Fortinet FortiGate Reviews

The use case for Fortinet FortiGate primarily refers to firewall functionality. 

The best features of Fortinet FortiGate include the simple user interface. The GUI is in English with intuitive navigation. It is very easy to find solutions, meaning it is simple to locate what we need and which settings we need to modify through the GUI.

We have integrated FortiGate SD-WAN. It's working pretty well.

Areas that have room for improvement in Fortinet FortiGate include support and GUI enhancement. While the GUI is already simple, further improvements would greatly benefit them.

I have been working with Fortinet FortiGate for one year in this organization.

I would rate the stability of Fortinet FortiGate as eight out of ten, as it has proven to be reliable.

Fortinet FortiGate is scalable. We primarily deal with small and medium businesses, and for our clients in this segment, it works effectively.

The technical support that Fortinet provides is not satisfactory. When we call Fortinet technical support, it takes too much time to connect with them. The process is complicated, requiring us to hold for many minutes, and when we visit clients, we are not satisfied with their technical support.

Neutral

We work with five firewall vendors, including Fortinet, Cisco, Palo Alto, SonicWall, and Sophos. We have specialists for their products.

We first recommend Fortinet FortiGate or Palo Alto. If a customer cannot afford Palo Alto, we recommend Fortinet FortiGate. If they cannot afford Fortinet FortiGate, we recommend Sophos or SonicWall.

When comparing security policies, Palo Alto is superior to Fortinet FortiGate, but Fortinet FortiGate is adequate. For businesses with higher requirements, we recommend Palo Alto due to its advanced security features, while for small and medium businesses, we suggest firewalls based on their specific requirements.

Deployment of Fortinet FortiGate is straightforward. If the customer requires, we can configure it from our end and deploy it directly.

Our clients are small and medium-sized businesses. They can't afford the cloud. They take the device and install it on-premises.

Fortinet FortiGate is cost-efficient. Palo Alto is expensive, but Fortinet FortiGate is not.

I would recommend Fortinet FortiGate because the GUI is understandable for English speakers, and the configuration is straightforward. 

I would rate Fortinet FortiGate an eight out of ten.

On-premises

We are using Fortinet FortiGate SWG for web filtering, application control, and IDPS. Additionally, we utilize it for VPN and the main features of a firewall.

Web filtering is very good, as well as IDPS. SD-WAN is a perfect feature. Additionally, the VPN is stable and very good. These features have proven effective in protecting our network, handling large volumes of traffic smoothly without any issues.

More improvement in AI would be a good edge. We would like the VPN to act as a web filtering solution because users outside the company don't have web filtering. It supports web filtering with an additional license.

We have been working with Fortinet FortiGate SWG for more than nine years.

We did not face any challenges during the installation. The process was very smooth.

Fortinet FortiGate SWG works well, handling the whole traffic smoothly with no problems. We have not faced any issues with stability.

The solution is very scalable.

We haven't needed to work directly with Fortinet support recently. Seven years ago, the experience was not good, warranting a rating of five based on that past experience.

Neutral

The initial setup took just a few hours, as it was completed on the same day.

The implementation involved two engineers.

There are financial benefits as Fortinet's products are considered good value for money due to their robust features, despite being priced higher than competitors.

Fortinet products are very expensive compared to competitors like Sophos and SonicWall. From a pricing perspective, I would rate them a six.

Fortinet FortiGate SWG is a leader regarding Gartner. It has a friendly user interface and is very secure compared to others with many features. I recommend it to other companies because of these advantages. I would rate the product a nine. The overall product rating is nine.

Hybrid Cloud

Microsoft Azure

We use Fortinet FortiGate IPS to enhance our network security. It is especially necessary to secure the edge of the company.

The whole IPS suite is valuable, especially with the updates from FortiGuard. It provides real-time updates, offering a good vision on any changes. For example, if the rating of a certain website changes, we can investigate potential malicious content with FortiAnalyzer.

The pricing of Fortinet FortiGate IPS could always be improved.

I have been using Fortinet FortiGate IPS for two and a half years.

The deployment of Fortinet FortiGate IPS was moderate in complexity. It took approximately two hours to deploy, depending on one’s knowledge, and it was carried out by four or five engineers in the company.

