Fortinet FortiGate Reviews

For FortiGate Next Generation Firewall (NGFW), I use it primarily to connect with other companies through IPsec VPN. Any other security measures are on AWS itself, not on FortiGate. I'm someone who's familiar with FortiGate from previous jobs, so I use that, but it's how we're using it right now.

The IPsec feature of FortiGate Next Generation Firewall (NGFW) is valuable to our company because we need to connect quickly VPN connections with other companies in our networks, and there are many connections in some cases. We need to keep it as secure as possible, maybe one-way connections or particular ports. FortiGate is the best option, at least that I'm familiar with, that can answer all of that in one product that is mostly easy to use.

In our case, the deployment options of FortiGate Next Generation Firewall (NGFW) are not scalable, but in terms of connectivity to other companies, that's exactly what we needed, and that's exactly what it does perfectly, what is needed.

The most valuable feature for our company using FortiGate Next Generation Firewall (NGFW) is the IPsec feature, but actually FortiGate is known for good UTM products such as application filter and web filtering. We don't use it here, but in previous companies I used it on a daily basis.

One of the benefits I've realized from using FortiGate Next Generation Firewall (NGFW) is that it's secure and allows functions such as VPN. You can control Wi-Fi and other things from within, if you have FortiNet devices. It's an easy to use product, yet it allows you all that is needed, or at least all that you can do. Whenever there is a security breach, FortiGate is known to patch it very quickly from what I've seen.

Since FortiGate Next Generation Firewall (NGFW) was implemented, there was a thought in the company about using the VPN that AWS itself provides, but it's far from being as good as FortiGate.

The process can be improved in terms of explaining exactly how the installation should be done step-by-step on AWS, because there are network considerations such as security groups. From what I could find, I didn't do extensive research, but it didn't seem obvious enough in that case.

I do not utilize the intrusion prevention and web filtering features of FortiGate Next Generation Firewall (NGFW).

The ability of FortiGate Next Generation Firewall (NGFW) to inspect SSL encrypted traffic is not applicable in the current position, but in previous companies, it was really seamless whenever we used it. It just worked seamlessly.

I don't recall if we use a centralized management console for FortiGate Next Generation Firewall (NGFW) in maintaining oversight across distributed networks.

In my opinion, FortiGate Next Generation Firewall (NGFW) could be better by having specific models for home usage. I'd wish to have a FortiGate in my home, but the licensing isn't something that I want to purchase for home usage.

I have been using FortiGate Next Generation Firewall (NGFW) almost since day one at this company, which I have been with for three years and something.

I experienced the stability and availability of FortiGate Next Generation Firewall (NGFW) more in the previous company. In terms of stability, mostly it is okay; however, in some cases, there are features, especially the UI, that tend to have issues. In some cases, you need to restart it, but mostly, it's working flawlessly, especially if you have an HA environment, high availability.

In our case, the deployment options of FortiGate Next Generation Firewall (NGFW) are not scalable, but in terms of connectivity to other companies, that's exactly what we needed, and that's exactly what it does perfectly, what is needed.

I'm certain that what it allows us in terms of connections to other companies is a straightforward solution that you don't have to use something else. It's easy to configure a new connection, and it works in a few minutes if everything works fine.

In this company, I may have worked with FortiGate Next Generation Firewall (NGFW) support one time, but in my previous company, I actually worked with them extensively. We had multiple FortiGate devices across multiple offices around the world, and we needed to switch them from one account to another sometimes. So I encountered FortiGate support quite frequently.

I would evaluate the level of support for FortiGate Next Generation Firewall (NGFW) somewhere between seven and eight. My experience might be outdated because lately, I haven't had much experience with that. In some cases, you need to come prepared because the people there work by the book and ask for particular things. If you don't have them, you cannot proceed, but if you know what they need, after some time, it's pretty easy to get support or whatever you need.

I don't have enough information on other products that I can tell the pros and cons of FortiGate Next Generation Firewall (NGFW) versus its competitors.

The setup was already done, but from what I read, we considered putting it in another environment that we have, yet we didn't because we didn't actually need the environment at all.

