Fortinet FortiGate Reviews

My customers use Fortinet FortiGate for SD-WAN, network security, branch-to-branch communication, site-to-site channel communication, multi-layer protection, authentication, and antivirus solutions. They span various industries, including IT setups, chip-level designing, VLSI companies, software development, SAP implementation, manufacturing, and production groups.

The strengths of Fortinet FortiGate include network security, VPN, site-to-site tunnels, client VPN solutions, two-factor authentication for VPN clients, and SD-WAN for branch level. We have implemented these solutions for various customers.

Regarding challenges, customers initially faced issues like internet dropping, but after firmware upgrades, everything worked well.

I believe Fortinet should offer short and frequent training sessions, preferably in video format, whenever they introduce new features. These sessions should be around five to ten minutes long, allowing users and partners to quickly grasp the information without disrupting their daily tasks.

Long training sessions spanning one or two full days can lead to distractions and reduced focus due to continuous support calls. Therefore, providing brief and focused training snippets would be more beneficial for users.

I have been using Fortinet FortiGate for six to seven years.

Our customers are satisfied with the stability of Fortinet FortiGate. I would rate it as a ten out of ten for stability.

Fortinet FortiGate is quite flexible and scalable, allowing us to scale up from sixty to a hundred units. However, there are limitations for extremely high production levels. I would rate its scalability an eight out of ten.

Setting up Fortinet FortiGate is straightforward and easy. I would rate it a ten out of ten for ease of setup. The deployment typically takes around two to three hours.

Operational costs for Fortinet FortiGate are pretty low because once it's configured, no changes are needed. In terms of ROI, clients have seen benefits. After switching from other brands to

Fortinet, they experienced fewer support calls. Initially, there were some support calls in the first one to two months, but after that, there were none. Clients are now comfortable and not wasting productive hours on IT support.

The cost of Fortinet FortiGate is competitive and not expensive compared to other enterprise- grade solutions. On average, the license cost per year is around seventy percent of the firewall's purchase price.

Regarding AI elements, I believe Fortinet has the capability to implement machine learning snippets for improved security and advanced configurations, but this should be integrated as part of their overall strategy.

I will advise to focus on configuring the admin tools and monitoring users and serial numbers effectively. 

As for rating the solution, I would give it a ten out of ten for being a very good solution.

We use Fortinet FortiGate as our security and routing solution.

We implemented Fortinet FortiGate to enhance our security posture by blocking and restricting access to certain websites and securing our VPN traffic. 

Fortinet FortiGate offers enhanced visibility and segmentation for our industrial devices, a crucial process when some machines utilize systems demanding high-level security.

We have implemented Fortinet Security Fabric on our VM infrastructure, and it has provided great service in helping us meet regulations, governance, and compliance requirements. This is important to us because Fortinet Security Fabric connects to our sandbox, allowing us to scan shares across all clusters and enabling FortiGate to resolve any online issues.

Fortinet FortiGate has enhanced our organization's security by enabling secure VPN access and restricting access to social media sites, thus ensuring that employees can focus on their work. We saw the benefits of FortiGate within weeks of the deployment.

FortiGate helps reduce the risk of cyberattacks that could disrupt our production by isolating the affected traffic and creating a log for us.

It also helps to centralize the management of our network and security operations.

The centralized management allows us to access all of our firewalls and policies using a single interface.

Fortinet provides actionable data to help us make informed decisions about the actions to take. For example, if one of our firewalls goes down, the solution helps us rectify the issue by providing details on the problem and how to address it.

By consolidating the numerous individually connected batches, FortiGate helped us reduce operational expenses associated with the extra costs they incurred.

Fortinet FortiGate has helped us mature our approach to cybersecurity for protecting our industrial equipment. Their knowledge and daily webinars on email security and virus prevention have empowered us to stop attacks and maximize our efficiency.

The most valuable features are SD-WAN, application control, IPS control, and FortiSandbox. These features help reduce our downtime, manage the ISPs, and deploy SLAs for all the website traffic.

The graphical user interface of Fortinet's FortiGate product does not function well with text-based interfaces. This functionality should be improved.

I have been using Fortinet FortiGate for seven years.

I would rate the stability of Fortinet FortiGate a ten out of ten.

While Fortinet FortiGate firewalls are scalable, upgrading to a new version or adding hardware requires purchasing a new license to migrate the old backup to the new firewall. 

