Fortinet FortiGate Reviews

We use Fortinet FortiGate to help protect and secure mission-critical data. There are policies and rules that we apply, and there is an intrusion prevention system that notifies if there are critical vulnerabilities on some clients.

I assess the security services provided by Fortinet FortiGate, such as URL filtering and DNS filtering, as quite good; they are quite effective. Fortinet FortiGate is rather sustainable; it's a good, stable product that gets faster and uses less power with new versions. 

It helps us remediate threats more quickly because we have specialists who can work with it rather effectively. When there is an alert on the Fortinet FortiGate, they work together with our FortiAnalyzer and can quickly remediate the incidents.

They should do a better job in testing when they put out a new release because when a new software version is released, it is not always stable or does not always have all the previous features working correctly. They should do more testing or launch a new version later when they have tested it more thoroughly. 

They already did a good job in their GUI, but they can make more features available in the GUI that are still only accessible through the command line.

My proper experience is only two or three years, but in the company, they have been using it for over 10 years.

In terms of network and security convergence, they are there, but we are not currently using them because in the office itself, we have other brands of switches and access points. It's now not quite stable in the demo lab environment; we are now on the latest version, but in the production environment, we are not. Production is always on a lower version.

It is scalable.

I would give Fortinet's technical support an eight out of 10; they are responsive and helpful.

Positive

I previously used Sophos before Fortinet FortiGate.

If you first implement Fortinet FortiGate to get it up and running, it takes just a couple of minutes, but to get all the policies configured correctly, it takes a couple of days.

For my company, Exclusive Networks, the whole company had three or four engineers involved.

We have seen a return on investment from using Fortinet FortiGate for integration with the SOC team. The automation part is giving us a cost benefit and speed; we can react faster.

The price-to-performance ratio from using Fortinet FortiGate is very good; I would give it a nine out of 10. It has helped save on costs due to reduced power consumption.

Performance is the reason I switched from Sophos to Fortinet FortiGate. It has good value for money, ease of use, and a higher security level, with better security solutions. It's more expensive, but it offers a really good total cost of ownership and is still considerably cheaper than Palo Alto.

I would suggest to anyone considering purchasing Fortinet FortiGate's data center firewall to get training to understand very thoroughly how FortiOS works, and if you have several Fortinet FortiGates, to go for a FortiManager with the necessary training. 

The users who work with Fortinet FortiGate are only the IT people, around three or four. Locally, we have around 60 end-users for Fortinet FortiGate. The biggest lesson would be that Fortinet FortiGate provides a high level of security at a good total cost of ownership. 

I would give Fortinet FortiGate an overall rating of nine.

My main use case for Fortinet FortiGate is controlling our incoming and outgoing traffic as it's installed in our data center. We're managing all the VPNs, IPsec VPNs, over 48 VPNs with our Fortinet FortiGate. We are also controlling network attacks and threats using IPS/IDS, using web filter, and URL filtering. We are bounding users to access the relevant sites only by using the URL.

Fortinet FortiGate has positively impacted our organization by providing stronger network security as it's a next-generation firewall. The IPS we have blocks known threats and vulnerabilities in real-time. Application control detects and controls thousands of applications, blocks P2P, and limits social media.

SSL inspection scans encrypted traffic, even TLS 1.3 for hidden threats, advanced web filtering, antivirus, and anti-malware. The result is fewer breaches, blocked attacks, better compliance, and simplified and secure WAN connectivity, intelligent link selection based on latency, load balancing across multiple ISPs, and automated failover.

We can run routing protocols very easily, such as BGP. We are using BGP over IPsec VPN for our multiple branches and different stations. We are using BGP over Fortinet FortiGate so it's automated. If one ISP goes down, it will shift automatically without requiring human or network administration involvement. It improves VPN and remote access, including SSL VPN and IPsec VPN as well.

The best features Fortinet FortiGate offers include the SD-WAN, which really stands out, and the comfortable GUI. The IPsec VPN configuration is very user-friendly. Compared to Huawei firewall, Fortinet FortiGate offers more features and is more user-friendly.

