Fortinet FortiGate IPS Reviews

We primarily use the product to enhance our network security infrastructure. It monitors and investigates inbound and outbound traffic across our organization, ensuring comprehensive security coverage.

The product's most valuable feature is the ease of deploying IoT security with a single click. Additionally, the frequent updates to the online database ensure that our security measures are always up to date, enhancing our protection against emerging threats.

One area for improvement is the licensing policy. If support licenses are not renewed, the product's functionality ceases, which can be disruptive. 

Integrating more advanced threat detection capabilities utilizing artificial intelligence would be highly beneficial in future releases.

I have been using FortiGate IPS for around 15 years.

The solution is highly stable, with minimal disruptions. I rate it a nine out of ten for stability.

Once deployed, the product scalability is constrained, requiring appliance upgrades for increased capacity.

The customer support team is responsive but relies heavily on external partners for frontline assistance, which can lead to delays in critical situations.

Negative

The initial setup is straightforward for those with a technical background in network security. However, configuring the system requires a deep understanding of the product.

We implemented FortiGate IPS with our technical team, which has extensive experience with network security solutions.

Since implementing FortiGate IPS, we've seen an approximately ten percent reduction in operational costs, largely due to consolidating security measures onto a single platform.

The platform offers a reasonable price point compared to its competitors.

Before opting for FortiGate IPS, I evaluated several competitors, including Palo Alto, Checkpoint, WatchGuard, Barracuda, SonicWall, and Sophos. 

FortiGate IPS is a solid choice for organizations seeking comprehensive network security. Ensure your team has the technical knowledge required for effective deployment and ongoing management.

I rate it an eight. 

We use Fortinet's intrusion prevention feature to ensure network security. This involves actively monitoring network activity for any suspicious behavior using predefined signatures and other detection methods. The goal is to proactively identify and block known threats to prevent any unauthorized or malicious activity on the network. The majority of our clients operate within the financial and retail sectors.

It seamlessly integrates with the existing network infrastructure, particularly from a firewall standpoint. This integration involves thorough inspection across all interfaces and segmentation layers via the firewall. IPS is utilized for both intercommunication and breakout communications, where it effectively detects and prevents outbreaks through its IP signature-checking capabilities.

It has enhanced the network security posture of our customers.

The performance and accuracy of FortiGate IPS have positively influenced security operations.

The most significant aspect of IPS is self-explanatory as it primarily focuses on intrusion prevention, which is crucial for Fortinet's internal outbreak prevention efforts and ensuring compliance on endpoint devices.

There is room for improvement in being proactive about identifying and integrating new signatures.

I have been working with it for ten years.

It offers excellent stability. I would rate it ten out of ten.

I have a diverse clientele, ranging from international enterprises to several private companies.

I would rate customer service and support eight out of ten.

Positive

The initial setup is straightforward. I would rate it ten out of ten.

We haven't faced any challenges with IPS regarding its deployment or management, it is straightforward. You simply add it to the policy where you want IPS inspection applied and roll it out centrally. This process is quick and can take between minutes to a maximum of an hour, depending on the number of sites involved.

When evaluating ROI based on exposures, it's challenging to quantify. However, there are definite improvements in enhancements and proactive isolation capabilities, particularly in outbreak prevention. These improvements could potentially lead to reductions in downtime, technical service requirements, and other associated costs.

The pricing is reasonable.

My first recommendation for any deployment is always to enable IPS. Overall, I would rate it ten out of ten.

Our company uses the solution as a firewall for our tech network. 

We just added the solution and currently only use it to control browsing traffic and block social media. We have 100 employees and IT staff using the solution. 

The solution effectively controls browsing traffic. 

The dashboard is not user friendly so is a bit complicated. Training is important or you will suffer when completing tasks.

We would like the ability to divide users by position and assign different rules to each position. For example, managers are allowed to browse YouTube but employees are not allowed. 

I have been using the solution for two months. 

The solution is stable. 

The solution is scalable. 

We have not yet needed technical support. 

We did not previously use another solution. 

The initial setup was straightforward and took a few hours. 

A third-party company handled our setup and implementation. 

Two administrators handle ongoing maintenance. 

I recommend the solution and rate it an eight out of ten. 

