Fortinet FortiGate-VM Reviews

My company functions as a mobile operator and supports business customers. We use the solution for our infrastructure and firewalls. 

The tool's most valuable feature is its ability to deploy it on live physical hardware. Specifically, when providing firewall services for clients, we can leverage such hardware appliances to support multiple customers on the same hardware.

The product needs to focus on cloud-nativeness and pricing. 

I have been using the product for six to seven years. 

Fortinet FortiGate-VM is a good solution in terms of stability. I rate it a seven out of ten. 

I rate the tool's scalability a ten out of ten. 

The tool's technical support is good. 

We rely on automation for deployment, making it easy for us. We clone the existing infrastructure for additional customers. Our challenging aspect is coordinating with clients to set up the infrastructure. Understanding the existing infrastructure of business customers, especially their premises and specific requirements, is a crucial step.

I rate Fortinet FortiGate-VM's pricing a six out of ten. 

I rate the overall solution a seven out of ten. 

The tool is expensive. 

I have been working with the product for two years. 

I rate the tool's stability a ten out of ten. 

Fortinet FortiGate-VM is scalable. We have 15 users. 

Fortinet FortiGate-VM's deployment is easy. 

I rate Fortinet FortiGate-VM an eight out of ten. 

In a recent scenario, a manufacturing company, was in need of migrating its services, specifically their ERP SAP application, to a cloud-native environment. They chose to migrate their servers to GCP for hosting. Since they required a firewall, they opted for cloud-native firewall solutions. They acquired two firewalls, one for internal usage and another from the GCP marketplace. Both firewall vendors provided yearly subscriptions. Following this, we proceeded with the configuration.

They established a VPN connection via the internal Forti firewall. Simultaneously, an external firewall from Palo Alto was set up. This external firewall, positioned at the perimeter, handled incoming traffic from Internet users. Our configuration focused on enabling ECPs for the Internet-based cloud network.

The ease of access and user-friendly setup is a valuable feature. Fortinet proves to be particularly straightforward to configure, offering simplicity without complexity. Moreover, visibility is easily attainable due to certain factors. Price, implementation, and budget considerations play a role. When it comes to Cisco implementation, the process tends to be more intricate, which many customers find unfavourable for their business needs.

Fortinet devices are acknowledged as highly potent and come with a notable cost. These devices offer extensive visibility, an array of configurations, and a range of security features. However, there's room for enhancement in their routing and switching security aspects, akin to Cisco's offerings.

A noteworthy aspect here is Meraki, which offers cloud controllers. If FortiGate were to introduce a similar cloud management solution, it could strongly compete with both Meraki and Cisco products. Cisco operates in two sectors: enterprise and SMB. Particularly in the SMB market, they hold sway due to their convenient cloud management features. For instance, Meraki's cameras and wireless access points can be easily controlled through their cloud management portal. If FortiGate were to provide cloud-based management solutions for SMB customers, it could cater to a significant portion of the market, considering that a substantial number of customers fall within the SMB and mid-level enterprise categories.

I have experience with Fortinet FortiGate-VM.

Hardware performance is a determining factor. A recent case made me notice that in comparison to the other vendors, Fortinet exhibited superior scalability. This was mainly due to their package-oriented approach, which involved scaling the VM version based on the number of customers. They offered various packages, and depending on the package, the VM version would be adjusted.I would rate it an eight out of ten.

I would rate scalability an eight out of ten.

The customer service and support is good. Within this domain, we have local support in place. They are primarily responsible for initial support. However, if a situation exceeds their capabilities, they escalate it to level two support. This setup is highly satisfactory.

Positive

FortiGate offers straightforward planning and a user-friendly interface. This simplicity is seen through graphical user interfaces (GUIs), enhanced visibility and effective troubleshooting. I would rate it eight out of ten. 

In the industry landscape, approximately seventy per cent of businesses predominantly rely on on-premise solutions. Specifically, our focus is directed towards banking clients, who are aligned with the guidelines of the Central Bank due to their emphasis on security, governance, and compliance protocols. However, the manufacturing sector and telecommunications companies are more inclined towards cloud adoption. This inclination is rooted in factors such as cost efficiency and power savings, internal infrastructure maintenance and resource allocation, including power and human resources.

In Sri Lanka, the banking and finance sector still prefers on-premise solutions. This choice is aligned with their security compliance needs and regulatory considerations.