In terms of security features, Fortinet FortiGate has Deep SSL/TLS inspection, which is very limited in Huawei NGFW firewall. The AI-powered features in Fortinet FortiGate are more advanced compared to Huawei's basic filtering. The SD-WAN is built-in and mature, while Huawei's support is less feature-rich.

Application control is very granular with signatures, while Huawei is less extensive. The management and usability of Fortinet FortiGate is clean and user-friendly, compared to Huawei's more complex user interface. FortiOS CLI is popular and well-documented, while Huawei, Cisco, and Juniper differ from standards. Fortinet FortiGate offers centralized management through FortiManager and FortiAnalyzer. The reporting, logs, and firmware updates are excellent and stable in Fortinet FortiGate.

Fortinet FortiGate can be improved, specifically in the user interface and UX enhancement. The GUI, especially in older FortiOS versions, can be cluttered or slow. Improvements could make the UI more modern and responsive with a quick dashboard, real-time visibility, health checks, and improved policy editing with bulk changes and better search filters.

Policy management in a large environment becomes complex when managing dozens or hundreds of policies. This could be improved by introducing better policy grouping and tagging for more intelligent policy optimization suggestions, such as unused rules or shadow rules.

The built-in logging and reporting is limited without FortiAnalyzer. Internal reporting tools should be enhanced with graphs, trends, PDF exports, alert-based thresholds, and real-time traffic summaries without requiring FortiAnalyzer, which requires additional payment.

User identity integration with LDAP, AD, and user-based rules can be tricky or limited. Additionally, SSL users cannot change their passwords themselves, which should be included in the OS functionality.

I have been using Fortinet FortiGate for six years.

Fortinet FortiGate's scalability is good, and it can handle our organization's growth and needs as it's expanding.

When choosing Fortinet FortiGate, you must know your network size and use case. Choose a FortiGate model that fits your current network and allows for future growth. For small offices and branches, you can use 40, 48, 40F, and 60F series. For medium offices, 80F and 100F are suitable. For large enterprises, you need 200F, 400F, 600F. For data centers, 1000F is recommended.

It's advisable not to buy a model that barely fits; choose one with headroom for future expansion. Always check key specs based on your needs, such as firewall throughput, threat protection throughput, VPN throughput, maximum concurrent sessions, and ports. Check if you need SFP, PoE, or 10G ports.

Consider the features you actually need, such as SD-WAN, SSL VPN, application IPS, AV scanning, Wi-Fi AP support, or central management. If you need central management, you can use FortiManager. Look for FortiOS version compatibility as the F-series offers clear advantages. Make sure your team can operate and manage it with experienced Fortinet engineers.

My review rating for Fortinet FortiGate is three out of ten.

Fortinet FortiGate is among the best firewall solutions, having a significant market share in Egypt. Fortinet FortiGate has a very simple configuration, is easy to set up, and includes SD-WAN features at no additional cost. I recommend Fortinet FortiGate to act as an internet or perimeter firewall.

Features such as URL filtering, intrusion detection, and threat prevention make it suitable as a perimeter firewall. It also includes free SD-WAN features. It is recommended when any customer has more than one site, as it can act as an SD-WAN solution without any extra licenses, with SD-WAN being a built-in feature. It is a very easy solution.

From my experience, I see that the datasheets of the Fortinet FortiGate portfolio need to be more accurate because correct sizing is essential. The datasheets should provide clear information when deploying features. 

When comparing Fortinet to all other vendors, I believe most features are available in Fortinet. I'm not sure if the DNS security license is available in Fortinet; if not, it is important to add Fortinet DNS security and sandboxing licenses. I know Fortinet has a separate sandbox solution, but I am unsure about sandbox features in the firewall. In contrast, Palo Alto has a DNS security license, email security, and WildFire license that serves as a sandbox solution.

I have been working with Fortinet FortiGate for around eight years.

I find Fortinet FortiGate to be very stable.

