Cisco Application Centric Infrastructure (Cisco ACI) vs. Fortinet FortiGate

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Cisco ACI
Score 8.5 out of 10
N/A
Cisco Application Centric Infrastructure (ACI) is network virtualization technology.N/A
FortiGate
Score 8.8 out of 10
N/A
FortiNet FortiGate is a firewall option with high integrability. It offers a variety of deployment options and next-gen firewall capabilities, including integration with IaaS cloud platforms and public cloud environments.N/A
Pricing
Cisco Application Centric Infrastructure (Cisco ACI)Fortinet FortiGate
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cisco ACIFortiGate
Free Trial
NoYes
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional DetailsFortiGate pricing starts at $250 for home office use, up to $300,000 for large enterprise appliances. Must contact sales team for pricing.
More Pricing Information
Community Pulse
Cisco Application Centric Infrastructure (Cisco ACI)Fortinet FortiGate
Considered Both Products
Cisco ACI
Chose Cisco Application Centric Infrastructure (Cisco ACI)
We have only Cisco ACI.
Chose Cisco Application Centric Infrastructure (Cisco ACI)
Compared to NSX, Cisco ACI has a lot to offer out-of-the-box without the need to use extra tools or products that need to be installed.
FortiGate

No answer on this topic

Top Pros
Top Cons
Features
Cisco Application Centric Infrastructure (Cisco ACI)Fortinet FortiGate
Firewall
Comparison of Firewall features of Product A and Product B
Cisco Application Centric Infrastructure (Cisco ACI)
-
Ratings
Fortinet FortiGate
9.3
38 Ratings
9% above category average
Identification Technologies00 Ratings9.836 Ratings
Visualization Tools00 Ratings8.836 Ratings
Content Inspection00 Ratings8.937 Ratings
Policy-based Controls00 Ratings9.838 Ratings
Active Directory and LDAP00 Ratings9.137 Ratings
Firewall Management Console00 Ratings9.838 Ratings
Reporting and Logging00 Ratings8.138 Ratings
VPN00 Ratings9.838 Ratings
High Availability00 Ratings9.833 Ratings
Stateful Inspection00 Ratings9.836 Ratings
Proxy Server00 Ratings8.927 Ratings
Best Alternatives
Cisco Application Centric Infrastructure (Cisco ACI)Fortinet FortiGate
Small Businesses

