Netgate pfSense vs Stormshield Network Security comparison

Netgate and Stormshield are both solutions in the Firewalls category. Additionally, 93% of Netgate users are willing to recommend the solution, compared to 85% of Stormshield users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Netgate pfSense and Stormshield Network Security based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Netgate pfSense vs. Stormshield Network Security Report (Updated: April 2025).

Buyer's Guide

Netgate pfSense vs. Stormshield Network Security

April 2025

Download the complete report

Helped 851,604 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Vincent Hamm

CIO and President at Aim High! Inc.

I appreciate the depth of what the solution can do and the simplicity of the initial setup

We do a lot of managed services and are currently trying to get people off of L2TP VPN. Apparently, we can download a mobile config file from a configured NetGate device, and we're primarily Apple. We've experimented with it on a device that's not a production device, and we can't seem to get the phase one IPSec set correctly so that the Apple config will accept it. We've tried looking at the documentation but haven't found anything. While it's not the highest priority, it is rather frustrating. We'd like to do this, and the feature is right there, but we can't get it configured. We certainly don't want to try it on a production machine because it will break the current VPN. I would like to download the Apple mobile config so that I can tell it to configure my VPN connection to do that. We have some cross-platform things. So there's also a Windows VPN. You can download a script or a PowerShell, put it on a Windows machine, and it can connect to the VPN. It would be nice if I could say I want Mac only, Windows only, or both. I wish it could configure the IPSec phase one and phase two, or at least give me solid instructions on how to configure that. It doesn't supply out-of-the-box visibility to drive decisions. You get 75 log lines, so if you're trying to troubleshoot something, you have to look at one log and then another. It integrates with SysLog systems, but our customers are not at the level where they want to pay for some third-party SysLog system. Usually, we can get things taken care of fairly quickly. I would like to have the ability to control all my devices from one place. With Ubiquiti, you can get a controller that allows you to control all of your Wi-Fi devices, switches, and routers. From one area, you can switch to that customer and see what's happening in their environment. That's not part of pfSense. I understand why it's not because pfSense is open source and community supported. That's something that someone in the community needs to pick up and run with. It's not something the pfSense can easily implement. If they could, that'd be great.

Read full review

Benjamin

Network Engineer at ACS2I

The intrusion detection system helps our organization by automatically detecting and responding to potential threats

The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The IPS is good. It protect my network from attackers."

"The most valuable feature of Fortinet FortiGate is load balancing. It can provide central management and VPNA. Additionally, it has enhanced our security environment."

"It is useful for protecting and segregating the internal networks from the internet. Most of our customers also use the FortiGate client to connect to their offices by using the VPN client, and of course, they usually activate the antivirus, deep inspection, and intrusion prevention services. They are also using it for web filtering and implementing various policies dealing with forwardings, NAT, etc."

"The next-gen features, the unified threat management capabilities are something that just about everybody is interested in at this point."

"Allows for firewall rules to be programmed and named in a way that makes it “readable”"

"The GUI is good."

"The solution is very easy to understand. It's not overly complex."

"The tool is a nice product and easy to handle. The software's user interface is also good. You can easily implement remote access in the solution."

More Fortinet FortiGate pros

"pfSense is a nice product, and I find that there's a lot of information out there. There are some good tutorials on YouTube and other websites with helpful information."

"Its reliability and cost-effectiveness stand out."

"If you have full logging turned on you can get a pretty good idea of what kind of traffic is going in from where to where."

"The most valuable features are the VPN and the capture photo."

"The best feature of the tool is its all-in-one capabilities. It is a firewall with built-in IDS and IPS, load balancing, and VPN connections. The VPN integration, particularly with internal AD environments, provides stable connections. Centralized authentication is a notable benefit as well. We primarily use it for these features on our server level and are planning to expand their use in our complex environment to connect employees and services."

"The most valuable feature, for instance, is the ease of migrating configurations between different Netgate devices housed in the same box."