The scalability of Fortinet FortiGate depends on the project. If the project meets accurate sizing, it can be scalable, but if the presales engineer does not accurately size it, Fortinet FortiGate can have limited resources to scale. It depends on the project.

I evaluate Fortinet's technical support as a seven out of ten. They aren't the best support, but when we need assistance with any features or field activities, we can utilize the internal support team of the vendor located in our country.

Neutral

I believe it is cost-effective. With Fortinet FortiGate, we can pay once for every renewal period, and there are no CAPEX expenses because Fortinet FortiGate is easy to configure, easy to manage, and familiar to most engineers. 

It is not the cheapest one, but its price is very competitive.

When comparing Fortinet FortiGate to Palo Alto or other firewalls I've worked with, Fortinet is more stable, easy to configure, easy to manage, and is competitive in price. 

Fortinet offers multiple product sizes suitable for various enterprises, including small, medium, and enterprise customers. Compared to Palo Alto, Fortinet offers a free SD-WAN feature while Palo Alto requires an SD-WAN license with more costs and several licenses. However, Palo Alto does offer more advanced features than Fortinet. A notable difference is that when the Fortinet FortiGate license expires, the box still works until the customer renews the license, while with Palo Alto, the box stops entirely and the customer must renew the license to continue functioning.

My experience in integrating SD-WAN capabilities with Fortinet FortiGate in the network shows that the integration is very simple and has a straightforward configuration.

The Fortinet SD-WAN solution consists of multiple products. To create or set up a full SD-WAN solution, it needs two products from Fortinet: FortiGate and FortiManager, which is a centralized management solution, and FortiAnalyzer, which is a log management solution. SD-WAN connects more than one site. It centralizes management and logs. Fortinet FortiGate with SD-WAN does not require any extra license, but to have the full SD-WAN solution, it is required to have FortiManager and FortiAnalyzer for several reasons. Fortinet products can be VM or hardware.

I have worked with the hardware-assisted DDoS protection in the Fortinet FortiGate, and I think it's good.

I recommend the Fortinet FortiGate when acting as a perimeter firewall, and some customers use it in the data center. I recommend another vendor in the data center, but our customers are very satisfied with Fortinet FortiGate when acting as a data center firewall.

I have limited experience with the AI and machine learning enhanced FortiGuard services, but I know that Fortinet is leading this trend. 

Fortinet FortiGate provides SD-WAN and SASE solutions to secure any type of user and any type of traffic. It has many features, including a secure web gateway and secure service edge, helping users access the internet and applications, whether inside or outside.

I would rate Fortinet FortiGate an eight out of ten.

For FortiGate Next Generation Firewall (NGFW), I use it primarily to connect with other companies through IPsec VPN. Any other security measures are on AWS itself, not on FortiGate. I'm someone who's familiar with FortiGate from previous jobs, so I use that, but it's how we're using it right now.

The IPsec feature of FortiGate Next Generation Firewall (NGFW) is valuable to our company because we need to connect quickly VPN connections with other companies in our networks, and there are many connections in some cases. We need to keep it as secure as possible, maybe one-way connections or particular ports. FortiGate is the best option, at least that I'm familiar with, that can answer all of that in one product that is mostly easy to use.

In our case, the deployment options of FortiGate Next Generation Firewall (NGFW) are not scalable, but in terms of connectivity to other companies, that's exactly what we needed, and that's exactly what it does perfectly, what is needed.

The most valuable feature for our company using FortiGate Next Generation Firewall (NGFW) is the IPsec feature, but actually FortiGate is known for good UTM products such as application filter and web filtering. We don't use it here, but in previous companies I used it on a daily basis.

One of the benefits I've realized from using FortiGate Next Generation Firewall (NGFW) is that it's secure and allows functions such as VPN. You can control Wi-Fi and other things from within, if you have FortiNet devices. It's an easy to use product, yet it allows you all that is needed, or at least all that you can do. Whenever there is a security breach, FortiGate is known to patch it very quickly from what I've seen.

