Fortinet FortiGate-VM Reviews

I use the solution in my company for the data center's server protection to segregate the data center VLANs and the other VLANs used in the production, testing, and development phases, including the areas consisting of DMZ and VLAN. We are using Fortinet FortiGate-VM as a software-based tool and as a firewall for our data center.

It filters out the unnecessary connectivity that I would probably expect to be connected from the end user site or from external to the data center site. It is also used to filter unauthorized access to sites and to mitigate risks if, in cases, because of the asset policy, the remote desktop connectivity or remote connectivity is not allowed to restrict something. It is used to deal with phishing or something that may not pass through the network. The tool serves as an industrial firewall so that we can use it as a filter more efficiently.

The security offered by the tool has certain shortcomings, making it in area where improvements are required. Security, by nature, is very dynamic, and continuous improvement is required. Every time, the policy and the configuration need to be checked in that aspect now, so in that aspect, it needs some improvement, especially when it comes to some filtering mechanisms, and protocols.

I have been using Fortinet FortiGate-VM for more than three years.

In terms of stability, it is stable. Stability-wise, I rate the solution an eight out of ten.

It is scalable because it is a virtual appliance. You can probably scale it up more.

Fortinet FortiGate-VM is a security solution, so users are not expected to access it. It is actually required to protect the network and the environment, so there is no need for actual user access for the solution.

The product's initial setup phase requires some special expertise. The initial setup phase might not be complex, but it requires experts since it is a security solution.

If there is an expertise that is actually doing the implementation or deployment, then it is a straightforward process.

The solution requires a license. The tool is neither expensive nor cheap, so it is okay.

The product's implementation does affect our compliance with industry regulations, and it is one of the reasons why we prefer using Fortinet FortiGate-VM.

My suggestion to other people related to the tool depends on their requirements because there are other different solutions in terms of cost, efficiency, security, reliability, and security. Depending on the requirements, the tool is recommendable. Fortinet is one of the top security solutions in the market. Anybody can choose from multiple tools in the market, including Palo Alto products and other solutions. Fortinet is usually recommended to others.

I think that Fortinet FortiGate-VM has some solutions that offer AI features. For our use case, we don't actually use the AI functionalities since we want to control everything. In my company, we are the ones who are actually dealing with the product and are just not supported by AI.

I rate the tool a seven out of ten.

It's crucial for protecting my internet network. It works well internally.

Fortinet FortiGate-VM improved security within our virtualized environment.

However, I would rate the ease of management a seven out of ten, with ten being the best. 

The policies are very valuable. They allow me to secure and manage future traffic effectively.

The biggest area for improvement is storage configuration. It could be smoother.

I have been using it for four years. 

When it comes to stability, various factors are involved, including partners, configurations, and third-party integrations. 

However, we do use it, and it seems reliable and secure for most situations.

The company that acquired us already had similar technology in place, so there wasn't a significant change when they integrated FortiGate-VM.

We have around 60 end users in our company using this solution. It is a very scalable solution.

It's a new technology, and we're still learning. Support is crucial.

Neutral

The initial setup is straightforward and quick.  

We moved the equipment to the site, connected it to the internet, and configured it through the console.

I took a consultant's help.  

It improved security a lot.

My recommendation is: If you use FortiGate-VM, make sure your infrastructure is good first and that power generation is very stable. 

We use the solution for our private cloud.

We use Fortinet for everything in our organization. Our organization has Fortinet experts. The virtualized network features work fine. The flexibility is fine. It’s easy to integrate the solution with our network infrastructure.

We face some issues with the IPsec connection during replication. It must be improved.

I have been using the solution for six months.

The stability is fine.

I rate the tool’s scalability an eight out of ten. We have many users in our organization.

The initial setup is complex because we use CLI. The solution is cloud-based. We have moved our on-premise VM to a private VM.

I have used Netgate. I prefer Fortinet FortiGate-VM.

Overall, I rate the product a nine out of ten.

We use Fortinet FortiGate-VM as an edge firewall for Internet traffic control and as the main firewall for cloud environments. Whether they're on AWS, Alibaba Cloud, or another platform, FortiGate-VM serves as the primary firewall.

