Fortinet FortiWeb Reviews

The most valuable features in Fortinet FortiWeb are sandboxing and threat prevention. 

In my experience, Fortinet FortiWeb could improve the intelligent features to acknowledge whether any threat or incident that's running happened. Then give us the ability to escalate it to layer 2 or layer 3 in the network operations.

I have been using Fortinet FortiWeb for approximately two years.

I have found Fortinet FortiWeb to be stable.

The solution is scalable, but it can only scale at a medium level.

We use the technical support from the system integration, not directly with Fortinet FortiWeb. It takes them a lot of time to solve an issue when we submit a complaint.

in Indonesia, we need more knowledgeable local support.

The initial implementation is simple and the configuration is straightforward.

The price of Fortinet FortiWeb is reasonable. This is one of the key factors of why we use this solution.

I rate Fortinet FortiWeb an eight out of ten.

I use Fortinet FortiWeb to protect my web application. It works to protect my applications from attack signatures. It allows me to create a URL profile and HTTP content routing when I have many web servers working on the same virtual server.

Fortinet FortiWeb has helped our organization by protecting the web application from any attack, known and unknown. The unknown protection is done by effective machine learning that is working on many unknown attacks. It operates on the probability of attacks.

The most valuable feature is the attack signature and machine learning.

The machine learning feature of the solution could be improved.

No solution is 100% secure and the security could always be worked on.

I have been using Fortinet FortiWeb for a year and a half.

Fortinet FortiWeb is stable. It is able to detect the latest vulnerability from Log4j that happened on The Verge.

The solution's attack signature receives its update from Fortinet Developer Network, and many of the updates are immediate. The attack signatures are updated regularly due to the connection to Fortinet Developer Network.

The solution is highly scalable.

The technical support was good, they were very fast. They were able to resolve my issues.

I have used the support in many solutions, such as FortiClient, FortiWeb, for Sandbox integration with FortiMail, and other products in Fortinet.

The installation is easy. It takes one day for the implementation, and after 14 days one day for tuning.

Some customer needs to go to production fast, it can take me one day for the installation, and after seven days I can do the tuning quickly.

I do the implementation and support the solution.

There is a subscription to use this solution. There are some additional features that can be added for an extra fee. The use of the features depends on the client's needs, such as full machine learning and signatures.

I would recommend this solution to others. Additionally, I would recommend F5.

I rate Fortinet FortiWeb a nine out of ten.

We use Fortinet FortiWeb to protect our exchange terminal for mail security.

The F5 solution has more features than Fortinet FortiWeb, such as multiple load balancing.

I have been using Fortinet FortiWeb for approximately four years.

The solution is stable.

I have approximately four clients using this solution.

The installation is easy and straightforward, and the timeframe depends on the application

We have one engineer that does the support of this solution.

I have evaluated F5 and Citrix.

I would recommend this solution. I hope they are able to make some changes to compete with other solutions, such as F5 and Citrix.

I rate Fortinet FortiWeb a seven out of ten.

I use Fortinet products for security projects. When it comes to middle-sized enterprises, SD-WAN firewalls are the appropriate solution, FortiGate products being more geared towards larger, enterprise organizations. This is not for a data center, for which Check Point and Palo Alto are better suited. Fortinet FortiWeb is best suited for medium and enterprise data center environments. 

My experience with the solution has been very positive. Fortinet is a great SD-WAN player when it comes to security capabilities. Also, it offers many models for a host of environments. I like the solution's SD-WAN features.

The memory use in each of the appliances is problematic. 

I believe that I have been working with FortiGate products for five years. 

As I am a Fortinet partner, I make use of many of its products. 

I like the FortiWeb products. 

I rate Fortinet FortiWeb as a nine out of ten. 

We primarily used the solution as a POC to see how effective it is and so far we're happy with it. 

We used it for protecting our web servers and the use of some web applications within a financial institution.

They have a very good graphical user interface. 

The initial setup is pretty straightforward.

The solution is stable.

The scalability is pretty good.

We have found the pricing to be pretty reasonable. 

During the POC we did encounter problems. For example, the integration with the HSM for storing keys was not ideal.

The downside is on the security side and is the firewall. When you look at the firewall, it doesn't do decryption and you have to depend on other third-party tools to do that. Or you would have to use another FortiGate product which makes things a little complicated. Today, people look for simplicity in terms of design. That's one downside to Fortinet's Firewall. The downside to FortiWeb is it had issues integrating with HSM. They fixed the issue, however, it took a long time to fix and it wasn't pleasant. I had to work with deadlines and I could not make the deadlines due to the slow timeline on their side.

For the firewall, when you deploy IPS, the IPS doesn't have visibility into encrypted traffic and 70% of traffic these days is encrypted, and that's the conservative figure of the actual percentage. If your IPS doesn't have that visibility, then it is not really doing the job that it has to do. In comparison, Palo Alto is the best firewall in terms of performance and has the technical specifications that we need. 

The support side of things can be improved. They need to quickly tend to issues and resolve them as soon as possible. Those are the expectations.