I rent spaces for the company. I provide the services for the internet for that company, something like coworking. I need to create policies to prevent intrusions on my clients. I create the policies for each client, and I select the company and create the policy with the specific needs. After that, I apply it for the WLAN for that client. That way, I prevent intrusions on the network.

It meets my needs.

The product is very user-friendly.

It is quite scalable. 

I love the interface.

The power is great.

I have a limited embedded team in IT. I have one man on the team for 1,000 users. And this person can manage all the infrastructure due to the fact that the console is very easy, and the people are very happy with the results pertaining to that interface. 

Also, I have created VPNs for all my users to work from their homes. 

It is very complex. 

There are a variety of improvements that can be made. 

The reporting was limited. I had to use FortiAnalyzer to obtain a complete solution. The reports are very limited with the solution, basically. Once you implement FortiAnalyzer, you can create very, very detailed reports for all the networks.

I've been using the solution for two years now. 

The solution scales well. It's not an issue at all if you need to expand. 

Technical support is good. I have additional support from my provider. My provider is a Platinum partner, and half of the technicians have Level 7 or 8 in Fortinet certifications. 

In the past, I was working with Cisco and Aruba, however, this was more power and the cost was great.

The setup is a bit complex. However, I only need three weeks to create the machines' settings.

For two firewalls with IPS and two access points, FortiAnalyzer, with maybe ten switches, we pay maybe $4,000 a year.

We don't pay any additional costs.

I use a lot of Fortinet devices. 

I'm a customer and end-user. 

I'd rate the solution ten out of ten. 

Everything is good. The support is very, very expert. When you need help, all the people are ready to assist - and that is great. Only I recommended new users to take maybe the certification basics, NSE 1, NSE 2. It's free in the academy for Fortinet. Most problems you can fix with that information and that education, so it's very helpful to be knowledgable.

I use FortiAnalyzer for reporting. It provides log management solutions for my enterprise, which is in the manufacturing sector.

FortiAnalyzer's capability to provide detailed reporting based on various criteria is highly valuable. It allows for better log management in my enterprise. The IPS functionality and the reporting capabilities of FortiAnalyzer also help in maintaining efficient operations.

I have around three years of experience with Fortinet solutions.

The solution has been very stable.

I must select the right size firewall to match my traffic flow rate. It is important to pick a large enough firewall to meet the site's specific needs. Like any hardware, it has finite scalability restrictions.

I have been satisfied with FortiGate support. Even though I work through a managed provider, I believe FortiGate provides good support.

Positive

At my last company, I switched from Cisco to FortiGate due to performance and functionality.

My service provider manages the setup, so I do not have direct experience with the initial setup.

My implementation is managed by a third-party provider, and I do not handle equipment directly.

It is hard to measure, but the return on investment with Fortinet has been good with improvements in operational impact.

The hardware is competitively priced.

I switched from Cisco due to performance and functionality improvements with Fortinet.

I never rate anything a perfect ten. There is always room for improvement in any product. I rate the overall solution a nine out of ten.

I work with multiple customers. Most are comfortable running IPS within their firewalls rather than deploying it. The standard deployment requires finding a service owner and training them on the platform. However, if I deploy a next-generation firewall with integrated IPS and VPN capabilities, it simplifies things. It's straightforward for someone to manage. Consolidating a VPN server, IPS, and standalone firewall into one appliance can be challenging for many customers. Fortinet's servers are increasingly popular.

Fortinet has serious vulnerabilities. Some of their interfaces are exposed to attacks. Since they are more prevalent, they may attract more attacks and have more vulnerabilities discovered.

If I'm incorporating FortiGate IPS, FortiGate firewall, Forti VPN server, or any other component into an existing Fortinet fabric, I already have a Fortinet analyzer and FortiManager. With this integrated Fortinet ecosystem, stability issues are significantly reduced. Additionally, inserting a standalone Fortinet device is much easier and much more accessible.

Customer support is fine and fairly responsive.

Neutral

We used Cisco products and operated within a Cisco ecosystem. Currently, Cisco is too expensive, but FortiGate IPS does not position itself as premium like Cisco.

The initial setup can be completed within a month with some IT security architecture by replacing IPS.