One notable feature is the SD-WAN, which is a strong component of the FortiGate-VM. The fabric feature is also good, but not all customers use FortiGate's networking components, such as the switches. We enable various protection features on FortiGate, such as IPS and web application security. Most customers utilize these protection features to enhance their security.

Integrating multi-factor authentication with FortiGate-VM can be challenging. While multi-factor authentication is important, not all customers have it enabled. Integration with third-party solutions like ManageEngine or Duo can be complex and sometimes problematic during testing. However, high availability works smoothly with FortiGate-VM. We use high availability, and SD-WAN features effectively; overall, the performance is good.

I have been using Fortinet FortiGate-VM as a reseller for eight years.

The stability is good.

I rate the solution’s stability a nine out of ten.

We implemented it for more than one thousand users.

I rate the solution’s scalability a ten out of ten.

Support from the engineering team has some weaknesses. Sometimes, they focus on closing tickets quickly or asking for logs without thoroughly addressing the issue. However, the support team includes knowledgeable and responsive individuals, especially those from non-Arabic backgrounds. 

Positive

Setting up FortiGate-VM is straightforward, but there is a step that can be a bit tricky. After installing the VM, you need to log into the CLI for the first time to set a static IP address if you have multiple interfaces. By default, interfaces will receive IP addresses via DHCP from the cloud service provider. You must disable DHCP on the additional interfaces and set static IPs to ensure proper access and configuration. You may have trouble accessing the firewall if you don't do this.

Issues with certificates and licenses often arise from the distributor, not Fortinet.

The setup process is generally easy. FortiGate is becoming popular in Saudi Arabia due to its user-friendly interface and ease of configuration compared to other vendors like Palo Alto. High availability setup is also simple and not overly complicated.

When comparing Fortinet to other vendors in Saudi Arabia, like Palo Alto, Fortinet stands out positively. In comparison to Sophos, many customers are currently switching to Fortinet. Fortinet's pricing is competitive, making it an attractive option.

To block HTTPS management traffic from the WAN, you must carefully manage the HTTPS settings. If HTTPS is not enabled on the WAN interface, you won't be able to block management traffic effectively. Some customers require HTTPS because of NAT services and use public IPs. Disabling HTTPS can disrupt management access. Better controls for managing the interface from the WAN side would be helpful.

Fortinet FortiGate is easier to configure and manage compared to Palo Alto. Setting up policies, routing, and VPN tunnels on FortiGate is more straightforward and faster. Palo Alto can be complex, requiring multiple steps to create a policy and manage interfaces.

FortiGate also excels in troubleshooting and logging. The logs are easier to read and provide better classification, making it simpler to troubleshoot issues. In contrast, Sophos is less effective for larger-scale operations and doesn’t match Fortinet’s capabilities. 

In cloud environments, we recommend FortiGate-VM because it integrates well with cloud service providers. On-premises, many customers prefer physical FortiGate hardware, particularly with VMware setups. However, FortiGate-VM is more commonly used for service providers like SCC, Alibaba, and AWS.

Overall, I rate the solution a ten out of ten.

They could simplify the troubleshooting process. Troubleshooting requires expertise, often necessitating the command-line interface (CLI). It could be more advanced and easier to use than other products.

Additionally, they could enhance support capabilities and a facility to communicate efficiently with the team.

We have been using Fortinet FortiGate-VM for seven years.

The product is stable. However, there are a few areas of improvement. I rate the stability an eight out of ten.

It is best in terms of pricing for small and medium-sized companies, where it stands out as a cost-effective and feature-rich solution. For larger enterprises, we emphasize the potential benefits of complementing FortiGate-VM with additional firewalls, such as Palo Alto, to enhance security and address potential vulnerabilities.

I rate the scalability a nine out of ten.

The initial setup process is easy. It can deployed on the cloud and premises based on the client's requirements.

There are products like Cisco Meraki that are more inexpensive than Fortinet FortiGate-VM. However, it provides better security features. Palo Alto's pricing is similar to that of the FortiGate-VM regarding quality for security features. It is reasonable.