Stability is generally good, but if you include FortiOS underlying in the FortiGate, there are often some patches to do and some loopholes. I would rate the stability as eight out of ten.

The scalability of Fortinet FortiGate IPS is good, and I would rate it nine out of ten.

The technical support from Fortinet is rather good, and I would rate it nine out of ten.

Positive

I worked a little bit with WatchGuard, but I do not know a lot about it. I am only here for two years and do not have experience with other vendors.

The initial setup of Fortinet FortiGate IPS took about two hours and was of moderate complexity.

The implementation of Fortinet FortiGate IPS was carried out by my team internally with four or five engineers involved.

I rate the pricing with an eight out of ten. They could always improve the pricing.

No, we are not considering any alternatives for Fortinet FortiGate IPS. We are quite happy with the product.

I would recommend Fortinet FortiGate IPS as it is a core component of cybersecurity for our company. Having a FortiGate without IPS services doesn't make sense for us. I would rate the overall solution nine out of ten.

On-premises

We integrate SD-WAN capabilities with Fortinet FortiGate frequently. Integrating SD-WAN is very easy and almost plug and play. In many cases, it's accomplished by using the built-in features. For more advanced SD-WAN configuration, it's very well documented and described in the Fortinet documents, which helps significantly. It works flawlessly most of the time and is very easy to administer.

I haven't worked extensively with Fortinet Unified SASE yet. We will probably work more with it, but since Norway is quite a small country, we don't have the same use cases as America has, which has many branches of their customers. Our big clients are usually what the US refers to as a small business. We have many smaller locations, which have fewer security needs in a SASE way, as of yet. We are starting to see that the thinking about SASE is changing and more companies are actually starting to open up for the idea of having SASE. I still haven't actually implemented it. I've done several labs with Fortinet and workshops with them. I don't have the experience to actually say how it works because I haven't implemented it with a working customer yet.

I have used Fortinet FortiGate's data center solution. In some cases, we use the high-end data center Fortinet FortiGate. We currently don't utilize machine learning in our data center solutions. We have not implemented any AI capabilities in our production environments due to security concerns. We prefer to avoid using newer and potentially untested technologies in critical environments. Our focus is on maintaining security, and we believe in having a hands-on approach to fully understand the processes involved. Although we’re not using AI, we have had a lot of success with FortiGate for data centers. They are very effective, and I personally enjoy using them. One of the advantages of FortiGate for data centers is that it operates exactly the same way as a regular FortiGate. This means you don't have to relearn everything just because you’re using a higher-end product; it's extremely powerful without requiring a significant adjustment. Overall, we appreciate the ease of transitioning to these systems.

We’re not necessarily a bigger part of the development as a partner, but I feel we’re more informed and more welcomed into the process of actually building the Fortinet FortiGate features because we can easily create a feature request and they will actually take it seriously if it’s something that they see a use case for, and they will publish it. I feel we have a great say in what could be improved feature-wise. I also feel they are very attentive when we’re giving them constructive criticism and they actually take it seriously, which not all vendors are. Being that we’re a small country, it speaks volumes that they care what we say because we’re not that big of a deal in the global picture of Fortinet sales, but they still care what we mean and what we say. It’s very nice to feel that.

The best features of Fortinet FortiGate would be the throughput for the value for money in regards to throughput and security. Many companies have security, many companies have throughput, but very few have throughput and security bundled together in the same price range. It's very easy to use compared to competitors, easy to understand, and the training material is readily available and not hidden behind paywalls as much as many competitors have chosen to do. It's easier to get knowledge, easier to get understanding, and it's a wide portfolio of training material, which is easy to access, which is very good for new technicians. It's also very good for the customer if they want to get a deeper understanding of the product they are actually buying, which they often do.

There's not much to improve except getting rid of more bugs earlier in the software versions so you don't have to be one and a half years behind on software because you're afraid of bugs in the newer releases. I do understand why they have feature releases, which are the newer software releases, but when Fortinet themselves say, don't use feature releases if you don't need the features in production environments, I would really prefer to have more stable software releases, so you don't have to be scared when upgrading.

I have worked on and off with Fortinet FortiGate for about seven years. My main focus has been Fortinet FortiGate for around four years now. It was a part of my work day earlier and now it's one of my main responsibilities to develop our Fortinet FortiGate use for customer cases in our company.