In our proposals involving FortiGate, it's common practice to include FortiManager and FortiAnalyzer. Over the past two years, many clients have adopted FortiManager for cloud-based management. We've facilitated this by providing cloud subscriptions, allowing them to manage their FortiManager through the cloud. This approach is well-received, and it's worth noting that even in the banking sector, some customers prefer on-premise setups for their FortiManager.

It would be beneficial for Forti to expand its cybersecurity solutions even further. While solutions like FortiSolor exist, there's room to enhance feature sets in line with the increasing requirements of compliance and private security needs. These can effectively address client-side security needs. Comparing Forti's offerings to competitors, certain strengths stand out. There are notable visibility and flexible configuration options. The client-side experience benefits from robust management capabilities accessible through this solution and the troubleshooting becomes seamless because of good visibility and an effective controller. I would rate it an eight out of ten.

We use Fortinet FortiGate-VM for managing inbound and outbound internet traffic through our environment. Sometimes, we also use it for managing the site's internet outbound and routing. We also use it for IPSec on Azure. We also have an on-premises environment, and we're using it for IPSec on that environment. 

All the routing happens through it because we're swinging all the traffic on the Azure side through a firewall which is basically the gateway. It acts as the gateway and manages outbound traffic in that environment. We have also set up the SSL VPN for users. We do have FortiGate on-premise, and we set up the SSL VPN connection for users.

It made the routing of traffic seamless and it helped us with SD-WAN as well as load balancing.

I like the visibility and monitoring features because they're easy to use to monitor traffic. Features like geo-blocking and more have AI, and we're currently using all of it. But for now, we're only using geo-blocking, and we're able to block traffic from different countries. I also like that it's highly responsive. VM04 is also very powerful.

It would be better if it could provide you with options before completely blocking anything through the web filter. If you are doing a deep SSL inspection on the site if it says it's expired, it doesn't give you the option to continue at your own risk. I can't say that it's bad, but SSL internally isn't really a requirement. However, its security features can help. Right now, we have people going out and spending on purchasing the SSL certificates for internal sites. 

I have been using this solution for three years.

Fortinet FortiGate-VM is a stable and very reliable solution.

Fortinet FortiGate-VM is a scalable solution. It's very powerful, and I've never seen that machine running out of resources. It always worked.

Tech support is okay, but we do a lot of management by ourselves. We have a third party that we use when we do implementations, and I haven't contacted Fortinet even though I have access to it. The local support that we use costs much less. 

I still remember using Check Point, and it took a long time to apply a policy. To install the policy, you had to wait for ten to 20 minutes or even 30 minutes. Fortinet FortiGate-VM instantly applies the policy on the FortiGate itself.

The initial setup was difficult because we were all new when it came to the Azure environment. It was a little difficult to create space and understand that you have to have more than one interface. But once you get used to it. It's pretty straightforward.

It's straightforward if you have all that is required when you're clearing your traffic. If you're clearing your traffic already into your internal length to communicate with the firewall range, and you have information and understand it before the implementation, it will be very seamless. It will be stress-free when you understand the environment where you're going to implement it.

Our license is yearly, but we're thinking of going monthly. I think it's somewhere around 100,000 for VM04. Nowadays, everyone wants to be a hacker, so we believe in security. That's why we also have third-party people that we involve to make sure that we're secure. 

I don't think the costs are too bad. You still want to get advice from people who worked in security for many years, so you add a third party. The third party also said they would give their share like 100K, or 200K or something like that, so I don't think it's too expensive for security. I think it just adds more trust. 

We have been using Check Point Firewall so it was easy to identity the difference.

I will recommend the solution. If it's a first-time deployment in Azure, they need to understand a couple of things, like the interfaces we need to create. The good thing about FortiGate is that they don't hide how their devices work. You can go to their website and get every instruction that you need at any time. It's straightforward and even has pictures showing you what you should expect. I've done a few changes for the first time, and I didn't have to stress. But you must know the infrastructure well.

On a scale from one to ten, I would five Fortinet FortiGate-VM a ten.

Internally, I've been using this solution to front our servers.

I found the Antivirus and Anti-spam features most valuable in this solution. I'm happy with FortiGate-VM because it's good for our servers. It stopped many attacks, including spam, over our networks.

It's been a year since I started using FortiGate-VM.

I find this solution really stable.

The scalability of this solution is an eight or a nine to me. It's good.

I don't have experience with Fortinet's technical support. When I face any problem or issue, I call the company that came here to implement the device.

I hired a consultant to implement the solution. I had a good experience. It was good for my work and my networks.