Since FortiGate Next Generation Firewall (NGFW) was implemented, there was a thought in the company about using the VPN that AWS itself provides, but it's far from being as good as FortiGate.

The process can be improved in terms of explaining exactly how the installation should be done step-by-step on AWS, because there are network considerations such as security groups. From what I could find, I didn't do extensive research, but it didn't seem obvious enough in that case.

I do not utilize the intrusion prevention and web filtering features of FortiGate Next Generation Firewall (NGFW).

The ability of FortiGate Next Generation Firewall (NGFW) to inspect SSL encrypted traffic is not applicable in the current position, but in previous companies, it was really seamless whenever we used it. It just worked seamlessly.

I don't recall if we use a centralized management console for FortiGate Next Generation Firewall (NGFW) in maintaining oversight across distributed networks.

In my opinion, FortiGate Next Generation Firewall (NGFW) could be better by having specific models for home usage. I'd wish to have a FortiGate in my home, but the licensing isn't something that I want to purchase for home usage.

I have been using FortiGate Next Generation Firewall (NGFW) almost since day one at this company, which I have been with for three years and something.

I experienced the stability and availability of FortiGate Next Generation Firewall (NGFW) more in the previous company. In terms of stability, mostly it is okay; however, in some cases, there are features, especially the UI, that tend to have issues. In some cases, you need to restart it, but mostly, it's working flawlessly, especially if you have an HA environment, high availability.

In our case, the deployment options of FortiGate Next Generation Firewall (NGFW) are not scalable, but in terms of connectivity to other companies, that's exactly what we needed, and that's exactly what it does perfectly, what is needed.

I'm certain that what it allows us in terms of connections to other companies is a straightforward solution that you don't have to use something else. It's easy to configure a new connection, and it works in a few minutes if everything works fine.

In this company, I may have worked with FortiGate Next Generation Firewall (NGFW) support one time, but in my previous company, I actually worked with them extensively. We had multiple FortiGate devices across multiple offices around the world, and we needed to switch them from one account to another sometimes. So I encountered FortiGate support quite frequently.

I would evaluate the level of support for FortiGate Next Generation Firewall (NGFW) somewhere between seven and eight. My experience might be outdated because lately, I haven't had much experience with that. In some cases, you need to come prepared because the people there work by the book and ask for particular things. If you don't have them, you cannot proceed, but if you know what they need, after some time, it's pretty easy to get support or whatever you need.

Neutral

I don't have enough information on other products that I can tell the pros and cons of FortiGate Next Generation Firewall (NGFW) versus its competitors.

The setup was already done, but from what I read, we considered putting it in another environment that we have, yet we didn't because we didn't actually need the environment at all.

I don't know if my company has seen return on the investment from FortiGate Next Generation Firewall (NGFW), but I'm certain that what it allows us in terms of connections to other companies is a straightforward solution that you don't have to use something else. It's easy to configure a new connection, and it works in a few minutes if everything works fine.

Pricing isn't something applicable for me regarding FortiGate Next Generation Firewall (NGFW) because it was already set up once I came to this company.

Since FortiGate Next Generation Firewall (NGFW) was implemented, there was a thought that crossed in the company about using the VPN that AWS itself provides, but it's far from being as good as FortiGate.

I would rate FortiGate Next Generation Firewall (NGFW) as a solution a 10 out of 10. I do love FortiGate.

I give it a 10 because, in my experience, FortiGate Next Generation Firewall (NGFW) is a product that allows you to do many things very easily. If you don't appreciate something about the way it works, you have enough playground to change it to suit your needs.

For someone considering FortiGate Next Generation Firewall (NGFW) for their company, there was a demo online version that they have on their website that is easy to access. You can play with it and see almost all the features in action. That's an easy thing to actually test. Obviously, you cannot connect it to your network and see things live in your case, but it is still a good example of how things work.

I have worked on multiple products including Fortinet FortiGate VM, Fortinet FortiGate firewalls of different models, FortiSwitch, FortiAP, FortiADC, FortiWeb, FortiAuthenticator, and some other products as well.