I don't know if my company has seen return on the investment from FortiGate Next Generation Firewall (NGFW), but I'm certain that what it allows us in terms of connections to other companies is a straightforward solution that you don't have to use something else. It's easy to configure a new connection, and it works in a few minutes if everything works fine.

Pricing isn't something applicable for me regarding FortiGate Next Generation Firewall (NGFW) because it was already set up once I came to this company.

Since FortiGate Next Generation Firewall (NGFW) was implemented, there was a thought that crossed in the company about using the VPN that AWS itself provides, but it's far from being as good as FortiGate.

I would rate FortiGate Next Generation Firewall (NGFW) as a solution a 10 out of 10. I do love FortiGate.

I give it a 10 because, in my experience, FortiGate Next Generation Firewall (NGFW) is a product that allows you to do many things very easily. If you don't appreciate something about the way it works, you have enough playground to change it to suit your needs.

For someone considering FortiGate Next Generation Firewall (NGFW) for their company, there was a demo online version that they have on their website that is easy to access. You can play with it and see almost all the features in action. That's an easy thing to actually test. Obviously, you cannot connect it to your network and see things live in your case, but it is still a good example of how things work.

Fortinet FortiGate is mainly used for next-generation firewall features.

Most of our customers primarily use FortiGate as a general-purpose firewall and for remote work. During COVID, they needed to enable the SSL VPN licenses, which was a straightforward process, and they benefited greatly from that. However, apart from this, I don’t see a significant differentiator between FortiGate and other firewalls.

Most of our implementations are standalone. We have a few integrations as well with Active Directory and other things. It is pretty straightforward, and we have not had any issues.

The main value comes from the simplicity of the product in terms of configuring and managing. 

Their user interface could be improved from a configuration perspective.

I have personally used it for about five years, but the organization has been using Fortinet FortiGate for the organization and customers for about 10 years.

Stability is excellent. We have not had issues from the product itself.

We have deployed Fortinet FortiGate from 50 user locations to 100-200 user locations. We have not had any issues with any of those models.

I would rate their support an eight out of ten. There's always room for improvement. 

Positive

We are a small system integrator and an authorized partner for Fortinet FortiGate, Cisco, Cisco Meraki, Palo Alto, Sophos, and Check Point. We cater to the SMB and upper SMB market and some enterprise customers. Most customers do not require fully fledged integrated solutions.

In Sri Lanka, there is about 40% market penetration for Fortinet. They have partnerships with two telcos, so most corporates with MPLS links who wanted to move out with the operator are offered managed SD-WAN solutions using Fortinet FortiGate.

We have Cisco customers as well, including local customers and global customers whom we support using Cisco firewalls. Comparing Cisco and Fortinet firewalls is challenging. You cannot compare a Ferrari with a normal Nissan sedan from a product and feature perspective. The SMB market segment and the upper SMB market segment are very price-conscious. Cisco does not offer firewalls that are competitively priced for this market segment, especially compared to Fortinet's offerings. They only recently released the 200 series, which can compete with the FortiGate 50 models that we sell.

Fortinet FortiGate is pretty straightforward compared to Cisco.

It is mostly on-prem. One or two clients are using it on the cloud.

Our customers get their ROIs on the price points that we sell in this market.

For the market and the segment that we cater to, the FortiGate pricing structure is sufficient.

I would rate Fortinet FortiGate a nine out of ten.

My typical use case for Fortinet FortiGate involves it being one of the best solutions for next-generation firewall. In terms of simplified control and in-built SD-WAN solution, there are no licenses for VPN. From a commercial perspective, it is beneficial. Technically, it has successfully stopped attacks, which is the reason the customer was using Fortinet FortiGate.

The dynamic segmentation feature in Fortinet FortiGate has an in-built switch and wireless access point controller. Fortinet FortiGate has a feature called VDOMs, virtual domains, where you can create multiple virtual firewalls within a single hardware, which is one of the fantastic features.

In terms of effectiveness, Fortinet Unified SASE covers all three use cases: Secure Internet Access, Secure Private Access, and Secure SaaS access. For any security implementation, networking is essential, and Fortinet FortiGate provisions that through FortiGate's SD-WAN. The integration with FortiSASE and Fortinet Forti-SD-WAN is very simple and straightforward.

