Netgate pfSense vs Stormshield Network Security comparison

Netgate and Stormshield are both solutions in the Firewalls category. Additionally, 93% of Netgate users are willing to recommend the solution, compared to 85% of Stormshield users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Netgate pfSense and Stormshield Network Security based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Netgate pfSense vs. Stormshield Network Security Report (Updated: February 2026).

Buyer's Guide

Netgate pfSense vs. Stormshield Network Security

February 2026

Download the complete report

Helped 881,707 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Read full review

Michael-Collins

Chief information security officer at Center for Information Management, Inc.

Provides visibility that enables users to make data-driven decisions

pfSense flexibility overall is pretty good. They are making some really big improvements. That said, they're a long way from enterprise. They advertise things that they don't have. I've worked for probably 30% of the Corporate 100, and they won't tolerate the high availability and it being as buggy as it is. The fact that if you configure it incorrectly without any visual indications that it's not done in the way Netscape does, then it will not only break the firewall, it will break both firewalls. The only way you can even try to recover is by getting new images from Netgate. You have to open up a tech support case, download the image for, then reimage the firewalls, and reapply your configuration. The fact that you can completely brick your firewalls just by having a configuration that they allow, and they don't even don't tell you there's a problem until they both go down. That's totally unacceptable in an enterprise. As a standalone firewall, they're excellent. As an enterprise, we're not touching it with a ten-foot pole. It’s difficult to configure and use add-on features. It's really easy to add them. On the website, they say “Oh, we do this, this, and this.” However, they do a lot through third-party add-ons. The problem is, if there's any problems at all, the very first thing they want you to do is disable those add-ons. So that's not really supporting anything. There are two ways that firewalls are viewed: talking to the firewall and talking through the firewall. If you're talking about “to the firewall,” then it's a very robust, very secure firewall. However, it doesn't have things that they claim helps with protecting data, most of it's third party. If you want to do all these things that are typically associated with enterprise-level firewalls, most of them are done by a third party. It's not actually cooked into their product. I like their OSPF. I wish it was more current. The only bugs that are in the OSPF are ones that have been known about for almost two years. Maybe they're they're victims of their own success. Their growth curve has outstripped their technical support and has outstripped their ability to develop. They're just growing so fast. They're trying to do everything. Updates from third parties can take too long. For example, if there's a problem with a package and no available update is available, you have to wait. Since it's via a third party, there's no definable schedule, as the update needs to come from a third-party open organization with no financial interest to make the process faster. Sometimes, there's more finger-pointing than resolution. In, OSPF, they give you lots of information. However, when it comes to hardcore troubleshooting of different routing zones or things like that, then you had to keep dropping down to the CLI in order to get it. And that's where your experience can change quite a bit. If you're running OSPF on Cumulus or some of the other big routing or switching solutions, then they're running much newer versions of it, which are all bug-patched and fixed. However, pfSense is running on an operating system that is not theirs. They don't necessarily have full control over it. When you get a real enterprise firewall, and when you hook up the redundancy, you expect redundancy to work and be predictable. And never ever will the redundancy crash your system. If you don't create the interfaces in the exact same order on both firewalls every single time, if so much as one interface is out of order, if the command line is different because of the way the operating system works, you will slowly corrupt your configuration to the point where it'll break.

Read full review

Benjamin

Network Engineer at ACS2I

The intrusion detection system helps our organization by automatically detecting and responding to potential threats

The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The initial setup is straightforward."

"The best features of Fortinet FortiGate are the integration of SD-WAN capabilities with Fortinet Unified SASE."

"FortiGate Secure SD-WAN includes best-of-breed next-generation firewall (NGFW) security, SD-WAN, advanced routing, and WAN optimization capabilities, delivering a security-driven networking WAN edge transformation in a unified offering."

"The initial setup of Fortinet FortiGate was straightforward."