I have been working on Fortinet FortiGate and Fortinet FortiGate VM for around five or six years. I have deployed it as a perimeter firewall, as a data center firewall, and as a campus firewall in many banking sectors, commercial sectors, and oil and gas sectors. Most of my clients have deployed Fortinet FortiGate firewall on-premises to protect their services.

The ease of use and the user-friendly interface are the beauty of this firewall. The UI itself and the documentation are completely available on the internet. The UI is very easy, and you can easily understand the implementation. The product itself has very strong deep features and security features including IPS and malware protection to prevent and save against cyber attacks.

I have very good hands-on experience and very good deployment experience with Fortinet FortiGate SD-WAN. Fortinet FortiGate SD-WAN allows you to use multiple internets and multiple interfaces separately to load balance your internet and to load balance your services between multiple service providers. This is a very good feature in this firewall that you cannot get as a free default feature in other brands.

The network performance after enabling SD-WAN is very smooth and very efficient. I recently deployed this in forty commercial sector sites with stores that previously had MPLS circuits. With the MPLS circuit, they had a very high cost for private connectivity between sites and branches. After deploying SD-WAN, the operational cost was cut down around fifty to sixty percent because of this implementation. All MPLS costing was wiped out from their IT budget and is now dependent on internet circuits, which are normally standard internet connections.

SASE is a very good feature. For example, I recently deployed this for a customer with users in remote locations. The issue was that they wanted users to remain connected and keep monitoring systems after office hours with no malware installed on the laptop while staying protected. The use case of SASE involved implementing the POP itself on the cloud. The users, whether remotely at home or anywhere in the world, are connected to and keep connected with POP. They access the internet securely with secure company policies as defined by IT. They are not allowed to go directly to the internet without IT policies as defined on SASE POP. There is very good integration from SASE to Fortinet FortiGate firewall to access private access.

For improving sectors, they need to focus on technical support and work on the technical part. Although it is good, they need to onboard these things and improve the technical part of the support factor. Although it is good, it needs much more improvement to get more business and a bigger footprint in the market. Second, AI in the market and malware detection exist. Fortinet FortiGate already has these features in the Fortinet FortiGate sandbox features with built-in AI features. I prefer that they work on more features that they can provide in Fortinet FortiGate firewall.

I would rate this product ten out of ten. For example, when comparing it with Palo Alto and Fortinet FortiGate, I can provide a very good point. In Palo Alto, some features must be purchased separately. In Fortinet FortiGate, it comes with the Wi-Fi controller built-in. Features that you need to buy a separate license for in Palo Alto do not require additional licenses in Fortinet FortiGate as they are built as complimentary features in this firewall.

The network performance after enabling SD-WAN is very smooth and very efficient.

Scalability is the same, and I would rate it ten out of ten.

Technical support can be marked as ten out of eight. There is some lag, but you can find documentation and all things over the internet. They can provide support, and I would rate it eight point five to nine.

Positive

My technical team are all technically expert in deployment of Fortinet FortiGate firewall.

My team has around five or six people who are all technically sound in Fortinet FortiGate firewalls.

If we are talking about Check Point, Cisco, and Palo Alto, these are the top-tier firewalls and top-tier vendors for providing firewalls. Following the Gartner report, Palo Alto and Fortinet are at the top in the Gartner report. Because of that, Fortinet FortiGate firewall itself does not require management centers as required in Cisco and Check Point. Fortinet FortiGate firewall cannot be managed by a management center. In Fortinet FortiGate case, there is no requirement for these prerequisites to configure or implement Fortinet FortiGate firewall without a management center. We can deploy Fortinet FortiGate firewall without any management center. It is a very web-based firewall and you can access the firewall GUI from the website, and we can easily deploy it without any management center. In Check Point or Cisco cases, a management center is required. In Cisco case, the Firepower Management Center is required to get the advanced features. But in Fortinet case, it does not require these things. This is a very beauty of this firewall.

I suggest buying Fortinet instead of buying Palo Alto, Cisco, or Check Point. I will definitely recommend Fortinet.