While the technical support team is knowledgeable, their response time to support tickets is concerning. It typically takes them 48-72 hours to respond, which significantly disrupts my work.

Neutral

While we previously used the open-source PSS firewall, it lacked the layered security architecture offered by Fortinet FortiGate.

We migrated to Fortinet FortiGate for its superior control, in-depth scanning, and ability to minimize cybersecurity risks, features not offered by other firewall solutions.

The initial deployment is easy. The solution can be installed by following the on-screen prompts, and the policies can be implemented through the interface dashboard.

Deploying the system takes one full business day. We begin by gathering user requirements from each department, as they have varying policies. The policies are implemented department-first, followed by branches. Finally, VPNs are generated for remote users. Two people are required for the deployment.

The implementation was completed in-house.

Since implementing Fortinet FortiGate, we have observed an increase in user productivity, which translates to a positive return on investment.

While Fortinet FortiGate has a higher price point compared to Sophos XG, its user-friendly interface justifies the cost. Additionally, its fixed pricing structure eliminates concerns about surprise fees.

After evaluating Sophos XG and finding its interface overly complex for our needs, we opted for the user-friendly interface of Fortinet FortiGate.

I would rate Fortinet FortiGate an eight out of ten.

We have one person that deals with maintaining Fortinet FortiGate.

We have 1,100 users in multiple cities and departments using FortiGate.

The Fortinet FortiGate 60F is a good choice for organizations to begin evaluating firewalls.

On-premises

There are various use cases for Fortinet FortiGate, including firewall protection for internet access, data centers, branches, and SD-WAN. We use the firewall in multiple locations throughout our network, taking advantage of its many features, such as the promising CDR feature and security profiles like the WAF filter and application DNS security. We deploy these features in different parts of the network. Additionally, some customers use Fortinet FortiGate in the cloud to safeguard their cloud servers within platforms like Microsoft tenants.

Our customers are using Secure SD-WAN for connecting different branches. For example, oil and gas companies have different branches all over Egypt, which are not in the main city, so they need a secure connection and stability for certain protocols, such as voice and things like that. They also need visibility. They need to understand which applications are consuming SD-WAN. 

Some of the customers are also using SD-WAN for load balancing. For SD-WAN, you need at least two internet connections, so some of the customers are using it as a load-balancing technique. Overall, there are a lot of features for which customers are using SD-WAN.

For our customers, Secure SD-WAN is very useful for giving the right priority to the applications and controlling the proper use of the application.

Secure SD-WAN's interoperability with other systems and applications in the environment is very good. The integrated application protection provided by Secure SD-WAN is also good. There is a very good integration with all the applications and portfolios. We don't integrate the firewall with the application itself, but it does what is needed to control and reroute the traffic.

Secure SD-WAN has a lot of benefits. There is a calculator on Fortinet's website. When you feed the right information to that calculator, it tells you how much money you will save by acquiring SD-WAN. The first benefit is that you're going to save money. Instead of buying multiple ISP connections, MPLS, and other such things, you can use the normal internet and apply SD-WAN on it, so you can save a lot of money. You also don't need to increase the bandwidth. SD-WAN helps with the routing of your traffic and the optimum use of your links. It's efficient and secure, and it saves you a lot of money, and of course, there is the security of the firewall that's applied on SD-WAN. If we're comparing it with other vendors like Cisco, you are not getting the firewall features.

It's very efficient. There is a lot of visibility. It reduces the number of incidents. If there is any problem, you can immediately log in to the firewall, and you will know if there is a notification about bandwidth consumption or any other issue, or if there is any drop in connectivity. It makes the operation very easy. It makes it easy for the teams to respond to incidents and manage issues. SD-WAN helps to remediate threats more quickly and efficiently because, with SD-WAN, there are a lot of applications going through different links, so if you can know which link an application is using and what's on the link, you can make the right decision in a very fast way to fix it. It provides both visibility and efficiency.

It reduces your mean time to detect (MTTD). In the new version, which is version 7.x, of the FortiGate firewall, through the main dashboard, you can know what is going on. If you've done the dashboard and you're putting these statistics in front of you on a screen, once you look at it, you'll know what's going on and what's the problem. It, of course, will give you the tools and the right information to reduce the time to solve.

