Fortinet FortiGate Reviews

We implemented Fortinet FortiGate SD-WAN for a small company that had two internet service providers. The goal was to configure the two links to operate independently, ensuring that they don't share the load. This way, when one link reaches a certain threshold, we can seamlessly switch to the other without any issues. 

We have FortiManager, which enables us to have a unified view for monitoring and managing our devices centrally, as well as dispatching policies.

The solution enables us to consolidate tools and applications and manage them all through FortiManager. You can configure your SD-WAN from Forti Manager, which gives you management functionality. 

The interoperability of the solutions is good because it allows for compatibility with brands other than Fortinet, and we don't encounter issues with it.

FortiGate SD-WAN facilitated a smooth transition for our customers between their two internet service providers, ensuring uninterrupted connectivity without any downtime.

The solution has helped us remediate threats more quickly by enabling real-time monitoring of both links, providing complete visibility into our end links. You can monitor both links on one platform. It's just one single pane of glass where you watch in real-time what is happening. It's easy to manage that way. It helps you to easily remediate issues. 

As long as our policies are granular we are able to use the solution to reduce our MTTD. 

The solution has helped to reduce our MTTR from what used to be five minutes down to 45 seconds.

The solution has helped to reduce the number of help desk tickets because it is now extremely rare for both links to be down simultaneously.

SD-WAN, regardless of the OEM being used, is a beneficial technology that is increasingly adopted by businesses due to its positive impact on business security. It allows us to maintain uninterrupted operations without concerns about past issues.

Fortinet FortiGate is user-friendly.

The support we receive when we need to upgrade is not satisfactory and has room for improvement.

I have been using Fortinet FortiGate for two years.

The solution is stable and we have not had any issues.

The solution is highly scalable.

The technical support is good, but they take a long time to respond and resolve the issues.

Neutral

I have also used Cisco, whose systems are robust and rarely experience downtime. However, with Fortinet, their licensing is highly competitive in terms of pricing. Cisco is primarily geared towards enterprise-level companies, but the learning curve for Cisco is higher compared to Fortinet.

Fortinet's price is very competitive compared to when you look at other brands of equal functionality. The hardware and licensing are compared to the others. It's also simple to use. 

The initial setup is straightforward. I did the deployment and didn't have any issues with it. It took one day to complete. 

The solution provides value and, therefore, offers a return on investment.

The price is highly competitive when compared to other brands that offer similar functionality. Fortinet FortiGate is more affordable both in terms of hardware and licensing, in comparison to its competitors.

I give Fortinet FortiGate a seven out of ten.

I recommend FortiGate SD-WAN because it is easy to implement and simple to use.

My company's customers use the solution for VPNs, specifically for SSL VPNs, IPSec VPNs, and other areas like web filters and application filters.

The most valuable feature of the solution revolves around SSL VPN. SSL VPN is good since I stay in a family where we use some other servers with port forwarding features, and so there is a lot of risk with it. Last time, my server got hacked with a ransomware attack. After that, we got a firewall and gave an SSL VPN to my client to connect to their servers, after which, such kind of activities involving ransomware attacks stopped.

Though the tool's GUI is user-friendly, it can be considered as an area with certain shortcomings where improvements are required.

I have been using Fortinet FortiGate for five years. I am a reseller of the solution. I work with Fortinet FortiGate 40F and 60F.

Stability-wise, I rate the solution a ten out of ten.

Scalability-wise, I rate the solution an eight out of ten.

The challenges faced by our company related to the product are associated with the activation part. Whenever my company tries to activate the product, there are some challenges. Previously, my company had given a new product to our customer who had used Fortinet FortiGate in the past. When my company tried registering the product on the portal and activating the trial license, we saw that only 30 days of use remained in the tool. We installed the product's license after all the trial licenses were activated.

I have seven to ten customers running medium-sized businesses using Fortinet FortiGate.

After connecting to Fortinet Firewall, I have not faced any complaints related to large-scale traffic or attacks.

The solution's technical support needs to be fast since whenever my company raises a complaint, it takes almost two to three hours to get a callback from the customer support team. I rate the technical support a seven out of ten.

