2018-05-23T10:30:00Z

What needs improvement with Fortinet FortiWeb?

Julia Miller - PeerSpot reviewer
  • 0
  • 334
PeerSpot user
47

47 Answers

AK
Real User
Top 5
2023-11-06T17:28:00Z
Nov 6, 2023

The software's support services could be better compared to Sophos.

Search for a product comparison
KA
Real User
Top 20
2023-09-11T14:22:22Z
Sep 11, 2023

The product’s stability could be improved.

Javed Hashmi - PeerSpot reviewer
Reseller
Top 5
2023-05-26T10:11:00Z
May 26, 2023

I think customers have the impression that FortiWeb is primarily for SMEs, but FortiWeb should work to expand its market share and adjust its branding. F5 and some other firewalls are easier to customize. FortiWeb could be more flexible and customizable. The documentation could also be improved because many of the advanced features aren't fully documented.

Blair Griffith-Barwell - PeerSpot reviewer
Real User
Top 10
2023-02-17T22:01:00Z
Feb 17, 2023

One area that needs improvement is using IP addresses within templates. If you allow an IP address to access an application, you should be able to leave a description of that. For example, we allow clients to access these services, and some are restricted to the IP address. When you add an IP, there's no way within the product to say what the IP address is. We need to maintain a separate external list because we need to remove any IP address associated with a client if they stop using our services. In many other products, you can create an object specifying that this IP address is for a client of this name or this service. You don't have this ability within FortiWeb. Another area for improvement is logging. When troubleshooting, the logs sometimes take a while to update. We've had people report that some things aren't logged if they're successful. It's a bit hit-and-miss. For example, sometimes people access one of our services, and it's successful, but we don't see that in the logs.

RE
Real User
Top 20
2023-02-13T23:28:00Z
Feb 13, 2023

Their documentation is fairly complete, but it's sometimes a little bit difficult to search for exactly what you're looking for to resolve an issue. There have been times when we've gone to try to search for areas that we needed to get information on, and it has not always been extremely clear exactly how a particular thing needs to be set up. It sometimes takes a little bit of research to dig into figuring out exactly what it is. More examples would be helpful on what they have. The information sometimes doesn't relate directly to the state of the product at the time, so examples would be helpful.

KA
MSP
Top 20
2023-01-19T08:26:00Z
Jan 19, 2023

At the moment, it's very easy to see if an attack has come in, and what they've done. What I would like to see is that they turn on all logging so that we can even see legitimate traffic. But still, that's a very minimal issue. It would also be helpful if they could introduce easier reporting. It's good to have those reports that go to C-level management, and Fortinet does provide some graphs, but if they went into some more detail, that would be great. Then I wouldn't have to do it myself.

Learn what your peers think about Fortinet FortiWeb. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
DN
Real User
Top 5
2022-12-12T14:15:21Z
Dec 12, 2022

I know that we have run into some issues with an SSL certificate and how it functions. Sometimes this breaks connectivity or just limits certain websites that are whitelisted.

Soroush-Enayati - PeerSpot reviewer
Real User
Top 10
2022-11-08T18:02:17Z
Nov 8, 2022

The initial setup could be simplified.

AANKITGUPTAA - PeerSpot reviewer
Real User
Top 5Leaderboard
2022-10-14T20:56:20Z
Oct 14, 2022

It can be better with web application firewalls. It is already close to the best in class. This product is up to the mark right now.

Saeid Khanipour Ghobani - PeerSpot reviewer
Real User
Top 5
2022-09-26T13:50:04Z
Sep 26, 2022

A better load balancer is needed when multiple servers are used for the same website. A dynamic routing protocol needs to be included with the next release. The solution does not handle batch migration as well as F5 Advanced WAF.

Sisay Assefa - PeerSpot reviewer
Real User
Top 20
2022-08-25T13:49:36Z
Aug 25, 2022

Fortinet FortiWeb could improve data integration.

Eduard Otto - PeerSpot reviewer
Real User
Top 5
2022-06-16T17:17:57Z
Jun 16, 2022

We had some trouble using some features. Maybe we understood it the wrong way when reading the manual. We had to implement some workarounds to help this problem. The GUI could be better. It's limited.

DT
Reseller
Top 20
2022-05-19T10:58:00Z
May 19, 2022

The initial setup process could be improved.

Ali Rochmat - PeerSpot reviewer
Reseller
2022-02-15T10:38:30Z
Feb 15, 2022

In my experience, Fortinet FortiWeb could improve the intelligent features to acknowledge whether any threat or incident that's running happened. Then give us the ability to escalate it to layer 2 or layer 3 in the network operations.

SC
Real User
2022-02-10T08:01:01Z
Feb 10, 2022

From the feature perspective, it is pretty rich. The automation piece can be improved. Although they say it can be automated very well, there is still manual work. Its usability should be improved in terms of automation because we want to build an infrastructure with code, but you can't do that easily with this solution. If they can give us APIs in the firewalls that we can tap into, it would be perfect. I would also like it to scale automatically based on the traffic.

