Azure Firewall and FortiGate Next Generation Firewall (NGFW) are two prominent security solutions in the network firewall category. FortiGate NGFW seems to have the upper hand due to its comprehensive feature set and superior network threat protection.
Features: Azure Firewall is favored for its seamless integration with other Azure services, ease of configuration, and cost-effectiveness within the Azure environment. FortiGate NGFW is noted for its advanced threat intelligence, intrusion prevention, and application control. FortiGate NGFW also offers more robust security features compared to Azure Firewall’s cloud-centric capabilities.
Room for Improvement: Azure Firewall users highlight the need for better logging and reporting tools, enhanced analytics, and improved integration with non-Azure environments. FortiGate NGFW users mention occasional complexities in configuration and management, the initial setup times, and could also benefit from a more intuitive management process.
Ease of Deployment and Customer Service: Azure Firewall is easy to deploy within the Azure ecosystem but can be challenging to integrate with non-Azure environments. FortiGate NGFW is praised for its flexibility in various environments but may require more initial setup time. Customer service satisfaction is higher for FortiGate NGFW, which provides more comprehensive support options compared to Azure Firewall.
Pricing and ROI: Azure Firewall is seen as cost-effective within the Azure environment. FortiGate NGFW, with its extensive security features, offers a higher ROI according to users who feel the advanced capabilities justify its price. Pricing satisfaction leans toward Azure Firewall for budget-conscious users, while FortiGate NGFW is favored for its overall value in security investment.
The response time for a critical priority one issue was over four hours and they only responded because we threatened legal action for them violating our support contract.
They say they will respond in 24 hours, but I have received responses in a maximum of one hour, which is impressive.
The technical support from Fortinet FortiGate is 24 hours a day seven days a week, and 365 days a year.
FortiGate offers good support.
We do not use FortiGate support directly; we must use distributor support.
FortiWAN supports OSPF but does not support the BGP protocol.
Fortinet VPN and DDoS capabilities are great, yet we need to provide a solution that enables CASB and integration to the cloud.
The relationship between their accounts team and my leadership team seems to be the reason for phasing out FortiGate.
Improvement in reporting and better visibility into network traffic would also be beneficial.
Improvements could be made when companies expand and need better equipment and more licenses.
I would like to see improvements in the IPS/IDS feature to enhance protection against attacks from attackers, including ransomware protection.
The devices will usually fail way before reaching the capacity advertised in the data sheets, especially when you activate several of the features the device can handle.
The solution is working and it is still stable even across all of these devices and servers.
We have over 10,000 users behind it.
Based on my experience, I would rate it nine out of ten for scalability.
The cost of the original deployment fell below £5,000, and licenses are priced at around £3,000.
Every time you upgrade your license, you also get insurance for the equipment.
Overall, FortiGate is affordable.
The pricing of FortiGate Next Generation Firewall is competitive.
The exchange rate between the local currency and dollars affects the budget of our clients.
All of these issues were resolved in v5.2.
Stability has dramatically improved over the previous main version branch of FortiOS; 5.2.x and 5.4.x are stable enough for critical environments.
Overall, the devices have been very stable.
The two most valuable features are VPN and firewalling.
WiFi network for visitors isolated from our corporate WiFi network using only one unit
Allows for firewall rules to be programmed and named in a way that makes it 'readable'
I like that you can deploy the policies separately from the firewall.
The firewall and VPN features are the most valuable in protecting our customers' networks.
The common valuable feature for FortiGate is its UTM functionality, which includes various features under a license that is commonly implemented.
Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.
Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.
What are the key features of Fortinet FortiGate?Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.
Azure Firewall is a user-friendly, intuitive, cloud-native firewall security solution that provides top-of-the-industry threat protection for all your Azure Virtual Network resources. Azure Firewall is constantly and thoroughly analyzing all traffic and data packets, making it a very valuable and secure fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability. Azure Firewall allows users to create virtual IP addresses and provides for secure DDoS protection for the virtual machines on your network. It also provides fast and efficient east-west and north-south traffic security.
Azure Firewall is a managed, cloud-based network security service built to protect your Azure Virtual Network resources. It is a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.
Azure Firewall has two significant offerings, Standard and Premium.
Azure Firewall Standard works directly with Microsoft Cyber Security and supplies excellent L3-L7 filtering and threat awareness. The proactive real-time threat awareness will quickly alert you and immediately deny all traffic to and from any known problematic or suspicious domains or IP addresses. Microsoft Cyber Security is updated continually to protect against all new and known potential threats at all times. To learn more about Azure Firewall Standard, click here.
Azure Firewall Premium provides everything the standard version does, and additionally adds extra levels of data encryption, network intrusion detection, extended URL filtering, and Web category filters. To learn more about the added features of Azure Firewall Premium, click here.
Key Benefits and Features of Azure Firewall:
What our real users have to say:
Many PeerSpot users found Azure Firewall to be very user-friendly and easy to use. They liked that it offers seamless integration to the cloud and were especially pleased with the threat filtering options.
Regarding integration and threat intelligence, our users wrote:
“The most valuable feature is the integration into the overall cloud platform.”
The FortiGate Next Generation Firewall (NGFW) from Fortinet is a comprehensive cybersecurity solution designed to cater to a wide array of organizational needs. It integrates seamlessly into the Fortinet Security Fabric, offering robust protection against various internal and external threats, including attacks, malware, and vulnerabilities. The NGFW is known for its advanced features such as SSL inspection, application control, visibility enhancements, and an effective intrusion prevention system (IPS). This IPS plays a critical role in identifying and blocking malicious traffic by monitoring and inspecting incoming data.
FortiGate NGFW can be deployed in diverse environments, including on-premises, in the cloud, or hybrid setups. The firewall is equipped with next-generation antivirus capabilities, IPS, web filtering, sandboxing, and intelligent security automation features like threat intelligence integration and automated incident response. Its reporting and analytics tools are comprehensive, aiding in enhancing an organization's security posture.
A notable aspect of the FortiGate NGFW is its diverse and highly rated features, including a powerful VPN, a user-friendly Firewall Management Console, policy-based controls, and advanced reporting and logging capabilities. The system also supports Identification Technologies, Visualization Tools, Content Inspection, and seamless integration with Active Directory and LDAP directories. Its High Availability and the flexibility to deploy in various configurations, such as on-premises or as a Virtual Machine, make it a versatile choice for different business needs.
The FortiGate NGFW also excels in providing secure connectivity. It supports various VPN protocols, offers SD-WAN for intelligent traffic routing, and integrates SASE for unified security and networking solutions. These features contribute to improved security, reduced operational costs, and increased agility for organizations.
When it comes to user experiences and satisfaction, FortiGate NGFW has garnered positive feedback, with an average rating of about 4.26 out of 5 on PeerSpot Reviews. Users from diverse roles, including core network teams, technical officers, and cybersecurity engineers, and from various sectors such as tech services, education, and finance, have found the solution effective. This indicates its versatility and suitability across different company sizes and types.
However, there are areas for improvement. Enhancing the details in Logging Services and making 10 Gigabit Interfaces available for lower models are some suggested enhancements. Simplifying the installation of FortiAP services is also noted as a potential area for improvement.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