It's hard to say whether it has reduced help desk tickets because it's more on the operational side, but it helps them a lot. The operations team is not handling the firewall. It's either the network team or the network security team. Generally, once it's up and running, it just works. It's different from having an antivirus or something else that can be changed from day-to-day activities. With this one, once you turn it on, the service will be stable unless you have a problem with your internet. It doesn't cause a lot of problems.

In terms of helping to future-proof business, from a partner perspective, it gives you a lot of flexibility to enhance the customer network. It opens a lot of doors for sales, for a new business, and for new potential. That's from the partner side. From the customer side, you can save money and solve a lot of problems. If you need to connect with a few branches all over the country, it's efficient. You don't need to travel for five to ten hours to reach the second branch. If you have proper SD-WAN technology and it's connected in a good way with good vendors, you can save a lot of time, effort, and money. You can have proper connectivity between branches as if the guy you are talking to is next door. So, SD-WAN gives a lot of benefits at the vendor level, partner level, and customer level.

Fortinet FortiGate is user-friendly and affordable.

When it comes to Secure SD-WAN, ease of use is valuable. The visibility and reporting are also valuable. A cool thing is that SD-WAN is free of charge with the Fortinet firewall. You can just use it just by using the Fortinet appliances that you already have in the branches. You cannot have appliances from different vendors. Fortinet customers can use the feature in a very easy way. It takes one click to integrate with the firewalls. It's very very easy to deploy. You don't need to build anything.

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets.

For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line.

The stability has room for improvement.

When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

I have been using Fortinet FortiGate for seven years, and I have been using Secure SD-WAN for two years.

Secure SD-WAN is stable, but when it comes to the firewall, sometimes there are issues with the throughput and related factors. Improper handling of these can lead to a memory surge, a well-known bug that can cause the entire system to freeze. When this happens, the system appears to be running but no traffic is processed, causing disruptions to applications, users, and overall internet connectivity. This can be confusing because the firewall appears to be functioning correctly. Typically, the solution is to restart the firewall. However, when we contact support, they require logs before restarting, which can be challenging in urgent situations. As a result, we prioritize quick resolution over troubleshooting. This is a common drawback of the operating system.

I'd rate Fortinet FortiGate's scalability an eight out of ten.

While the technical support offered online and on-site is generally effective, there may be occasions when we need to escalate an issue to a higher level due to its complexity. 

I initially sought assistance from level-one support, but they were unable to resolve my issue. Eventually, they informed me that the problem would be addressed in a future patch. However, within a day or two, a level three engineer intervened and provided me with an update to resolve the issue. He explained that it required a command line configuration, as it couldn't be done through the graphical user interface. I was impressed with the level-three engineer's expertise and problem-solving skills. It taught me that if we persist and communicate our needs, we can achieve our desired outcomes.

Positive

The initial setup is straightforward. We need to determine whether the firewall will be positioned in an active-standby or active-active configuration. Based on this decision, we will choose the appropriate license. If the firewall is intended for use with the Internet, we will need to include features such as a full DNS filter. However, if it's being used in a data center, these features may not be necessary. Additionally, we need to consider the speed of the interface, 1G or 10G, and the expected amount of network traffic to properly size the firewall model and ensure proper throughput. This is the initial phase of the process. Once the firewall has been deployed, it's a matter of connecting it and configuring policies. 

When it comes to the deployment model of SD-WAN, my customers usually buy the appliance. They already have FortiGates, so we're just connecting firewalls to each other. In Kuwait and Egypt, there are mostly on-prem deployments. It's rare to have someone deploying a firewall on the cloud, and if it's deployed on the cloud, it's for a certain reason. It's not for SD-WAN because you're not loading balancing or you don't need SD-WAN for cloud access. In the countries where I was responsible for its implementation, there was only on-prem deployment.

There is one single challenge with the deployment of SD-WAN, but it's not from the FortiGate side. It's from the customer side. You need to understand your traffic so you can get the best out of SD-WAN. For some organizations, it's huge because they don't know which application is doing what and which is more important than the other. Especially during the COVID years, a lot of applications popped up. Companies used to release an application every few weeks. To do a proper implementation, you need to understand your network, understand your application, and set your priorities. Once you do this, the implementation will be a piece of cake. If you have all the information, it will take a day or two days.

We implement the solution for our clients. One person can easily deploy multiple Fortinet products through the firewall including FortiAnalyzer for the logs, FortiManager, and FortiMail.