FortiGate VM in a cloud infrastructure provides security benefits. It offers the same robust features and functionality in virtual, on-premise, and traditional data center environments. It protects against external attacks and internal threats through features such as web filtering, secure application filtering, and antivirus capabilities. These functionalities collectively enhance security measures, safeguarding against various potential risks.

It is extensible, as we can add as much functionality as we require. It is simple to add more resources. It has a flexible pay-as-you-go pricing model.

I rate it an eight out of ten.

We have a private cloud environment with two firewalls and a physical host with a total storage capacity of approximately 5 terabytes running on VMware. The private cloud is a payment services gateway processing transactions from 1,500 outlets nationwide. We have around a thousand virtual machines, and all of them use Fortinet. 

We like FortiGate-VM's IPS features and its ability to create multiple virtual firewalls. 

I have used FortiGate-VM for five years. 

Stability is one area where Fortinet stands out. We don't see dropped sessions or downtime. The hardware is extremely stable, and our utilization stays well below the limits. 

You need to upgrade your box to scale, but it's easy to migrate from one to the other. 

Fortinet support needs improvement. The response times are lackluster. Fortunately, the product is stable and we seldom have issues. Also, it takes months for them to deliver hardware when we order it. 

Neutral

It's easy to install and configure FortiGate-VM. One engineer can finish the job in half a day. 

You will recover your investment if you purchase the right size and use it for six or seven years. However, you'll lose money if you need to replace or upgrade the box after three years. It's critical to buy the correct size from the start.

FortiGate-VM is a little expensive compared to Sophos. You pay a fixed license for the box, but there are various options if you need to upgrade. 

I rate Fortinet FortiGate-VM nine out of 10. It's a solid product overall, but Fortinet support has a lot of room for improvement. I wouldn't recommend it for an enterprise use case. It might work, but you should test it first. They have various options, so you should pick one that meets your business requirements and your environment.

The use case of FortiGate-VM is primarily for securing the perimeter of private clouds in the dedicated environment created for customers. This can be achieved through a virtual appliance or physical hardware solution. Beyond only perimeter security, some customers also require DDoS services, and FortiGate-VM can provide this through its own solutions that can be combined and offered as a bundle to meet the specific needs of the customer.

The solution can be deployed on-premise and on the cloud too.

The most valuable features of Fortinet FortiGate-VM are its flexibility and scalability. This solution is available as a license, which allows us to activate it based on the specific needs of the customer. This gives us and the customer a great deal of versatility and customization options. 

There is always room for improvement in any solutions, including Fortinet's FortiGate-VM. Although the solution claims to have a superior throughput compared to other OEMs, upon closer examination and comparison, there is potential for significant improvement in this area. In today's rapidly evolving technology world, it is important to continuously strive for enhancement and development, and I believe Fortinet can make significant strides in this direction for the FortiGate-VM.

I have been using Fortinet FortiGate-VM for approximately 18 years.

The solution is stable.

I rate the stability of Fortinet FortiGate-VM an eight out of ten.

The solution is scalable, it can be easily and effectively expanded as the customer's requirements grow and change. This makes it an incredibly agile solution that can be tailored to meet even the most demanding demands. There is some room for improvement in this area.

The solution is suitable for small to enterprise-sized companies.

I rate the scalability of Fortinet FortiGate-VM an eight out of ten.

The support from Fortinet FortiGate-VM is excellent, it is one of their strongest points.

I rate the support from Fortinet FortiGate-VM a nine out of ten.

Positive

The initial setup of the solution is simple because everything comes with GUI. The entire infrastructure for the customer is simple to set up with the GUI.

The choice between an on-premise or cloud solution is a decision that ultimately depends on the specific needs and requirements of the customer. Currently, there is a trend towards utilizing cloud-based products as they offer a wider selection and can be easily deployed. On the other hand, some customers may prefer an on-premise setup, which involves deploying physical equipment on the customer's premises or a virtual machine from an OEM. The cloud solution offers greater agility, flexibility, and speed but can also present challenges, especially in the semiconductor industry where delivery times may be longer due to stress in the market. In conclusion, both options have their own advantages and disadvantages, and the decision between them should be based on the specific requirements of the customer.

