No more typing reviews! Try our Samantha, our new voice AI agent.
Consultant at AEC
Consultant
Oct 14, 2022
Easy implementation with good configurations and the ability to block domains
Pros and Cons
  • "Technical support is very good. they are quite helpful and responsive."
  • "If the price was lower, it would be a bit more attractive, as an option, to the customers."
  • "The product needs to be more stable."

What is most valuable?

The solution offers good configurations and works well with other Fortinet products.

The solution is scalable. 

We found the implementation process to be simple. 

If you want to block domains, you can do so. You do have the power to control access.

What needs improvement?

The product needs to be more stable. 

We have issues between primary and secondary IP. Secondary IP addresses cannot be on the same subnet as any primary or secondary subnet. You need to follow up between the primary and secondary. If you don't, there will be a problem. When your public applications are not working properly, the single point of communication from the public domain is an issue. If I want to resolve the situation, a quick solution is I need to fail over the primary to the secondary, and it will just start working. However, that is not a permanent solution. I don't know what the problem is exactly, and how we can permanently address the issue. 

If the price was lower, it would be a bit more attractive, as an option, to the customers. 

You do need to ensure you do the configurations carefully. Otherwise, you may have issues. 

For how long have I used the solution?

I've been using the solution for two years. 

What do I think about the scalability of the solution?

We can scale the solution. We typically work with enterprises, so, larger-scale companies. In our customer's company, they have about 6,000 to 10,000 people on the solution. 

Buyer's Guide
Fortinet FortiWeb
July 2026
Learn what your peers think about Fortinet FortiWeb. Get advice and tips from experienced pros sharing their opinions. Updated: July 2026.
903,147 professionals have used our research since 2012.

How are customer service and support?

Technical support is very good. they are quite helpful and responsive. 

Which solution did I use previously and why did I switch?

I also use F5. It's got better pricing and is quite stable as well. However, if you don't know how to configure it, it can be a disaster. 

How was the initial setup?

The initial setup is easy. It's not overly complex or difficult. 

It can be deployed in about half an hour. It doesn't take long to have it up and running. 

What about the implementation team?

I handle a lot of implementations and can handle the process. 

What's my experience with pricing, setup cost, and licensing?

The pricing could be better. They charge a bit more. That's why F5 is everywhere right now. The customer can see that F5 is stable and everything is working well, and then they see the price, and it's very attractive to them. 

What other advice do I have?

I'm just a customer and end-user. 

I'm a consultant. Our customers are working with Fortiweb in their companies.

I'd rate the solution eight out of ten. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
Eduard Otto - PeerSpot reviewer
Senior Technical Consultant at PROMOS consult
Real User
Jun 23, 2022
Good file security and redirect web traffic well but we had trouble with a few features
Pros and Cons
  • "One main feature we are very happy about is file security and upload functionality."
  • "The GUI could be better. It's limited."
  • "We had some trouble using some features."

What is our primary use case?

Mostly we use FortiWeb for replacing reverse proxy from our systems and add some security features to it to protect the web portal we are providing to our customers.  We use it to rewrite URLs and redirect FQDNs, et cetera, et cetera. That's the normal part.

What is most valuable?

The main feature I like is the ability to redirect web traffic from a readable URL to a real URL. All the security features are good.

One main feature we are very happy about is file security and upload functionality. It will restrict the number of file types that can be uploaded to our portal and prevents any malware. It helps with security.

What needs improvement?

We had some trouble using some features. Maybe we understood it the wrong way when reading the manual. We had to implement some workarounds to help this problem.

The GUI could be better. It's limited. 

For how long have I used the solution?

I've been using the solution for one year. 

What do I think about the stability of the solution?

There are no complaints on our side. The performance and stability are fine. We used to have a cluster of two appliances. Everything seems to be fine when we update the firmware. We haven't had any issues.

What do I think about the scalability of the solution?

The scalability may be slightly limited. We use hardware appliances. We need to buy appliances which have enough performance. You need to think about the sizing before you buy it. Scalability is not really possible with hardware. 

We use it more and more. We are going to migrate all the connections which are directed to a proxy to the classification firewall.

How are customer service and support?

Normally, technical support is very good. All the tickets I opened have been solved in an average time.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

It was the very first time that we used a web application firewall. We never used anything before.

How was the initial setup?

We had some difficulties at the beginning in terms of setting it up. It was a very new product for us. We never had web protection firewalls before. We had some support from our supplier, so we referred to the initial implementation to get it done with external support.