Considering the last three years, I would put Fortinet FortiGate at a seven out of ten because there have been many bugs and vulnerabilities, which forces us to do updates very hastily. I do understand that other competitors also have vulnerabilities. I just feel that Fortinet FortiGate has had many vulnerabilities in the last three years, which forces us to do unscheduled downtime for upgrades. Most of the time in large data center installations, you don’t really notice the downtime because it’s high availability, so the other one takes over. We have many customers that don’t have high availability, so it really sends a message that we are using a product that’s maybe not the most secure regarding vulnerabilities, which is unfortunate. Most customers understand it, but it’s still a nuisance to have unscheduled downtime because of a vulnerability.

The scalability of Fortinet FortiGate rates a perfect ten out of ten. Scalability is one of the biggest upsides of it. It doesn’t create a problem if the customer wants to upscale or extend or do anything to scale the solution. Even downscaling works very well.

We're taking the large customers in Norway. In the last eight months, we had the two biggest Fortinet sales in Norway's history, so we're focusing on high-end customers.

Most of the time, vendor support for Fortinet FortiGate rates a ten out of ten. They’re very helpful and sincere. They really try their best to help us with our problems and challenges, and they never back down from wanting to help. Sometimes it’s an eight out of ten because we sometimes get in the same cases as a competitor of ours, not a competitor of Fortinet, and they tend to say that they’re treating us equally, while we know they are not. I know they’re trying their best to be equal, but there are many levels of why it’s hard. Most of the time, it would be a ten out of ten with no issues at all.

Positive

As a company, we've gone from only selling Fortinet FortiGate as an accessory to creating an entire department in our business dedicated to selling Fortinet products in the span of three years.

I find that with the proper experience using Fortinet FortiGate, the deployment process is quite straightforward. However, it does take some time to become familiar with the deployment tools like FortiManager. While FortiManager is highly beneficial, mastering it requires considerable time and effort since it operates differently than FortiGate. Therefore, you need to learn a new product in order to use it effectively. Also, a lot of technicians use that as an excuse to not learn it that well and continue to use Fortinet FortiGate, which kind of eliminates the purpose of FortiManager. The skill requirements for using FortiManager are somewhat high. This perspective is based on our Norwegian segment, where most of our customers have fewer than ten Fortinet FortiGate. In many cases, they likely don't need FortiManager at all.

The initial deployment takes days. There’s tuning and everything, but the initial deployment and getting it up in production is usually completed in days. Most of the time we actually do it in one day. After hours on a weekday, we usually deploy big Fortinet FortiGate for the biggest customers. We usually finish that before the next work day. The initial setup takes days, not weeks. Completing the setup completely is a continual thing, so that’s never really done because we’re fine-tuning everything all the time. It’s not something I can put a time estimate on.

It's easy to maintain, but it does require upkeep, as all security products do. You can't just deploy and forget about it. This is especially true for security systems, since new vulnerabilities and methods of exploitation arise every day. However, this is not unique to Fortinet; it's a reality across the entire industry. Keeping that in mind, maintaining a Fortinet FortiGate is still quite straightforward, and there are no significant issues in doing so.

Implementation is usually done internally with highly trained staff in our department dedicated to Fortinet FortiGate, without extensive use of external consultants.

We're starting a new division, a group of FortiGate and Fortinet specialists. Right now, I'm focused on creating and launching this group. Currently, we have ten experts on board, with four or five who are very familiar with the product. I would categorize five to six of them as high-level experts. The remaining team members are also knowledgeable; they may not all be classified as experts by Fortinet, but I consider them to be. These individuals are well-versed in FortiGate and are capable of handling complete installations for large customers independently. I would estimate that there are about seven of them with this level of expertise.

I don't have many insights on numbers, but we’ve gone from only selling Fortinet FortiGate as an accessory to creating an entire department in our business dedicated to selling Fortinet products in the span of three years. That’s very quick in our business, which signals it’s a very good return on investment. We have a very big focus internally on getting more people on board with Fortinet, even moving people from other vendors to Fortinet to create a better understanding of the entire Fortinet portfolio to be able to take those cases because we see the customers really want Fortinet FortiGate and we want to deliver it. That’s one of the main focuses we have now, getting more people on board.

