We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The implementation is pretty straightforward."
"The solution offers very easy configurations."
"Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch."
"One of the most valuable features is the AMP. It's very good and very reliable when it comes to malicious activities, websites, and viruses."
"When it comes to the integration among Cisco tools, we find it easy. It's a very practical integration with other components as well."
"Web filtering is a big improvement for us. The previous version we used, the AC520, did not have that feature included. It was not very easy for us, especially because the environment had to be isolated and we needed to get updates from outside, such as Windows patches. That feature has really helped us when we are going outside to pull those patches."
"The dashboard is the most important thing. It provides good visibility and makes management easy. Firepower also provides us with good application visibility and control."
"It's got the capabilities of amassing a lot of throughput with remote access and VPNs."
"The most valuable feature is the security provided by the ATP."
"Identifying applications is very easy with this solution."
"They are regularly releasing new versions that include more integration with third-party services."
"IoT security is most valuable in the current version. Content IDs, DDoS protection, zone protection, and DLP are the most prominent features in Palo Alto Networks NG Firewall. It is easier to configure than other solutions."
"The most valuable features include the different security zones and the ability to identify applications not only by port numbers but by the applications themselves... And with the single-pass architecture, it provides a good trade-off between security and network performance. It provides good security and good network throughput."
"The scalability is very good."
"The most valuable features are the IPS/IDS subscriptions."
"The most valuable features of this solution are all of the services it provides."
"While the features are not dissimilar to other brands, configuration is much more simple, which works out great for Indonesian people."
"In terms of the most valuable features, the IPS report is quick and updated. Performance is also valuable."
"Sangfor has the best capabilities for securing connections, securing web browsers, securing servers, and general threat protection."
"It's a very simple to use product."
"In four steps one can configure the entire firewall."
"We've found the technical support to be helpful."
"The price and SD-WAN capabilities are the areas that need improvement."
"I believe that the current feature set of the device is very good and the only thing that Cisco should work on is improving the user experience with the device."
"My team tells me that other solutions such as Fortinet and Palo Alto are easier to implement."
"The performance should be improved."
"It would be great if some of the load times were faster."
"When you make any changes, irrespective of whether they are big or small, Firepower takes too much time. It is very time-consuming. Even for small changes, you have to wait for 60 seconds or maybe more, which is not good. Similarly, when you have many IPS rules and policies, it slows down, and there is an impact on its performance."
"One feature I would like to see, that Firepower doesn't have, is email security. Perhaps in the future, Cisco will integrate Cisco Umbrella with Firepower. I don't see why we should have to pay for two separate products when both could be integrated in one box."
"Implementations require the use of a console. It would help if the console was embedded."
"The price of the solution is very high."
"The user interface is probably not as slick as it could be."
"In the future, I would like to see more OTP features."
"This solution cannot be implemented on-premises; it's only a cloud solution. The price is high as well."
"Its software updates can be improved. It sometimes becomes very slow with the software updates for different features. It should have an External Dynamic List of data. The malicious IP is not frequently getting updated in Palo Alto, and this should be done."
"The areas that need to improve are network protection and user identification."
"The reports it provides are not helpful."
"Its price can be better. They should also provide some more examples of configurations online."
"They need to increase the number of ports in the firewall."
"I believe that IAM and NGFW need to merge into a single box, instead of there being two separate box solutions."
"The solution has too many bugs and these slow down the implementation."
"Occasional issues with breaches which are dealt with expediently."
"The web interface needs to be improved, making it more user-friendly."
"The solution was chosen because of its price compared to other similar solutions."
"When we purchased the firewall, we had to take the security license for IPS, malware protection, and VPN. If we are using high availability, we have to take a license for that. We also have to pay for hardware support and technical support. Its licensing is on a yearly basis."
"This product requires licenses for advanced features including Snort, IPS, and malware detection."
"For me, personally, as an individual, Cisco Firepower NGFW Firewall is expensive."
"This solution is expensive and other solutions, such as FortiGate, are cheaper."
"Cisco is not for a small mom-and-pop shop because of the cost, but if you're in a regulated industry where a breach could cost you a million dollars, it's a bargain."
"The price of Firepower is not bad compared to other products."
"It definitely competes with the other vendors in the market."
"It is a little bit expensive."
"The price of this product should be reduced."
"It is a little bit expensive than other firewalls, but it is worth every penny. There are different licenses for the kinds of services you want to use. When we buy a new product, we go for a three-year subscription."
"Palo Alto is not a cheap solution but it is competitive when it comes to subscriptions."
"The pricing is competitive in the market."
"It is very expensive. You pay for a year."
"Paul Alto is the most expensive solution in this category."
"This is an expensive product and there is a subscription cost."
"Sangfor is cheaper than competing vendors."
"When it comes to the price of firewall solutions, Sangfor NGAF takes the cake."
"The price is unmatcheable."
Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.
Palo Alto Networks' next-generation firewalls secure your business with a prevention-focused architecture and integrated innovations that are easy to deploy and use. Now, you can accelerate growth and eliminate risks at the same time.
Sangfor Next Generation Firewall (also known as NGAF) is a converged security solution providing protection against advanced threat, malware, viruses, ransomware and web-based attacks using integrated security features like firewall, IPS, anti-virus, anti-malware, APT, URL filtering, Cloud Sandbox, and WAF. As the world's first AI-enabled and fully integrated Next Generation Firewall & Web Application Firewall (WAF), NGAF offering the security visibility, real-time detection and response, simplified operation and maintenance and high-performance application layer security needed to operate an enterprise network in total security. Tested and proven to provide cutting-edge network security by ICSA Labs and endorsed by Gartner Inc., NGAF harnesses the power of Sangfor’s Neural-X threat intelligence and analytics platform and Engine Zero’s innovative malware detection to provide next-generation protection for today’s enterprise.
Palo Alto Networks NG Firewalls is ranked 8th in Firewalls with 67 reviews while Sangfor NGAF is ranked 23rd in Firewalls with 6 reviews. Palo Alto Networks NG Firewalls is rated 8.4, while Sangfor NGAF is rated 8.2. The top reviewer of Palo Alto Networks NG Firewalls writes "The product stability and level of security are second to none in the industry". On the other hand, the top reviewer of Sangfor NGAF writes "Great pricing, reliable stability, and easy to deploy". Palo Alto Networks NG Firewalls is most compared with Fortinet FortiGate, Azure Firewall, Sophos XG, Meraki MX and Check Point CloudGuard Network Security, whereas Sangfor NGAF is most compared with Fortinet FortiGate, Sophos XG, Fortinet FortiOS, Sophos UTM and Check Point NGFW. See our Palo Alto Networks NG Firewalls vs. Sangfor NGAF report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.