Fortinet FortiGate Reviews

We use Fortinet FortiGate for network segmentation. We protect from the outside world and make segregation with the outside world. With Fortinet FortiGate, we primarily focus on network segmentation.

The most valuable feature of Fortinet FortiGate is the price-quality ratio. It's a very good fit as it's not very expensive and offers extensive functionality. It functions effectively as a firewall, performing its intended purpose compared to the competition. When activating the Unified Threat Protection, users gain access to FortiGuard. The SASE possibility is also interesting even though we do not currently use it.

It's not only about the product itself. It is also the team around Fortinet. We receive substantial help from Fortinet, which is very valuable as they assist us in choosing the right solutions. If we need configuration assistance, they can send specialists who help design the solution. The value comes from both the FortiGate firewall itself and how the team supports you.

One area for improvement involves FortiAnalyzer, specifically regarding the SOC part and log interpretation. Sometimes interpretation is very difficult. They send an extensive amount of logs, and when putting that in a SOC or SIEM, payment is based on gigabytes sent. We send many unnecessary items, resulting in unnecessary costs.

We decided to reduce the logs and now send only half of what we had before after determining what was unnecessary. They should improve what needs to be sent to the SIEM. The logs should be lighter. In the log structure, there are many unnecessary columns, resulting in a large amount of redundant data. They should improve the way logs are sent to the SIEM.

We have been using Fortinet for more than ten years. 

Fortinet FortiGate is stable overall when choosing a release that has been tested. We have observed more vulnerabilities on Fortinet, however, this indicates that as the product becomes more successful, it becomes a larger target for hackers. This issue exists with every major vendor.

The scalability of Fortinet FortiGate for our organization is one of the best aspects, as they use the same OS for everything. This means you can find your way back and upgrade without changing everything in terms of configuration. Scaling up infrastructure is not problematic as it doesn't require a major migration.

Based on my experience with their support, I would rate Fortinet FortiGate eight out fo ten. Sometimes it takes more time if the issue is complicated. Overall, the support is good.

We've always used Fortinet; we were working with someone else who was also using Fortinet.

I personally participated in the initial setup and deployment of Fortinet FortiGate a very long time ago. Currently, I am more involved in management than operations, so I no longer follow this aspect.

Fortinet FortiGate is deployed on-premises in my organization.

The return on investment with Fortinet FortiGate is measured in terms of security. A firewall can be nice, however, if it is poorly configured, it will result in poor value for money. 

Return on investment for a firewall is about performing its intended function. Without one or with poor configuration, you can lose substantial money. The return on investment is reflected in the level of protection provided.

I am aware of the pricing of Fortinet FortiGate through our purchasing service. I have access to the list price and know the discounts. The price-quality ratio is very good, and we have an excellent representative who helps us secure good pricing.

I evaluated other options before choosing Fortinet FortiGate through a tender process. They met all the feature requirements and testing criteria. The dedicated ASIC provides very good performance, which was initially the key factor for our needs. We continue monitoring what Palo Alto and Cisco do, but we maintain a partnership agreement with Fortinet.

I have experience comparing Fortinet's SD-WAN with Cisco's solution. We currently don't work with SD-WAN, having returned to an MPLS network since we own the network and cables. 

We don't integrate SD-WAN capabilities with Fortinet FortiGate in our network yet since we own our whole network, including all the cabling and optical fibers in the region. While SD-WAN is a good feature, it's not necessary for our use case. 

Regarding Fortinet Unified SASE, implementation may come in the future. 

We don't use Fortinet FortiGate's data center solution. 

I'd rate the solution eight out of ten. 

On-premises

We are using Fortinet FortiGate firewall as a data center firewall.

Two aspects I'm happy with regarding Fortinet FortiGate firewall are the easy user interface and its resilience during power interruptions. We experienced two power interruptions where the firewall got disconnected from electricity, but it resumed working normally without any issues. 

The firewall provides enhanced security for our network, and as administrators, we are satisfied with the friendly interface. We are particularly pleased with the Fortinet FortiGate firewall's ability to provide network and security convergence.

We have been using it for three years.

It is scalable.

We did not use any solution before Fortinet FortiGate.

The price-to-performance ratio that we get from using Fortinet FortiGate firewall is very good.

The pricing is affordable. We are satisfied with the Fortinet FortiGate firewall.