"Netgate is constantly releasing patches and updates, which is nice."

"The most valuable features of pfSense are the pfBlocker, HAProxy, NAT, and VPN."

More Netgate pfSense pros

"I like how you can configure the rules. There is the task for the rules and a task for the network configuration. It also provides SMD filtering, and it can be integrated with the active directory for the users, their mission, and the VPN configuration. We are here in Sudan, and Stormshield didn't work in Sudan for more than a decade. Stormshield is a very strong firewall and very easy to configure and maintain. I am just working with the firewall solution, and we don't have any other solutions like endpoint solutions or something like that."

"Ease of use is the best feature of the product."

"The solution has improved my organization because I can see what traffic is happening and I can use it to block and prevent attacks."

"A very robust product."

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed."

"I can see what traffic is going on. I can easily block any programs from attacks."

"I like that it works fine. Stormshield is a very good solution."

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page."

More Stormshield Network Security pros

Cons

"Security is a continuous process. In every product, there is a requirement for improvement. Its pricing should also be improved according to Indian market requirements. They must also improve on the reporting part. Its reporting can be more precise. If we can get a real-time report in a specific format, it will be helpful for customers to know about the current status of their security."

"I would prefer to have more detailed logs within the FortiGate products themselves rather than relying on a separate tool."

"Sometimes you do need to know some CLI commands, so it's a bit harder for technicians or new people that don't know it."

"I have to say that the initial setup was complex. The deployment took a few days to get set up. Initially, we were using an IPVanish. We switched to this tool since we thought it would be easier. But it turns out it wasn't easier to set up and run."

"Cisco Meraki products are rising very quickly in the cloud and the connected era. Meraki products offer much better ROI, upgradability, and manageability."

"The cloud management and automation capability could be improved."

"Performance and technical support are the main issues with this solution."

"There are some tiny bugs that sometimes affect the operations. In the past revision of it, there was a bug. Because of the bug, we had to downgrade the version. It happened only with the last revision."

More Fortinet FortiGate cons

"PfSense has the bare necessities essentially, but it isn't an advanced firewall that protects against layer 7 attacks or DDoS. It's not on the same level as Palo Alto, for instance. You can add some higher-level security features, but it doesn't do that out of the box. Maybe there's another thing we can add to it, but it feels like it's not catching more advanced attacks."

"A way to clean squid cache from the GUI."

"Many people have problems setting up the web cache for the web system."

"Also, the GUI is helpful, but it's not user-friendly. It's complicated. It should be more intuitive for the average user and have an excellent graphical view. Of course, the user will typically know about network administration, but it still should be easy to understand."

"More documentation would be great, especially on new features because sometimes, when new features come out, you don't get to understand them right off the bat. You have to really spend a lot of time understanding them. So, more documentation would be awesome."

"Perhaps the documentation is not clear and because it is supported in the community there is no basic documentation."

"Could be simplified for new users."

"It would be nice if the solution had a wizard for some of the complex functions."

More Netgate pfSense cons

"Stormshield Network Security is quite expensive."

"It could be better if it were more user-friendly. It's too complicated for us to use it. The price could be better as well."

"With Stormshield, there are difficulties joining things, and it can be complex depending on the architecture."

"The SD card could be more secure."

"This solution has a big problem with web filtering and it needs to be improved."

"The filtering configuration could be better. We have some difficulties with the filtering configuration and the filter extension. It's not that easy. It's not that straightforward. In the next release, I would like to see a reporting system. Stormshield doesn't have any tutorials on how to do the configuration and things like that. They just have documentation on the website. If you want to configure, for example, Cisco or Fortinet, you can find tutorials on YouTube. They show you how to configure the features, and so on. In Stormshield, there is nothing on social media or the internet on how to configure different things. The lack of documentation or the lack of material makes it difficult for others to adopt this solution."

"The biggest issue was their support department was not able to help us, then everything stops. This is a no-go area for me."

"The product must improve its pricing."

