Try our new research platform with insights from 80,000+ expert users
Fortinet FortiWeb Logo

Fortinet FortiWeb Reviews

Vendor: Fortinet
3.9 out of 5
Badge Leader
Leave a review

What is Fortinet FortiWeb?

Fortinet FortiWeb is a Web Application Firewall (WAF) that protects your web applications and APIs from attacks targeting known as well as unknown vulnerabilities. As the surface of your web applications evolves with each change of existing features and deployment of new features, your APIs are left exposed. Fortinet FortiWeb provides the board protection capabilities required to protect web applications without sacrificing performance or manageability.

Get the Fortinet FortiWeb Buyer's Guide and find out what your peers are saying about Fortinet FortiWeb, Prisma Cloud by Palo Alto Networks, Imperva Application Security Platform and more!
Fortinet FortiWeb is the #5 ranked solution in top Web Application Firewalls. PeerSpot users give Fortinet FortiWeb an average rating of 7.8 out of 10. Fortinet FortiWeb is most commonly compared to Prisma Cloud by Palo Alto Networks: Fortinet FortiWeb vs Prisma Cloud by Palo Alto Networks. Fortinet FortiWeb is popular among the large enterprise segment, accounting for 49% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 12% of all views.
Buyer's Guide
Fortinet FortiWeb
October 2025
Get the report
Helped 870,697 peers since 2012

Featured Fortinet FortiWeb reviews

Read more reviews

Fortinet FortiWeb mindshare

As of October 2025, the mindshare of Fortinet FortiWeb in the Web Application Firewall (WAF) category stands at 7.3%, up from 7.1% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Web Application Firewall (WAF) Market Share Distribution
ProductMarket Share (%)
Fortinet FortiWeb7.3%
F5 Advanced WAF9.0%
Microsoft Azure Application Gateway7.5%
Other76.2%
Web Application Firewall (WAF)

PeerResearch reports based on Fortinet FortiWeb reviews

TypeTitleDate
CategoryWeb Application Firewall (WAF)Oct 19, 2025Download
ProductReviews, tips, and advice from real usersOct 19, 2025Download
ComparisonFortinet FortiWeb vs F5 Advanced WAFOct 19, 2025Download
ComparisonFortinet FortiWeb vs AWS WAFOct 19, 2025Download
ComparisonFortinet FortiWeb vs Microsoft Azure Application GatewayOct 19, 2025Download
Suggested products
TitleRatingMindshareRecommending
Prisma Cloud by Palo Alto Networks4.21.7%98%111 interviewsAdd to research
Imperva Application Security Platform4.37.5%95%133 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

Fortinet FortiWeb excels with features like web application firewall, machine learning, and SSL offloading. Users highlight its ease of integration with Fortinet products, intuitive GUI, and strong security profile including OWASP Top 10 protection, threat detection, and bot mitigation. It offers seamless traffic management, anti-defacement, and robust reporting. Load balancing, high availability, and AI-driven threat prevention are also praised. Its affordability compared to competitors makes it appealing for widespread enterprise use.
  • "The AI-driven threat detection enhances protection capabilities, and the product is equipped with hardware acceleration, improving performance considerably."
  • "The most valuable features of FortiWeb include its dashboard and out-of-the-box integrations with other Fortinet products, which enhance its effectiveness."
  • "It is cost-effective compared to other solutions."

Room for Improvement

Fortinet FortiWeb users mention several areas for enhancement including the complexity of the user interface, often citing challenges for new users. Additionally, there are issues with support response times and the frequent bugs in software patches. Users express frustration with complicated upgrade processes and inadequate reporting features. Enhancing DDoS protection, improving integration with other platforms, and expanding cloud capabilities are also crucial. Automation, machine learning capabilities, and better training materials are repeatedly requested.
  • "Fortinet's customer support needs improvement. The expertise of engineers varies across different time zones, affecting the effectiveness of the support provided, especially during our daytime."
  • "There is room for improvement in the portability on multi-cloud environments."
  • "They could integrate some kind of machine learning and AI facilities to automate workflows."

ROI

Companies using Fortinet FortiWeb generally observe decent value, though some experiences vary. Many highlight cost savings, faster deployment, and reduced infrastructure requirements. Users appreciate the security benefits, noting it prevents cyber attacks and offers peace of mind. Operational overhead decreases due to less hardware management. Some users report quick time to value and rate ROI highly, while others find monetary quantification challenging. Fortinet FortiWeb replaces external hosting needs, providing on-prem cost advantages.

Pricing

Fortinet FortiWeb offers competitive and flexible pricing suitable for both small and large enterprises. Licensing options include perpetual, subscription-based, and VM-based solutions, catering to diverse business needs and sizes. While some find FortiWeb's pricing high, many appreciate its strong cost-to-performance ratio and value compared to competitors like F5 and Barracuda. Pricing varies based on deployment type and required features, with discounts available for partnerships and multi-year licenses. FortiWeb remains a viable choice for enterprises prioritizing comprehensive security solutions within budget constraints.
  • "If one is cheap and ten is expensive, I rate the tool an eight."
  • "Fortinet FortiWeb's pricing is reasonable. Its licensing costs are yearly."
  • "If one is very cheap and ten is very expensive, I rate the product price as three or four."