Fortinet FortiGate has different models of firewalls which are high capacity and high variant firewalls that you can deploy as data center firewalls to protect your data centers, your server farms, and your services which are hosted inside a data center.

Fortinet FortiGate has embedded services, these FortiGuard services which have machine learning-based and artificial intelligence-based malware analysis. These services analyze malwares and next-generation malwares that are not easily identified by signature-based detection. They have the capability to analyze malware by AI-based methods and can identify zero-day attacks. Before they exploit as a zero-day, they prevent this signature and stop this attack to prevent that this is an attack. Those services are hosted in my data centers, web applications, storage, and SaaS. All are protected by those cyber attacks.

Regarding pricing, we cannot compare it right now because pricing matters based on business size and the business deal. We cannot say whether it is high or low. Sometimes we can easily compete with any brand, and in some cases we cannot compete. For example, if we have a big deal, we can get good discounts from Fortinet team. In some cases, the deal is not big, so we cannot get enough good discount. Deployment from FortiSASE to your Fortinet FortiGate firewall over SD-WAN is very easy. Fortinet gives you multiple connections from SASE POP to your Fortinet FortiGate firewall. They have fully redundant connections on SASE POP if you have the same redundant connections with ISP connection on your Fortinet FortiGate firewalls. They have the secure SPX tunnel from FortiSASE to Fortinet FortiGate firewall. You can easily access from Fortinet FortiGate firewall to SASE applications and SASE users who are connected on SASE POP can access local services from SASE POP to Fortinet FortiGate and access the local services.

My overall rating for this product is nine out of ten.

Me and my team have been managing site-to-site and remote access VPNs. We have been doing centralized logging through FortiManager and applying security policies, such as web filtering and application control across distributed branch locations. 

I have also handled firmware upgrades, security patching, and integrating the Fortinet FortiGate logs within SIEM tools, such as Splunk, for threat monitoring.

I have integrated SD-WAN capabilities with Fortinet FortiGate by configuring multiple WAN links for dynamic path selection, load balancing, and failover based on performance metrics. I have used application-aware routing to prioritize critical traffic, such as VoIP or business apps, over high-quality links, while sending less critical traffic over backup circuits. We have managed and monitored these through FortiManager and FortiAnalyzer, ensuring visibility and automated alerts if link performance degrades.

The network performance has shown a significant positive impact. By utilizing features such as dynamic path selection and application-aware routing, we've been able to reduce latency for critical applications such as VoIP and video by 20-30% during peak times. Additionally, we’ve minimized downtime through automatic failover between links. This approach has also allowed us to cut costs by routing non-critical traffic over lower-cost circuits while keeping high-priority applications on premium links.

I have used the unified SASE feature a little bit, and it is very effective because it consolidates firewall, IPS, and other features such as sandbox into a single platform. It simplifies the management since we do not have to rely on separate appliances. It also helps with faster threat detection and response, especially when paired with FortiAnalyzer and SIEM tools, such as QRadar. The logs and events are correlated automatically, which makes a significant difference.

Something that stood out for me once I started using Fortinet FortiGate was the centralized management through FortiManager and how easily I could deploy consistent policies across multiple sites. The VPN configuration was also very straightforward compared to some other platforms. The integration with SIEM tools makes monitoring and incident response much smoother, which stood out to me. 

For the future, one improvement area is the complexity of SD-WAN configuration. When managing a large number of sites, the GUI is user-friendly, but when scaling deployments, it sometimes requires more manual fine-tuning or scripting. 

Another concern is reporting. FortiAnalyzer is powerful, but generating customized reports can be cumbersome compared to some other tools. Additionally, seeing deeper automation and API integrations would be beneficial so that policy updates and SD-WAN changes can be pushed faster across large environments.

I have been using FortiGate for about four to five years in various settings. My experience includes working with Fortinet FortiGate and other firewalls and Panorama across multiple roles. I have been involved in designing as well as managing policies. Additionally, I have handled upgrades and migrations.