In terms of improvement for Fortinet FortiGate, I don't find any needed improvements regarding hardware because it is very good. The operating system has most of the features. 

At this moment, I'm not finding any other improvements in this case. They are advanced in this segment. Fortinet FortiGate has in-built automation features and cyber risk assessment.

One suggestion might be to increase the storage size in the hardware for local reporting.

I have nine years of experience working with Fortinet FortiGate.

Fortinet FortiGate is a very stable solution.

In terms of scalability, Fortinet FortiGate provides more throughput compared to other OEMs, so the value for money is very high. If it is a VM, it can be scalable. In terms of hardware, it's all about scalability, throughput, and managing the number of sessions based on the hardware sizing. If the team sizing the firewall does it properly, then the solution is easily scalable.

I would evaluate customer support from Fortinet FortiGate as seven or eight out of ten. The reason I do not give 10 out of 10 for customer support is that while they follow the SLA and there is no issue with that, for them it might be P3, but for us, it might be P1 or P2 case. Remote assistance requirement should support them.

After implementing Fortinet solutions, I evaluate the return on investment as providing more throughput performance. The performance is very high in terms of packet inspection and handling the traffic. It is one of the best solutions in that case. The total cost of ownership will be low because there is no extra additional license for SD-WAN, VPN, or the VDOM feature. Considering all those things, it is a very cost-effective solution.

My advice to others looking into Fortinet FortiGate is that they can consider the return on investment or total cost of ownership. Fortinet FortiGate is definitely a good solution, not less than a better solution. It's very good compared to Palo Alto or Check Point. Those using the Fortinet FortiGate firewall should start using the features part of the solution, either it can be a WAF solution or a security rating or automation features. They can directly integrate with the cloud firewall. Operation technology is doing very well because there are many features where the network and security administrators should start enabling and making use of it. On a scale of one to ten, I would rate this solution nine or ten.

Fortinet FortiGate is among the best firewall solutions, having a significant market share in Egypt. Fortinet FortiGate has a very simple configuration, is easy to set up, and includes SD-WAN features at no additional cost. I recommend Fortinet FortiGate to act as an internet or perimeter firewall.

Features such as URL filtering, intrusion detection, and threat prevention make it suitable as a perimeter firewall. It also includes free SD-WAN features. It is recommended when any customer has more than one site, as it can act as an SD-WAN solution without any extra licenses, with SD-WAN being a built-in feature. It is a very easy solution.

From my experience, I see that the datasheets of the Fortinet FortiGate portfolio need to be more accurate because correct sizing is essential. The datasheets should provide clear information when deploying features. 

When comparing Fortinet to all other vendors, I believe most features are available in Fortinet. I'm not sure if the DNS security license is available in Fortinet; if not, it is important to add Fortinet DNS security and sandboxing licenses. I know Fortinet has a separate sandbox solution, but I am unsure about sandbox features in the firewall. In contrast, Palo Alto has a DNS security license, email security, and WildFire license that serves as a sandbox solution.

I have been working with Fortinet FortiGate for around eight years.

I find Fortinet FortiGate to be very stable.

The scalability of Fortinet FortiGate depends on the project. If the project meets accurate sizing, it can be scalable, but if the presales engineer does not accurately size it, Fortinet FortiGate can have limited resources to scale. It depends on the project.

I evaluate Fortinet's technical support as a seven out of ten. They aren't the best support, but when we need assistance with any features or field activities, we can utilize the internal support team of the vendor located in our country.

Neutral

I believe it is cost-effective. With Fortinet FortiGate, we can pay once for every renewal period, and there are no CAPEX expenses because Fortinet FortiGate is easy to configure, easy to manage, and familiar to most engineers. 

It is not the cheapest one, but its price is very competitive.

When comparing Fortinet FortiGate to Palo Alto or other firewalls I've worked with, Fortinet is more stable, easy to configure, easy to manage, and is competitive in price. 

