Digital Crisis, Carolina Digital Phone, Technigogo Technology Services, The Simple Solution, SwiftecITInc, Rocky Mountain Tech Team, Free Range Geeks, Alaska Computer Geeks, Lark Information Technology, Renaissance Systems Inc., Cutting Edge Computers, Caretech LLC, GoVanguard, Network Touch Ltd, P.C. Solutions.Net, Vision Voice and Data Systems LLC, Montgomery Technologies, Techforce, Concero Networks, ASONInc, CPS Electronics and Consulting, Darkwire.net LLC, IT Specialists, MBS-Net Inc., VOICE1 LLC, Advantage Networking Inc., Powerhouse Systems, Doxa Multimedia Inc., Pro Computer Service, Virtual IT Services, A&J Computers Inc., Envision IT LLC, CommunicaONE Inc., Bone Computer Inc., Amax Engineering Corporation, QPG Ltd. Co., IT 101 Inc., Perfect Cloud Solutions, Applied Technology Group Inc., The Digital Sun Group LLC, Firespring

ACESUR group, Ministry of Education Oman, Anios Laboratories, Zain, DLM Location

Buyer's Guide

Netgate pfSense vs. Stormshield Network Security

February 2026

Free Report: Netgate pfSense vs. Stormshield Network Security

Find out what your peers are saying about Netgate pfSense vs. Stormshield Network Security and other solutions. Updated: February 2026.

DOWNLOAD NOW

881,707 professionals have used our research since 2012.

See our Netgate pfSense vs. Stormshield Network Security report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.