For SD-WAN also, one senior security engineer can do everything for a customer. The maintenance is easy. We haven't faced any critical problems with it.

We have experienced a positive return on investment by utilizing Fortinet's products. For instance, their website features a calculator for SDR, which enables us to measure the actual ROI in dollar amounts. We input our current expenses, the products we intend to purchase, and our connectivity plans, along with a few other details. At the end of the process, we receive data that indicates the amount of money we will save, such as two hundred thousand, for example. This provides us with clear and precise figures on our savings, making it an excellent tool.

Our customers have seen time to value with Secure SD-WAN. Its time to value is seen within weeks of implementation.

The price for the Fortinet FortiGate is reasonable. Secure SD-WAN is free of charge. If you have their firewall, it's free of charge. It's very tempting. Other vendors, such as Palo Alto, will charge you to have an SD-WAN license, whereas, with Fortinet, it's free of charge.

When purchasing a firewall, stability is non-negotiable. For small to medium businesses, Fortinet's affordability and ease of deployment make it a suitable option. However, for enterprise-level businesses, Palo Alto or Check Point would be preferred for their robust clients and immediate updates, despite the higher cost.

When comparing the pros and cons of Secure SD-WAN with other solutions, the challenge is not with SD-WAN. It's with the appliance that's offering SD-WAN, which is the firewall. So, the first comparison would be between the FortiGate firewall and other firewalls, and if the other firewalls are already offering the same service, the comparison will be between different levels, not just SD-WAN. There could be other firewalls that are more efficient or lower in cost or even more familiar to customers than Fortinet. So, the challenge is not with SD-WAN. The main reason I use SD-WAN on FortiGate is to get the benefit of the security profiles or security features of the firewall on top of the SD-WAN. Otherwise, I can use my internet router, the basic load balancing protocols, and the basic IP tunneling, and send some traffic here and some traffic there, and I'll save the cost. 

I'd rate Fortinet FortiGate an eight out of ten.

On-premises

We are currently using Fortinet FortiGate firewall instead of Cisco.

The best features of Fortinet FortiGate include good functionality, though the licensing cost is a bit higher. Their response time and throughput are very good advantages.

Some websites or proxies are not embedded in the correct category, and we need to update the Fortinet FortiGate database because numerous websites are appearing every day. Some websites are embedded in the wrong category which we can block, resulting in everything being blocked, so this database needs improvement.

The licensing cost should be more affordable than it is currently. The SD-WAN of Fortinet FortiGate needs improvement; when we create a group address, sometimes the rule doesn't work properly.

Regarding the Fortinet FortiGate database issues, some websites or categories that should be classified as proxy are in different categories. When we open that category due to some other website that needs to be accessed, some proxies are also opened. The FortiGate web filter categories need to improve their database for better control.

I joined the current company two and a half years ago, and we have been using Fortinet FortiGate for about three or four years.

I have only required technical support from Fortinet FortiGate once or twice in two and a half years, and I have had a good experience with them. Their technical team is very knowledgeable. Their response time is very good; whenever we open a case, they respond promptly.

One issue I encountered was with FortiToken, which we configured on the admin profile. While managing four firewalls, I discovered that FortiToken was not enabling due to an issue on one firewall. I opened a case, but it has not been resolved yet. Despite this, my overall experience with them has been very good.

Neutral

In my previous company, we were using Sophos, which had better licensing costs compared to Fortinet FortiGate.

We are not using enhanced SD-WAN Cisco SD-WAN; we are just using the SD-WAN for load balancing.

We are using Ubiquiti for wireless. One drawback about UniFi is that it lacks BeamFlexing, which is available in Ruckus, and the AP radius or Wi-Fi signals are not as strong as Ruckus. However, UniFi is still a good option, though not as robust as Ruckus.

Fortinet FortiGate is quite expensive, but according to the Gartner report, it ranks second or third. My experience with Fortinet FortiGate firewall has been quite good.

I would rate Fortinet FortiGate 9 out of 10 overall.

In a scenario where FortiGate Next Generation Firewall (NGFW) notably enhanced my customer's network performance, we discussed many points. The graphical user interface is very good, both feature-wise and technology-wise.

The effective feature in FortiGate Next Generation Firewall (NGFW) is DLP.The FortiGate Next Generation Firewall (NGFW) has the feature image of 7100 D.