There are levels to it, but the newer FortiGate models offer a very good value for money. It's not too cheap but also not too expensive. I find it to be fairly priced and almost the standard of what the competitors should offer as well.

Regarding how I compare Fortinet FortiGate to other solutions on the market or other vendors, I feel we’re not necessarily a bigger part of the development as a partner, but I feel we’re more informed and more welcomed into the process of actually building the Fortinet FortiGate features because we can easily create a feature request and they will actually take it seriously if it’s something that they see a use case for, and they will publish it.

I would absolutely recommend Fortinet FortiGate. It makes a complex area easy to understand and easy to administer. It’s a very complex world protecting from the scary outside internet, but Fortinet FortiGate makes it very easy and they do have easy to use guidance built into the Fortinet FortiGate itself that helps you make good choices. You can also use the built-in features to scan your deployment to see if anything is done out of the norm. If you’ve misclicked something and done anything wrong, you would get a message if you just use the tools in the gate. It’s a quick and easy way to deal with something very complex.

My overall rating for Fortinet FortiGate would be a nine out of ten.

On-premises

A typical use case for this solution is that we have small to medium-based customers, and we need a central firewall, which should provide firewall and next-generation features, VPN for home office, and for mobility users, mobile users, and this is what we all use with the Fortinet FortiGate firewall.

Fortinet FortiGate has positively impacted my client's organization because we have know-how of FortiGate; we could debug problems, we could set up our settings as planned, and I appreciate the easy way of configuration, that we can use parallel GUI and CLI, or CLI and web interface, which we can use in parallel. It is a product that we can use very easily.

Fortinet FortiGate can be improved because we have some smaller customers, and with the SMB or small customer solutions with the two letters, 50, 70, 90, they sometimes cause problems. They could improve the smaller devices. One issue is that they have retired SSL VPN for existing devices. This causes significant effort for us to change customer setups. Additionally, they changed features when we only make a patch update and not only a major update. This is really a problem.

I have experience working with Fortinet FortiGate for 20 years, and I wanted to see if we have the right product because we have some problems currently with Fortinet.

I find Fortinet FortiGate to be a stable solution.

It is definitely a scalable solution.

I rate technical support seven out of ten because we made a migration from a FortiGate 200 on another customer side, and we wanted to switch a FortiToken from one model to another one, which was only possible with support. It worked, but we needed about 10 different calls; it was really complicated. Support helped, but people changed every time. Every call, we had a call number, and in each call, people changed, so we had to explain again what we wanted to do. For a similar process, we had to make two different calls, one for mobile token, one for hardware token. This was really challenging. Support is working and good, but it's not perfect.

Positive

We've used Sophos firewalls, but we don't use them anymore because they cause too many problems for us.

The initial setup of Fortinet FortiGate is straightforward.

I haven't seen an ROI with Fortinet FortiGate.

My experience with pricing, setup costs, and licensing of Fortinet FortiGate is okay. We won a deal in comparison to Check Point where FortiGate was much cheaper. Compared to Sophos, the base models seem to be cheaper with Sophos, but the services seem to be cheaper with FortiGate.

I remember doing research on peerspot.com about IT solutions. I wanted to investigate differences between firewall competitors or firewall vendors and Google led me to their site. I have checked a few reports, and they have not been very useful for us. For comparing different vendors, I was also led to their site. They have different types of reports, including user voices and Palo Alto Networks review tips and advice from real users in an 80-page long report. They have market shares and rankings and customer voices, but the customer voices point to a single feature, so I don't get an overall picture of the comparison.

My relationship with Fortinet is that we are a reseller. We have made some tests with SD-WAN but have not introduced this product into production. We use Fortinet FortiGate firewalls and some next-generation fire features proxy, but we don't use SASE. We utilize NPS services, FortiGuard services, antivirus, and malware protection. My clients are typically small to medium businesses, with customers from about 20 to 500 people. I would rate Fortinet FortiGate overall as a seven based on my experience in the last year. Before it would be an eight, but now it's seven because of the problems with the SSL VPN. Additionally, we bought some 50G models that still have a 7.0 firmware, which is really old, and this is not good.