Neutral

I don't have any experience with SonicWall because it is not very user-friendly. Fortinet FortiGate is more user-friendly than SonicWall, so we are currently working with Fortinet FortiGate and Sophos.

The product's initial setup phase is easy. I rate it as an eight, where one is difficult, and ten is easy. Sometimes, when configuring the SD-WAN policies, I have seen issues with the tool not working properly. After updating the firmware, the tool worked properly, but there was some issue with the SD-WAN part.

For the product's deployment phase, I configured LAN and WAN, followed by the web filter policies. If a customer requires it, you can configure the VPNs.

The solution is deployed on an on-premises model.

The solution can be deployed in half an hour.

It is a bit expensive. On a scale of one being cheap and ten being expensive, I rate the tool's price as an eight. The price is justified for the features and capabilities offered by the product.

I can't describe how Fortinet FortiGate has been most effective for security posture since I haven't configured any security settings. It has a setting like in Outlook's configuration involving SMTP and POP. I didn't configure any security settings in the tool.

The tool's VPN functionality supports our company's customers' remote workforce since we have given an SSL VPN connection to support those working from outside the company. After connecting to the VPN, one needs to connect it to the server directly as it is better for security.

Whenever you upgrade firewall firmware, the user interface doesn't really change. If I upgrade to a new firmware with other tools, the user interface has slightly changed.

On the portal of Fortinet, there are VMs that are available for FortiGate. Our company can give the solution to the customer on a trial basis to check how it is working, so that there are no issues.

I rate the tool a nine out of ten.

We are a system integrator and Fortigate is one of the firewalls that we implement for our clients. I am a solution architect.

Our primary use for this firewall is the IPS.

One of the things I like best is the ease of configuration.

Management-wise, it is very good.

The most important feature, normally for small business customers, is link load balancing.

The firewall throughput is very good. Most of the customers in this region use FortiGate for their data center firewalls, and the main reason is because of its high throughput.

Fortinet is good in terms of security and threat prevention, but they are not leading. For example, the signature database can be improved.

If they had better integration with security products, such as Cisco ISE or Rapid Threat Containment, then it would be an improvement. Customers that have ISE implemented are able to provide inputs based on malicious traffic, and then ISE will automatically block it.

We have been working with Fortinet FortiGate for the past two years.

Stability-wise, they are good at the job of a data center firewall. For a perimeter firewall, it is for smaller customers, preferably.

The scalability depends on the design and how it was done. You have to think about the next five years. We get lots of new updates on the older versions and if the product is still in support then the new features will be included.

The responsiveness of the support depends on the level of support that you have. If you have premium support then you will get immediate access to them. Otherwise, you have to wait for some time, perhaps an hour, before they get back to you.

On the technical details, there are different levels of access. Once you have engineer access then most of the cases are going to get resolved, or otherwise, they will go to their development team.

In addition to FortiGate, we are using Cisco SFR.

The initial setup is straightforward. We have field configuration guides that we follow and you don't need to have much in-depth knowledge to set it up initially. However, performing the fine-tuning requires that you have proper training on the device.

Deploying the firewall for a new customer will be completed within two to three days, or perhaps a week at the most.

Compared to vendors like Cisco and Palo Alto, FortiGate is the cheapest. However, they only have a small segment of the market. Fortinet is trying to appeal to small and medium-sized customers, and I think that their prices should be a little lower for this segment.

On the high-end devices, it is fine. However, the problem is that their subscription price is very high. If you purchase a one-year subscription with the hardware and then you want to renew for the second year, it is very costly. Your whole price ends up being very high.

As a system integrator, we sell a lot of similar solutions from a variety of vendors. We have found that the Fortinet firewall has a much better throughput than that of the other vendors.

If a large customer is looking for a perimeter firewall then we suggest another vendor, such as Check Point or Palo Alto.

FortiGate is a product that we recommend and we have migrated many customers from other vendors. FortiGate is a better option, although small customers don't care much about security. They only care about basic security. There are only a very few who are really concerned about it and most of them don't have a proper IT group in their company. 

I would rate this solution an eight out of ten.

