Fortinet FortiWeb is praised for its top-tier security solutions, advanced functionality, and ease of use, although it could benefit from improvements in UI and integration with other tools. On the other hand, users find Prisma Cloud to offer competitive pricing, comprehensive security capabilities, and effective customer service, although some suggest improvements in UI, integration, and documentation.
The summary above is based on 139 interviews we conducted recently with Fortinet FortiWeb and Prisma Cloud by Palo Alto Networks users. To access the review's full transcripts, download our report.
"FortiWeb offers machine learning in the latest product. This fixed many problems. There are no false negatives."
"FortiWeb is easy to operate with a reasonably high level of protection. FortiWeb provides multiple deployment options with a physical or virtual (FortiWeb-VM) appliance, and acts either as a reverse/transparent proxy or out-of-band. It is also available on AWS and Azure."
"One main feature we are very happy about is file security and upload functionality."
"When it comes to blocking unknown threats and attacks, I would give it the highest score possible. We first started using AWS and its Web Application Firewalls. That was okay, but it was quite a manual process to keep it up to date, whereas Fortinet is always up to date, and the default rules or the modules that you can turn on are very easy to use."
"The solution has a good sandbox feature."
"The anti-defacement feature is very useful because it looks for web changes over time to protect pages."
"The most valuable feature of Fortinet FortiWeb is the reports and the AI-based features."
"The most valuable feature of Fortinet FortiWeb is the ease of integration and configuration."
"The product is quite good for providing multi-clouds or cross-cloud security from a single-pane -of-glass."
"It scans our containers in real time. Also, as they're built, it's looking into the container repository where the images are built, telling us ahead of time, "You have vulnerabilities here, and you should update this code before you deploy." And once it's deployed, it's scanning for vulnerabilities that are in production as the container is running."
"The product provides very good network security."
"The solution will streamline and minimize manual efforts."
"CSPM is the most valuable feature for any organization that runs its workloads in the cloud."
"Prisma Cloud's most important feature is its auto-remediation."
"The two most valuable features are container security and the capability to discover workloads."
"The dynamic workload identity creation, attestation, and assignment is the best feature. In addition, the application dependency map across heterogeneous environments for compliance is a striking feature."
"FortiWeb needs to have support for the newest technology being used in web applications."
"We use Kubernetes, so I would like to have a plugin to configure FortiWeb Cloud automatically using Kubernetes Ingress. That would reduce the complexity of setting up an Ingress object in Kubernetes. Some competing solutions help you configure Ingress and Kubernetes automatically."
"A user interface or dashboard for troubleshooting is needed."
"The upgrade process could be a bit smoother."
"The F5 solution has more features than Fortinet FortiWeb, such as multiple load balancing."
"The memory use in each of the appliances is problematic."
"The automation piece can be improved. Although they say it can be automated very well, there is still manual work. Its usability should be improved in terms of automation because we want to build an infrastructure with code, but you can't do that easily with this solution. If they can give us APIs in the firewalls that we can tap into, it would be perfect."
"Integration and learning about attacks. I would improve these areas by making FortiWeb integrate with other network technologies and feedback from multiple platforms."
"One thing that is missing is Cloud Run runtime security—serverless. That would be great to have in the tool. It's not that easy to have Cloud Run in specific environments."
"The alignment of Twistlock Defender agents with image repositories needs improvement. These deployed agents have no way of differentiating between on-premise and cloud-based image repositories. If I deploy a Defender agent to secure an on-premise Kubernetes cluster, that agent also tries to scan my ECR image repositories on AWS. So, we have limited options for aligning those Defenders with the repositories that we want them to scan. It is scanning everything rather than giving us the ability to be real granular in choosing which agents can scan which repositories."
"For some custom policies, we need more features."
"It's not really on par with, or catering to, what other products are looking at in terms of SAST and DAST capabilities. For those, you'd probably go to the market and look at something like Veracode or WhiteHat."
"Sometimes, when you assign subnets to regions, the IP address will jump from one location to another because it will automatically change substantially. Then, we need to add those IP subnets to our firewall for existing access. The need to update those subnets potentially causes maintenance or access issues. So far, we can only provide bigger customers with six subnets, and a small company may not be able to access those services."
"We identified two things that we felt would be great to have, but they are under NDA. So, I can't disclose them. Other than those two things, we identified a generic bug in the secret key management service on AWS that needs to be fixed. We reported it to them, and we want them to fix it."
"The regional cost of Prisma Cloud in South Africa is high and could be improved."
"We have discovered that Prisma is not functioning properly with GCP."
More Prisma Cloud by Palo Alto Networks Pricing and Cost Advice →
Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews while Prisma Cloud by Palo Alto Networks is ranked 5th in Web Application Firewall (WAF) with 82 reviews. Fortinet FortiWeb is rated 8.0, while Prisma Cloud by Palo Alto Networks is rated 8.4. The top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". On the other hand, the top reviewer of Prisma Cloud by Palo Alto Networks writes "The dashboard is very user-friendly and can be used to generate custom RQL based on user requirements". Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall, whereas Prisma Cloud by Palo Alto Networks is most compared with Wiz, Microsoft Defender for Cloud, Aqua Cloud Security Platform, AWS Security Hub and CrowdStrike Falcon Cloud Security. See our Fortinet FortiWeb vs. Prisma Cloud by Palo Alto Networks report.
See our list of best Web Application Firewall (WAF) vendors.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.