On-premises

We are using Cisco for the core switch, and for the firewall and WAN security, we are using Fortinet FortiGate. For distribution switches, we are using Ubiquiti. 

We are using the 200F series of Fortinet FortiGate for our main branch and model 60 for our branch offices at five locations. We have connected a site-to-site VPN with Fortinet FortiGate. 

We have used multiple WAN ASPs and set up SD-WAN. It's quite interesting and user-friendly; essentially, anyone can configure it. All you need to do is go through the documentation, and you'll be able to set it up directly. We experimented with Cisco and other devices, but found them to be somewhat challenging. Additionally, there are commercial aspects to consider. However, with FortiGate, everything is bundled together, eliminating the need to pay extra for SD-WAN management.

Performance-wise, we have great output with SD-WAN in our network. Earlier, when we were using it without SD-WAN, it was very difficult, and our IT team's effort was greater. After this SD-WAN configuration, we have no need to worry about whether the link is going down or not. We just get the notification, and at that time, we work on it. There is no need to run behind that.

The only issue is their renewal pricing. For more than 10 years, we have been customers of multiple Fortinet FortiGate security devices, and every time, it's at a high price. It is very difficult for small companies, especially in India. If Fortinet can reduce the renewal price a little bit, it can expand and target small businesses as well. Currently, only medium and large-scale organizations can afford it. Startups and small companies cannot afford it. The renewal cost is very high. When we get the equipment along with the license, it's acceptable, but the next renewal after one or three years is very expensive compared to other firewalls.

We have been using Fortinet FortiGate for more than 10 years. It's the fifth device we are using. Earlier devices reached the end of life. After that, we moved to the next product.

Fortinet FortiGate is absolutely scalable enough for our needs.

We have more than 400 employees, and there are six branch offices connected. The branch offices are connected with site-to-site VPN, and multiple roaming employees or working from home employees are connected with SSL VPN. More than 100 people are connecting at a time. We only need two IT people to maintain the security devices.

We very rarely raised tickets with Fortinet. Only on one occasion, when the FortiCloud account was locked, we raised a ticket. Apart from the configuration part, we never contacted them. They were very supportive. With that particular ticket, we got help immediately.

Positive

We are also customers of Cisco and Ubiquiti. We have a core switch, 9000 series switches, and Ubiquiti equipment.

I have earlier worked with Cyberoam and Sophos as a partner. They have a range of devices, and the renewal price is also lower in Sophos compared to Fortinet FortiGate.

I was involved in the deployment of Fortinet FortiGate. The deployment process of Fortinet FortiGate is very straightforward, and since we have experience, it's very easy for us. Even for freshers, if they have basic theoretical knowledge of the setup, they can easily implement it. 

It's deployed on-premises. We are not planning for the cloud. Our clients are not comfortable with the cloud solutions.

We deployed it ourselves with one or two people for the deployment.

The renewal cost is much higher than other firewalls. It is not reasonable.

I would definitely recommend Fortinet FortiGate to others. 

My experience with Fortinet FortiGate has been good overall. I would rate Fortinet FortiGate an eight out of ten.

On-premises

We are using Fortinet FortiGate for enterprises. We are a partner of Fortinet.

Its features are very good for the price. Their support is also very good. A lot of expertise is available in the market in terms of engineers. 

The best features of Fortinet FortiGate are its simplicity, ease of installation, and ease of functionality. It is very easy to learn and implement, and everything is clear. The deployment of Fortinet FortiGate is very straightforward. 

I would like to see improvements in Fortinet FortiGate regarding the active-active scenario. The active-active scenario is supported but not recommended, whereas other vendors are implementing active-active without issues. Perhaps in the future, we could effectively use both firewalls to increase the throughput. If there are two boxes, they both should be able to work.

Other than that, I don't have anything. I'm very happy with the features.

I have been working with Fortinet FortiGate regularly for a few months only, though I have previously encountered one or two installations.

Fortinet FortiGate is very stable.

There are multiple options available for small, mid-sized, and large-scale deployments.

My experience with the technical support for Fortinet FortiGate is very good. I only had one bad experience. I would rate them a nine out of ten.

Positive

It is very straightforward to deploy.

In terms of maintenance, many features are automated, including antivirus updates that happen regularly without intervention. Simply connecting the firewall to the internet enables automatic downloads of everything.