We use it for a multi-tenant virtualized environment for public cloud services. We provide cloud services for the public sector.

We have two clusters with the latest version, and we also have two clusters that I would like to replace with the latest version. We have support from the vendor, and we're going to buy two new clusters.

We have all the solutions from Fortinet, and it integrates very well with all of them. I'm very satisfied with its integration with FortiManager and FortiAnalyzer.

The multi-tenancy feature is most valuable. It integrates very well with FortiManager and FortiAnalyzer.

They are flexible in terms of installation. They support many architectures. They can operate with most major public cloud providers. It is a trend now to use hybrid solutions.

It has a lot of features, and it is reliable.

Their software support needs improvement. I would prefer to have better support for bug fixes. Sometimes, we open a ticket, and it is very difficult to get a solution. Specifically, we are not at all happy with their support for load balancing. 

I have been using this solution since 2015.

We're happy with its performance. I would rate it a 10 out of 10 in terms of performance.

We are happy with its scalability. Its users are administrators. Our administrator team has about six people. The environment is set up as a multi-tenant, so each tenant has its own administrator for configuration.

It has been used every day since 2015. It is a core appliance for us.

Their support needs to be improved. We're not at all happy with their support. It sometimes becomes very difficult to get a solution. We are not satisfied with their support for load balancing. The support we have for Cisco firewalls is much better. I would rate them a seven out of 10.

We also have a Cisco solution in operation.

Its initial setup is normal. It is not too complex.

The deployment takes place with the help of an integrator. We have an integrator to help us deploy and install all the solutions. They analyze all the features that we need to use, and then we discuss and finalize the solution before starting with the installation.

We have five to six people in the network team.

We have seen an ROI with this solution.

The licensing scheme of Fortinet is better than Cisco. It is more logical.

Before buying, I would advise thinking about the exact features that you need to avoid expenses. You must understand very well what you need for your daily operations and then decide on the features to buy.

Overall, we're very happy with their firewalls, but when we have issues or bugs, there are some difficulties in finding the resolution. In terms of features, we haven't found any problems. It has many features, but when we use a feature and it has some bugs, I expect better support.

I would rate it a nine out of 10.

We are basically system integrators. We design and implement firewall solutions for our customers. We also provide after-sales services. 

We have deployed this firewall for different types of clients. We are providing solutions starting with FG-30E, which is the lowest model in the FortiGate series, and up to 1000 series.

We understand a customer's requirement of current internet users. After that, we design a perfect solution through which they can not only protect their network but also have load balancing between multiple internet service providers. They can also have secure connectivity from a remote office by using a single box device.

The web filtering facility and application control are the most valuable features from the point of view of our clients. The VPN feature is also quite popular amongst our clients. Two-factor authentication is one of the good features in Fortinet. These features are important for the current scenario of security. Security has become a necessity nowadays. With cyber-attacks becoming more common, protecting an organization's data is one of the major tasks. 

It is also very stable and scalable, and it is very straightforward to configure. Their technical support is also good.

Security is a continuous process. In every product, there is a requirement for improvement. Its pricing should also be improved according to Indian market requirements.

They must also improve on the reporting part. Its reporting can be more precise. If we can get a real-time report in a specific format, it will be helpful for customers to know about the current status of their security.

I have been working with this solution for the last 12 to 13 years.

It is very stable. We have been working with this solution for a long time, and we found it to be stable.

It is a scalable solution, and you can also upgrade. They come up with a new feature every time. Whenever you're updating your firewall firmware, it is ready to mitigate threats available in the fiber scenario.

Our clients are small, medium, and large businesses. We have deployed it for small offices or retail stores as well as for big manufacturing units. We also have clients from Education and Healthcare. Some of the large companies have between 800 to 1,000-plus devices protected through this firewall.

Their technical support is good.

I have a little bit of experience with other firewalls such as Sophos and Check Point. There are some basic differences in the features and their functionality, but I cannot say that this one is the best, or this one is not good. I have more confidence in Fortinet FortiGate, so we are focusing only on this.

In terms of support, we had purchased a Check Point product for a customer, and we were trying to get support from the team, but it was very difficult. Sophos is okay in terms of support.