"The most useful features in Fortinet FortiGate are the security features, where we can analyze what kind of traffic is inside our network, and we also utilize ZTNA for limiting and managing our network access."

"Fortinet FortiGate has positively impacted our organization by providing stronger network security as it's a next-generation firewall, blocking known threats and vulnerabilities in real-time, detecting and controlling thousands of applications, scanning encrypted traffic, and improving VPN and remote access through automated failover and intelligent routing protocols like BGP over IPsec VPN."

"The product is user-friendly and not complex."

"The license management is very valuable. You can get a new license each year, or you can enroll every two to four years. You can get the logs, and you will get the information on the risk in your network and the entire organization. With this information, you can take action on your actives, computers, or devices. You can bring your own device as an SSE."

More Fortinet FortiGate pros

"The intuitiveness and ease of use are the most valuable features of pfSense."

"I like the VPN features. We use WireGuard, which is part of the pfSense package. That was easy to set up, so I could connect to other customer sites seamlessly."

"The customer support is very good. Setting up the VPN is pretty straightforward and easy."

"The concurrent users are perfect for us."

"If you have full logging turned on you can get a pretty good idea of what kind of traffic is going in from where to where."

"I especially like the VPN part. It works like a charm."

"It is very easy to use. The interface is quite understandable. There is a good community, and I can take over at any time I want. If there is anything wrong with it, I could just reinstall the whole thing and start all over again, and I'll be up again in less than a few minutes"

"The intrusion detection feature is the most valuable. It is an open-source firewall, so there is a lot of material on it. I also find the open VPN capability very nice. It is pretty customizable. The clustering and the high availability are the two biggest things to be able to get out of a firewall."

More Netgate pfSense pros

"I like that it works fine. Stormshield is a very good solution."

"This solution is quick and easy to configure."

"The most valuable features are the IPS, the firewall function, and the price."

"Easily manageable in a variety of environments."

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed."

"It's an easy, straightforward management platform to use."

"I like how you can configure the rules. There is the task for the rules and a task for the network configuration. It also provides SMD filtering, and it can be integrated with the active directory for the users, their mission, and the VPN configuration. We are here in Sudan, and Stormshield didn't work in Sudan for more than a decade. Stormshield is a very strong firewall and very easy to configure and maintain. I am just working with the firewall solution, and we don't have any other solutions like endpoint solutions or something like that."

"The scalability of the solution is good."

More Stormshield Network Security pros

Cons

"In my case, the 101F is not scalable. I faced problems with scalability related to memory. When we hit 100% memory usage, it stops the internet connection, so we need to control the traffic. We cannot increase the memory."

"The web filtering categories could improve in Fortinet FortiGate IPS. There are too many websites under the category of Unknown and the other categories are not featuring all the necessary sites."

"The cloud features and integration could be improved."

"Fortinet already improved FortiGate, but in the current market, many brands of security devices have improved together. Fortinet still needs to catch up with market standards. Fortinet is lacking in features in comparison to competitors."

"The stability of Fortinet FortiGate could improve."

"I think they need to improve more in order to be a competitor with the leaders of the field."

"Currently, without the additional reporting module, we only have access to basic reporting."

"It would be a benefit if Fortinet would release a one-stop solution that is better integrated with other products and an automated emergency response system."

More Fortinet FortiGate cons

"As an open-source solution, there are so many loopholes happening within the product. By design, no one is taking ownership of it, and that is worrisome to me."

"We would like to see ready-made profiles to cover most users' needs."

"ClamAV AntiVirus can cause some crashes. That service should be improved."

"pfSense has some limitations in detecting site sessions. We want to control internet usage based on sites and their content, and pfSense doesn't perform this function."

"Configuring the interface can be a bit hard."

"The solution’s interface must be improved."

"It requires more attention to provide a better alternative for open source to small government or educational institutions with reduced budgets in terms of technology."

"The router monitoring needs improvement when compared with Sonicwall."