No answers on this topic

pfSense
pfSense
Score 9.3 out of 10
Medium-sized Companies
Cisco Catalyst Center
Cisco Catalyst Center
Score 8.4 out of 10
pfSense
pfSense
Score 9.3 out of 10
Enterprises
Cisco Catalyst Center
Cisco Catalyst Center
Score 8.4 out of 10
Palo Alto Networks Next-Generation Firewalls - PA Series
Palo Alto Networks Next-Generation Firewalls - PA Series
Score 9.4 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Cisco Application Centric Infrastructure (Cisco ACI)Fortinet FortiGate
Likelihood to Recommend
8.5
(68 ratings)
9.5
(65 ratings)
Likelihood to Renew
9.6
(5 ratings)
9.9
(4 ratings)
Usability
8.6
(6 ratings)
10.0
(6 ratings)
Availability
9.1
(2 ratings)
10.0
(2 ratings)
Performance
9.1
(9 ratings)
10.0
(1 ratings)
Support Rating
9.1
(9 ratings)
8.6
(26 ratings)
In-Person Training
8.2
(1 ratings)
10.0
(1 ratings)
Implementation Rating
8.0
(3 ratings)
8.0
(4 ratings)
Configurability
-
(0 ratings)
9.0
(1 ratings)
Ease of integration
-
(0 ratings)
7.0
(1 ratings)
Product Scalability
8.6
(9 ratings)
9.8
(2 ratings)
Vendor post-sale
-
(0 ratings)
10.0
(1 ratings)
Vendor pre-sale
-
(0 ratings)
9.0
(1 ratings)
User Testimonials
Cisco Application Centric Infrastructure (Cisco ACI)Fortinet FortiGate
Likelihood to Recommend
Cisco
We are currently in POC with the Remote Leaf connectivity that for smaller sites, no need to invest for Spine and APIC controller, we can just add a pair of Leaf Switches. I think this approach is well suited for an environment that wanted to have Cisco Application Centric Infrastructure with less consideration in the project budget. Also, they have a Back-to-Back Multipod set-up that IPN is an option to be used, you can use the SPINE switch to connect the secondary DC.
Read full review
Fortinet
For FortiGate Firewall, the basic functionality and requirement is met easily as Fortigate is among market leaders in NGFW. There are some extra points that inclined us to use Fortigate as our main Firewall. [Fortinet]Fortigate has a very well refined and functional SD-WAN solution when it comes to load balancing for normal Internet Traffic. SD-WAN - Load balancing of Internet traffic is a USP of Fortigate and makes it stand tall in the competition. Be it 3 or more Internet Links, multiple Subnets/segments of users to distribute and bandwidth load balancing for links and users. SLA based monitoring of Internet Links / MPLS links, makes it even better to choose the links on the basis of performance (Latency, packet loss, Jitter etc). SSL VPN configuration - The deep CLI-level debugging is also very helpful in troubleshooting. Type of tunnel can be easily configured - Full Tunnel or Split Tunnel for SSL. Though, I think Fortigate is one of the best options for small and mid-sized organizations, there are some areas for improvement. First, the CLI interface is very hard to adapt as the commands and directory hierarchy is very different for common syntax and standards.
Read full review
Pros
Cisco
  • So with the old one, we've had a secure zone, core zone, so we have special hardware specific for those zones, so security zones in our data center. This allows us to basically have the spine leaf and we could put any ports in any zone. So it allows a lot more, I'd say efficient use of equipment, being able to plug in things to whatever, and then program it to how you want it to work on.
Read full review
Fortinet
  • It is the most reliable NGFW that we have ever been touch with it.
  • You can easily upgrade the firewall cluster firmware without user attention!!!
  • User IDentity based feature is fantastic and intrusion prevention just works with least false-positive possible.
  • Very reachfull and intuitive GUI, just love it
Read full review
Cons
Cisco
  • Actually we had some issues in past as well in which this multi ACI, whenever we run it into multi-part architecture mode or design. So we have a lot of multicast issues in between. In which endpoints between the data centers in the single EPG or bds, were unable to connect with each other due to that multicasting loops and other stuff. So this is the problem we faced multiple times in the past.
Read full review
Fortinet
  • When we switched to Fortinet Fortigate, it took some time getting used to and become familiar with the new interface. Being used to strictly command-line interfaces, a full GUI-based firewall was something brand new. Careful planning had to be done when creating rules to ensure we didn't miss anything. However, once we got used to the new GUI interface, going from one Fortinet product to another was simple, as Fortinet used the same interface for all of its devices.
Read full review
Likelihood to Renew
Cisco
Cisco ACI is doing exactly what was intended for it to do, that is support our next generation data centre, improve security, and increase resiliency. Migrating to another platform would be a waste of time, resource and energy, which could be better spent migrating more legacy applications into the Cisco ACI fabric.
Read full review
Fortinet
Fortinet's products have kept improving with new software releases and they continue to deliver great value. Their support is also very good. I believe that as a small enterprise, their products have given us competitive advantage delivering features and functionality that enable us to innovate and do things better. They also continue to be a leader in the markets they serve.
Read full review
Usability
Cisco
Cisco ACI has changed the traditional data center model into a new era of automation and agility. The product was considerably easy to deploy met all the expectations. In terms of usability, ACI provides a unified interface for managing the whole infrastructure in one place which is the main benefit for users (admins)
Read full review
Fortinet
The user interface shared among many simultaneous users is very easy to get around. With shared favorites among users, most tasks are easily bookmarked and can quickly be found and edited. Their strategy for web filter integration is easy to understand and manage as well. With some general direction, setup and maintenance were easy to do and easy to teach others in the organization to do as well.
Read full review
Reliability and Availability
Cisco
no outages
Read full review
Fortinet
We had didn't any hardware failures at our two main office locations and upgraded our units last year after using them for about 5-6 years
Read full review
Performance
Cisco
I do not give it 10 because the platform evolves more and more every day in the data traffic of the datacenter. But the implementations that they carry out for different clients of the platform are very happy with the result of the same over time. Another point that you notice about the platform, despite its good performance, is the low use of energy used by this 24x7 on, it is a good fact to take into account for our environment.
Read full review
Fortinet
Good performance and really good integration. We have integration with Microsoft AD.
Read full review
Support Rating
Cisco
Cisco provides users and partners with a multitude of data for you to consume. I think that the stuff in the public domain goes a long way to assisting you find any answers you may need, plus insights and information from areas such as DevNet provide you with access to more than just the traditional release notes and the like
Read full review
Fortinet
We live in Turkey. Fortinet's Turkey office [dealt] constantly with us in our every problem or our experience. In addition, global support teams also supported every ticket we opened in every problem we encountered. They support innovative approaches and evaluate and offer solutions. In this context, they were very supportive of the problems we encountered in previous versions.
Read full review
In-Person Training
Cisco
The Cisco ACI training provided by Cisco was in depth, covered all of our requirements, and allowed us to implement and maintain the platform without issues.
Read full review
Fortinet
I received it a couple years afters use it and it was just to confirm my knowledge about the tool.
Read full review
Implementation Rating
Cisco
Not applicable
Read full review
Fortinet
Make sure that you have the most current version of FortiOS. Make sure all Fortigates are on the same version
Read full review
Alternatives Considered
Cisco
I have used competitors fabric products, however they were unmanaged (no APIC) and manually configured. In this deployment model, all tasks are manual and there is no central controller to monitor and maintain the system. It's also prone to configuration errors as each leaf switch is individually managed. APIC solution is much better.
Read full review
Fortinet
[Fortinet] FortiGate is not only cost effective but it gives the comprehensive security against the APT attacks and gives the complete traffic visibility and granular control. You can easily create the VDOMs (Virtual firewall) within a Fortigate firewall and customize the dashboard as per your requirement if you have multiple VDOMs within a single firewall.
Read full review
Scalability
Cisco
Cisco ACI scales well and is suited in scenarios such as multi-cloud or large data centre implementations. It is not suited to smaller deployments as the efficiencies that it provides are not fully realised. It is well suited in large environments that contain both virtual and bare-metal machines allowing a great deal of flexibility. It is also perfect to support multi-tenancy platforms.
Read full review
Fortinet
My environments are pretty small (less than 100 users per location) so no issues here.
Read full review
Return on Investment
Cisco
  • We've definitely spent quite a bit of time relearning how to do things in ACI, but I think the investment has been well worth while considering that we can now deploy tenants and leaves from the ground up in a matter of seconds.
  • We can if we choose to upgrade an entire datacenters worth of switches in a single night. (We've chosen to break it up for availability requirements, but if you didn't require 99.999% uptime like us you may be able to do it)
Read full review
Fortinet
  • Fortigates have an interesting bundle model for support and subscription services that make it an attractive option to deploy Firewall, IDS, Ant-virus, anti-SPAM in a single device. The cost of the bundle is pretty much what you pay for the device, not requiring huge expenditures on it's time to renew the hardware.
Read full review
ScreenShots