I would highly recommend Fortinet FortiGate firewall. We feel more secure after implementing it. We are securing the whole network with the Fortinet FortiGate firewall, not specifically the data. 

On a scale of one to ten, I rate this solution a nine.

On-premises

In a scenario where FortiGate Next Generation Firewall (NGFW) notably enhanced my customer's network performance, we discussed many points. The graphical user interface is very good, both feature-wise and technology-wise.

The effective feature in FortiGate Next Generation Firewall (NGFW) is DLP.The FortiGate Next Generation Firewall (NGFW) has the feature image of 7100 D.

In FortiGate Next Generation Firewall (NGFW), my concern regarding improvements is the licensing model. In the latest versions, everything moves to licensing only, and to work from SSL VPNs and integrate those features, it is similar across all vendors, but my main concern is the DLP part, which has not advanced significantly.Regarding the AI capabilities of FortiGate Next Generation Firewall (NGFW), these AI features are not present in the latest versions, which is why we are working on those versions. They aren't suitable in a live environment, and while AI features exist, I don't have details about their availability in versions after 7.0, as I believe only versions 6.0 and below have those features.For future improvements in FortiGate Next Generation Firewall (NGFW), features-wise, SD-WAN enhancements are expected, especially in configuration or viewing SD-WAN monitoring, as some minor enhancements would be beneficial.The complexity in configuring the policies needs improvement, and the SD-WAN template should be available in the tunnel. When we create the tunnel, we need to add in SD-WAN, allowing the creation of VPN tunnels from SD-WAN, which requires technical expertise to configure. Automating that would strongly enhance it, as SD-WAN is number one now with FortiGate, and going forward, more customers will move to FortiGate.

FortiGate Next Generation Firewall (NGFW) is recommended for various industries, and its GUI has many enhancements in the latest version, making everything good.In FortiGate Next Generation Firewall (NGFW), we are expecting the effective DLP feature with threat detection capabilities, which works with deep inspection. Some customers are not accepting to install the applications, and sometimes in the guest tunnel, content filtering should be blocked, such as domain blocking for Gmail, as users access only their particular consumer account. If they try to access personal accounts, it should be blocked, requiring configuration settings with deep inspection that needs certificates installed in all systems, which is a time-consuming process that some customers do not accept, questioning the need for installing certificates without deep inspection.The licensing model for FortiGate Next Generation Firewall (NGFW) depends on various types such as the earlier UTM license, FortiCare, and Enterprise license. The Enterprise license includes all features such as FortiManager, FortiAnalyzer, and converter. The UTM licenses include only UTM features such as AV, web filtering, application control, and IPS, while FortiCare is only for hardware.

The company uses FortiGate to offer protection for clients transitioning from MPLS to Internet, ensuring security for this new type of connection. In Brazil, clients typically seek protection, and FortiGate is used to offer such solutions. We start with this new kind of connection, explaining and training clients about the product.

With the FortiGate solutions, I see a benefit in controlling the bandwidth and managing users' access. It's important for leading the market and helping IT managers use the solution.

The common valuable feature for FortiGate is its UTM functionality, which includes various features under a license that is commonly implemented. FortiGate is widely used across fifty percent of the solutions in Brazil, making it a prevalent choice for many clients. It's beneficial because it allows the orchestration of networks with multiple vendors like Huawei, Cisco, and Juniper.

Improvements could be made when companies expand and need better equipment and more licenses. Additionally, a way to upgrade equipment when increasing Internet bandwidth is necessary. Companies often have to quickly close negotiations due to exchange rate changes affecting budgets.

I have had about five years of experience with FortiGate.

FortiGate offers good support, especially for telcos that have engineers inside the SOC to provide solutions to problems.

Positive

Previously, I worked with FortiGate. Now, I am studying to use Huawei. My current company has various solutions, though their firewall is not as developed. FortiGate is known for its firewall solutions, however, with Huawei, it’s a hard work to establish the offering.

The initial setup for FortiGate is straightforward and easy. The company frequently conducts meetings to present their solutions in Brazil, helping to streamline the process.

Using FortiGate has enabled us to increase security, control user access, manage bandwidth, and enhance the ability to provide a variety of operations solutions to clients.

We work with a price list that changes every three or six months, however, we purchase in dollars. The exchange rate between the local currency and dollars affects the budget of our clients, so we need to quickly close negotiations.