Its initial setup is very straightforward. It is very easy if one knows the basic concepts. It has a graphical user interface, which makes it straightforward to configure. You can configure it step by step. The basic implementation of this firewall can be done in a very simple way. There could be some complexity at the Enterprise level, but at a basic level, it is very straightforward.

The deployment duration depends on the complexity level. A simple deployment can be completed in a few hours. A complex deployment can take one to two days depending upon the requirements. This is because, in addition to implementation, we also have to test the solution as per a customer's requirements to see whether it is fulfilling the given task or not.

We are a very small company with seven to eight people. We have a total of three people working with firewalls. They're network and support engineers.

Our clients definitely get a return on investment. It is a really good product, and the stability of the product is a very important factor for our clients.

Pricing and licensing is a little bit complicated in FortiGate. They are always on the higher side. This is one issue that we always raise with the company that they should reduce the price according to Indian market requirements. There are no costs in addition to the standard licensing fees.

It is a good product, but I would always recommend selecting an implementer partner carefully. The implementor should be able to implement all the features so that you get the best benefits of the firewall. An implementation partner is very important. If you don't have a proper partner, you will probably end up with a mashup, and you won't be able to use all the features. Your performance might also not get optimized.

I would rate Fortinet FortiGate an eight out of ten.

The SD-WAN feature of Fortinet FortiGate has been most impactful in maintaining our network's integrity.

Fortinet FortiGate's threat detection capabilities are good for our use because it's an internal firewall; however, we haven't enabled some of the features that are there. We've enabled IPS and antivirus generally.

They could improve the response time and quality of support.

I'm not sure what additional features they need to have in the future to make it better. For the purpose that we use it, it is doing the job, but I haven't explored some of the features.

I have been using Fortinet FortiGate for seven years.

I haven't had any issues with the stability or performance of the actual firewall. It has been fine with no bugs.

We didn't have to think about upgrading or anything; it does what we bought it for. If it wasn't for the end of support and the end of sale, we would not think about changing it. We are considering similar products for upgrading, maybe newer or bigger hardware.

The product is scalable. Currently, 120 people are using Fortinet FortiGate in my company.

I would rate their technical support about six out of ten; I'm not fully satisfied. They could improve the response time and quality of support.

Neutral

Fortinet FortiGate has delivered financial and operational ROI to my organization. It took about two to three years to realize ROI with Fortinet FortiGate.

At the time we bought them, I was satisfied with their pricing; I don't know how the new pricing will be.

We have to pay additionally for maintenance or support; it is not all included.

I would rate Fortinet FortiGate a seven out of ten.

We primarily use the solution for security purposes and for UTM web profile applications.

There are a variety of features on offer. 

It helps protect endpoints. 

The wireless control is helpful.

It is scalable and extends well.

The solution is stable and reliable.

Technical support is helpful and responsive.

The pricing could always be better. It is very expensive. 

We'd like to see Fortgate include WAF services.

The maintenance of the product can be a bit difficult. 

I've been working with the solution for ten years. 

The solution is pretty stable and reliable. There are no bugs or glitches, and it doesn't crash or freeze. 

This is a scalable product. 

Technical support is very good. They are easy to work with. We've been satisfied with the level of support.

Positive

I've also used Sophos and CyberArk. Sophos has a few more services, such as WAF services.

The initial setup is moderate. It depends on the client's requirements.

We typically can deploy the solution within two or three days. We have a security engineer that handles the initial setup.

It does require some maintenance, and that can be a bit difficult. 

We implement the solution for our clients. 

We have witnessed a bit of an ROI, even though it is an expensive solution. 

The solution is quite pricey.

I am an end-user and work in configuration and support for a partner.

I'm working with the latest version of the solution.

Overall, I would rate the solution ten out of ten. I am very satisfied with the product as a whole. I'd recommend the solution to others. It's easy to start working with it. 

The primary use case is for security purposes, mainly at the gateway level and for internal security, such as virtual training. We also use it for cybersecurity and internal communication, like having a portal. The main goal of implementing the product is to resolve security problems.

