We just raised a $30M Series A: Read our story

Compare Fortinet FortiGate vs. GajShield Next Generation Firewall

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about Fortinet, Check Point, Netgate and others in Firewalls. Updated: November 2021.
552,695 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"One of the most valuable features of Firepower 7.0 is the "live log" type feature called Unified Event Viewer. That view has been really good in helping me get to data faster, decreasing the amount of time it takes to find information, and allowing me to fix problems faster. I've found that to be incredibly valuable because it's a lot easier to get to some points of data now.""Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch.""I have integrated it for incidence response. If there is a security event, the Cisco firewall will automatically block the traffic, which is valuable.""The integration of network and workload micro-segmentation helps a lot to provide unified segmentation policies across east-west and north-south traffic. One concrete example is with Cisco ACI for the data center. Not only are we doing what is called a service graph on the ACI to make sure that we can filter traffic east-west between two endpoints in the same network, but when we go north-south or east-west, we can then leverage what we have on the network with SGTs on Cisco ISE. Once you build your matrix, it is very easy to filter in and out on east-west or north-south traffic.""If you compare the ASA and the FirePOWER, the best feature with FirePOWER is easy to use GUI. It has most of the same functionality in the Next-Generation FirePOWER, such as IPS, IPS policies, security intelligence, and integration and identification of all the devices or hardware you have in your network. Additionally, this solution is user-friendly.""The most valuable features of this solution are advanced malware protection, IPS, and IDS.""Being able to determine our active users vs inactive users has led us to increased productivity through visibility. Also, if an issue was happening with our throughput, then we wouldn't know without research. Now, notifications are more proactively happening.""The feature set is fine and is rarely a problem."

More Cisco Firepower NGFW Firewall Pros »

"What's most important is the ease of use.""The solution is very user friendly. The user interface in particular is quite nice.""The next-gen features, the unified threat management capabilities are something that just about everybody is interested in at this point.""The initial installation is very straightforward.""The stability of the solution is excellent, as it is with other Fortinet products.""The most valuable feature is the ease of configuration.""Virtual Domains (VDOMs) are a feature that we found valuable.""The solution is very, very easy to use."

More Fortinet FortiGate Pros »

"GajShield has improved our mobile device-based connectivity."

More GajShield Next Generation Firewall Pros »

Cons
"The product line does not address the SMB market as it is supposed to do. Cisco already has an on-premises sandbox solution.""The initial setup can be a bit complex for those unfamiliar with the solution.""We're getting support but there's a big delay until we get a response from their technical team. They're in the USA and we're in Africa, so that's the difficulty. When they're in the office, they respond.""Deploying configurations takes longer than it should.""When you make any changes, irrespective of whether they are big or small, Firepower takes too much time. It is very time-consuming. Even for small changes, you have to wait for 60 seconds or maybe more, which is not good. Similarly, when you have many IPS rules and policies, it slows down, and there is an impact on its performance.""One issue with Firepower Management Center is deployment time. It takes seven to 10 minutes and that's a long time for deployment. In that amount of time, management or someone else can ask me to change something or to provide permissions, but during that time, doing so is not possible. It's a drawback with Cisco. Other vendors, like Palo Alto or Fortinet do not have this deployment time issue.""It would be great if some of the load times were faster.""One feature I would like to see, that Firepower doesn't have, is email security. Perhaps in the future, Cisco will integrate Cisco Umbrella with Firepower. I don't see why we should have to pay for two separate products when both could be integrated in one box."

More Cisco Firepower NGFW Firewall Cons »

"The initial setup is complex.""It would be a benefit if Fortinet would release a one-stop solution that is better integrated with other products and an automated emergency response system.""A lack of integration between our data centers.""The performance and speed are aspects of the solution that could always be improved upon.""It should be more stable. There should be full integration within Fortinet products themselves as well as with other third-party products. Especially when you're not dealing with SIEM and the correlation of the security box, we want Fortinet to be able to share that information with as many other products as it can.""The command line is complicated, and the interface could be better.""To some degree, it's almost a question as to why some of this stuff isn't simpler. For example, for an AP deployment, while it's integrated, the number of steps that you have to go through in order to get the AP up, seems like a lot.""We have an issue with hotel guest vouchers."

More Fortinet FortiGate Cons »

"The firewall configuration and administration screens could use some improvement."

More GajShield Next Generation Firewall Cons »

Pricing and Cost Advice
"I know that licensing for some of the advanced solutions, like Intrusion Prevention and Secure Malware Analytics, are nominal costs.""Pricing is the same as other competitors. It is comparable. The licensing has gotten better. It has been easier with Smart Licensing.""When we are fighting against other competitors for customers, whether it is a small or big business, we feel very comfortable with the price that Firepower has today.""When we purchased the firewall, we had to take the security license for IPS, malware protection, and VPN. If we are using high availability, we have to take a license for that. We also have to pay for hardware support and technical support. Its licensing is on a yearly basis.""There are additional implementation and validation costs.""I like the Smart Licensing, because it is more dynamic and easier to keep track of where you are at. If we have a high availability firewall pair and they are deployed in active/standby rather than active/active, I would expect that we would only pay for one set of licenses because you are using only one firewall at any one time. The other is there just for resiliency. The licensing, from a Firepower perspective, still requires you to have two licenses, even if the firewalls are in active/standby, which means that you pay for the two licenses, even though you might only be using one firewall any one time. This is probably not the best way to do it and doesn't represent the best value for money. This could be looked at to see if it could be done in a fairer way.""The solution was chosen because of its price compared to other similar solutions.""I am happy with the product in general, including the pricing."