Popular Use Cases

System integrators and service providers use Fortinet FortiWeb to protect web applications against vulnerabilities and attacks, especially for industries like banking and e-commerce. Customers utilize it for web and email security, proxy solutions, and load balancing. It is also used to prevent SQL injection and other layer 7 attacks. Many integrate it with FortiGate, FortiAnalyzer, and FortiSandbox, deploying it for institutions and medium to large enterprises, both on-premise and cloud environments.

Service and Support

Fortinet FortiWeb's customer service and support are generally rated positively, with many users citing responsiveness and helpfulness. Ratings often fall between seven and nine out of ten. However, some users note slow response times and the occasional need for more knowledgeable support. The support system is structured but can take up to thirty minutes for emergency attention. Users in sanctioned regions report difficulties accessing support. Local support can vary, but international support is often praised.

Deployment

Fortinet FortiWeb's initial setup is generally perceived as straightforward by users. Many mention quick deployment ranging from a few hours to several days, depending on the complexity of the environment and applications. While some encounter challenges related to integration or require support, others find it easy to configure and manage with minimal staffing. Familiarity with the product aids in smoother deployment, and several users appreciate the user-friendly interface and efficient configuration process.

Scalability

Fortinet FortiWeb is scalable but requires careful initial sizing. Users frequently express satisfaction with its scalability for various needs, from small to large-scale environments. Some find the hardware limitations challenging, requiring new deployments to scale. Despite these limitations, Fortinet's offerings provide flexibility across models and licenses, supporting a range of uses from small businesses to large enterprises. Many note that different models cater to existing and future capacity requirements effectively.

Stability

Fortinet FortiWeb is considered stable by many users, with only occasional issues. Some experienced memory consumption concerns, while others noted problems with firmware upgrades or configurations. A few reported hardware problems, which were quickly resolved by support. Despite some isolated incidents, FortiWeb consistently demonstrates high stability, performing reliably in various environments. Stability ratings vary, but users often rate FortiWeb between seven and ten out of ten.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Fortinet FortiWeb Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business40
Midsize Enterprise18
Large Enterprise24
By reviewers
By visitors reading reviews
Company SizeCount
Small Business349
Midsize Enterprise232
Large Enterprise548
By visitors reading reviews

Top industries

By visitors reading reviews
Computer Software Company
12%
Financial Services Firm
11%
Government
7%
Comms Service Provider
7%
Manufacturing Company
6%
Retailer
6%
University
5%
Educational Organization
4%
Insurance Company
4%
Hospitality Company
3%
Healthcare Company
3%
Construction Company
3%
Performing Arts
3%
Outsourcing Company
3%
Non Profit
3%
Energy/Utilities Company
2%
Media Company
2%
Real Estate/Law Firm
2%
Transportation Company
2%
Wholesaler/Distributor
2%
Legal Firm
1%
Consumer Goods Company
1%
Logistics Company
1%
Recreational Facilities/Services Company
1%
Aerospace/Defense Firm
1%
Marketing Services Firm
1%

Compare Fortinet FortiWeb with alternative products

Go!

Learn more about Fortinet FortiWeb

Fortinet FortiWeb is an automatic, advanced multi-layer solution that provides secure protection by discerning irregular behavior and distinguishing between malicious and benign anomalies. In addition, the approach delivers powerful bot mitigation capacities which authorize harmless bots to connect while blocking malicious bot activity securely. Regardless of where an application is hosted, Fortinet FortiWeb will safeguard business applications by providing deployment options, such as virtual machines, hardware appliances, and containers that can be deployed in the data center, cloud environments, or in the cloud-native SaaS solution.

Fortinet FortiWeb Features and Benefits

APIs and web applications have become integral to the rising demand for business-critical applications. Now more than ever, businesses are in need of an automatic firewall that will provide them with security, without sacrificing performance or reliability. Fortinet FortiWeb offers a variety of features and benefits, including:

  • Security fabric integration: FortiWeb integrates with other Fortinet solutions to provide advanced protection from persistent threats.

  • Proven web application and API protection: FortiWeb safeguards applications from all DDOS attacks, malicious bot attacks, and OWASP Top-10 threats.

  • Advanced visual analytics: FortiWeb offers a unique visual reporting tool that other WAF solutions don’t by providing a detailed analysis of attack elements and sources.

  • Hardware-based acceleration: With fast and secure traffic encryption and decryption, FortiWeb provides best-in-class WAF protection.

  • ML-based threat detection: FortiWeb delivers multi-layer machine learning defense protection to defend against zero-day attacks and reduce false positives.

  • False positive mitigation tools: Reduce daily management of policies through advanced tools to guarantee only unwanted traffic is blocked.

Reviews from Real Users

Fortinet FortiWeb offers an industry-leading Web Application Firewall, and users are satisfied with it for a number of reasons, including the ability to control everything from the dashboard and the PCI-compliant reports it offers.

Carlos P., director of business and digital transformation at SERNIVEL3, notes, "You have the ability to control everything from one single dashboard."