In FortiGate Next Generation Firewall (NGFW), my concern regarding improvements is the licensing model. In the latest versions, everything moves to licensing only, and to work from SSL VPNs and integrate those features, it is similar across all vendors, but my main concern is the DLP part, which has not advanced significantly.Regarding the AI capabilities of FortiGate Next Generation Firewall (NGFW), these AI features are not present in the latest versions, which is why we are working on those versions. They aren't suitable in a live environment, and while AI features exist, I don't have details about their availability in versions after 7.0, as I believe only versions 6.0 and below have those features.For future improvements in FortiGate Next Generation Firewall (NGFW), features-wise, SD-WAN enhancements are expected, especially in configuration or viewing SD-WAN monitoring, as some minor enhancements would be beneficial.The complexity in configuring the policies needs improvement, and the SD-WAN template should be available in the tunnel. When we create the tunnel, we need to add in SD-WAN, allowing the creation of VPN tunnels from SD-WAN, which requires technical expertise to configure. Automating that would strongly enhance it, as SD-WAN is number one now with FortiGate, and going forward, more customers will move to FortiGate.

FortiGate Next Generation Firewall (NGFW) is recommended for various industries, and its GUI has many enhancements in the latest version, making everything good.In FortiGate Next Generation Firewall (NGFW), we are expecting the effective DLP feature with threat detection capabilities, which works with deep inspection. Some customers are not accepting to install the applications, and sometimes in the guest tunnel, content filtering should be blocked, such as domain blocking for Gmail, as users access only their particular consumer account. If they try to access personal accounts, it should be blocked, requiring configuration settings with deep inspection that needs certificates installed in all systems, which is a time-consuming process that some customers do not accept, questioning the need for installing certificates without deep inspection.The licensing model for FortiGate Next Generation Firewall (NGFW) depends on various types such as the earlier UTM license, FortiCare, and Enterprise license. The Enterprise license includes all features such as FortiManager, FortiAnalyzer, and converter. The UTM licenses include only UTM features such as AV, web filtering, application control, and IPS, while FortiCare is only for hardware.

We are using FortiGate IPS as a firewall, as an intrusion prevention system (IPS), and as a content filter. Additionally, we use it for SD-WAN, which is very important for us.

FortiGate IPS has made managing our cybersecurity framework easier. It is user-friendly, easy to implement, and helps in threat detection and prevention. Also, SD-WAN management by FortiGate has ensured seamless internet connectivity by automatically switching between lines during provider interruptions.

The most effective features for threat prevention are the IPS, content filter, and SD-WAN capabilities. The user-friendly nature of FortiGate IPS compared to our previous products, like Cisco and SonicWall, is also valuable.

I would like to see more AI features included in future updates, as that would add significant value. Additionally, the pricing of FortiGate is relatively high compared to other products like Cisco and SonicWall. An area for improvement is in their support services, which could be more responsive and quicker to resolve issues.

We have been using FortiGate IPS for more than nine or ten years.

FortiGate IPS is very stable.

I think it is very scalable. I would rate its scalability as nine out of ten.

In the past, direct support from Fortinet was not very satisfactory, as it took a lot of time to resolve issues. However, we now receive excellent support from our partner. They are amazing and provide very good support.

Neutral

We previously used SonicWall and Cisco. Compared to those products, FortiGate IPS is easier to use and more user-friendly.

The initial setup was straightforward and easy to implement. It took only a few hours to deploy.

The implementation was done by a different team, but we supervised the process. We used third-party services for the implementation.

The pricing is relatively high compared to other products like Cisco and SonicWall. This is a point that could be improved, as FortiGate is expensive.

We evaluated SonicWall and Cisco before choosing FortiGate IPS.

I recommend FortiGate IPS because it is very user-friendly, easy to install, and effective in threat prevention. More AI features in future updates would add more value.

I'd rate the solution nine out of ten.

Hybrid Cloud

It is just for firewalls and network security.

It's mostly compliance, like just meeting our security requirements to keep our data secure. We don't make money out of it. It just keeps our data safe.

I have FortiGate for SD-WAN and all access points here, which has helped with traffic shaping capabilities.

I also use AI (Rapid7) to improve my cybersecurity. 

It's easy to use and provides good visibility of network traffic.

The SD-WAN functionality is a bit overly complicated and not fully documented.

I have been using it for six years. 

The customer service and support are good. I can contact them online or over the phone.