Fortinet offers multiple product sizes suitable for various enterprises, including small, medium, and enterprise customers. Compared to Palo Alto, Fortinet offers a free SD-WAN feature while Palo Alto requires an SD-WAN license with more costs and several licenses. However, Palo Alto does offer more advanced features than Fortinet. A notable difference is that when the Fortinet FortiGate license expires, the box still works until the customer renews the license, while with Palo Alto, the box stops entirely and the customer must renew the license to continue functioning.

My experience in integrating SD-WAN capabilities with Fortinet FortiGate in the network shows that the integration is very simple and has a straightforward configuration.

The Fortinet SD-WAN solution consists of multiple products. To create or set up a full SD-WAN solution, it needs two products from Fortinet: FortiGate and FortiManager, which is a centralized management solution, and FortiAnalyzer, which is a log management solution. SD-WAN connects more than one site. It centralizes management and logs. Fortinet FortiGate with SD-WAN does not require any extra license, but to have the full SD-WAN solution, it is required to have FortiManager and FortiAnalyzer for several reasons. Fortinet products can be VM or hardware.

I have worked with the hardware-assisted DDoS protection in the Fortinet FortiGate, and I think it's good.

I recommend the Fortinet FortiGate when acting as a perimeter firewall, and some customers use it in the data center. I recommend another vendor in the data center, but our customers are very satisfied with Fortinet FortiGate when acting as a data center firewall.

I have limited experience with the AI and machine learning enhanced FortiGuard services, but I know that Fortinet is leading this trend. 

Fortinet FortiGate provides SD-WAN and SASE solutions to secure any type of user and any type of traffic. It has many features, including a secure web gateway and secure service edge, helping users access the internet and applications, whether inside or outside.

I would rate Fortinet FortiGate an eight out of ten.

I'm using Fortinet FortiGate for consultancy, implementation, and troubleshooting after device implementation. We serve as both reseller and consultant, providing search support and consultancy support. I usually recommend Fortinet FortiGate for small and small-sized businesses.

I have experience with Fortinet FortiGate SD-WAN, as it is a method for routing traffic. We can assign profiles with specific conditions to create best practices or optimal experiences for customers. These profiles can manage traffic balance or link balancing. We can detect users or specific links for particular services, including load balancing.

Fortinet FortiGate provides superior protection compared to other firewalls, with high processing capabilities. In comparison to Sophos devices, Fortinet FortiGate offers enhanced protection through network protection, IPS, and application protection.

They could simplify their deployment process, especially when customers have existing devices. The configuration approach depends on whether customers need to start from scratch or can utilize existing backups and rules. 

I would seek to improve Fortinet FortiGate by exploring additional features, such as SASE solutions that we are currently studying and implementing. The configuration could be made easier, particularly during initial setup. We need to ensure comprehensive utilization of all device features and learn best practices from other cases.

I have been working with Fortinet FortiGate for approximately one year.

Fortinet FortiGate is overall stable. When compared with Sophos, particularly regarding remote access and SSL VPN, Fortinet FortiGate proves much easier to use. While Sophos presented port-related challenges in Egypt, Fortinet FortiGate operates more smoothly.

Fortinet FortiGate is scalable, with capacity depending on firewall sizing. We determine sizing based on multiple factors: number of users, available links, traffic types, server count, services in use, and whether services will be published. We consider parameters such as VPN requirements, remote access needs, side-to-side VPN configuration, and overall traffic volume to determine device capacity.

We tend to handle support.

I have experience with Fortinet products and limited experience with Cisco.

I provide other firewalls, such as Sophos, and I have worked with endpoint protection solutions. I have experience with backup solutions such as Veeam, and endpoint security solutions including Kaspersky and ESET.

I have created many profiles for SD-WAN capabilities while integrating with Fortinet FortiGate. We assess customer needs and make recommendations accordingly. If customers aren't using SD-WAN, I suggest implementing it due to its effective load balancing capabilities and additional firewall features.

Regarding the evaluation of changes in return on investment after implementing the Fortinet solution for SD-WAN hybrid workforce, we work on a case-by-case basis. ROI is monitored by management, and we do not directly track ROI in the systems.

Fortinet FortiGate is among the best options in the market, though alternatives exist, including Sophos. Fortinet FortiGate demonstrates stronger performance and protection compared to Sophos, though its device and license costs are higher.