I'd rate the ease of implementation at a three out of five. 

From a technical perspective, the deployment does not take a long time. Our problem internally was the organization and the planning as well as the communication with the other teams. That's what took so long. We started maybe one and a half years ago with the implementation and productive status was reached at the end of 2021. That's a long time. That said, one would say the management is at fault, not the actual technical staff.

At a cluster, so single point of failure, all this stuff, it kind of took around 24 hours to get it up. The offline time was very difficult, however.

We have two good people on staff that can handle deployment and maintenance. We are looking for another employee in the market, however, it's been very difficult to find someone.

What about the implementation team?

The implementation was done in-house with some help from our supplier.

What was our ROI?

We have not noted an ROI yet.

What's my experience with pricing, setup cost, and licensing?

We actually expanded our subscription for the next three years. I don't remember the exact price. It should be somewhere about 36,000 Euros. That's the cost for three years. It's moderately priced. I'd rate the general cost at a three out of five. 

Which other solutions did I evaluate?

We thought about other options, however, since we had a very good experience with the FortiGate Firewall, I decided to buy FortiWeb. They operate well together. 

What other advice do I have?

We are just customers and end-users.

Potential new users should compare different products from different vendors to make a decision on a web application firewall. It doesn't matter if it is FortiWeb, or F5, or something else, just take some time to compare. 

I'd rate the solution six out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
Buyer's Guide
Fortinet FortiWeb
July 2026
Learn what your peers think about Fortinet FortiWeb. Get advice and tips from experienced pros sharing their opinions. Updated: July 2026.
903,147 professionals have used our research since 2012.
KacemCHAMMALI - PeerSpot reviewer
Network Security Consultant at FleXos
Reseller
Jun 20, 2022
Very user-friendly with great vulnerability scanning and IPS
Pros and Cons
  • "Provides good vulnerability scanning, IPS, and geolocalization."
  • "Fortinet offers simple, easy-to-use solutions."
  • "The solution currently lacks a VM demo to enable testing prior to purchasing."

What is our primary use case?

The primary use case of this solution is to protect web applications, web servers, and our customers' mobile applications. We are a Fortinet partner and integrator, installing both appliances and VMs. I'm a network security consultant. 

What is most valuable?

There are many valuable features in this solution including vulnerability scanning, IPS, and geolocalization. The product is user-friendly and simple.

What needs improvement?

The solution currently lacks a VM demo to enable testing prior to purchasing. It would make things easier for our clients to choose this product if they had that ability. We are based in Tunisia and the lack of multilingual technical support is problematic at times. 

For how long have I used the solution?

I've been using this solution for five years. 

What do I think about the stability of the solution?

The solution is stable. 

What do I think about the scalability of the solution?

The solution is scalable. 

How are customer service and support?

We generally use the chat or phone for technical support with the occasional remote session with the technical team. The customer service is good but lacks a multilingual element that would benefit us. 

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

I previously used the Cisco IOS CLI for the web interface. It's more complicated than Fortinet. Fortinet offers simple, easy-to-use solutions. We are also a vendor for F5 which offers similar features and functionality to Fortinet but is more expensive. 

How was the initial setup?

The initial setup is straightforward, it's a matter of choosing the architecture, the deployment mode, and configuring. Deployment time depends on the client's application. If it's a matter of one or two applications, deployment can take between two or three days. If there are many more applications that require protection, it can take over a month.

What other advice do I have?

This solution works best for medium and enterprise-size companies. One of our clients is a bank, another is an educational institute with over 20,000 users. 

I rate this solution eight out of 10. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer. reseller
PeerSpot user
Director of business and digital transformation at SERNIVEL3
Real User
Nov 7, 2021
Useful single location dashboard controls, stable, and helpful support
Pros and Cons
  • "You have the ability to control everything from one single dashboard."
  • "This allows the ability for a lot of different functions that you don't have to have really competent staff because you do not have different vendors."
  • "The solution could improve by being able to handle different use cases."

What is our primary use case?

We use Fortinet FortiWeb for industrial companies. We are making doing network segmentation inside the industrial park, which is quite difficult and we have to design, develop and maintain all of the different kinds of solutions. We brought Fortinet FortiWeb to protect against forbidden access and for special access for providers in the industry.

How has it helped my organization?

We do not use this solution for our organization but for clients' organizations. For example, one customer uses the solution for the protection of all their different applications. Additionally, the solution has protected the servers that are in the DMC, such as services for people in other countries that have to have access.