Neutral

I have used Sophos XTM and Palo Alto.

FortiGate is more feature-rich and has a broader range of hardware. They offer switches, access points, firewalls, and the whole network stack, whereas a lot of others only do firewalls.

It's just a good value and the possibility of using those features. We haven't used FortiSwitches yet; we're investigating them at the moment, but we haven't ordered any yet.

The SD-WAN was certainly tricky and took a while to figure out, but the rest of the security features were straightforward.

The deployment took us six months. 

It's hard to measure the return on investment, but it certainly helps us manage our security requirements easier than other solutions that I've used.

It's good value for the money.

It was worth the money overall. It's good value.

Overall, I would rate the solution an eight out of ten. 

On-premises

Our company uses this solution for endpoint network security. 

The ECC management and the GUI that offers single interface management are the most valuable features of Fortinet FortiGate. 

The documentation available for Fortinet FortiGate should be improved. Often, I find documentation of older models and not the latest version of Fortinet FortiGate. I have to often utilize the older documentation and reengineer the information for the latest model of Fortinet FortiGate. 

There are competitor products in the market that can monitor all logs, which are referred to as SOC; Fortinet FortiGate should have such in-built features. The solution should be able to implement machine learning and analytics of all the logs for threat detection and protection. 

I have been using Fortinet FortiGate for more than a year.

I would rate the stability an eight out of ten. 

The solution is used daily in our organization. I would rate the scalability an eight out of ten. 

I would rate the tech support an eight out of ten. Our company needs to contact customer support on certain issues. The support team is usually able to resolve the issues by communication over call a few times. Sometimes, there was quite some back-and-forth through support tickets with the vendor team before the issues got resolved. 

Positive

Our company previously worked with Juniper, NETGEAR, and Cisco. The devices from the aforementioned vendors reached the End of Life, and their support was expiring in our company, so we switched to Fortinet FortiGate to have visibility and manage all devices through a single vendor. 

I would rate the initial setup a nine out of ten. Due to some network complexities, we had to schedule the downtime of our organization's business, so the initial deployment of Fortinet FortiGate took more time than anticipated. But the setup process was seamless and our company didn't face any abrupt down time. 

At our company, first, we prepared a deployment plan and then divided the services into varying areas based on which the deployment was performed in phases. Only two professionals, a system engineer, and an infrastructure manager, are required to deploy Fortinet FortiGate.

Another two individuals are needed to maintain the solution with the same aforementioned professional job designations. In our company, we didn't face any issues while integrating Fortinet FortiGate with our existing infrastructure and even with other tools.

A third-party team deployed the solution for our organization. 

In our company, we haven't realized an ROI yet, as the solution was implemented just a year ago. There are some devices that I need in addition to other area devices of my company, we are in process of renewing all old devices with newer versions.

In the next few months, our company will be able to obtain the actual capex purchase with at least ten switches. Fortinet FortiGate is worth the money, offers multiple solutions under one roof. 

I would rate the pricing a five out of ten. Our company onboarded the solution through a traditional capex purchase of the standard license with three years of customer support. 

Our company has been using Fortinet FortiGate since 2009 at the firewall level, due to familiarity with the RTO and FortiGate environment, complete adoption of Fortinet FortiGate was an easier choice than other solutions for a single clear management. 

Fortinet FortiGate also had all the features that our company was expecting, and in terms of ease of management, opting for the same vendor from firewall to edge device was a comfortable option. 

Previously, in our organization, we didn't have a network monitoring tool. With the adoption of Fortinet FortiGate, we can now check the port level of the switches that can be witnessed at the EP end, where all devices remain connected to the network. The management and monitoring are the major benefits of Fortinet FortiGate. 

I would advise others to consider adopting the solution without hesitation. I read the latest Gartner Magic Quadrant report, and it mentioned that, based on its track record, Fortinet can compete with the best in terms of network and security solutions.

For the last five years I believe Fortinet has dominated the market. I recently attended a Fortinet event where I met all the local and regional support team; I learned that the vendor is continually expanding, and in our region, we can easily avail support and guidance regarding Fortinet solutions whenever required. 

The monitoring subscription that is provided with the Fortinet FortiGate has built-in AI features for the past three years. I believe Fortinet is in the sixth generation of their AI and ML utilizing the native infrastructure. Thus, the AI features have been available for a long time in Fortinet FortiGate, but they are promoting it now due to the market trends. I would overall rate the solution an eight out of ten. 

