Fortinet FortiWeb Reviews

Fortinet FortiWeb has improved my organization by protecting our customers' web infrastructure environment.

The most valuable feature is the web application firewall (WAF).

Their support needs improvement.

No stability issues.

No scalability issues.

I would rate their technical support as a nine out of 10.

We previously used NetScaler.

The initial setup was straightforward.

The pricing is reasonable.

Not applicable.

Evaluate this product against other vendors out there.

We were previously a partner.

We were able to protect our web servers from outside attacks. It has really helped us with publishing servers which were published on Microsoft Forefront TMG.

All of its feature are valuable to us. If you ask me which is the most valuable, it is the load balancing, then I would say the security features. Publishing OWA is also a good feature.

We started with FortiWeb400C, then we did an upgrade to FortiWeb 400D. I had some small problems when I was upgrading firmware. After the upgrade, some of my certificates were deleted.

The false positives are also annoying.

We did not encounter with any stability issues.

We did not encounter with any scalability issues.

Fortinet technical support is really good. I would give them a nine out of 10.

We did not use a WAF before. We used Microsoft TMG, but it is not a WAF.

Initial setup is straightforward, and it is not too complex.

It really pays off to buy licences for multiple years.

No.

It is a really good product. It is worth using in your network.

Other than the additional security with exploit protection, we have simpler certificate handling, as we can keep internal servers using internal certificates continuously distributed and updated by Active Directory Group Policy, while the public certificates become updated only in a single place, FortiWeb itself.

SSL Offloading, as it simplifies the public certificate handling and brings additional protection features. 

Also, L-7 protection, as it makes possible to protect legacy/not up-to-date servers/applications without changing the application code.

• Centralized management of multiple devices, and GUI improvement, could reduce the learning curve. 
• The interface could have the interdependent elements arranged sequentially and wizards that go through most common deployment actions. 
• Centralized configuration using FortiManager – like what exists for NGFW FortiGate appliances - would improve the configuration.

No issues with stability.

No issues with scalability. (Actually, our traffic usually does not reach 50% of unit capacity).

Good. Usually takes one day to get over all the assessment procedures to start to handle the issue.

The previous vendor discontinued its product.

A little bit complex, as understanding the GUI arrangement and terms took more time and effort than we expected.

Keep a loose margin between your actual bandwidth and the product sizing when using hardware appliances. Only virtual machines are upgradable to larger sizes.

We acquired a Fortinet-based project, so we didn’t evaluate other ones.

I rate it eight out of 10. I understand that a 10 is for products that not only execute smoothly but are also easy to use and manage, even when used on a multi-site corporation.

Take at least the Fortinet online course, or make sure that your reseller has experienced professionals.

Security.

• Web application security features, because they are more effective
• Stability 
• Auto Learn feature: Makes policy additions or deletions for my customers very simple

HA Architecture. I would improve it by working on AP HA.

No issues with stability.

No issues with stability, with the true network topology.

I am Fortinet expert, but L4 support is working very well.

Previously used F5, NetScaler, Imperva. Other products feature LB WAFs, so a limited WAF feature. This product's primary feature is WAF. I chose this product because it prioritizes security.

Very complex. More security features.

Cheaper than others.

F5, NetScaler, Imperva and Squid.

Here's how I would break down my rating of this product:

• Session Management: 10 out of 10 
• Security: 10 out of 10 
• Stability: 10 out of 10
• Health check feature: eight out of 10.

If your goal is security, FortiWeb is your best choice.

Mitigation of attacks and thefts in an online banking platform.

High-performance and detection engines, because of their high rate of exposure of web attacks.

Integration and learning about attacks. I would improve these areas by making FortiWeb integrate with other network technologies and feedback from multiple platforms.

No issues with stability.

The equipment is dimensioned as a function of servers traffic. To scale on the platform it is necessary to acquire superior models.

Excellent.

It was simple and functional.

FortiWeb can be purchased in VM mode for a lower price and the same features.

The WAF module of F5 was evaluated.

FortiWeb is easy to operate with a reasonably high level of protection. FortiWeb provides multiple deployment options with a physical or virtual (FortiWeb-VM) appliance, and acts either as a reverse/transparent proxy or out-of-band. It is also available on AWS and Azure.

I would advise requesting a PoC test with a learning policy.

With other vendors you need to go through a learning period. With FortiWeb you can just apply a high-security profile and move on. It's very easy to reduce false positives.

• Built-in security templates
• AV integrated
• Strong threat intelligence

Also, if you serve files or you accept files with your server, Fortiweb has built-in antivirus. The Fortinet product family also provides good IP intelligence (botnet C&C, etc.).

Requires very little effort to add device to topology or replace existing WAF device with FortiWeb.

No issues with stability.

No issues with scalability.

Eight out of 10.

F5, A10, KEMP.

It's very easy.

Be sure to look at industry reviews, they have good knowledge about threat intelligence.

Application delivery is strong.

It has provided stability to applications.

The hardware does not measure up. Fortinet does not have sturdy hardware.

I have been using it for three years.

My client was using it when we took over operation of the project.

The price is not too low and it’s not too high.

I did not evaluate other options. This product was already implemented.

Check the market before implementing it... because I didn’t get the chance to do so.

• SSL offloading
• Unlimited number of protected servers
• Load balancing

If a customer has a web portal that frequently experiences attacks, FortiWeb blocks all negative traffic.

It would be great if FortiWeb could provide web forms like Microsoft TMG. (For example, OWA Exchange portal or SharePoint portal.) Many of our customers are looking forward to this functionality.

I don’t use it, but as a partner of Fortinet, I implement it at customers’ sites. Our customers have been using it for about two years.

One of our customers recently experienced a stability problem. The customer has two FortiWeb appliances in an HA cluster (A-P). Something happened and both FortiWeb units became MASTER. Only a reboot of one of the units helped them. We opened a ticket.

I have not encountered any scalability issues.

Sometimes technical support is very slow, but sometimes they work very fast. So I will rate it 5/10.

I did not previously use a different solution.

Initial setup is not very complex. But if we have problems with configuration, we ask support.

We always recommend the full bundle, but sometimes we offer a budget-conscious solution for the customer.

Before choosing this product, I did not evaluate other options.

Look at the PRICE and the PERFORMANCE.