I'd rate the solution eight out of ten.

We use Fortinet FortiGate 100F, which is one of two firewalls that we have, one at the entrance of the DMZ and one just outside. One is facing the internet, and the other is at the entrance of the DMZ. We use the one outside to essentially work as a VPN.

As compared to our previous firewall, WatchGuard, which is a good firewall, the successful hacking attempts were far fewer and further with the Fortinet FortiGate, but at the same time, I don't know if the credit goes to only FortiGate, as we have two firewalls versus one in the second implementation. Overall, it is more secure. The VPN is also more stable than the offering from WatchGuard at that time.

Fortinet FortiGate is one of the most solid and secure firewalls as long as you keep it up to date. The price is right; it's not very expensive. 

It's quite feature-rich. While we've mostly used the VPN, we've also utilized it to create high availability. 

We are pretty happy with it. If anything, I believe the web interface could be simpler, especially for someone who has limited networking experience. I mostly do administration, and I found Cisco to be the hardest major firewall manufacturer to deal with, with Fortinet FortiGate being the second hardest for me. In comparison, there's a bit of an easier and more user-friendly interface with WatchGuard.

I have about three years of experience with the Fortinet FortiGate firewall. We also use FortiClient VPN.

The VPN was more stable than the offering from WatchGuard at that time.

I would evaluate the service and technical support of Fortinet FortiGate as pretty good. Whenever we needed them, they would be there for us. I would rate them a nine out of ten. We had no complaints, although they were sometimes extremely busy.

Positive

Before using Fortinet FortiGate, we were using WatchGuard, which is another good firewall.

The initial setup process was efficient, as it took us less than an hour to set up both firewalls.

I was involved in the deployment of the Fortinet FortiGate, handling the physical deployment myself while our vendor managed the initial setup.

We got the Fortinet FortiGate from Telus, which is a Canadian phone company. Our experience was excellent. They're a major phone company, so the services are never less than stellar.

The maintenance for Fortinet FortiGate involves just the occasional patch update. We have software that informs us whenever there's a new patch, and if it's critical, we run the patch update immediately; if not, we usually run it at the end of the month after it's released.

We had uninterrupted service. If one firewall failed, we still had a secure infrastructure. I believe we essentially had a great VPN compared to the alternative offerings, so that's a good return on investment.

It's good. I would rate the price of the Fortinet FortiGate as an eight out of ten. It's not the cheapest, but it's value for money. Given everything we've got out of it: the DMZ port, the VPN, and the high availability, it's a pretty reasonable price.

I would advise others considering or evaluating the Fortinet FortiGate to buy it. It's one of the best products for the price. 

I would rate Fortinet FortiGate a nine out of ten.

We don't have any issues regarding security, and our web server is running fine with protection from all threats.

The best features of Fortinet FortiGate are that it does the job effectively and protects our environment. It has a VPN and can create a virtual IP for a web server and functions as a standard firewall.

We faced difficulties with the configuration because there are many features we could optimize using Fortinet FortiGate, but our reseller didn't have a good understanding of it. So, we just use it on a basic level, not with the best practice for using FortiGate.

We have been using Fortinet FortiGate for around five years.

Overall, I find Fortinet FortiGate to be very stable. Fortinet FortiGate demonstrates consistent stability.

In my case, the 101F is not scalable. I faced problems with scalability related to memory. When we hit 100% memory usage, it stops the internet connection, so we need to control the traffic. We cannot increase the memory.

We have about 350 users and only one admin.

My experience with Fortinet's technical support is good and helpful. The response time and overall competence meet our expectations. I would rate their support a seven out of ten.

Neutral

We used Juniper before Fortinet FortiGate. We switched because it was an old one and reached the end of support. We had to change.

We were supported by a third party and the reseller. During deployment, it was not a good experience because of the reseller. We had challenges with the optimized configuration. 

The deployment took around three months.

The reseller helped us with the implementation. It has been a long time since the implementation, so I don't remember the name of the company that helped us.

Our IT has six people for deployment, and we used two staff members.