What is most valuable?

You have the ability to control everything from one single dashboard.

What needs improvement?

The solution could improve by being able to handle different use cases.

For how long have I used the solution?

I have used Fortinet FortiWeb within the past 12 months.

What do I think about the stability of the solution?

The stability is good.

What do I think about the scalability of the solution?

The scalability is quite good. The scalability has been good for each industry. You can integrate Fortinet FortiWeb with all kinds of products of the same vendor. This allows the ability for a lot of different functions that you don't have to have really competent staff because you do not have different vendors. You don't have to call another vendor for solving one ticket or problem. This made everything simple, it was very good.

We have approximately 2,000 people using this solution.

When our customers have acquired more industrial plants we will propose this solution for all those industrial plant customers.

How are customer service and support?

The technical support is good.

I would rate the technical support of Fortinet FortiWeb an eight out of ten.

Which solution did I use previously and why did I switch?

We previously used F5.

How was the initial setup?

The installation was straightforward and it took us approximately one month. There are a lot of services, approximately 15, and other parts to configure.

What about the implementation team?

We used consultants, technicians and, an integrator for the implementation.

We do not need more than three people to do the maintenance and support of Fortinet FortiWeb.

What was our ROI?

We have seen a return on investment. It has been decent but not the best. We choose to work with one large customer and it has been similar to an investment.

What's my experience with pricing, setup cost, and licensing?

We are on an annual license for this solution and the price is approximately €100.

Which other solutions did I evaluate?

We have evaluated a number of solutions, such as Citrix NetScaler.

What other advice do I have?

I would recommend those wanting to implement this solution to use good integrators, there are not too many people who know about this solution. I lived in Spain and there are not too many installations made, it's quite difficult to find people that know a lot about it. It's not a difficult installation and the vendor helped us a lot and is very helpful. You have professional services you can use from the vendor if you choose, but they are quite expensive for customers.

One of the biggest lessons I have learned from using Fortinet FortiWeb is Fortinet helps you a lot. They can develop something specifically for a customers' use case without any costs for them.

I rate Fortinet FortiWeb a nine out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
reviewer2586675 - PeerSpot reviewer
Security Consultant at a university with 1,001-5,000 employees
Real User
Top 5
Oct 29, 2024
Easty to use with effortless integration and simple web security management
Pros and Cons
  • "Even though most products have the same functionality nowadays, FortiWeb is easy to integrate."
  • "Fortinet's technical support is pretty slow."

What is our primary use case?

I used FortiWeb, and I was looking if the SIPTNA from Symantec had something to do with the one from Fortinet. I am a consultant and I propose Fortinet products to my customers. I usually recommend FortiWeb for companies that are looking for a WAF.

How has it helped my organization?

It's really easier for them to integrate. Sometimes we help them, and once it's integrated, it doesn't have a lot of requirements from their side. They just have to keep the site going with their security assessment. They do not need for us to help them more.

What is most valuable?

Usually, people want to change, solutions and we recommend that it is easy to use. Even though most products have the same functionality nowadays, FortiWeb is easy to integrate.

What needs improvement?

Fortinet's technical support is pretty slow, especially when you have quick questions. The support kind of delays itself and sometimes takes more time. That's the only thing that I can think of at the moment.

How are customer service and support?

Fortinet's technical support is pretty slow and kind of delays itself when you have quick questions.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

I was using another solution. I just wanted to research it to see if it had something extra. It was just some research for a project. I just wanted to know if any of them had some qualities that seemed similar to Symantec.

How was the initial setup?

It's true that we are the ones that usually deploy it for our clients. Since we do it for many of them, we think it's really easy. But as for many products, it's really straightforward.

What about the implementation team?

We are the ones that usually deploy it for our clients. Since we do it for many of them, we think it's really easy.

What's my experience with pricing, setup cost, and licensing?

It's better. Yeah, it's really good. It's one of the main points why we offer it. Since we are partners with them, sometimes we offer our customers a lower price.

Which other solutions did I evaluate?

The clients that we know use both FortiWeb and Symantec. I used FortiWeb, and I was looking if the SIPTNA from Symantec had something to do with the one from Fortinet.

What other advice do I have?

I would recommend FortiWeb for web application security. Most products work the same despite being different solutions.