More Stormshield Network Security cons

Pricing and Cost Advice

"Its price could be better."

"The price of the license and warranty can be better because it is very expensive."

"Its pricing is competitive with other solutions."

"Other firewalls are more expensive than Fortinet FortiGate, such as the Azure firewall."

"The pricing is fair."

"The beauty is the price performance ratio is great with FortiGate. It provides all the features we needed and the price is comparable with others' firewalls. The price is quite competitive with the firewalls with similar features."

"We pay for the solution annually."

"Pricing is lower than Cisco."

More Fortinet FortiGate pricing and cost advice

"I think Netgate pfSense's TAC or support is a little expensive, considering how inexpensive everything else is."

"pfSense pricing is reasonable."

"Looking at what it does, I think that it is fairly priced."

"It is very suitable in terms of the price. If a client cannot acquire a Netgate appliance, I provide a custom-made appliance, and I install the Community edition of pfSense. It is a very good and affordable solution for enterprises. Some of the clients pay monthly but usually, it is annually."

"I would say pfSense is competitively priced. It isn't the cheapest hardware, but I've never had a problem with it. It is far cheaper than big brand names like FortiGate and Cisco while delivering a feature set that's nearly the same across the entire list. The only places it falls short are esoteric features that almost nobody needs."

"The solution software does not require a license, it is free. The support contract is about $600 dollars."

"I prefer the software licensing model."

"It is about €1,000. It is a one-time payment. I do not have a monthly or yearly subscription. I don't subscribe to any subscription because I hate cloud services. There are no additional costs."

More Netgate pfSense pricing and cost advice

"The pricing could be better."

"The price of this solution and the price of support are ok."

"We chose Stormshield for its price, as the Azure firewall was too expensive."

"For mid-sized companies, they sell their appliances for good prices."

"The SN200 series costs between $500 USD and $600 USD per year, whereas the SN700 series costs approximately $1,000 annually."

"We bought a three-year license, and we renew it whenever it expires. The price could be better. It's always very expensive."

"I think the price is good."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

851,604 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

19%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Computer Software Company

16%

Comms Service Provider

11%

Educational Organization

Government

Computer Software Company

22%

Comms Service Provider

17%

Government

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Help me find the best open source router

You don't really specify what type of router you are looking for but if you are talking about a gateway router I reco...

See all answers

How do I choose between Fortinet FortiGate and pfSense?

Fortinet’s Fortigate is a firewall solution we use and are very much satisfied with its performance. We find Fortigat...

See all answers

What is the difference between PfSense and OPNsense?

Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and cl...

See all answers

What do you like most about Stormshield Network Security?

Ease of use is the best feature of the product.

See all answers

What is your experience regarding pricing and costs for Stormshield Network Security?

We pay for the quality we receive.

See all answers

What needs improvement with Stormshield Network Security?

The product must improve its pricing.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 21% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 11% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

Meraki MX vs Fortinet FortiGate

Compared 4% of the time

More Fortinet FortiGate Competitors

OPNsense vs Netgate pfSense

Compared 34% of the time

Sophos XG vs Netgate pfSense

Compared 9% of the time

KerioControl vs Netgate pfSense

Compared 4% of the time

Cisco Secure Firewall vs Netgate pfSense

Compared 3% of the time

Zyxel Unified Security Gateway vs Netgate pfSense

Compared 1% of the time

More Netgate pfSense Competitors

WatchGuard Firebox vs Stormshield Network Security

Compared 7% of the time

OPNsense vs Stormshield Network Security

Compared 7% of the time

Palo Alto Networks NG Firewalls vs Stormshield Network Security

Compared 6% of the time

Sophos XG vs Stormshield Network Security

Compared 5% of the time

Cisco Secure Firewall vs Stormshield Network Security

Compared 4% of the time

More Stormshield Network Security Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

May 2025

Download Fortinet FortiGate product report

Buyer's Guide

Netgate pfSense

May 2025

Download Netgate pfSense product report

Buyer's Guide

Stormshield Network Security

April 2025

Download Stormshield Network Security product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

No data available

NETASQ Firewalls

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Netgate pfSense is widely leveraged by organizations for its comprehensive capabilities in firewalls, VPN servers, and bandwidth management. It suits LAN, WAN, and DMZ networks, offering secure, scalable, and efficient networking solutions.