We have seen a return on investment with Fortinet FortiGate. The ROI calculation is based on potential loss prevention rather than traditional ROI metrics.

Its pricing is good. The advantages of Fortinet FortiGate over its competitors include good pricing and meeting our requirements at a lower cost. Palo Alto's features are superior, but too expensive.

I compared other brands, such as Palo Alto and Sophos, and chose Fortinet FortiGate. Palo Alto is the best, but it is significantly more expensive. Palo Alto has better capabilities than Fortinet FortiGate. Their protection is much more secure, and they excel in detecting intrusion and reading information. 

I would rate Fortinet FortiGate an eight out of ten.

There is a tool called FSSO, which is a single sign-on user ID agent that works perfectly. You can configure anything on it, and it is better than Palo Alto's version.

The GUI is written in JavaScript, so when you move any object or policy to another one, it becomes easy to use. It is user-friendly and not complex for network configuration.

Run Script is the best tool to use in Fortinet FortiGate with multiple environments. You can perform multiple tasks at once with the script functionality. It is available through the GUI, whereas in Palo Alto, you need to run it in a separate tool, such as Python.

I prefer Palo Alto over Fortinet FortiGate. Its IPS engine is not better than the Palo Alto version. The monitoring tool needs improvement, and the syslog configuration needs enhancement.

The management plane and control plane are not separated as they are in the same hardware devices, whereas in Palo Alto, everything is separated. So, if the CPU and GPU usage gets higher in the data plane, the admin also becomes unreachable.

The web filter in Fortinet FortiGate is not very useful. While you can add web filters in security policies, it is difficult to understand and not flexible to use.

Fortinet FortiGate frequently experiences IPS engine problems. 

I have been working with it for four to five years.

In most cases, the IPS engine uses too many resources, which makes Fortinet FortiGate devices unstable. When clients encounter different issues, the IPS engine is usually the problem because it consumes excessive resources.

I have not worked directly with technical support, but I am familiar with the distributor, partner, and vendor. People who work with Fortinet provide adequate service.

Positive

I mostly migrate from Fortinet FortiGate, Check Point, and other solutions to Palo Alto. For migrations from various solutions to Fortinet FortiGate, it takes a few days, depending on the environment.

Fortinet FortiGate is cheaper than Palo Alto. It is about 20% cheaper. 

I prefer Palo Alto over Fortinet FortiGate. Fortinet FortiGate is not the best firewall, but it is acceptable. If you have a budget to buy a firewall and Palo Alto is too expensive, then Fortinet FortiGate can be usable. As an instructor in Palo Alto Networks who knows all the techniques, I naturally prefer Palo Alto.

For a small company or branch, I would choose Fortinet FortiGate because it is cheaper and the features are sufficient. However, for more critical environments, such as government institutions or banks, where privacy and security are paramount, I would opt for Palo Alto.

In a hamburger topology setup with the internet side and internal side, I prefer using Palo Alto Networks on the internet side and Fortinet FortiGate on the internal side. This creates a multi-vendor environment, avoiding dependency on a single vendor. The internet side requires more security, hence I would go for Palo Alto, whereas the internal side would benefit from Fortinet FortiGate's flexibility and ease of use.

I would rate Fortinet FortiGate an eight out of ten.

I have experience working with Cisco, Catalyst SD-WAN, Fortinet FortiGate, and Juniper technologies. We have a multi-range of vendors including Cisco, Juniper, VMware, and Palo Alto. We use Palo Alto firewall and Fortinet FortiGate firewall for wireless security and network security, including proxy and next-generation capabilities.

Most vendors are providing almost the same functionalities in terms of firewalls. Palo Alto, Fortinet, and Juniper are all offering similar capabilities, but they have a wide range of services or products such as SD-WAN and SASE. Currently, we are a big enterprise and one of our products is Fortinet FortiGate.

Fortinet FortiGate has reasonable pricing and is easy to operate. It is efficient and represents the future for security, including cloud security and branch-to-cloud security.

We have threat intelligence detection, response, and action capabilities. Fortinet FortiGate products are stable, and they offer a wide range of security capabilities.