We've only used FortiWeb for a POC. 

The stability of the product has been good. There are no bugs or glitches. It doesn't crash or freeze. It's reliable. When you look at the specs and if you do what they say in the specs, in terms of ensuring that you're not overlooking anything, it's a good product. 

The solution can scale. That's not a problem at all.

Technical support could be more responsive. They need to address issues faster. I'm not completely happy with the level of support we receive.

Generally, the solution is easy to set up. It's not overly complex. 

The pricing is pretty good if you look at other top options in this space. They are reasonable. 

I've also looked at Palo Alto, and it has the specifications that we need, however, the pricing is quite high.

Our company is a Fortinet partner.

I'd rate the solution at a seven out of ten.

In terms of functionality, it does a perfect job, however, when you have to integrate with third-party tools, that's where you might have issues. Going forward, maybe what Fortinet needs to do is to ensure that they don't have integration issues with the other big vendors that are common in terms of what's deployed out there. Someone might want FortiWeb, however, for example in my case where a bank needed to integrate that with Jamalt or HSM for description, they have to do their homework. 

When you're dealing with financial clients, they need to have seamless integration and not to have these challenges where it would take time to fix as an issue. That should be figured out pre-deployment. Companies in banking can't wait for clients to point out that this is an issue. They have to attend to it beforehand and resolve issues to meet expectations. 

I'm using FortiWeb as a web-based firewall.

FortiGate could be improved on the security end because we've had some incidents with the customer. Otherwise, there is no problem. 

FortiWeb is stable.

For scalability, I rate FortiWeb nine out of 10. There's a little room for improvement there.

Fortinet customer support is good. 

FortiWeb offers a good price for the marketplace. In the Sri Lankan market, it's hard to find high-end products that can match FortiWeb's pricing. For high-end solutions, the price is always extremely high. 

I rate FortiWeb nine out of 10. I would recommend it.

Fortinet FortiWeb can be used to protects business-critical web applications from attacks or vulnerabilities.

One of the big advantages of using Fortinet FortiWeb is all the Fortinet family solutions use the same user interface and logic. This makes it easy to use, configure, manage, and understand if you have used one of their solutions before or are wanting to implement other Fortinet solutions in the future. Additionally, all Fortinet solutions can be managed with one application called FortiManager.

The solution could improve by providing more integration with solutions other than the Fortinet family.

I have been using Fortinet FortiWeb for approximately five years.

The solution is stable.

Fortinet FortiWeb is scalable.

We have had approximately five customers using this solution.

The technical support has been good in my experience.

The installation of Fortinet FortiWeb is straightforward. The time it takes to do the installation depends on the environment of the customer and if there are any additional configurations needed. However, a typical basic installation takes approximately one hour.

We use one engineer that does the maintenance of the solution.

The solution can be deployed on-premise and on the cloud. We have been working with governments in Turkey and they tend not to trust their data on the cloud and choose on-premise deployments. However, many companies here are moving to the cloud.

I would recommend this solution to others.

I rate Fortinet FortiWeb a nine out of ten.

We are using this product to protect something similar to an online banking network.

We have had a lot of web application attacks and this product has protected us. Once it was implemented, most of our problems were solved. For example, we had a DDoS attack against the seventh layer and it protected us.

The most valuable feature is that this product represents a whole solution, including a WAF, and even anti-defacements. It is not just a single feature.

Anti-defacement has an amazing feature whereby if something bypasses the WAF then they can rollback the website.

The user experience is very good and it is simple to use.

They have AI and machine learning capabilities, so if you are using the WAF then you don't need extra features.

The initial setup in our data center was somewhat complex.

We have been using Fortinet FortiWeb since 2008.

FortiWeb is a stable product.

We have been working with this solution for more than 12 years and it has scaled with our requirements. We upgraded a lot of hardware and applications, and things change from time to time. There is not just a single point where we changed something that tested the scalability.

Technical support is amazing. We have 24x7 support and every time we have contacted them, it takes less than two hours before everything is solved. We are confident that if we have any issue then we can communicate with the vendor and they will help us to solve the problem.

In our data center and with the complexity of it, it takes one or two days to implement and fine-tune.

We deployed this product in-house. We started with the training and then we implemented the solution. In case we have any problem then we can communicate with the vendor.

We have three security specialists who work as a team for maintenance.

We renew our contract and license every three years. There are no costs in addition to the standard licensing fees. There is just one cost.

Prior to implementing FortiWeb, we tested Barracuda, F5, Citrix, and Sophos.

FortiWeb is a security product that I can recommend. My advice for anybody who is implementing this type of solution is not to simply believe the words of the vendors. Test the product in your environment and then you can select the best one for your needs. A lot of vendors nowadays will tell you that they are the best, but the best thing to do is test each of the products inside your network.

The roadmap that the vendor has for this product is good. They have a lot of extra features that they are developing for future releases. They have an amazing R&D team, they know the competition, and they know the market. In my department, we find that it is amazing and are not searching for additional functionality.

I would rate this solution a ten out of ten.