The clients in Brazil often use Fortinet, given its familiarity and integration with existing networks comprising vendors such as Huawei, Cisco, and sometimes Juniper.

It’s crucial to understand the client’s necessity first and implement only the solutions needed initially, expanding later with more solutions as required.

I'd rate the solution nine out of ten.

We are using Fortinet FortiGate as a firewall.

Fortinet FortiGate has been invaluable. It has helped save costs due to its various features, reliable performance, very good UI, low latency, and stability.

The Threat Intel engine in Fortinet FortiGate is highly rated for its effectiveness in threat prevention. It has a good UI and overall integration, including FortiGate Manager for controlling all firewalls from a single place.

The anti-malware engine could use an upgrade. It should automatically classify and sandbox malicious packets with more granular controls, including providing details like TV numbers.

Initially, we faced some issues with updates due to network factors needing to be white-listed in the proxy. These problems have since been resolved, and we are not facing any issues now.

While I don't have a clear picture of scalability, we scale up in different regions based on the number of users and the amount of load. This is typically handled by architecture teams.

Customer support is very responsive, addressing queries in a timely manner. I would rate the customer support ten out of ten.

Positive

We have also used Palo Alto Firewalls and Fortinet FortiGate. Fortinet FortiGate has a better UI and overall integration, including FortiGate Manager for single-place control over all firewalls.

The initial setup was straightforward and easy, thanks to the support provided. I would rate the ease of setup ten out of ten.

We had the help of the end-of-support team for the setup, which made the process quite straightforward and easy.

The price is reasonable for our company. The finance team handles the specifics regarding the license costs.

We evaluated Palo Alto NG Firewalls before settling on Fortinet FortiGate.

On-premises

It is just for firewalls and network security.

It's mostly compliance, like just meeting our security requirements to keep our data secure. We don't make money out of it. It just keeps our data safe.

I have FortiGate for SD-WAN and all access points here, which has helped with traffic shaping capabilities.

I also use AI (Rapid7) to improve my cybersecurity. 

It's easy to use and provides good visibility of network traffic.

The SD-WAN functionality is a bit overly complicated and not fully documented.

I have been using it for six years. 

The customer service and support are good. I can contact them online or over the phone.

Neutral

I have used Sophos XTM and Palo Alto.

FortiGate is more feature-rich and has a broader range of hardware. They offer switches, access points, firewalls, and the whole network stack, whereas a lot of others only do firewalls.

It's just a good value and the possibility of using those features. We haven't used FortiSwitches yet; we're investigating them at the moment, but we haven't ordered any yet.

The SD-WAN was certainly tricky and took a while to figure out, but the rest of the security features were straightforward.

The deployment took us six months. 

It's hard to measure the return on investment, but it certainly helps us manage our security requirements easier than other solutions that I've used.

It's good value for the money.

It was worth the money overall. It's good value.

Overall, I would rate the solution an eight out of ten. 

On-premises

Our company uses this solution for endpoint network security. 

The ECC management and the GUI that offers single interface management are the most valuable features of Fortinet FortiGate. 

The documentation available for Fortinet FortiGate should be improved. Often, I find documentation of older models and not the latest version of Fortinet FortiGate. I have to often utilize the older documentation and reengineer the information for the latest model of Fortinet FortiGate. 

There are competitor products in the market that can monitor all logs, which are referred to as SOC; Fortinet FortiGate should have such in-built features. The solution should be able to implement machine learning and analytics of all the logs for threat detection and protection. 

I have been using Fortinet FortiGate for more than a year.

I would rate the stability an eight out of ten. 

The solution is used daily in our organization. I would rate the scalability an eight out of ten. 

I would rate the tech support an eight out of ten. Our company needs to contact customer support on certain issues. The support team is usually able to resolve the issues by communication over call a few times. Sometimes, there was quite some back-and-forth through support tickets with the vendor team before the issues got resolved. 

Positive

Our company previously worked with Juniper, NETGEAR, and Cisco. The devices from the aforementioned vendors reached the End of Life, and their support was expiring in our company, so we switched to Fortinet FortiGate to have visibility and manage all devices through a single vendor. 

I would rate the initial setup a nine out of ten. Due to some network complexities, we had to schedule the downtime of our organization's business, so the initial deployment of Fortinet FortiGate took more time than anticipated. But the setup process was seamless and our company didn't face any abrupt down time. 