More Netgate pfSense cons

"This is not a next-generation firewall."

"It could be better if it were more user-friendly. It's too complicated for us to use it. The price could be better as well."

"A more user-friendly interface would be helpful."

"The biggest issue was their support department was not able to help us, then everything stops. This is a no-go area for me."

"Stormshield Network Security is quite expensive."

"The SD card could be more secure."

"The product must improve its pricing."

"The filtering configuration could be better. We have some difficulties with the filtering configuration and the filter extension. It's not that easy. It's not that straightforward. In the next release, I would like to see a reporting system. Stormshield doesn't have any tutorials on how to do the configuration and things like that. They just have documentation on the website. If you want to configure, for example, Cisco or Fortinet, you can find tutorials on YouTube. They show you how to configure the features, and so on. In Stormshield, there is nothing on social media or the internet on how to configure different things. The lack of documentation or the lack of material makes it difficult for others to adopt this solution."

More Stormshield Network Security cons

Pricing and Cost Advice

"This is not a cheap solution but it isn't expensive, either. It's a good solution for the right price."

"Pricing for Fortinet FortiGate SWG is more suitable for enterprise or large-sized organizations because they are the ones who can afford it versus small and medium-sized organizations."

"By default, they give SD-WAN along with the firewall. They don't have separate licensing for the SD-WAN functionality. However, they have security licenses that are sold separately on a subscription basis. Customers can consume these security features to protect their users from internet traffic."

"There is a subscription-based model to use Fortinet FortiGate. We pay annually for the solution along with the support. If you want to have all the updates, and security patches you will need to renew your support."

"It's very competitive."

"The value is the capability of having multiple services with one unique license, not having the limitation per user licensing schema, like other vendors."

"The pricing is justified. It's a little pricey, but what you pay for is what you get."

"The pricing is based on a licensing model for each IPS in your environment."

More Fortinet FortiGate pricing and cost advice

"It's highly cost-effective for both the average consumer and business users."

"PfSense's pricing is reasonable. However, support is relatively expensive for smaller customers, and you need to pay per device to get it. So if Customer A is having an issue, I have to get support, and then I have to get support for Customer B, and so on. It would be nice as a managed services provider to get support for my company rather than individual devices."

"pfSense pricing is reasonable."

"I buy the appliance and accept whatever comes with it, but I am not bought into paid support. When it comes to the pricing of the appliances, they are pretty competitive. The price is pretty competitive."

"Its price is pretty fair."

"I would say pfSense is competitively priced. It isn't the cheapest hardware, but I've never had a problem with it. It is far cheaper than big brand names like FortiGate and Cisco while delivering a feature set that's nearly the same across the entire list. The only places it falls short are esoteric features that almost nobody needs."

"Netgate pfSense Community Edition is great and free. For Netgate pfSense Plus, we have to buy Netgate's boxes, and the pricing is great."

"We are using its Community Edition, which is free. My company is a government school, and we don't have much budget."

More Netgate pfSense pricing and cost advice

"The SN200 series costs between $500 USD and $600 USD per year, whereas the SN700 series costs approximately $1,000 annually."

"The pricing could be better."

"For mid-sized companies, they sell their appliances for good prices."

"The price of this solution and the price of support are ok."

"I think the price is good."

"We bought a three-year license, and we renew it whenever it expires. The price could be better. It's always very expensive."

"We chose Stormshield for its price, as the Azure firewall was too expensive."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

881,707 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

12%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Comms Service Provider

13%

Computer Software Company

12%

Manufacturing Company

Educational Organization

Comms Service Provider

17%

Computer Software Company

16%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	357
Midsize Enterprise	133
Large Enterprise	189

By reviewers
Company Size	Count
Small Business	168
Midsize Enterprise	33
Large Enterprise	29

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	5
Large Enterprise	2

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Help me find the best open source router

You don't really specify what type of router you are looking for but if you are talking about a gateway router I reco...

