Head - System and Network Admin at Reliance Producers Cooperative
Real User
Top 10
2024-01-04T09:50:28Z
Jan 4, 2024
There is room for improvement in pricing, and actually, the price is a bit higher because on the same terms I purchased, the support subscription is so high.
Network Security Engineer at a computer software company with 5,001-10,000 employees
Real User
Top 20
2023-12-18T12:22:03Z
Dec 18, 2023
There is room for improvement in the support. The response time could be faster. Plus, they ask for a lot of information. It is not easy to get support. In future releases, I would like to see added antivirus features that provide user-based activity indicators. For example, if a user downloads a large number of files or connects frequently, the WAF could flag this activity for investigation.
Network & Security Engineer at a tech services company with 51-200 employees
Real User
Top 10
2023-11-24T11:19:25Z
Nov 24, 2023
FortiWeb WAF lacks several security features compared to F5. F5 can incept the traffic to layer seven; FortiWeb can do it, too, but it is a tough process. We have to get support from Fortinet.
Senior Security Consultant at a retailer with 10,001+ employees
Consultant
Top 20
2023-10-18T15:22:47Z
Oct 18, 2023
Advanced configurations require high skill. FortiWeb team should work on making it easier. The documentation is poor. The tool must provide advanced and robust DDoS protection.
Cybersecurity Team Leader at Summit Technology Solution
Real User
Top 5
2023-07-26T11:39:00Z
Jul 26, 2023
WAF needs more signatures on FortiWeb and updates the database continuously to protect against new attacks. I hope the next release includes integration with the vulnerability scanner, a great feature of FortiWeb. If customers have vulnerability scanners, they can export the scan's result and post it to FortiWeb to patch completely.
What is a web application firewall (WAF)? A web application firewall, or WAF, helps protect web applications by filtering and monitoring HTTP traffic between a web application and the internet.
It would be good if the solution integrated with other solutions, like SAP.
We have encountered issues with webhooks and management of FortiWeb Web Application Firewall's on-premise version.
There is room for improvement in pricing, and actually, the price is a bit higher because on the same terms I purchased, the support subscription is so high.
There is room for improvement in the support. The response time could be faster. Plus, they ask for a lot of information. It is not easy to get support. In future releases, I would like to see added antivirus features that provide user-based activity indicators. For example, if a user downloads a large number of files or connects frequently, the WAF could flag this activity for investigation.
FortiWeb WAF lacks several security features compared to F5. F5 can incept the traffic to layer seven; FortiWeb can do it, too, but it is a tough process. We have to get support from Fortinet.
Advanced configurations require high skill. FortiWeb team should work on making it easier. The documentation is poor. The tool must provide advanced and robust DDoS protection.
The user interface can be improved. Also, there are authentication failures that need improvement in the next release.
WAF needs more signatures on FortiWeb and updates the database continuously to protect against new attacks. I hope the next release includes integration with the vulnerability scanner, a great feature of FortiWeb. If customers have vulnerability scanners, they can export the scan's result and post it to FortiWeb to patch completely.
FortiWeb Web Application Firewall's signature database updates could be improved.