MH
Real User
2021-12-31T11:06:41Z
Dec 31, 2021

The machine learning feature of the solution could be improved. No solution is 100% secure and the security could always be worked on.

MA
Real User
Top 20
2021-11-23T19:16:10Z
Nov 23, 2021

The F5 solution has more features than Fortinet FortiWeb, such as multiple load balancing.

MC
Real User
2021-11-07T10:14:56Z
Nov 7, 2021

The memory use in each of the appliances is problematic.

CP
Real User
2021-10-29T21:31:16Z
Oct 29, 2021

The solution could improve by being able to handle different use cases.

PK
Real User
2021-10-08T16:40:36Z
Oct 8, 2021

During the POC we did encounter problems. For example, the integration with the HSM for storing keys was not ideal. The downside is on the security side and is the firewall. When you look at the firewall, it doesn't do decryption and you have to depend on other third-party tools to do that. Or you would have to use another FortiGate product which makes things a little complicated. Today, people look for simplicity in terms of design. That's one downside to Fortinet's Firewall. The downside to FortiWeb is it had issues integrating with HSM. They fixed the issue, however, it took a long time to fix and it wasn't pleasant. I had to work with deadlines and I could not make the deadlines due to the slow timeline on their side. For the firewall, when you deploy IPS, the IPS doesn't have visibility into encrypted traffic and 70% of traffic these days is encrypted, and that's the conservative figure of the actual percentage. If your IPS doesn't have that visibility, then it is not really doing the job that it has to do. In comparison, Palo Alto is the best firewall in terms of performance and has the technical specifications that we need. The support side of things can be improved. They need to quickly tend to issues and resolve them as soon as possible. Those are the expectations.

Anupama Perera - PeerSpot reviewer
Reseller
Top 10
2021-10-05T14:35:00Z
Oct 5, 2021

FortiGate could be improved on the security end because we've had some incidents with the customer. Otherwise, there is no problem.

Dino R - PeerSpot reviewer
Real User
Top 20
2021-09-15T13:03:00Z
Sep 15, 2021

The dashboard evaluating the performance of each application connected to the web app's firewall is quite helpful, but the tool is only available in application performance management. So I think if Fortinet could better integrate that particular feature, it would add a lot of value to the product.

KA
Real User
Top 10
2021-07-27T15:53:35Z
Jul 27, 2021

The solution could offer more integration opportunities.

RR
Real User
2021-02-18T05:08:33Z
Feb 18, 2021

We have had problems with deployments where we've had to contact technical support to resolve them.

GS
Real User
2020-12-12T16:02:19Z
Dec 12, 2020

When we look at the incident reports in the dashboard, they are available for a maximum duration of 24 hours. They should provide more time for the analysis and increase the duration of the availability of these reports. Currently, it gives the options for 5 minutes, 1 hour, and 24 hours. It would be excellent if there are more options for a longer time period. It may be configurable, but I don't know how to do it.

MT
Real User
2020-11-26T09:29:19Z
Nov 26, 2020

The initial setup in our data center was somewhat complex.

ZM
Real User
2020-11-17T13:17:38Z
Nov 17, 2020

They can introduce a scaled-down version for the SMB market. It would be very competitive in the environment.

AhmedIsmael - PeerSpot reviewer
Real User
2020-11-09T11:06:34Z
Nov 9, 2020

I would like to see the Application Delivery Control (ADC) and Web Application Firewall (WAF) combined in one device. For example, if I have one device that costs $2,600 USD then it can have two licenses, where it can operate as a load balancer as well as a WAF.

TA
Real User
2020-11-02T06:13:22Z
Nov 2, 2020

Troubleshooting features could be incorporated with this solution. The reporting could be optimized.

EG
Real User
2020-10-20T04:19:21Z
Oct 20, 2020

They could improve their support a little bit for faster response time.

FP
Real User
2020-10-19T09:33:39Z
Oct 19, 2020

It may be better if it were easier to create roles. The interface could be a bit better. Everything is pretty manual. We do need to improvise a bit. Automation might make it easier. The pricing is a little bit high for us.

BF
Consultant
2020-10-07T07:04:33Z
Oct 7, 2020

User administrative controls could be a little bit better. I guess that would be the main thing. The usability within Fortinet could be a little bit easier on the users. But it is what it is. The thing that was more difficult was not the tool itself but dealing with the logistics of the compliance issues. I was applying a standard set of rules to an AWS firewall. It served a purpose. The complex part of the solution was more of a compliance issue.

MS
Real User
2020-09-17T08:05:58Z
Sep 17, 2020

Fortinet WAF came out recently, and there is not much feedback about customer experience. For each project, customers ask about the scenarios and references of the customers who have implemented this solution, which we don't have. They need to simplify the customer experience and provide more information so that we can propose Fortinet Fortiweb as a WAF solution to customers and convince them. They need to improve their service and training. We need good training to implement and use it properly and know more about it. We still don't know much about Fortinet WAF. We didn't get any proper training sessions. Other vendors like Cisco, Palo Alto, Check Point, and Barracuda provide such sessions. Whenever we receive a request from a customer for this solution, we just give the price. We don't propose this solution because we don't know much about it. We propose whatever we are familiar with and what is supported.