We did not use Fortinet SASE, and I do not remember if our data center team utilizes it. Currently, I think Fortinet should enable more cloud, virtual, or unified solutions. One point against them is that their solution lacks a unified approach. Sometimes the licensing is not clear, and when you purchase a product, you find that you need certain licenses or additional products. There is not one comprehensive solution.

Three years.

Fortinet FortiGate is stable. We have been using it for three years and did not face any stability issues.

We have been using Fortinet FortiGate for three years and did not face any scalability issues.

I do not have good visibility about Fortinet FortiGate's tech support because it is similar to other vendors. There is tech support available, and if there is an operational issue, the operations team opens a ticket with tech support.

We work with local companies and local partners. Both the vendor and official channels work with local partners for implementation.

I do not remember there being challenges or complexity in the deployment of Fortinet FortiGate.

We work with local companies and local partners. Both the vendor and official channels coordinate with local partners.

Fortinet FortiGate's price is reasonable compared with other vendors.

Fortinet FortiGate is in a good position. In Gartner, they are leaders, but they may come after Palo Alto and are better than Cisco in the firewall field.

We are deploying micro-segmentation technology and methodology in our cloud and private cloud deployment. I can assess that Fortinet FortiGate is good overall. My review rating for this product is eight out of ten.

The typical use case for Fortinet FortiGate is perimeter security, which is why our clients use this solution.

We are an implementer of Fortinet solutions.

It works well to protect the edge. For protecting the edge, Fortinet FortiGate secures any data traversing the network back to the cloud or data center through encryption. I have found it easy to configure, which results in no problems.

The security services provided by Fortinet FortiGate firewall are among the best. They have been in Gartner's quadrant for a very long time, which always helps.

Fortinet FortiGate has been able to secure mission-critical data effectively. It secures our customer's network properly, so that's always beneficial.

The ability of Fortinet FortiGate to provide network and security convergence is impressive, as they have stable features including application control. They also have advanced routing policies that set themselves apart in network security. Their solutions gel effectively with a single console for management, which is a significant advantage.

FortiOS is quite good in my experience with Fortinet FortiGate, and it works very effectively and is stable for companies. The customers have given feedback that FortiOS has been very stable for a long time. 

From a feature standpoint, it's easy to set up if people want to try and set up VPNs and other configurations. Policy control is quite nice, and we have a lot of experience with this solution, which helps us a lot.

Their support can be better, and there should be better policies for immediate replacement in critical situations. Their replacement policy varies depending on the type of support subscription. With the standard support subscription, if the device goes down, the customer has to first ship the box, and then Fortinet sends the replacement. With the higher support, the customer has to ship the device after they have the replacement. It would be better for customers to get immediate replacements even with a standard subscription.

I have more than 10 years of experience working with Fortinet FortiGate.

It is very stable. I would rate it a ten out of ten for stability.

If you size the solution correctly based on the customer's network, number of users, and throughput required, there is no problem regarding scalability, so I would rate it a nine out of ten for scalability.

We have small, medium, and large customers who have opted for Fortinet FortiGate.

I would rate technical support from Fortinet an eight out of ten. Their technical support can be improved slightly as we sometimes experience delays in support for urgent customer needs.

Positive

The typical deployment model for Fortinet FortiGate is mostly on-premises. However, there is a virtual appliance available for cloud setups, but in India, most of the sales are for on-premises appliances.

Fortinet FortiGate definitely reduces the total cost of ownership because it offers better management capabilities through a single platform. Its widespread use makes skill sets more available, making it much more cost-effective for customers than other products which may require higher resource costs.

It is more affordable than Check Point and Palo Alto. Another thing is that all the features and the OS remain the same irrespective of the size of the device.

Pricing-wise, Fortinet typically provides one-year support with the firewall appliance. There is also an option for three years which is how their licensing works. They also offer add-ons for features to keep more logs or data, which is standard across their competitors as well.

The price-to-performance ratio for using Fortinet FortiGate is always better compared to any other competitor, so they are rated better than the likes of Check Point or Palo Alto.

The network availability improves when implementing a Fortinet solution; it's definitely much better for a customer compared to having no solutions in place. They are affordable overall.

I would rate Fortinet FortiGate a nine out of ten.