We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Its Snort 3 IPS has better flexibility as far as being able to write rules. This gives me better granularity."
"Provides good integrations and reporting."
"You do not have to do everything through a command line which makes it a lot easier to apply rules."
"The implementation is pretty straightforward."
"We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government."
"The customer service/technical support is very good with this solution."
"A good intrusion prevention system and filtering."
"Firepower has been used for quite a few enterprise clients. Most of our clients are Fortune 500 and Firepower is used to improve their end to end firewall functionality."
"GajShield has improved our mobile device-based connectivity."
"The initial setup is pretty simple."
"I like the functionality and the user interface."
"Overall the solution works well."
"The most valuable feature of this solution is that the license offers everything."
"Web filtering is easy enough to deploy, manage, or make exceptions to."
"The most valuable feature is the central dashboard"
"The VPN features and its capabilities are great."
"Sophos is easy to use."
"The intelligence has room for improvement. There are some hackers that we haven't seen before and its ability to detect those types of attacks needs to be improved."
"Deploying configurations takes longer than it should."
"FirePOWER does a good job when it comes to providing us with visibility into threats, but I would like to see a more proactive stance to it."
"The solution could offer better control that would allow the ability to restrictions certain features from a website."
"The initial setup could be simplified, as it can be complex for new users."
"We're getting support but there's a big delay until we get a response from their technical team. They're in the USA and we're in Africa, so that's the difficulty. When they're in the office, they respond."
"The configuration in Firepower Management Center is very slow. Deployment takes two to three minutes. You spend a lot of time on modifications. Whereas, in FortiGate, you press a button, and it takes one second."
"There is limited data storage on the appliance itself. So, you need to ship it out elsewhere in order for you to store it. The only point of consideration is around that area, basically limited storage on the machine and appliance. Consider logging it elsewhere or pushing it out to a SIEM to get better controls and manipulation over the data to generate additional metrics and visibility."
"The firewall configuration and administration screens could use some improvement."
"It is a very basic and entry-level firewall. It doesn't give very granular control over the traffic. It should have more granular control over the traffic. This feature should be there similar to Palo Alto and Cisco. It should have such advanced features."
"The first area that needs to be improved is customer support."
"The interface could be simplified and diagnostic system graphs improved."
"They can lower its price. It is very expensive. We are looking for a less expensive solution depending on our budget. They can also improve it in terms of firewall protection."
"I'd like to see better reporting. While the logs are great, the reports are not."
"The user interface could be improved and more bandwidth management would be helpful."
"It would be helpful if they had a set of standard templates because it would assist in the beginning, when you are just getting started."
"Our clients use Karios, and while it integrates well with it, the integration could be improved."
"It definitely competes with the other vendors in the market."
"I know that licensing for some of the advanced solutions, like Intrusion Prevention and Secure Malware Analytics, are nominal costs."
"This product is expensive."
"There are additional implementation and validation costs."
"This solution is expensive and other solutions, such as FortiGate, are cheaper."
"Cisco is not for a small mom-and-pop shop because of the cost, but if you're in a regulated industry where a breach could cost you a million dollars, it's a bargain."
"When we purchased the firewall, we had to take the security license for IPS, malware protection, and VPN. If we are using high availability, we have to take a license for that. We also have to pay for hardware support and technical support. Its licensing is on a yearly basis."
"I like the Smart Licensing, because it is more dynamic and easier to keep track of where you are at. If we have a high availability firewall pair and they are deployed in active/standby rather than active/active, I would expect that we would only pay for one set of licenses because you are using only one firewall at any one time. The other is there just for resiliency. The licensing, from a Firepower perspective, still requires you to have two licenses, even if the firewalls are in active/standby, which means that you pay for the two licenses, even though you might only be using one firewall any one time. This is probably not the best way to do it and doesn't represent the best value for money. This could be looked at to see if it could be done in a fairer way."
"It was about 15% cheaper compared to Sophos."
"We prepaid in advance to get the max discount."
"The pricing is economical."
"The cost could be lower especially if you want to add other features."
"It is not that expensive compared to the other solutions. It is about the same price range as Fortigate, which we used previously. Licensing is on a yearly basis."
"We generally buy it for a three-year license."
"The price is reasonable."
"When compared to other products, Sophos licensing is very affordable."
"The price is reasonable"
Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.
Traditional firewalls commonly serve as the boundary between the Internet and an organization's network. They offer protection based on controlling specific protocols and ports, and restricting traffic to and from specific IP addresses. These days however, most attacks are web-based, easily passing through http (port 80) and https (port 443). Most firewalls are unable to identify malicious applications or traffic passing through these common ports. Next Generation firewall must evolve to effectively defend against these threats.
Customers get, complete and Proactive security with GajShield Next Generation Appliances. GajShield has inbuild default security policy to deny all out bound traffic from local LAN to the internet. It reacts quickly to attacks with intelligent packet filtering that sets policies and hardens customer network defenses dynamically. GajShield has inbuild default security policy to deny all out bound traffic from local LAN to the internet. In today's organization, application, employees, vendors, clients, and security threats fight for the same network resources. It has become difficult for small to medium enterprises to manage their infrastructure as they are unable to distinguish between good traffic v/s bad traffic. Threats or various productive applications have become smarter as they camouflage data transfer using standard internet ports. Current day security products have failed to distinguish and manage such malicious traffic.
Sophos XG Firewall is next gen firewall that is optimized for today’s business, delivering all the protection and insights you need in a single, powerful appliance that’s easy to manage.
GajShield Next Generation Firewall is ranked 28th in Firewalls with 1 review while Sophos XG is ranked 6th in Firewalls with 117 reviews. GajShield Next Generation Firewall is rated 8.0, while Sophos XG is rated 8.2. The top reviewer of GajShield Next Generation Firewall writes "Identifies and protects against email borne threats". On the other hand, the top reviewer of Sophos XG writes "Light and stable with excellent real-time control ". GajShield Next Generation Firewall is most compared with Fortinet FortiGate, Sophos Cyberoam UTM, SonicWall TZ, OPNsense and Cisco ASA Firewall, whereas Sophos XG is most compared with Fortinet FortiGate, pfSense, Sophos UTM, Meraki MX and Sophos Cyberoam UTM.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.