It was recently implemented, so it is too early for that assessment.

It is very cost-effective. You get features similar to other firewalls, such as Palo Alto, but at a lower price.

I have not worked extensively with Palo Alto, but from various comparisons, Fortinet FortiGate is understood to be a cost-effective version of Palo Alto. While Palo Alto has more features, Fortinet FortiGate offers similar functionality.

Currently, we are not using SD-WAN, but we will implement it as it is a very impressive built-in feature. We will implement it for one of our customers in the near future.

Fortinet FortiGate is a very good next-generation firewall. It is not very expensive and offers plenty of models to suit various needs. The licensing options are extensive. The day-zero protection is very good. FortiCloud is also excellent. The geo-protection is effective and serves its purpose. 

I would rate Fortinet FortiGate a nine out of ten.

On-premises

The main use cases for Fortinet FortiGate are for small, medium to large enterprises, and they also have products for SOHO (small office/home office). That is where they stand out.

The main benefits that Fortinet FortiGate brings to the table include the ease of configuration, stability of the product, and excellent support. When a customer is using Fortinet FortiGate, they will not look at any other products for expansion or upgrades. In terms of price and performance, it gives a very good, balanced product.

One of Fortinet FortiGate's best features is in terms of the configuration; it is one of the easiest to configure. It is very easy and based on ASICs. In terms of performance under scalability and stability, I would rate it amongst the best. I have not come across a product that I have had to replace or generate an R&D for to date.

There has not been any impact in terms of performance for customers because Fortinet FortiGate is dependent on the architecture, which is totally different. They have security processors, network processors, and they work on a different architecture compared to other products. To be very frank, we have not had any performance issues when deploying SD-WAN and a next-generation firewall together.

Regarding improvements for Fortinet FortiGate, there is always room for improvement in any product. In information technology, things fade away quickly, and new technologies come in. It is how quickly each of these companies adapts to that and brings in more value to the customer.

I have been working with Fortinet FortiGate for over fifteen years.

For scaling Fortinet FortiGate, I am not sure about scaling down as we have not had any instances, but scaling up has presented no challenges.

I would rate the Fortinet FortiGate technical support as extremely good so far. I have not had any issues, and I would rate it the same as Cisco.

Positive

One pro for the Fortinet FortiGate compared to Palo Alto, Cisco products, and WatchGuard is that the architecture is different because they use specific processors to handle different types of traffic, both security traffic and routing traffic. They keep enhancing the processors as they improve the capabilities of the product. As for cons, I do not see anything at this point in time.

The initial setup for Fortinet FortiGate is extremely simple. It takes about five minutes to get it up and running. It is that easy. Nothing beyond that.

The deployment process for Fortinet FortiGate is generally very simple. We give the prerequisites to the customer in terms of a number of man links they want to connect and what the LAN subnet and number of subnets are. These initial details are gathered from the customer. Once the appliances are in place, we begin with the contribution to the content management interface. Most of the time, we start with the LAN configuration and the LAN network configuration. Then we move to firewall policies based on the organization's requirements, licensing the product on the cloud, and subscription licenses. In some cases, we configure VPNs and site-to-site VPNs. That is about it, and there are certain features that need to be enabled, which we will enable.

One thing I would definitely state about Fortinet FortiGate is that, in terms of performance, if compared with a product of the same price point, Fortinet FortiGate will outperform it. This way, the customer has a better ROI because they do not have to look at changing it or looking at an upgrade frequently.

I find the pricing setup cost and licensing for Fortinet FortiGate reasonable.

I work with Fortinet FortiGate SD-WAN extensively. My experience in integrating SD-WAN capabilities with Fortinet FortiGate in the network is that it is very easy.

I would rate Fortinet FortiGate as a highly mature product. I have been working with them for quite a long time and have multiple implementations across India. I have not come across any instance where I had to replace the product.

My advice for others looking into implementing Fortinet FortiGate is to plan the capacity properly and right-size the product for the specific customer, which is most important. When choosing the wrong model, some run into issues where it is not supporting that procedure, the system going under load, and similar issues. It is primarily important to spend more time on the design and finalize what is required in terms of the appliances.

On a scale of one to ten, I rate this solution 10 out of 10.