More Cisco Firepower NGFW Firewall Pricing and Cost Advice »

"It is too expensive for us. My organization is very small, and we have a total of ten users. We have three internal users and seven external users. The FortiGate 100D series is too expensive for renewing the licenses.""The price of the license and warranty can be better because it is very expensive.""It's an expensive solution.""As far as I'm aware, in our case, it's just a yearly pricing arrangement with no additional licensing costs.""The price of FortiGate is average and I would say that based on the top five products available on the market, it is in the affordable range.""It is not a very costly product if you compare it with other products. The return on investment is also good. If you compare the return of investment and money that you are spending on this product with Palo Alto, Cisco, Check Point, and other solutions, the investment is very less. We are happy with this solution. The optional licenses are there, and you can choose which one you want and which one to avoid.""The price could be lower.""If you purchase a one-year subscription with the hardware and then you want to renew for the second year, it is very costly."

More Fortinet FortiGate Pricing and Cost Advice »

"It was about 15% cheaper compared to Sophos."

More GajShield Next Generation Firewall Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
552,695 professionals have used our research since 2012.
Answers from the Community
Ganesan V
author avatarLuis Apodaca
User

GajShield ?? It's the first time I'd heard about it but it doesn't matter.


In these cases you should do a comparison table (Excel) with all the functionality they have an try to see if both of them have the same or look for the functionality that is the most important for you, marking an x or a check. 


Also, it could be wise to put a row with the price

Good luck!

Questions from the Community
Top Answer:  When you compare these firewalls you can identify them with different features, advantages, practices and… more »
Top Answer:  The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
Top Answer: It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
Top Answer: In my opinion and as a result of years of experience: - Both are great firewalls with excellent performance and a… more »
Top Answer: In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it… more »
Top Answer: Hi, This really gets to two things: - how fast your internet access is and how much are you planning to grow in the… more »
Top Answer: GajShield has improved our mobile device-based connectivity.
Top Answer: The firewall configuration and administration screens could use some improvement. I think the UI screen has to be a lot… more »
Top Answer: For a recent ERP implementation, we wanted secure connectivity for users who are going to connect via mobile devices to… more »
Comparisons
Also Known As
Cisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWv
FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
GajShield NGFW
Learn More
Overview

Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

The FortiGate family of NG firewalls provides proven protection with unmatched performance across the network, from internal segments, to data centers, to cloud environments. FortiGates are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.

Traditional firewalls commonly serve as the boundary between the Internet and an organization's network. They offer protection based on controlling specific protocols and ports, and restricting traffic to and from specific IP addresses. These days however, most attacks are web-based, easily passing through http (port 80) and https (port 443). Most firewalls are unable to identify malicious applications or traffic passing through these common ports. Next Generation firewall must evolve to effectively defend against these threats.

Customers get, complete and Proactive security with GajShield Next Generation Appliances. GajShield has inbuild default security policy to deny all out bound traffic from local LAN to the internet. It reacts quickly to attacks with intelligent packet filtering that sets policies and hardens customer network defenses dynamically. GajShield has inbuild default security policy to deny all out bound traffic from local LAN to the internet. In today's organization, application, employees, vendors, clients, and security threats fight for the same network resources. It has become difficult for small to medium enterprises to manage their infrastructure as they are unable to distinguish between good traffic v/s bad traffic. Threats or various productive applications have become smarter as they camouflage data transfer using standard internet ports. Current day security products have failed to distinguish and manage such malicious traffic.

Offer
Learn more about Cisco Firepower NGFW Firewall
Learn more about Fortinet FortiGate
Learn more about GajShield Next Generation Firewall
Sample Customers
Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield
Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here
Zodiac Clothing
Top Industries
REVIEWERS
Comms Service Provider22%
Financial Services Firm16%
Manufacturing Company8%
Non Profit8%
VISITORS READING REVIEWS
Comms Service Provider32%
Computer Software Company21%
Government7%
Manufacturing Company4%
REVIEWERS
Comms Service Provider14%
Computer Software Company10%
Financial Services Firm8%
Manufacturing Company6%
VISITORS READING REVIEWS
Comms Service Provider36%
Computer Software Company19%
Government5%
Educational Organization4%
VISITORS READING REVIEWS
Comms Service Provider34%
Energy/Utilities Company23%
Computer Software Company15%
Media Company9%
Company Size
REVIEWERS
Small Business43%
Midsize Enterprise28%
Large Enterprise29%
VISITORS READING REVIEWS
Small Business21%
Midsize Enterprise13%
Large Enterprise66%
REVIEWERS
Small Business48%
Midsize Enterprise25%
Large Enterprise28%
VISITORS READING REVIEWS
Small Business35%
Midsize Enterprise25%
Large Enterprise40%
No Data Available
Find out what your peers are saying about Fortinet, Check Point, Netgate and others in Firewalls. Updated: November 2021.
552,695 professionals have used our research since 2012.

Fortinet FortiGate is ranked 1st in Firewalls with 96 reviews while GajShield Next Generation Firewall is ranked 28th in Firewalls with 1 review. Fortinet FortiGate is rated 8.4, while GajShield Next Generation Firewall is rated 8.0. The top reviewer of Fortinet FortiGate writes "Stable, easy to set up, and offers good ROI". On the other hand, the top reviewer of GajShield Next Generation Firewall writes "Identifies and protects against email borne threats". Fortinet FortiGate is most compared with Cisco ASA Firewall, pfSense, Meraki MX, Check Point NGFW and SonicWall TZ, whereas GajShield Next Generation Firewall is most compared with Sophos XG, Sophos Cyberoam UTM, SonicWall TZ, OPNsense and Cisco ASA Firewall.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.