Netgate pfSense stands out in diverse environments with its enterprise-grade features and cost-effective operations compared to competitors like Cisco. Deployed as an edge device, it optimizes routing, ad-blocking, content filtering, and traffic shaping. Users benefit from its versatile configurations, robust firewall protection, VPN functionality, and ISP load balancing. The open-source nature allows for extensive customization, integrating plugins like Snort and pfBlockerNG, and compatibility with third-party tools enhances its utility. The intuitive GUI combined with detailed logging and centralized management fortifies network security.

What features define Netgate pfSense?

Firewall: Provides robust network security through advanced filtering and stateful packet inspections.
VPN: Ensures secure remote access with high-performing VPN capabilities.
Load Balancing: Efficiently distributes traffic across multiple ISPs, ensuring uptime and performance.
Customization: Supports various plugins for enhanced functionality, tailor-made to specific needs.
Scalability: Adapts easily to varying network demands, providing high availability and flexibility.

What benefits should be considered for ROI?

Cost-Effectiveness: Delivers premium features at a fraction of the cost of traditional network appliances.
Flexibility: Offers a customizable solution that integrates well with existing infrastructure.
Community Support: Backed by a strong user community offering insights and troubleshooting resources.
Security: Supports VLAN segmentation, enhancing protection and management of network traffic.

Organizations in industries such as finance, healthcare, and education find Netgate pfSense integral due to its advanced security features and cost benefits. Its scalable architecture and strong VPN support are crucial for industries requiring stringent data protection and reliable remote access. The adaptability of pfSense makes it suitable for dynamic environments seeking comprehensive, secure networking solutions.

Netgate

NETASQ's integrated intrusion prevention engine uses protocol conformity analysis, application filtering and antivirus analysis to inspect authorized traffic flows and strengthen application security. NETASQ enables you to establish and configure user-based security policies, giving you greater control over which network resources each user is authorized to access.

Stormshield

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Nerds On Site Inc., RKC Development Inc., Expertech, Fisher's Technology, Ncisive, Consulting, CPURX, Vaughn's Computer House Calls, Imeretech LLC, Digital Crisis, Carolina Digital Phone, Technigogo Technology Services, The Simple Solution, SwiftecITInc, Rocky Mountain Tech Team, Free Range Geeks, Alaska Computer Geeks, Lark Information Technology, Renaissance Systems Inc., Cutting Edge Computers, Caretech LLC, GoVanguard, Network Touch Ltd, P.C. Solutions.Net, Vision Voice and Data Systems LLC, Montgomery Technologies, Techforce, Concero Networks, ASONInc, CPS Electronics and Consulting, Darkwire.net LLC, IT Specialists, MBS-Net Inc., VOICE1 LLC, Advantage Networking Inc., Powerhouse Systems, Doxa Multimedia Inc., Pro Computer Service, Virtual IT Services, A&J Computers Inc., Envision IT LLC, CommunicaONE Inc., Bone Computer Inc., Amax Engineering Corporation, QPG Ltd. Co., IT 101 Inc., Perfect Cloud Solutions, Applied Technology Group Inc., The Digital Sun Group LLC, Firespring

ACESUR group, Ministry of Education Oman, Anios Laboratories, Zain, DLM Location

Buyer's Guide

Netgate pfSense vs. Stormshield Network Security

April 2025

Free Report: Netgate pfSense vs. Stormshield Network Security

Find out what your peers are saying about Netgate pfSense vs. Stormshield Network Security and other solutions. Updated: April 2025.

DOWNLOAD NOW

851,604 professionals have used our research since 2012.

See our Netgate pfSense vs. Stormshield Network Security report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.