MH
Real User
2020-09-16T08:18:35Z
Sep 16, 2020

The Layer 7 DDoS attacks need improvement, it could be better. When you compare it with the F5 solution, FortiWeb is weak in detecting the Layer 7 DDoS attacks. At times, it generates several false positives and there should be fewer. In the next release, I would like to see better DDoS protection. It's an essential feature that should be included.

PK
Real User
2020-08-19T07:57:24Z
Aug 19, 2020

We are considering an upgrade to our firewall because our current version is not compatible with our FortiAnalyzer. As there is an incompatibility, we have been advised by Fortinet that an upgrade is necessary to avoid issues. We believe this product will become obsolete. It needs to better integrate with other platforms. In terms of performance, it needs to be more robust. During the lockdown, we are connecting to a VPN and the connection should be faster, there should be RAM or more hardware. Also, it should include security features.

AA
Real User
2020-06-28T08:50:00Z
Jun 28, 2020

FortiWeb needs to have support for the newest technology being used in web applications. For example, some companies have developed new features using the latest technology, but we are still waiting for Fortinet to support them.

it_user976896 - PeerSpot reviewer
Reseller
2020-05-13T09:16:36Z
May 13, 2020

The integration with other products should be improved. This product does not come with bare metal protection, so we need more network features. We don't want to be as dependent on a separate next-generation firewall. The pricing could be made more competitive.

AG
Real User
2020-05-05T06:08:00Z
May 5, 2020

We would like the interface to be easier to use and more user-friendly. The interface needs to be enhanced. We had trouble understanding it at first, but we got used to using it after six months. Then, it was simple to use.

FC
Real User
Top 20
2020-04-19T07:40:00Z
Apr 19, 2020

Describing security rules should be improved. It's tricky to define new feature tools when you want to describe an attack pattern and want to block it.

SI
Real User
2020-03-18T06:06:02Z
Mar 18, 2020

More templates should be made available for reporting. I would like to see more improvements with respect to threat intelligence.

YA
Reseller
2019-07-09T05:40:00Z
Jul 9, 2019

What I would like to see improved in Fortinet FortiWeb will probably be included in the next release. The legal feature needs better step-by-step use of the form. We use the FortiGate guidebook for step-by-step instructions. But the FortiWeb guidebook is only is a demonstration kit which is not enough for a new installation.

EB
Real User
2019-07-07T06:35:00Z
Jul 7, 2019

The solution is rather complicated. If you know what to do, it's not bad, but it's complicated for a first time user to configure the solution. What I'd like to improve are the custom signatures. If you want a good security solution, you have to get in kicking high for things that are getting blocked and you have to whitelist some signatures to make things work. It's a time-consuming thing to do. It would be nice to whitelist private IP ranges and see which signatures are hit and whitelist them automatically - which I think is possible to do. It would also be nice to have some extra security in the solution. I just upgraded to 6.0 and there were some security additions, but it would be nice to have some more and be able to configure them in the right way. Specifically, an updated security policy would be nice.

MB
Real User
2019-06-27T06:06:00Z
Jun 27, 2019

We would like to know more about the integration with the hardware or security products, such as Gemalto, because we need to move to that point. But, from what I understand, we haven't looked at the market to see how this can be done yet.

DI
Real User
2019-06-24T12:13:00Z
Jun 24, 2019

First of all, upgrade path should be introduced for scaling up or down VM deployment. Second, they need to include better wizards for publishing common applications like MS Exchange. .

RF
Reseller
2019-03-06T07:41:00Z
Mar 6, 2019

New releases and old releases have some bugs, some features do not work as good as we want but every new release the Fortinet team fixes up problems. I don't have anything to say about what to do to improve this product. It's a great solution for us.

OR
Reseller
2019-03-06T07:41:00Z
Mar 6, 2019

I would like to have an antivirus option.

DD
Real User
Top 5
2018-05-23T10:30:00Z
May 23, 2018

FortiWeb does not exist in a cloud-based form. Its only available for deployment as a virtual appliance on AWS and Azure IaaS platforms. Because of the trend to WAF environments, it would be good to have it as a SaaS. Also, FortiWeb would be more competitive if it combined WAF and DDoS protection.

Fortinet FortiWeb is a Web Application Firewall (WAF) that protects your web applications and APIs from attacks targeting known as well as unknown vulnerabilities. As the surface of your web applications evolves with each change of existing features and deployment of new features, your APIs are left exposed. Fortinet FortiWeb provides the board protection capabilities required to protect web applications without sacrificing performance or manageability. Fortinet FortiWeb is an automatic,...
Download Fortinet FortiWeb ReportRead more