I'd rate the solution nine out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer. Partner
PeerSpot user
reviewer1103169 - PeerSpot reviewer
Executive Manager at a financial services firm with 1,001-5,000 employees
Real User
Top 20
Aug 9, 2024
Has security profile but improvement is needed in ease of use
Pros and Cons
  • "The solution's most valuable feature is its security profile."
  • "The solution could improve its ease of use and add more advanced WAF features in future releases."

What is most valuable?

The solution's most valuable feature is its security profile. 

What needs improvement?

The solution could improve its ease of use and add more advanced WAF features in future releases.

For how long have I used the solution?

I have been working with the product for more than five years. 

Which solution did I use previously and why did I switch?

I've worked with both F5 and Fortinet and find F5 to be much better. F5 is easier to implement, more compatible with applications, and more robust and stable. Regarding securing applications behind the WAF, F5 generally provides better security.

How was the initial setup?

The solution's implementation is not complex and depends on the number and complexity of customers' applications. 

What's my experience with pricing, setup cost, and licensing?

Fortinet FortiWeb's pricing is reasonable. Its licensing costs are yearly. 

What other advice do I have?

The product has been in the WAF business for a long time. Its maturity cannot be compared to other alternatives. Based on my experience with Fortinet FortiWeb, I'd recommend it in specific cases, especially if you have a limited budget. It can meet basic requirements. However, other vendors have better features and support. I rate the overall product a six out of ten. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
Senior Vice President Operations at Alackrity Consols
Real User
Top 10
Jul 30, 2024
Improves latency by optimizing traffic routing at an affordable price
Pros and Cons
  • "It improves latency by optimizing traffic routing."
  • "FortiWeb could have an inbound load balancing pack."

What is our primary use case?

We use the solution for branch optimization. Initially, it was all in MPLS, but they converted to the broadband network. Implementing it reduced the cost, and its redundancy was also better.

How has it helped my organization?

It improves latency by optimizing traffic routing. When a better link is available, it reroutes traffic through it. Additionally, MPLS helps reduce costs. Critical data can be prioritized on MPLS, while other data uses broadband connectivity, leading to better resource utilization. This setup supports load sharing, allowing multiple links to work simultaneously for improved performance.

What is most valuable?

From the web application perspective, it offers comprehensive features, including URL filtering and DNS protection. Additionally, FortiWeb provides SD-WAN capabilities, such as load sharing based on latency or packet drops. Its extensive feature set allows customers to choose and customize according to their needs and preferences.

What needs improvement?

FortiWeb could have an inbound load balancing pack. Currently, they don't have it, but they have the print product for that. It'll be better if they have it on the same product.

For how long have I used the solution?

I have been using FortiWeb Web Application Firewall (WAF) for three years.

What do I think about the scalability of the solution?

It is primarily for the enterprise environment segment. Even if one of the three links goes down, another link will appear to resolve the issue. FortiWeb primarily relies on its high availability features.

How are customer service and support?

We had a quick response from support since we have partnered with them. 

How would you rate customer service and support?

Positive

How was the initial setup?

The initial setup was easy because we had training. Also, the FortiGate team provides good support. It took around around five to six days to complete. It is only a plug-and-play environment.

What's my experience with pricing, setup cost, and licensing?

The price is cheap compared to other products in the market. It costs 15-20% less than CheckPoint.

What other advice do I have?

It is more than a basic firewall. It includes various features for enhanced security, such as protection against threats and vulnerabilities specific to web applications. Depending on their roles and responsibilities, some people who work on EDS may also interact with FortiWeb WAF.

FortiWeb offers a comprehensive product suite for SOC integration, including automation and SIEM capabilities. It also offers a complete integration package, including physical components that ensure a consistent experience for internal and external teams.

It includes an analyzer that provides comprehensive visibility. It is designed to optimize costs while sending detailed analytics and other relevant data.

I recommend the solution for security.

I rate the solution a nine out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer. partner
PeerSpot user
IT Manager at indian acrylics limited
Real User
Apr 10, 2024
Used for web filtering purposes and has a user-friendly interface
Pros and Cons
  • "The most valuable features of the solution are SD-WAN, filtration, web filter, application filter, and IPS."
  • "It would be good if the solution integrated with other solutions, like SAP."

What is our primary use case?

We use the solution for web filtering purposes. We use it to allow or block any application.

What is most valuable?

The most valuable features of the solution are SD-WAN, filtration, web filter, application filter, and IPS. The solution's console is very user-friendly and very easy to manage. The solution has good stability and a user-friendly interface.