The performance and stability of Fortinet FortiGate has been strong in both small and large environments. The throughput and latencies are very good, even with multiple security features such as IPS, antivirus, or SSL inspection enabled simultaneously. I have found them to be reliable with minimum downtime. The Fortinet high availability features work effectively to ensure continuous network availability.

Scalability is quite straightforward. They can scale from small branch offices to large enterprise environments. Their model hardware options and virtual firewall instances allow flexible deployment. For larger data centers or higher complex environments, sometimes Palo Alto or Cisco solutions offer more advanced scaling options, but Fortinet FortiGate is definitely competitive for enterprise needs.

I have worked with them a bit, and we usually start by opening a support ticket through the Fortinet support portal. I also remember calling their TAC hotline directly for priority one issues, particularly for major VPN outages or SD-WAN failures.

I typically provide the necessary diagnostics upfront, such as logs, packet captures, and debug outputs, so we can move quickly towards a resolution. Most cases are resolved fairly quickly, but for more complex bugs, they may suggest fixes or recommend firmware updates. In such cases, it just takes a bit more time.

I would rate their support an eight out of ten. They are generally very responsive and knowledgeable, especially regarding firewall and VPN issues. While resolutions can take longer for complex problems or new features, overall, the support team is very helpful and proactive in providing patches and workarounds.

Positive

I have used many alternatives to Fortinet FortiGate, including Palo Alto Networks firewalls and Cisco ASA Firepower. Palo Alto has strong application visibility and threat prevention, while Cisco excels in routing and integration. I have also worked with Juniper, which is great for scalability, and Check Point. I am comfortable adapting to different firewall ecosystems depending on the environment and requirements.

It wasn't that hard. Overall, it was pretty straightforward. For smaller sites or branch offices, the GUI is intuitive and clear. FortiManager helped streamline policy pushes across multiple devices, which made it easy to manage. However, for more complex deployments that involved SD-WAN or advanced features, there was some initial complexity in fine-tuning configurations and integrating with our existing infrastructure. Despite this, it was manageable with good planning and testing. Overall, the process was relatively easy.

Maintenance is definitely a part of my role. I am responsible for applying firmware updates, security patches, and configuration backups on FortiGate devices to ensure stability and security. While Fortinet provides regular updates and technical support, the day-to-day maintenance, monitoring, and troubleshooting are handled internally by our network team.

I haven't looked into that directly, as I am not involved in the purchasing or budgeting aspects. However, I believe Fortinet offers competitive pricing compared to other enterprise firewall vendors. Their licensing model is straightforward, especially regarding security features like anti-filtering, IPS, and web filtering.

The choice really depends on the specific features needed, such as advanced SD-WAN capabilities, which can increase costs. Therefore, it is important for organizations to plan their licensing effectively to optimize value.

I have used FortiClient as part of the Fortinet SASE deployment, primarily for remote users, providing secure access via VPN and ZTNA, along with endpoint protection such as web filtering and threat detection. I have also deployed it to integrate with Fortinet FortiGate and the cloud so users can get consistent policies whether they are on-site or remote. It is useful because it centralizes management and policy enforcement, but I have noticed it can use more system resources on endpoints, so tuning the profiles is important for performance.

I would rate Fortinet FortiGate an eight out of ten. It offers a great balance of performance, security features, and ease of management. However, there is room for improvement in areas such as scalability for extremely large environments and deeper automation. Nonetheless, it is a solid platform that fits well in most enterprise networks. Therefore, I would give it an eight out of ten.

I'm using Fortinet FortiGate for consultancy, implementation, and troubleshooting after device implementation. We serve as both reseller and consultant, providing search support and consultancy support. I usually recommend Fortinet FortiGate for small and small-sized businesses.

I have experience with Fortinet FortiGate SD-WAN, as it is a method for routing traffic. We can assign profiles with specific conditions to create best practices or optimal experiences for customers. These profiles can manage traffic balance or link balancing. We can detect users or specific links for particular services, including load balancing.