See all answers

How do I choose between Fortinet FortiGate and pfSense?

Fortinet’s Fortigate is a firewall solution we use and are very much satisfied with its performance. We find Fortigat...

See all answers

What is the difference between PfSense and OPNsense?

Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and cl...

See all answers

What advice do you have for others considering Stormshield Network Security?

The tool is like a firewall and works well. I don't have any issue with it. I rate it an eight out of ten.

See all answers

Comparisons

Sophos Firewall vs Fortinet FortiGate

Compared 20% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 14% of the time

Palo Alto Networks NG Firewalls vs Fortinet FortiGate

Compared 4% of the time

OPNsense vs Fortinet FortiGate

Compared 3% of the time

Check Point Quantum Force (NGFW) vs Fortinet FortiGate

Compared 3% of the time

More Fortinet FortiGate Competitors

OPNsense vs Netgate pfSense

Compared 55% of the time

Sophos Firewall vs Netgate pfSense

Compared 6% of the time

Cisco Secure Firewall vs Netgate pfSense

Compared 2% of the time

KerioControl vs Netgate pfSense

Compared 2% of the time

Juniper SRX Series Firewall vs Netgate pfSense

Compared 1% of the time

More Netgate pfSense Competitors

WatchGuard Firebox vs Stormshield Network Security

Compared 8% of the time

OPNsense vs Stormshield Network Security

Compared 7% of the time

Sophos Firewall vs Stormshield Network Security

Compared 7% of the time

Palo Alto Networks NG Firewalls vs Stormshield Network Security

Compared 5% of the time

Sophos UTM vs Stormshield Network Security

Compared 5% of the time

More Stormshield Network Security Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

February 2026

Download Fortinet FortiGate product report

Buyer's Guide

Netgate pfSense

January 2026

Download Netgate pfSense product report

Buyer's Guide

Stormshield Network Security

January 2026

Download Stormshield Network Security product report

Also Known As

Fortinet FortiGate Next-Generation Firewall

No data available

NETASQ Firewalls

Overview

Fortinet FortiGate is a versatile network security tool offering features like VPN, firewall, web filtering, intrusion prevention, and scalability. It is known for its performance and integration with other Fortinet products, making it a preferred choice for robust cybersecurity.

Fortinet FortiGate stands out as a comprehensive cybersecurity solution with strong performance and ease of configuration. It delivers unified threat management, integrating features such as dynamic routing, SD-WAN support, and centralized management. Despite its strengths, improvements in the web interface's stability, pricing structures, and reporting capabilities are needed. Users seek better integration with third-party tools and automation advancements to enhance the experience further. These enhancements, alongside improvements in bandwidth management and the reduction of licensing costs, are points of interest for users looking to capitalize on FortiGate's extensive capabilities.

What are Fortinet FortiGate's key features?

VPN: Ensures secure remote connections.
Firewall: Protects against unauthorized access.
Web Filtering: Blocks malicious sites and content.
Application Control: Manages and controls applications.
Intrusion Prevention: Detects and prevents vulnerabilities.
SSL Inspection: Enhances security by inspecting encrypted traffic.

What benefits should be considered when evaluating Fortinet FortiGate?

Affordability: Offers cost-effective security solutions.
Reliability: Known for consistent and stable performance.
Integration: Seamlessly integrates with other Fortinet products.
Comprehensive Protection: Provides broad threat protection capabilities.

Fortinet FortiGate is widely implemented across industries as a primary firewall system for securing internet gateways and safeguarding data centers. It supports businesses in achieving SD-WAN integration and enhances cybersecurity by providing essential features like antivirus, web filtering, and application control. Enterprises utilize FortiGate for securing remote connections and ensuring compliance with security standards, making it adaptable for different network sizes and industries.

Fortinet

Netgate pfSense is an open-source firewall and router software known for scalability, cost-effectiveness, and community support. It includes customizable packages for varied network management needs, offering solid performance and straightforward management for diverse setups.