A director at a tech service company, says, "Banks have to be compliant with PCI and other things, and FortiWeb is absolutely amazing in terms of providing these reports. Otherwise, they will have to spend a lot of time on them."

Fortinet FortiWeb customers

Lush, Barnabas Health, Options, Riverside Healthcare, Hillsbourough County Schools, Columbia Public Schools, Schiller AG

Related questions

  • 63
Which lesser known firewall product has the best chance at unseating the market leaders?
  • 42
Which WAF solution would you recommend to cater to 100 to 125 concurrent sessions?
  • 61
What do you recommend for a securing Web Application?
  • 34
Fortinet vs Sophos? Help choose a NGFW solution that can replace Microsoft TMG.
  • 30
Imperva WAF vs. Barracuda: Which One is Better?
  • 126
F5 vs. Imperva WAF?
  • 185
When should companies use SSL Inspection?
  • 387
How does a WAF help to protect against DDoS attacks?
  • 328
NGFW with URL Filtering vs Web Proxy
  • 40
What's right for me? Fortinet or Citrix?

Product Categories

Product Categories
Web Application Firewall (WAF)
Fortinet Cloud Security

Popular Comparisons

Popular Comparisons
Prisma Cloud by Palo Alto Networks vs Fortinet FortiWeb Logo
Prisma Cloud by Palo Alto Networks vs Fortinet FortiWeb
Imperva Application Security Platform vs Fortinet FortiWeb Logo
Imperva Application Security Platform vs Fortinet FortiWeb
Azure Front Door vs Fortinet FortiWeb Logo
Azure Front Door vs Fortinet FortiWeb
Microsoft Azure Application Gateway vs Fortinet FortiWeb Logo
Microsoft Azure Application Gateway vs Fortinet FortiWeb
F5 Advanced WAF vs Fortinet FortiWeb Logo
F5 Advanced WAF vs Fortinet FortiWeb
AWS WAF vs Fortinet FortiWeb Logo
AWS WAF vs Fortinet FortiWeb
NetScaler vs Fortinet FortiWeb Logo
NetScaler vs Fortinet FortiWeb
Cloudflare Web Application Firewall vs Fortinet FortiWeb Logo
Cloudflare Web Application Firewall vs Fortinet FortiWeb
Akamai App and API Protector vs Fortinet FortiWeb Logo
Akamai App and API Protector vs Fortinet FortiWeb
Azure Web Application Firewall vs Fortinet FortiWeb Logo
Azure Web Application Firewall vs Fortinet FortiWeb
Radware Alteon vs Fortinet FortiWeb Logo
Radware Alteon vs Fortinet FortiWeb
Fastly vs Fortinet FortiWeb Logo
Fastly vs Fortinet FortiWeb
NGINX App Protect vs Fortinet FortiWeb Logo
NGINX App Protect vs Fortinet FortiWeb
Barracuda Web Application Firewall vs Fortinet FortiWeb Logo
Barracuda Web Application Firewall vs Fortinet FortiWeb
Radware Cloud WAF Service vs Fortinet FortiWeb Logo
Radware Cloud WAF Service vs Fortinet FortiWeb
See all alternatives
 
Fortinet FortiWeb Reviews Summary
Author infoRatingReview Summary
Chief Technology Officer at Future Point Technologies4.0We primarily use Fortinet FortiWeb for web application security. Its valuable features like DDoS and bot attack protection, machine learning-based threat detection, and hardware acceleration enhance performance. Improvement is needed in its cloud-based services to compete with Cloudflare.
Senior Security Engineer at a financial services firm with 1,001-5,000 employees2.5I use Fortinet FortiWeb for website protection and load balancing, valuing its integration and ease of use. While affordable, it lacks customization for advanced needs, making it ideal for simple sites but limited for complex applications.
Presales Engineer at SAUDI PARAMOUNT COMPUTER SYSTEMS3.0I've used Fortinet FortiWeb since 2020 and find it effective for securing web applications, though frequent untested updates cause bugs. It's easy to deploy, competitively priced, but has room for improvement in scalability and firmware stability.
IT Infrastructures Administrator at Esprit4.0We use FortiWeb to protect our web applications, ensuring safe access and blocking direct IP connections. While its security features are robust and cost-effective, its load balancing needs improvement and currently requires additional solutions like FortiADC.
Manager Data Servicers at Union Bank of Colombo4.5We use FortiWeb to connect external APIs to our on-prem data center, benefiting from its protection against web threats, cost-effectiveness, and load balancing. Improvements could include AI automation. It saves us 20% to 30% in costs.
BDM Fortinet & BDM Teamlead at Exclusive Networks4.0No summary available
Senior Manager Tech Compliance at Qenta Inc3.5I use FortiWeb primarily for protecting web servers from malicious activities and meeting PCI DSS requirements. Its antivirus, web filtering, and application control features ensure robust security. I find it reliable as I haven't compared it to other solutions.
Cloud Architect/Solution Architect at a consultancy with 10,001+ employees3.5We rely on Fortinet FortiWeb for our hosted web applications due to its capability to handle large requests and user-friendly interface. Although its threat intelligence could improve, it outperforms native cloud firewalls in several key features.