Fortinet FortiAnalyzer Reviews

We use it for reports and analysis.

The report templates are valuable. It works very well, and integrations also work well.

Feature-wise, it is working very well for us. We don't need any additional features. However, its pricing can be improved. For small business customers, price is an important factor.

I have been using this solution for two years.

It is stable.

It is easy to scale.

It is expensive for small business customers. It is only available for customers with a high number of firewalls to manage or to report. If a customer has only five boxes of FortiGate, the price of FortiAnalyzer can be more than the five boxes. So, we can't easily put this solution for small business customers.

I would rate this solution a nine out of ten.

Generally, Fortinet FortiAnalyzer gives you visibility around the network. You can track and monitor devices and pick the surrounding network. You can see which packets are being sent to the network, who the users are, and what are they using. You can also view the policies and firewall rules that are being used, the IDs that are being connected to, and the IP address a particular user is using.

Basically, it's a SOC. It's a security operations device. We use it for continuous monitoring, and it takes a team to do so. In my organization, three to four people are using it on a daily basis.

The feature that I have found the most valuable is to be able to see everything in our network in a single task. A single menu and the graphical bar charts that it provides to give insights are very useful. 

It also gives very good metrics on bandwidth utilization, CPU, and device performance. It is very simple and easy to use as well.

They can include integration with devices, such as firewalls, endpoints, from other vendors. They can include graphic monitoring of everything in the network, not just Fortinet products.

It would also be good to include customizable reports and customizable views of the reports. 

I have been using Fortinet FortiAnalyzer for about five to eight months. We are using the latest version. We have deployed it on-premises as a VM.

It's pretty stable.

I'd say that it's very scalable. Scalability depends on which version of the appliance you're using. 

If you're using a hardware-based appliance, it's obviously tough to scale as that would require purchasing new devices. If you go to cloud services or virtual services, it's pretty easy to scale. You need to purchase new VMs and add the IOCs that you need, which is easy. 

I have contacted technical support, but not particularly regarding Fortinet FortiAnalyzer. I have only contacted them for firewalls and routing issues. I have not yet contacted them for things related to Fortinet FortiAnalyzer.

It's very easy and straightforward. You just need the point the FortiGate devices to your Fortinet FortiAnalyzer, and it just automatically configures the security fabric. The time depends on how many devices you're actually using. Configuring one device into your Fortinet FortiAnalyzer takes about five minutes or so.

The deployment was pretty straightforward. I didn't need any help in setting it up. I did it myself very easily. It comes with useful guidelines for setting it up. They also provide documentation and information through their website.

One person can easily do the deployment, but the main goal of the solution is to continue to monitor the regular network traffic for which a team is required. Our software team is responsible for handling such things.

This product is only dedicated to packet analyzing, automation, and things like that. I have not used analyzers of other vendors. However, other solutions do provide similar functionalities. 

It is kind of a very good network packet analyzer solution. It does what a network analyzer should do, and it does it very well. 

In terms of firewalls and using network analyzers, Fortinet has always been the leader among the leaders. Fortinet provides very good features and products. Specifically, if you want to use Fortinet FortiAnalyzer, you need to have a FortiGate environment. You need at least one FortiGate or other similar product in your network. So, if you are already using or are into Fortinet products, then FortiAnalyzer is a very good product to add on top of other products. Having only FortiAnalyzer in your network is kind of useless.

I would rate Fortinet FortiAnalyzer a nine out of ten. It's a very good product.

We're resellers of Fortinet. The solution is a product for doing diagnostics on their security environment. Our primary clients are banks or medical organizations.

The solution is very easy to deploy. 

We are very familiar with the product. It makes it easy to use and implement. 

The interface is easy to configure and fast to deploy. For that reason we use FortiAnalyzer.

FortiAnalyzer only works with other Fortinet products. If you need to analyze the data from other devices, other vendors, this solution is not the best one to use.

The interoperability with other vendors is lacking. It's very limited. You can scan the logs from other vendors within FortiAnalyzer, however, it only collects these logs. You can't analyze anything coming from other devices or vendors. This works very well with Fortinet products. When you need to interoperate with other vendors, it's difficult, because you don't have that support.

In future releases, we'd like to see more granular reporting. The reports on offer right now are pretty short.

We've been using the solution for more than ten years at this point. It's been a decade or so.

The stability of the solution is excellent. It's very robust. We don't have issues with bugs or glitches. It doesn't crash or freeze. It's extremely reliable.

The scalability is okay, however, it depends. If you do your homework and make the right sizing, you don't need the scalability. However, if you need scalability, it depends on the kind of client. You may need to change the box or move the FortiAnalyzer to another analyzer - something bigger - or maybe move the analyzer hardware to a better machine, depending on the customer.