Taking into consideration the magnitude of the entire implementation, the deployment process could potentially take approximately three weeks, assuming all necessary components are readily available for the physical setup. After this stage, the User Acceptance Testing (UAT) phase commences, which may last for an additional week. Subsequently, before the final implementation into production, the customer would conduct a final UAT to ensure all elements have been successfully deployed and functioning as intended.

I rate the initial setup of Fortinet FortiGate-VM an eight out of ten.

The price of the solution is competitive. Fortinet FortiGate-VM had a lot of advantages when it came to pricing. However, the competition has also geared up to a larger extent and it has become comparable now to the other solutions.

In terms of security, it is crucial to understand that the cost of security measures should not be the sole determining factor. The security of your overall infrastructure and setup must be a top priority, regardless of the price of security appliances or OEMs. However, when considering the entire solution, including the security infrastructure, the cost will play a crucial role in the final decision-making process.

It is imperative to choose the best available options, but the cost of the entire solution should not be exorbitant and prevent it from gaining approval from clients.

I rate the price of Fortinet FortiGate-VM an eight out of ten.

When evaluating the overall solution, it is important to consider both the benefits and drawbacks. Fortinet FortiGate-VM presents a multitude of advantages that make it a fantastic product choice. It offers exceptional stability, a scalable design, and unparalleled support from the manufacturer. It is with great confidence that I wholeheartedly recommend Fortinet as a reliable and valuable solution.

I would recommend this solution to others as long as it's fulfilling the requirements of the customer.

I rate Fortinet FortiGate-VM an eight out of ten.

All firewalls, including Fortinet FortiGate-VM, provide similar features under the sync capability. The differences between them are minimal, with FortiGate-VM offering simplicity in use. It covers aspects such as intrusion prevention, web filtering, application control, routing, virtual domains, policy-based routing, and SSL.

For our customer, this product holds paramount importance. It is critical for them as we collaborate with government agencies, financial institutions, and oil and gas companies. Inspecting and controlling traffic, especially pertaining to credit cards, is crucial for their operations.

GitDM, like FortiGate VM, provides similar features to FortiGate appliances or cloud solutions. However, FortiGate VM is more suitable for heavy traffic and inspection compared to GitDM. Unfortunately, FortiGate VM lacks a dedicated SPU for inspection, and all features rely on CPU and RAM.

I don't have any specific improvements to suggest, but perhaps the pricing could be enhanced. Regarding updates, more frequent updates would be appreciated. FortiGate-VM is currently focused on providing very good firmware updates, automation, and top-notch features. It stands as a great product for now.

Based on our needs and the vulnerabilities we've encountered due to various downloads, I suggest integrating with Kaspersky Gateway. This integration would involve scanning and inspecting both official emails and spam emails. Our customer has successfully worked with Kaspersky Gateway, and overall, the integration has been effective.

I have been working with Fortinet FortiGate-VM for 3 years.

In conjunction with the switch and based on the sizing, it indicates a suitable box or VM for the customer. If the level of mailbox is low, the stability will be good, and the box will not be in conserve mode. Regarding impressions of scalability, I would rate it eight out of ten.

The support team is excellent, providing assistance and resolving issues effectively.

The setup is straightforward for me, but our customers might find it a bit challenging. Overall, following the provided steps and consulting the official materials or documentation makes the FortiGate-VM setup relatively easy.Firstly, we establish a console connection to the firewall and access its default IP. In the second step, we create rules to enable the firewall to access the internet. Following these two steps, we register a rule with Fortinet Broadcom, download the necessary licenses, and upload them. After uploading the license, we set up an interface rule, check the license, and configure interfaces such as LAN, WAN, and VPN. Subsequently, we create profiles, including web filter, application, antivirus, and IPS profiles. The last steps involve configuring interfaces like LAN, WAN, and VPN, as well as attaching profiles to outbound policies. We also consider additional configurations, like server publishing, destination netting, or integrating with PBM for Alibaba Cloud. The final three configurations are optional and depend on the customer's requirements.

We can tailor the suitable license for the customer, whether they require UTB or enterprise features. The options are flexible based on their needs.

I would recommend Fortinet for large-scale companies and Sophos for medium or small enterprises. I would rate it 8 out of 10.