What needs improvement?

It would be good if the solution integrated with other solutions, like SAP.

For how long have I used the solution?

I have been using FortiWeb Web Application Firewall (WAF) for nine to ten years.

What do I think about the stability of the solution?

FortiWeb Web Application Firewall is a very stable solution.

I rate the solution’s stability ten out of ten.

What do I think about the scalability of the solution?

Every location with 200 to 300 people has installed the FortiWeb Web Application Firewall.

I rate the solution a nine out of ten for scalability.

How are customer service and support?

Our experience with the solution's technical support has been good. We promptly get support from the technical support team.

How would you rate customer service and support?

Positive

How was the initial setup?

The solution’s initial setup is easy and can be done in a few hours.

On a scale from one to ten, where one is difficult and ten is easy, I rate the solution's initial setup a nine or ten out of ten.

What other advice do I have?

I would recommend FortiWeb Web Application Firewall to other users because it is a good product.

Overall, I rate the solution a nine out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
Senior Client Manager at Warpcom
Real User
Aug 20, 2023
Provides efficient integration features and has good scalability
Pros and Cons
  • "The platform's stability is good."
  • "The product is complicated to set up."

What is our primary use case?

We use FortiWeb Web Application Firewall for security features while working in the financial area.

What is most valuable?

The product has good integration features.

What needs improvement?

The product's integration with Cisco needs improvement.

For how long have I used the solution?

I have been using FortiWeb Web Application Firewall for 30 years.

What do I think about the stability of the solution?

The platform's stability is good, with good assessment and low-level design.

What do I think about the scalability of the solution?

FortiWeb Web Application Firewall's scalability is good.

Which solution did I use previously and why did I switch?

I have used Palo Alto and Check Point before.

How was the initial setup?

The product is complicated to set up. The deployment time depends on the customer. Some customers have a deployment time of six to seven months, while others have a deployment time of two months. The process involves an assessment for a month, then a low-level design for another month.

What's my experience with pricing, setup cost, and licensing?

FortiWeb has a good presence because of its price.

What other advice do I have?

We are integrators with all the product certifications. We have a good team. We prefer assessment and low-level design before starting with the project.

I rate FortiWeb Web Application Firewall an eight out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer. Partner
PeerSpot user
MaharramNajafov - PeerSpot reviewer
Information Security Engineer at R.I.S.K. Company
MSP
Jul 18, 2023
The solution blocks attacks from application layers and protects websites from injection attacks
Pros and Cons
  • "FortiWeb Web Application Firewall blocks attacks from application layers and provides protection."
  • "FortiWeb Web Application Firewall's signature database updates could be improved."

What is our primary use case?

We use FortiWeb Web Application Firewall to protect websites from injection attacks.

What is most valuable?

FortiWeb Web Application Firewall blocks attacks from application layers and provides protection.

What needs improvement?

FortiWeb Web Application Firewall's signature database updates could be improved.

For how long have I used the solution?

I have been using FortiWeb Web Application Firewall for one year.

What do I think about the stability of the solution?

I rate FortiWeb Web Application Firewall an eight out of ten for stability.

What do I think about the scalability of the solution?

I rate FortiWeb Web Application Firewall a nine out of ten for scalability. Around 10 to 12 users use the solution in our organization.

How are customer service and support?

The solution’s customer support is not good.

How would you rate customer service and support?

Positive

How was the initial setup?

The solution’s initial setup is easier than other products.

What about the implementation team?

It takes one week to deploy FortiWeb Web Application Firewall. As part of the deployment process, we create a FortiGate interface, connect FortiWeb to our website server, create virtual web servers in FortiWeb, and write some access control rules for protection purposes.

What's my experience with pricing, setup cost, and licensing?

FortiWeb Web Application Firewall's pricing is suited for small or medium organizations.

What other advice do I have?

FortiWeb Web Application Firewall is deployed on-cloud in our organization.

I recommend FortiWeb Web Application Firewall to other users because it helps block many attacks that come from the web and application layers. Using the solution to protect organizations from attacks is an easy process.

Overall, I rate FortiWeb Web Application Firewall a nine out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer.
PeerSpot user
Buyer's Guide
Download our free Fortinet FortiWeb Report and get advice and tips from experienced pros sharing their opinions.
Updated: July 2026
Buyer's Guide
Download our free Fortinet FortiWeb Report and get advice and tips from experienced pros sharing their opinions.