We just raised a $30M Series A: Read our story

Compare Juniper SRX vs. Juniper vSRX

Cancel
You must select at least 2 products to compare!
Juniper SRX Logo
19,897 views|16,324 comparisons
Juniper vSRX Logo
1,436 views|791 comparisons
Featured Review
Find out what your peers are saying about Juniper SRX vs. Juniper vSRX and other solutions. Updated: November 2021.
555,358 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"I like the firewall features, Snort, and the Intrusion Prevention System (IPS).""Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch.""It's got the capabilities of amassing a lot of throughput with remote access and VPNs.""The Firepower+ISE+AMP for endpoint integration is something that really stands it out with other vendor solutions. They have something called pxGrid and i think it is already endorsed by IETF. This allows all devices on the network to communicate.""The feature set is fine and is rarely a problem.""Another benefit has been user integration. We try to integrate our policies so that we can create policies based on active users. We can create policies based on who is accessing a resource instead of just IP addresses and ports.""The most valuable features of this solution are advanced malware protection, IPS, and IDS.""One of the most valuable features of Firepower 7.0 is the "live log" type feature called Unified Event Viewer. That view has been really good in helping me get to data faster, decreasing the amount of time it takes to find information, and allowing me to fix problems faster. I've found that to be incredibly valuable because it's a lot easier to get to some points of data now."

More Cisco Firepower NGFW Firewall Pros »

"The Juniper SRX series is easy to use.""The firewall features and the routing capability are the most valuable.""The scalability is fine.""Juniper supports their products very well.""The CLI works perfectly.""The GUI is simple to use.""It's fine, and it's good. It's very stable.""Great as an inter-segmentation firewall or border or arch-firewall."

More Juniper SRX Pros »

"It's a very powerful solution and the firewalls offer high performance""I'm told the solution is the fastest, and, so far, I do find that to be the case.""The initial setup is pretty simple.""It is deployed on the customer site, and we manage the firewalls on this side.""The dashboard, customization, API, and pricing are good.""Juniper is more flexible with the commit check and the commit confirmed command. The design of the forwarding and contract plan in the operating system is very important for the performance when we have very big traffic."

More Juniper vSRX Pros »

Cons
"An area of improvement for this solution is the console visualization.""The intelligence has room for improvement. There are some hackers that we haven't seen before and its ability to detect those types of attacks needs to be improved.""FirePOWER does a good job when it comes to providing us with visibility into threats, but I would like to see a more proactive stance to it.""The configuration in Firepower Management Center is very slow. Deployment takes two to three minutes. You spend a lot of time on modifications. Whereas, in FortiGate, you press a button, and it takes one second.""FlexConfig is there as a bridge for features that are not yet natively integrated into Firepower. It is a way of allowing you to be able to configure things that wouldn't otherwise be possible until the development team can add them into Firepower's native capability. There is still some work that needs to be done around FlexConfig. There are still quite a few complex things, like policy-based routing, that have to be done in FlexConfig, and it doesn't always work perfectly. Sometimes, there are some glitches. It is recommended that you configure FlexConfig policies with Cisco TAC. It would be good to see Cisco accelerate some of those configurations that you can only do in FlexConfig into the platform, so that they are there natively.""Web filtering needs improvement because sometimes the URL is miscategorized.""There is limited data storage on the appliance itself. So, you need to ship it out elsewhere in order for you to store it. The only point of consideration is around that area, basically limited storage on the machine and appliance. Consider logging it elsewhere or pushing it out to a SIEM to get better controls and manipulation over the data to generate additional metrics and visibility.""The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore."

More Cisco Firepower NGFW Firewall Cons »

"Juniper SRX is stable, but it could improve. FortiGate has better stability than Juniper SRX.""The interface could be more user-friendly.""Their models for service providers could improve.""There are a lot of features that customers do not know about and I think that better documentation would help when it comes to learning how to use the product.""The user interface and the GUI need improvement.""While the GUI is pretty good on the Juniper side, there can still be tweaks made to it that will make it even better.""In the next release, I would like to have a better web interface. It needs to be more user-friendly. Right now, you can only access many features through the console.""I would like to have a better web UI for administration. Juniper could simplify the web UI and make it more compatible with mobile devices."