On-premises

We've deployed FortiGate on some customer premises. We've also deployed other Fortinet products, such as FortiMail and FortiManager. We often bundle Fortinet devices. We use FortiGate as a firewall. It is for security and protection. 

The solution has helped our clients secure their network efficiently. It offers security across multiple sites and helps monitor traffic effectively.

It's very good and very stable for businesses. It works very well. 

The UI is better than the alternatives. 

We like using Fortinet devices. They integrate well with one another.

Fortinet provides good visibility and segmentation.

Fortinet's devices are purpose-built to operate in various environments. It operates well across clouds. We can run Fortigate as an MSP.

It helps with intrusion prevention specific to various environments. It provides us with details about the traffic for better monitoring. 

FortiGate has helped reduce the risk of cyberattacks that might disrupt our client's production. 

The product provides policies for strict monitoring to make the network secure. If something hits against a policy, it will be blocked.

We'd like to see the product offer higher discounts to users. They should offer special pricing to premium partners and customers. 

The company has been using the solution for the last five or so years. I've maybe used it for three years.

The stability depends on the FortiGate model. You need the right model for the amount of GB traffic. If a customer deploys a smaller model on more traffic, there may be issues. Otherwise, it handles traffic well. Overall, it's a stable solution. I'd rate stability nine out of ten. 

Our clients are quite sizable. One of them is one of the biggest telecoms in our country. We also have smaller customers that deal with smaller FortiGate models. We have a variety of customers of different sizes from around the country.

It's a scalable solution. I'd rate it nine out of ten. 

Technical support is good. They offer very accurate solutions. We learn a lot from them. We're happy with their level of service. 

Positive

We typically deploy the solution to our client's VMs. The deployment sometimes takes about a month. We have a team of 12 people who work on the FortiGate side. 

Their services are good, and we are happy to work with them, however, the pricing could be cheaper. 

We're a Fortinet partner. 

If we have the option of which firewall to choose, whether Fortinet, Cisco, Juniper, et cetera, we will choose Fortinet. We're very comfortable with their devices. We have a very skillful team, and we've become very comfortable with Fortinet. They have good support as well.

I'd rate the solution ten out of ten. 

On-premises

We use the solution to secure our entire data, limiting user traffic from within the system, which needs to be assessed to be secure. That is the main motive behind choosing the solution.

Suppose I don't want to pay for the users. We would have done some whitelisting and content filtering on the FortiGate web gate. Based on the policies, any user traffic is filtered through the secure gateway.

It's a flexible solution.

What happens in FortiGate is that a lot of bugs come on a system-by-system basis, like when Fortinet launches new firmware in FortiGate. Most software launches with known or unknown bugs. When we go for upgradation, even after running a bug scoping exam, we don't know whether the BIOS for which we are upgrading would affect the end user. We don't know how the FortiGate firmware will behave in your environment. Whatever the known bug, FortiGate lists it in their documents, but you never know how the problem will impact your environment. That's a major disadvantage of FortiGate because, somewhere, it's very unstable.

Another issue is how deduplication services don't work reliably after enabling deduplication on Fortinet. When they launch any new firmware in the future, they have to ensure firmware functions.

I've worked with Fortinet FortiGate SWG for more than ten years now.

I rate the solution's stability a seven out of ten.

I rate the solution's scalability a seven out of ten. We have around 700 users on the platform.

If any issues arise, we have to log a ticket with Fortinet. By default, they log all the tickets in P3 or P4 priorities. For P1 or P2, they ask to call us on their phone numbers and lines. Whenever we try to call on the phone for any P1 or P2 issues, the next time, the number gets busy, or the email is unavailable. That's why

I feel the support is not up to the mark, and they must work on it.

Neutral

I rate the solution's initial setup a seven out of ten. The deployment time depends on the scenario, such as your infrastructure size. To deploy the solution on a cloud, you have to buy it from the marketplace and deploy it on the cloud. But after that, you have to do a lot of configurations. That depends on the size of the operation.

One person is more than enough to implement the smaller version of the solution. But if the organization is bigger, with more than 500 or 600 users, we would need three to four people.

Fortinet is priced low.

We are exploring Netskope and evaluating it for the future.

I recommend Fortinet FortiGate SWG because it is flexible and cost-effective. I rate it an eight out of ten.

Public Cloud