We have seen benefits. Recently, Sophos Firewalls and Palantir have also entered the market. However, FortiGate provides a higher throughput at a lower cost than these features and licensing. Our company acts as an integrator, and we work based on the customer's needs and requirements.

Fortinet FortiGate is easy to use. Anyone can easily maintain the box in small to large organizations. Even if we configure and hand it over to them, they can easily consider and register policies. And it's easy to monitor the end-to-end network through the firewall.

There are mainly two areas of improvement in Fortinet FortiGate— the licensing cost and the timing of upgrading licenses for boxes. FortiGate's renewal cost is quite high, and our customer care team also receives complaints about it. The renewal part of the firewall is expensive. If a customer pays for the license in advance, they may lose their privileges.

For example, if the license of a box expires in one or two months, and the customer wants to upgrade, there are three to four months between the operation and the end of the current license. If I purchase a new license, it will only take effect from that date. So, it fails in the backward fetch, and I am currently busy setting it up. But if the customer is not processing the card for six months, they will not benefit from the system.

I have been using Fortinet FortiGate for two to three years.

I would rate stability a nine out of ten. It's a stable product. For the most part, it's very reliable.

It is also a scalable solution. However, as integrators, the scalability depends on us. There are many options available, and we can choose the size of the box based on our requirements.

The customer service and support are very good. Once we create a ticket, we can contact them using the ticket number, and they will provide the support we need. As for the contact names, there is no rate, but there are more challenges.

Neutral

We have used Sophos Firewall, Check Point Power EOL, and others. But none of them were like FortiGate. When we upgrade the license, it shows another one, two or three years from that date.

There are no challenges in the initial setup. The people required to deploy the situation are based on the customer's expertise. We handle various types of configurations, and sometimes there are additional requirements with load balancers on top of the firewalls. We need to integrate these firewalls with that ALG.

Generally, we consider security as a separate thing. These firewalls and the LOBs will take care of some further issues based on the customer's requirements. For smaller organizations, one person can provide or ensure a sort of service. We will need three more administrators or developers if there is more traffic or high-cost tech.

Generally, most of the customers maintain their solution on-premises, not on the cloud. I am a technical guy. I am involved in deploying the solution to our customers. I take care of the HCLM upgrade, inflation rate consideration, automation, and other technical aspects of the solution.

We evaluate the area first and then proceed with the implementation by creating a DMZ zone and policies such as CRM and CAP.

FortiGate is a bit pricey, but its unique features and specifications make it an excellent option for certain customers.

As an integrator, we have observed that the licensing cost and the upgrade process are important considerations. When we purchase a new license for one or three years and upgrade it to the existing box, the expiry date does not change from the original. It can create a gap of three, eight, or even twelve months for the customer. Consequently, they buy another box instead of going through the ticket process to get it fixed.

We definitely explore the options. We always understand the customer's requirements first and then offer solutions accordingly. We ask what the customer needs and what their budget is. If their budget is INR 10,00,000, and we find a product that matches their requirements, we will offer it. If FortiGate provides the same features and throughput but costs INR 11,00,000, we might still offer it to the customer. However, if FortiGate doesn't match the customer's requirements, we won't suggest it.

So the main differences between products are the features and specifications. If a product has the same throughput and features as another product but costs more, we may not suggest it to the customer.

The challenge is licensing. Hardware-wise, it's supportive, and the support is good. But the licensing and renewal costs should be lowered, and renewing the license and data for the new license is tough. So, only for licensing, we face challenges. I would rate it a seven.

We have many boxes, and we have changed all the boxes to other products because of this licensing factor only. Even for FortiGate, such a thing happens. If I have a hundred boxes and I want to renew the license, they suggest taking new boxes with three or four at least. So that is why customers are not liking FortiGate. They could provide the same license card along with the box, which is why customers are unhappy.

Overall, the product is a four out of ten because scalability, box performance, and support are all great. However, once it's commercially used, you can only use this box; no other options are available.

We can recommend it, but FortiGate's ability to capture the market, fix the order, and meet the requirements or opportunities is also important. As an integrator, we don't have any issues with it.