The product is expensive but comparable to Cisco.

There are limitations to consider, such as the sandbox capacity. Increasing the sandbox limit is essential for better integration with the firewall IPS, facilitating traffic offloading. Since my customers deal with heavy content, we often need to upload content for analysis by the IPS and sandbox. Thus, the system effectively fulfils its intended purpose. However, we do not need to assess features beyond what the customer requires. As long as we meet their specific needs and use case, it's satisfactory.

We're building a network of partners, you know, offering competitive pricing to engage in significant projects. Firewalls are pretty standard. The ecosystem issues may revolve around business support and pricing.

You need more considerable internal resources to manage it. For clients with a robust security solutions team, architects, and skilled developers who handle data and generate similar content, I would recommend Fortinet FortiGate IPS. These individuals should be capable of upgrading their packages and downloading them. If they are comfortable with Docker, they can deploy it as an appliance on a server.

Overall, I rate the solution a six out of ten.

I'm a reseller with clients in industries ranging from healthcare to banking and manufacturing. My customers use FortiGate IPS for network protection and segmentation. 

I like FortiGate's zero-trust capabilities and protection against zero-day threats. Zero-day threat protection is critical because we're seeing constant changes in the threat landscape. The sandboxing and web access controls are also robust. 

FortiGate IPS is somewhat pricey compared to other solutions. There is also room for improvement in terms of the radio signals. The FortiGate WiFi has a relatively short range. I've found there is a lag in its zero-day malware response that could be better, and FortiGate could integrate better with other brands of equipment or identity management solutions.

I have used FortiGate IPS for more than five years.

I rate FortiGate IPS nine out of 10 for stability. When we've had problems with the platform, they were mostly configuration issues, not the fault of the product itself. 

I rate FortiGate IPS eight out of 10 for scalability, but we haven't scaled it up that much. We would have a better idea of its scalability if we used it on a bigger project. We can say with certainty that FortiGate is scalable enough for the needs of small and medium-sized enterprises. 

Most of our clients are small and medium-sized companies, but we do some smaller projects on the enterprise side, like consultation and subcontracting. 

I rate Fortinet support eight out of 10. They're generally quite good, but sometimes the response is slower than I would like. When you're paying for support, you usually expect a response in a day or so, but it took Fortinet two or three days to address an issue once. That was the only time I got a slow response. They are usually much quicker. 

Positive

I rate FortiGate IPS eight out of 10 for ease of setup. We do on-prem and cloud deployments. It's a hybrid cloud setup where we install FortiGate on virtual machines from AWS. We can typically deploy FortiGate in a day. It might take two days if our client needs a lot of configuration work. 

I rate FortiGate IPS two out of 10 for affordability. It's more expensive than competing solutions. It ranges between $1,000 to $7,000 depending on the model. They offer one-year or three-year licenses. 

I rate Fortinet FortiGate IPS eight out of 10. If you're already using Fortinet, I recommend staying with it. However, if you want to reduce your costs, you can consider other solutions like SonicWall, Sophos, or Palo Alto. Fortinet is an excellent cybersecurity solution, but it's expensive.

I am using the product for enterprise network and security purposes.

I like the tool’s capabilities of integrating security around social media, site booking, and other essential features.

They can improve in the area of creating daily, monthly, and item-wise reporting. I think they should focus on including IP-controlling functions. 

I would like for Fortinet to add a ransomware protection feature in the next release.

I have been working with it for the last five years.

I would rate the stability a seven out of ten.

It is highly scalable. We have around 100 users using this solution in one location. Around 60 users use it in a second location and a minimum of 40 users use the solution in a third location. These users are both on the engineering and management levels. I would rate it eight out of ten for scalability.

They provide good technical support. I would rate it a nine out of ten.

Positive

Initially, I worked with Palo Alto. I switched to FortiGate because it is a reliable product.

I found the process easy. The implementation took just an hour to complete.

I did the implementation myself. If the implementation was more difficult, I would have needed more help from Fortinet. One IT manager maintains the solution.

We pay a monthly licensing fee and there are no additional costs.

I would rate Fortinet FortiGate a seven out of ten. I would recommend this solution to others. However, sometimes I have some troubleshooting problems and that is why I think a seven is suitable.