Netgate pfSense provides an impressive range of functionalities including firewall capabilities, VPN options, and extensive customization through packages. Its low resource usage and high availability make it viable for businesses of all sizes, especially when dealing with tailored network demands. Despite its strengths, users suggest improvements in ease of use, mobile compatibility, and support for plug-ins. Enhanced centralized management, better documentation, and additional security features are frequent requests.

What are the key features of Netgate pfSense?

Scalability: Suits any network size from small home setups to large enterprises.
Open-source: Offers transparency and flexibility, allowing for community-driven development.
Firewall Capabilities: Provides robust protection against unauthorized access.
VPN Options: Supports secure remote connectivity with various VPN protocols.
Customizable Packages: Allows users to personalize functionalities to fit network needs.
High Availability: Ensures continuous network operations with redundancy features.
Load Balancing: Distributes traffic efficiently across multiple paths or connections.
Traffic Shaping: Manages bandwidth allocation to optimize network performance.

What benefits should users consider in reviews?

Cost-effectiveness: Significant savings due to low operational costs and open-source nature.
Performance: Reliable service delivery with minimal hardware demands.
User-friendly Interface: Intuitive design that simplifies complex network management.
Community Support: Access to extensive community resources for troubleshooting and advice.
Comprehensive Documentation: Detailed guides and tutorials to facilitate installation and configuration.

In education and healthcare, Netgate pfSense is employed for secure connectivity and efficient traffic management, accommodating distinct demands of remote access and content filtering. Organizations in these sectors often utilize features such as load balancing and VPNs to maintain secure and reliable network operations while integrating with services like Active Directory for streamlined identity management. Small to medium-sized enterprises benefit from its affordability and robust functionality, making it a go-to choice for managed service environments requiring effective network security and control.

Netgate

NETASQ's integrated intrusion prevention engine uses protocol conformity analysis, application filtering and antivirus analysis to inspect authorized traffic flows and strengthen application security. NETASQ enables you to establish and configure user-based security policies, giving you greater control over which network resources each user is authorized to access.

Stormshield

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Nerds On Site Inc., RKC Development Inc., Expertech, Fisher's Technology, Ncisive, Consulting, CPURX, Vaughn's Computer House Calls, Imeretech LLC, Digital Crisis, Carolina Digital Phone, Technigogo Technology Services, The Simple Solution, SwiftecITInc, Rocky Mountain Tech Team, Free Range Geeks, Alaska Computer Geeks, Lark Information Technology, Renaissance Systems Inc., Cutting Edge Computers, Caretech LLC, GoVanguard, Network Touch Ltd, P.C. Solutions.Net, Vision Voice and Data Systems LLC, Montgomery Technologies, Techforce, Concero Networks, ASONInc, CPS Electronics and Consulting, Darkwire.net LLC, IT Specialists, MBS-Net Inc., VOICE1 LLC, Advantage Networking Inc., Powerhouse Systems, Doxa Multimedia Inc., Pro Computer Service, Virtual IT Services, A&J Computers Inc., Envision IT LLC, CommunicaONE Inc., Bone Computer Inc., Amax Engineering Corporation, QPG Ltd. Co., IT 101 Inc., Perfect Cloud Solutions, Applied Technology Group Inc., The Digital Sun Group LLC, Firespring

ACESUR group, Ministry of Education Oman, Anios Laboratories, Zain, DLM Location

Buyer's Guide

Netgate pfSense vs. Stormshield Network Security

February 2026

Free Report: Netgate pfSense vs. Stormshield Network Security

Find out what your peers are saying about Netgate pfSense vs. Stormshield Network Security and other solutions. Updated: February 2026.

DOWNLOAD NOW

881,707 professionals have used our research since 2012.

See our Netgate pfSense vs. Stormshield Network Security report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.