At our company, first, we prepared a deployment plan and then divided the services into varying areas based on which the deployment was performed in phases. Only two professionals, a system engineer, and an infrastructure manager, are required to deploy Fortinet FortiGate.

Another two individuals are needed to maintain the solution with the same aforementioned professional job designations. In our company, we didn't face any issues while integrating Fortinet FortiGate with our existing infrastructure and even with other tools.

A third-party team deployed the solution for our organization. 

In our company, we haven't realized an ROI yet, as the solution was implemented just a year ago. There are some devices that I need in addition to other area devices of my company, we are in process of renewing all old devices with newer versions.

In the next few months, our company will be able to obtain the actual capex purchase with at least ten switches. Fortinet FortiGate is worth the money, offers multiple solutions under one roof. 

I would rate the pricing a five out of ten. Our company onboarded the solution through a traditional capex purchase of the standard license with three years of customer support. 

Our company has been using Fortinet FortiGate since 2009 at the firewall level, due to familiarity with the RTO and FortiGate environment, complete adoption of Fortinet FortiGate was an easier choice than other solutions for a single clear management. 

Fortinet FortiGate also had all the features that our company was expecting, and in terms of ease of management, opting for the same vendor from firewall to edge device was a comfortable option. 

Previously, in our organization, we didn't have a network monitoring tool. With the adoption of Fortinet FortiGate, we can now check the port level of the switches that can be witnessed at the EP end, where all devices remain connected to the network. The management and monitoring are the major benefits of Fortinet FortiGate. 

I would advise others to consider adopting the solution without hesitation. I read the latest Gartner Magic Quadrant report, and it mentioned that, based on its track record, Fortinet can compete with the best in terms of network and security solutions.

For the last five years I believe Fortinet has dominated the market. I recently attended a Fortinet event where I met all the local and regional support team; I learned that the vendor is continually expanding, and in our region, we can easily avail support and guidance regarding Fortinet solutions whenever required. 

The monitoring subscription that is provided with the Fortinet FortiGate has built-in AI features for the past three years. I believe Fortinet is in the sixth generation of their AI and ML utilizing the native infrastructure. Thus, the AI features have been available for a long time in Fortinet FortiGate, but they are promoting it now due to the market trends. I would overall rate the solution an eight out of ten. 

On-premises

I'm managing security rules, bandwidth for the internet, switches, and fifty access points. Everything, including the network in Afghanistan, is managed from there, and it's something critical for us.

FortiGate's ability to perform as expected and fulfil our needs has been the most compelling feature for network security. FortiGate has proven to be secure and effective in terms of threat intelligence, as it alerts us about external login attempts and suspicious scripts, contributing to our system's overall security.

FortiGate can improve its token system, as it requires a purchase before use. Additionally, the VPN system could be more efficient, especially regarding VLAN passing through, which is currently a limitation. Another suggestion for improvement would be better timezone coordination for customer support. Currently, there are issues with calls coming at inconvenient times due to timezone differences. Another area for enhancement could be the response time for support tickets, as there is a delay of at least twelve hours, even for urgent tickets, which can be frustrating.

I have been using Fortinet FortiGate for the past three years.

It is scalable as we expand our usage of FortiGate as our company grows. We're currently using one, but we plan to use two as our network expands.

I open a ticket and communicate with the engineers when I encounter issues. Although it may take some time, they always get back to me with a resolution. There are mainly due to these issues with time zone coordination and response time.

Neutral

The setup process for FortiGate depends on the complexity of your network. For simpler setups, a user-friendly interface is easy to use. However, for more advanced configurations, it may require expertise. Integration into the ecosystem is neither too easy nor too complex.

The maintenance process is relatively easy.

Regarding return on investment, I believe FortiGate is worth the money. It has helped us stay safe, and considering what we are paying for such a system and service aligns well with our expectations and financial goals.

The price of FortiGate is reasonable as I plan to buy new switches. The initial gadgets are already booted, and the pricing seems normal on the market. As for additional costs, I haven't subscribed to many extra features, so I'm only using what I need. Last year, I renewed the support for three years, which can sometimes be expensive but depends on the security benefits and how it helps us.

Overall, I would rate the solution an eight out of ten.

On-premises