FortiGate-VM is more expensive than Sophos. We have two appliances: a main appliance, then a backup, e.g. FortiGate-VM, and this make it so expensive, even more than the costs from Sophos.

We pay the standard three-year licensing fees.

I evaluated Sophos.

I spent many years using Cyber and Sophos. Mainly, I use Sophos, while I use FortiGate-VM in the network background.

I see that Fortinet is a big company. I can't compare the Sophos and Fortinet solutions I'm using, because I'm using Sophos at the front, and behind Sophos, I'm using FortiGate-VM, so I can't give a good comparison or opinion. I've only used FortiGate-VM for one year.

It took nearly one month to complete the FortiGate-VM deployment because the decision came from upper management.

No other users use FortiGate-VM in our organization, because it's a device or appliance that only stands in front of our servers.

We don't have a need for maintenance yet. We've only been using it for one year and it currently needs no maintenance.

I don't know if our organization has plans to increase the usage of FortiGate-VM because this decision will come from upper management.

I'm a good observer and I'm still learning some feature metrics of this solution.

What I'd like to advice people looking into implementing FortiGate-VM is to study the FAQs of other users. You should know the tricks and what exactly is needed in this appliance. This is a very good appliance, but I have less experience with it compared to Sophos which I've used for many years.

I'm rating FortiGate-VM an eight out of ten.

Maybe others rate the vendor a 10 out of 10, but I'm sticking with eight.

The solution is primarily used for security. When a company has a hybrid solution and the client is looking for a next-generation firewall with all the bells and whistles inside, we recommend FortiGate.

The intrusion prevention systems are great.  

The anti-spam capabilities are really great.

The solution has a lot of very useful security features. 

The solution is stable.

The scalability potential is there.

The previous version, which was 7.1 or 7.2, was a little bit easier to use. It's kind of a little bit tricky to find the options from the firewall configurations now, in the latest version. Previously, it was easier to deal with. The whole dashboard that you get can be improved. They could organize the whole dashboard a bit more to put stuff under each other in a way that makes sense and makes everything easy to reach.

The costs could be lowered.

I've used the solution for a while. I've used it over the last 12 months.

We have found the stability to be good. There aren't bugs or glitches. It doesn't crash or freeze. It's reliable. 

The product is scalable. It is a little bit expensive on Azure when you use it on the cloud, however. If a company plans to expand it, they need to keep this in mind. However, even those on-premises can be highly scalable. 

The initial setup needs to be handled by a person knowledgeable in Fortinet products. 

We are implementors. We can handle the setup process for our clients.

The product does have the capabilities of providing an ROI to companies. 

The product could be cheaper. When a company scales it, it can get pricey.

The pricing, in fact, is the one aspect that could potentially make clients change their minds. In terms of features, it has almost everything - whatever someone would need. However, the price sometimes is the obstacle. It could force the client to go with a cheaper product. Especially on the cloud, a solution such as this can get costly as you are paying for the cloud stuff on top of the license, and you have to pay per hour.

We are implementors. 

We have both virtual and physical servers.

I would advise new users first to ensure they have strong knowledge before attempting an implementation. It has everything a company might need and it is scalable. However, the person doing the implementation itself needs to be skilled. There might be a lot of things going on during implementation that need to be dealt with properly.

I'd rate the solution at a nine out of ten.

We are using FortiGate-VM for the protection of our internal network and also for VPN services. Right now, there are about 200 end users in our main office and in other business units we have an additional 100-200 end users. We have about five different firewalls, yet almost all of our units are using FortiGate-VM. So, in total, we have about 500-600 users. 

The best part about FortiGate-VM is its strong security. Besides that, it's nice that there are different models for different sizes of businesses. For example, there are models tailored to enterprise companies and small organizations, and the model that we are using is perfectly suitable for our usage.

One thing that can be better is added automation. And, on top of that, enhanced security when it comes to the automation itself.

I have been using Fortinet FortiGate-VM for five years.

I think it is stable. 

I am impressed by its scalability, given that we are already using it for over 500 users. And, in future, we plan to increase usage even more. 

We have used Palo Alto before, but we switched because at that time Fortinet was more scalable and there were more options available.

I also use Sophos Firewall, though not within the organization, but rather just for small business or personal use.

Currently, we only require the services of three engineers and administrators on our technical team when it comes to deployment and maintenance.

The license we pay is a yearly fee. I can't say it's very expensive; it is a good price and is highly suitable for our usage.

FortiGate-VM is a good solution, and I would say one of the best solutions on the market.

I would rate it an eight out of ten.