More Juniper SRX Cons »

"We experienced some technical issues during implementation""Some people complain that the solution tends to have a steep learning curve. It could be because most people have basic familiarity with Cisco or other similar products and maybe have never worked closely with Juniper products.""VPN access is an area that needs improvement.""We worked with Cisco's support and Juniper's support and there are some differences, to be honest, Cisco is more available and is more competent at addressing our cases.""I would like to see an activity sensor for malicious content or sensor for viruses and malware.""It could use more tutorials."

More Juniper vSRX Cons »

Pricing and Cost Advice
"The price is comparable.""The price for Firepower is more expensive than FortiGate. The licensing is very complex. We usually ask for help from Solutel because of its complexity. I have a Cisco account where I can download the VPN client, then connect. Instead, I create an issue with Solutel, then Solutel solves the case.""This product is expensive.""This product requires licenses for advanced features including Snort, IPS, and malware detection.""Cisco, as we all know, is expensive, but for the money you are paying, you know that you are also getting top-notch documentation as well as support if needed.""When we are fighting against other competitors for customers, whether it is a small or big business, we feel very comfortable with the price that Firepower has today.""I like the Smart Licensing, because it is more dynamic and easier to keep track of where you are at. If we have a high availability firewall pair and they are deployed in active/standby rather than active/active, I would expect that we would only pay for one set of licenses because you are using only one firewall at any one time. The other is there just for resiliency. The licensing, from a Firepower perspective, still requires you to have two licenses, even if the firewalls are in active/standby, which means that you pay for the two licenses, even though you might only be using one firewall any one time. This is probably not the best way to do it and doesn't represent the best value for money. This could be looked at to see if it could be done in a fairer way.""The solution was chosen because of its price compared to other similar solutions."

More Cisco Firepower NGFW Firewall Pricing and Cost Advice »

"The product itself is costly and the price of migration is very high.""The price is reasonable.""There is a licensing fee.""It is best suited to an enterprise-level, as the mid-range companies may find that the cost is not affordable.""When you consider performance, price, and features, maybe Juniper is not so cost-effective compared to other solutions like MikroTik.""Its price is reasonable. In India, most of the products have a similar price. There is only a 5% to 10% variation in the price of different brands.""Compared to other vendors, the pricing of this solution is good.""In general, their price definitely couldn't be cheaper."

More Juniper SRX Pricing and Cost Advice »

"The pricing is reasonable.""As a customer, the pricing is good for us."

More Juniper vSRX Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
555,358 professionals have used our research since 2012.
Questions from the Community
Top Answer:  When you compare these firewalls you can identify them with different features, advantages, practices and… more »
Top Answer:  The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
Top Answer: It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
Top Answer: I'm not sure we are satisfied fully with the pricetag of Juniper SRX, but we understand why the dealer prices it this… more »
Top Answer: Its logging is very good, but we would like to have an easier way of creating more reports. We would like to be able to… more »
Top Answer: It is deployed on the customer site, and we manage the firewalls on this side.
Top Answer: I think the virtual solution is a good price. But of course, it depends on other features, solutions, and licenses.
Top Answer: I would like to see an activity sensor for malicious content or sensor for viruses and malware.
Comparisons
Also Known As
Cisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWv
SRX
Learn More
Overview

Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

High-performance security with advanced, integrated threat intelligence, delivered on the industry's most scalable and resilient platform. SRX Series gateways set new benchmarks with 100GbE interfaces and feature Express Path technology, which enables up to 1 Tbps performance for the data center.
The vSRX offers the same features as physical SRX Series firewalls but in a virtualized form factor for delivering security services that scale to match network demand. It offers the same features as the SRX appliance, including core firewall, robust networking, full next-gen capabilities, and automated life-cycle management. It handles speed up to 100 Gbps. It supports Juniper Contrail, OpenContrail, and third-party software-defined networking (SDN) solutions and integrates with cloud orchestration tools. Deployed in your private cloud, vSRX protects against the lateral spread of advanced threats between virtual machines within your network borders. It provides scalable application security for dynamic workloads and protects mission-critical applications from known and unknown threats. Also the vSRX virtual firewall helps you seamlessly extend your private cloud into public cloud environments, securely moving data and workloads with ease. As a VPN gateway, the vSRX provides remote users with safe access to their workloads. As a segmentation gateway, the vSRX protects public-cloud workloads by blocking lateral threats using application policies that help maintain security and compliance.
Offer
Learn more about Cisco Firepower NGFW Firewall
Learn more about Juniper SRX
Learn more about Juniper vSRX
Sample Customers
Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield
7-Eleven, AARNet Pty Ltd, Allegro Networks, alltours GmbH, Apollo Hotel Papendrecht, Armstrong Atlantic State University, Atlantech Online, Availity, Bajaj Capital, Baloise Insurance, BancABC, BAS Group, Black Lotus, Blue Box, Borealis, Carilion Clinic, Catholic Health System, CATV, Champlain College, Chinas Ministry of Railways, China University of Mining and Technology (CUMT), Cloud Dynamics, CloudSeeds, Cloudwatt, CODONiS, Colt Technology Services, Cork Internet Exchange, CSS Versicherung AG, CyrusOne, Danish Crown, Deloitte Belgium, Department of Energy, Divona Telecom, DQE Communications, DreamHost, European Government Agency, Expedient, Financial Market Information Services Provider, Fluidata, Fonality, Fox Sports, Global Financial Institution, Global Investment Bank, Global Investment Company, Energy Sciences Network (ESnet), Goethe University, HEAnet, High Performance Networks Inc., Hillenbrand
Expedient Data Centers
Top Industries
REVIEWERS
Comms Service Provider22%
Financial Services Firm16%
Government8%
Non Profit8%
VISITORS READING REVIEWS
Comms Service Provider32%
Computer Software Company21%
Government7%
Manufacturing Company3%
REVIEWERS
Comms Service Provider44%
Financial Services Firm16%
Energy/Utilities Company6%
Retailer3%
VISITORS READING REVIEWS
Comms Service Provider36%
Computer Software Company24%
Government5%
Financial Services Firm3%
REVIEWERS
Comms Service Provider50%
University25%
Computer Software Company13%
Financial Services Firm13%
VISITORS READING REVIEWS
Computer Software Company33%
Comms Service Provider27%
Insurance Company5%
Government5%
Company Size
REVIEWERS
Small Business43%
Midsize Enterprise28%
Large Enterprise29%
VISITORS READING REVIEWS
Small Business21%
Midsize Enterprise13%
Large Enterprise66%
REVIEWERS
Small Business43%
Midsize Enterprise23%
Large Enterprise34%
VISITORS READING REVIEWS
Small Business32%
Midsize Enterprise23%
Large Enterprise45%
REVIEWERS
Small Business50%
Midsize Enterprise15%
Large Enterprise35%
Find out what your peers are saying about Juniper SRX vs. Juniper vSRX and other solutions. Updated: November 2021.
555,358 professionals have used our research since 2012.

Juniper SRX is ranked 14th in Firewalls with 32 reviews while Juniper vSRX is ranked 22nd in Firewalls with 6 reviews. Juniper SRX is rated 7.8, while Juniper vSRX is rated 8.2. The top reviewer of Juniper SRX writes "This best in class Next-Gen firewall is elegant in its ease-of-use and architecture". On the other hand, the top reviewer of Juniper vSRX writes "Fast with good usability and fairly scalable". Juniper SRX is most compared with Fortinet FortiGate, Cisco ASA Firewall, Palo Alto Networks WildFire, pfSense and SonicWall NSa, whereas Juniper vSRX is most compared with pfSense, Fortinet FortiGate-VM, Palo Alto Networks VM-Series, Azure Firewall and Stormshield Network Security. See our Juniper SRX vs. Juniper vSRX report.

See our list of best Firewalls vendors and best Unified Threat Management (UTM) vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.