Fortinet FortiGate provides superior protection compared to other firewalls, with high processing capabilities. In comparison to Sophos devices, Fortinet FortiGate offers enhanced protection through network protection, IPS, and application protection.

They could simplify their deployment process, especially when customers have existing devices. The configuration approach depends on whether customers need to start from scratch or can utilize existing backups and rules. 

I would seek to improve Fortinet FortiGate by exploring additional features, such as SASE solutions that we are currently studying and implementing. The configuration could be made easier, particularly during initial setup. We need to ensure comprehensive utilization of all device features and learn best practices from other cases.

I have been working with Fortinet FortiGate for approximately one year.

Fortinet FortiGate is overall stable. When compared with Sophos, particularly regarding remote access and SSL VPN, Fortinet FortiGate proves much easier to use. While Sophos presented port-related challenges in Egypt, Fortinet FortiGate operates more smoothly.

Fortinet FortiGate is scalable, with capacity depending on firewall sizing. We determine sizing based on multiple factors: number of users, available links, traffic types, server count, services in use, and whether services will be published. We consider parameters such as VPN requirements, remote access needs, side-to-side VPN configuration, and overall traffic volume to determine device capacity.

We tend to handle support.

I have experience with Fortinet products and limited experience with Cisco.

I provide other firewalls, such as Sophos, and I have worked with endpoint protection solutions. I have experience with backup solutions such as Veeam, and endpoint security solutions including Kaspersky and ESET.

I have created many profiles for SD-WAN capabilities while integrating with Fortinet FortiGate. We assess customer needs and make recommendations accordingly. If customers aren't using SD-WAN, I suggest implementing it due to its effective load balancing capabilities and additional firewall features.

Regarding the evaluation of changes in return on investment after implementing the Fortinet solution for SD-WAN hybrid workforce, we work on a case-by-case basis. ROI is monitored by management, and we do not directly track ROI in the systems.

Fortinet FortiGate is among the best options in the market, though alternatives exist, including Sophos. Fortinet FortiGate demonstrates stronger performance and protection compared to Sophos, though its device and license costs are higher.

I'd rate the solution eight out of ten.

We don't have any issues regarding security, and our web server is running fine with protection from all threats.

The best features of Fortinet FortiGate are that it does the job effectively and protects our environment. It has a VPN and can create a virtual IP for a web server and functions as a standard firewall.

We faced difficulties with the configuration because there are many features we could optimize using Fortinet FortiGate, but our reseller didn't have a good understanding of it. So, we just use it on a basic level, not with the best practice for using FortiGate.

We have been using Fortinet FortiGate for around five years.

Overall, I find Fortinet FortiGate to be very stable. Fortinet FortiGate demonstrates consistent stability.

In my case, the 101F is not scalable. I faced problems with scalability related to memory. When we hit 100% memory usage, it stops the internet connection, so we need to control the traffic. We cannot increase the memory.

We have about 350 users and only one admin.

My experience with Fortinet's technical support is good and helpful. The response time and overall competence meet our expectations. I would rate their support a seven out of ten.

Neutral

We used Juniper before Fortinet FortiGate. We switched because it was an old one and reached the end of support. We had to change.

We were supported by a third party and the reseller. During deployment, it was not a good experience because of the reseller. We had challenges with the optimized configuration. 

The deployment took around three months.

The reseller helped us with the implementation. It has been a long time since the implementation, so I don't remember the name of the company that helped us.

Our IT has six people for deployment, and we used two staff members.

We have seen a return on investment with Fortinet FortiGate. The ROI calculation is based on potential loss prevention rather than traditional ROI metrics.

Its pricing is good. The advantages of Fortinet FortiGate over its competitors include good pricing and meeting our requirements at a lower cost. Palo Alto's features are superior, but too expensive.

I compared other brands, such as Palo Alto and Sophos, and chose Fortinet FortiGate. Palo Alto is the best, but it is significantly more expensive. Palo Alto has better capabilities than Fortinet FortiGate. Their protection is much more secure, and they excel in detecting intrusion and reading information. 

I would rate Fortinet FortiGate an eight out of ten.