Normally, we deal with small to medium-sized organizations.

The technical support is very good. We have support right here in our country, and they give us very good support. We don't have a problem in this case. We've very satisfied with the level of service we get.

The initial setup is not complex at all. It's very, very straightforward.

The deployment is quick and it's easy to configure. How long it takes depends on the size of the company that we are working for. Normally, we're able to do it within the same day, and we deploy the device or the virtual machine within that time frame. Depending on the requirements of the company, we may also optimize the reporting.

We handle the deployment ourselves. We've been doing it for so long at this point, we've very comfortable with it.

We use different deployment versions of Fortinet solutions. We use, for example, 200E and 200D and 100 too. These are the most popular. Right now, use the virtual environment.

This is a product that is very good for when you're using a Fortinet ecosystem. If you have a mix of vendors, it's not recommended.

Overall, I would rate the solution at a nine out of ten. We've been quite happy with their offering.

This product is only used for logs and reporting.

It gives us reporting features, which are helpful in the case of troubleshooting and audit purposes.

It has detailed reporting, e.g., user-wise reporting, threat analysis, etc. It also gives you live logs, which can be really helpful during troubleshooting. 

It should have customized reports as well. While it currently has them, you need to write a script which is not straightforward.

No issues.

No issues.

I would rate it as a two out of 10. The technical support takes at least two days to reply on any ticket post raised on their website. 

We did not have a previous solution.

Initial setup is straightforward, and it has an easy setup.

It depends upon the company.

We evaluated SonicWall and Cisco.

It is used to get the logs of all boxes that a customer has.

I like its simplicity. It is straightforward. We get reports and emails about the logs, and that's it. 

The cloud version can be expensive. If the customers could get the resources to store the logs on-premises, it would be much better.

In terms of features, there is no need for additional features.

I have been using this solution for three years.

It is stable.

It is scalable.

We need only one engineer for its deployment and maintenance.

It is acceptable for on-premises, but it is expensive for the cloud. 

I would rate it a 10 out of 10.

The anti-virus protection it offers our clients is solid.

Currently, no solution can offer you 100% protection from viruses such as WannaCry ransomware. Fortinet should strive to improve their prevention systems.

I have been using this solution for about two to three years.

This solution is stable.

FortiAnalyzer does slow down when there is a heavy load of users, but it still does its job. Also, when many logs are generated throughout many sessions, the Analyser slows down. 

The technical support is not very reliable. Sometimes it takes them up to a week to get back to us. 

The initial setup is not complex. The basic setup takes roughly 30 minutes to one hour — reconfiguration can take up to one day.

If you have Fortinet Firewall, you must implement FortiAnalyzer because, without the Analyzer, you can't generate the polls. 

On a scale from one to ten, I would give this solution a rating of seven. I would give them a higher rating if they improved their scalability.

I use Fortinet FortiAnalyzer to analyze network logs for increased security protection.

We can see and know our network traffic graphically.

Based on the logs of Fortinet FortiAnalyzer you can have it trigger actions. For example, if the log has a word or a sentence you specified it can send an alert to an email address or SNMP trap.

Fortinet FortiAnalyzer cannot use as SNMP Manager so cannnot receive any queries of SNMP. They should add this feature in the future to help manage solutions.

I have been using Fortinet FortiAnalyzer for approximately eight years.

I have found the solution to be stable. However, when the computer's resources are low the analysis becomes slow. There could be some optimization done.

Fortinet FortiAnalyzer is scalable. It can handle small to large-scale analysis.

The initial installation is easy. You set up the interface IP address and then you can have access. If you use the web GUI, it's very easy to connect to FortiGate and other Fortinet solutions.

If a company purchases FortiGate they should purchase Fortinet FortiAnalyzer together. The reason is FortiGate does not have an interface for analyzing logs but if you have the Fortinet FortiAnalyzer it can analyze logs and give reports on the logs giving you more protection.

I rate Fortinet FortiAnalyzer a nine out of ten.

The product is really helpful in examining the logs of multiple firewalls on a single GUI.

Log View is the most valuable part for us, as we can view logs from different Fortigates on a single GUI. 

Another important feature is real-time logs, they help a lot in troubleshooting.

I think some improvement is required in real-time log monitoring, as sometimes it gets stuck or displays results after a delay.

No issues yet.

No issues after installing the 1000E.

Good.

We used view local logs before this.

It's straightforward, just add in different FortiGuards the IP address of FortiAnalyzer.

It's worth spending on FortiAnalyzer if you have multiple firewalls in your network.