Fortinet FortiGate IPS Reviews

We primarily use the product to enhance our network security infrastructure. It monitors and investigates inbound and outbound traffic across our organization, ensuring comprehensive security coverage.

The product's most valuable feature is the ease of deploying IoT security with a single click. Additionally, the frequent updates to the online database ensure that our security measures are always up to date, enhancing our protection against emerging threats.

One area for improvement is the licensing policy. If support licenses are not renewed, the product's functionality ceases, which can be disruptive. 

Integrating more advanced threat detection capabilities utilizing artificial intelligence would be highly beneficial in future releases.

I have been using FortiGate IPS for around 15 years.

The solution is highly stable, with minimal disruptions. I rate it a nine out of ten for stability.

Once deployed, the product scalability is constrained, requiring appliance upgrades for increased capacity.

The customer support team is responsive but relies heavily on external partners for frontline assistance, which can lead to delays in critical situations.

Negative

The initial setup is straightforward for those with a technical background in network security. However, configuring the system requires a deep understanding of the product.

We implemented FortiGate IPS with our technical team, which has extensive experience with network security solutions.

Since implementing FortiGate IPS, we've seen an approximately ten percent reduction in operational costs, largely due to consolidating security measures onto a single platform.

The platform offers a reasonable price point compared to its competitors.

Before opting for FortiGate IPS, I evaluated several competitors, including Palo Alto, Checkpoint, WatchGuard, Barracuda, SonicWall, and Sophos. 

FortiGate IPS is a solid choice for organizations seeking comprehensive network security. Ensure your team has the technical knowledge required for effective deployment and ongoing management.

I rate it an eight. 

We use Fortinet's intrusion prevention feature to ensure network security. This involves actively monitoring network activity for any suspicious behavior using predefined signatures and other detection methods. The goal is to proactively identify and block known threats to prevent any unauthorized or malicious activity on the network. The majority of our clients operate within the financial and retail sectors.

It seamlessly integrates with the existing network infrastructure, particularly from a firewall standpoint. This integration involves thorough inspection across all interfaces and segmentation layers via the firewall. IPS is utilized for both intercommunication and breakout communications, where it effectively detects and prevents outbreaks through its IP signature-checking capabilities.

It has enhanced the network security posture of our customers.

The performance and accuracy of FortiGate IPS have positively influenced security operations.

The most significant aspect of IPS is self-explanatory as it primarily focuses on intrusion prevention, which is crucial for Fortinet's internal outbreak prevention efforts and ensuring compliance on endpoint devices.

There is room for improvement in being proactive about identifying and integrating new signatures.

I have been working with it for ten years.

It offers excellent stability. I would rate it ten out of ten.

I have a diverse clientele, ranging from international enterprises to several private companies.

I would rate customer service and support eight out of ten.

Positive

The initial setup is straightforward. I would rate it ten out of ten.

We haven't faced any challenges with IPS regarding its deployment or management, it is straightforward. You simply add it to the policy where you want IPS inspection applied and roll it out centrally. This process is quick and can take between minutes to a maximum of an hour, depending on the number of sites involved.

When evaluating ROI based on exposures, it's challenging to quantify. However, there are definite improvements in enhancements and proactive isolation capabilities, particularly in outbreak prevention. These improvements could potentially lead to reductions in downtime, technical service requirements, and other associated costs.

The pricing is reasonable.

My first recommendation for any deployment is always to enable IPS. Overall, I would rate it ten out of ten.

I rent spaces for the company. I provide the services for the internet for that company, something like coworking. I need to create policies to prevent intrusions on my clients. I create the policies for each client, and I select the company and create the policy with the specific needs. After that, I apply it for the WLAN for that client. That way, I prevent intrusions on the network.

It meets my needs.

The product is very user-friendly.

It is quite scalable. 

I love the interface.

The power is great.

I have a limited embedded team in IT. I have one man on the team for 1,000 users. And this person can manage all the infrastructure due to the fact that the console is very easy, and the people are very happy with the results pertaining to that interface. 

Also, I have created VPNs for all my users to work from their homes. 

It is very complex. 

There are a variety of improvements that can be made. 

The reporting was limited. I had to use FortiAnalyzer to obtain a complete solution. The reports are very limited with the solution, basically. Once you implement FortiAnalyzer, you can create very, very detailed reports for all the networks.

I've been using the solution for two years now. 

The solution scales well. It's not an issue at all if you need to expand. 

Technical support is good. I have additional support from my provider. My provider is a Platinum partner, and half of the technicians have Level 7 or 8 in Fortinet certifications. 

In the past, I was working with Cisco and Aruba, however, this was more power and the cost was great.

The setup is a bit complex. However, I only need three weeks to create the machines' settings.

For two firewalls with IPS and two access points, FortiAnalyzer, with maybe ten switches, we pay maybe $4,000 a year.

We don't pay any additional costs.

I use a lot of Fortinet devices. 

I'm a customer and end-user. 

I'd rate the solution ten out of ten. 

Everything is good. The support is very, very expert. When you need help, all the people are ready to assist - and that is great. Only I recommended new users to take maybe the certification basics, NSE 1, NSE 2. It's free in the academy for Fortinet. Most problems you can fix with that information and that education, so it's very helpful to be knowledgable.

Our infrastructure includes both FortiGate (81E series) and Cisco Meraki appliances, and we have fully integrated FortiGate IPS with these devices. Essentially, whenever I secure the WAN and LAN and enhance them with security profiles, I will use the IPS's Web Filtering and Application Control features.

The most useful feature of FortiGate IPS for me is Application Control.

FortGate's IPS reporting could be made better by giving more details regarding the source and destination of network traffic when it comes to the overview section. This would allow me to more easily follow the flow of traffic based on IP addresses, without having to integrate the IPS with other products that perform more sophisticated traffic analysis.

Another improvement, that may only tangentially relate to the IPS, would be to include more functionality and details regarding SD-WAN (such as the ISDB), in order to make it more secure.

I've been using Fortinet FortiGate IPS for about seven years. 

The stability is fine, but it would be even better if we were to deploy another appliance for higher availability of access, such that there is no downtime at all.

The scalability of the IPS fits my current needs well. If we were to take on more users, however, we would likely have to change both our appliance and the license.

The support is good because, although the response time for tickets may occasionally take some time, at the end of the day they have always solved the issue at hand. What is also nice is that they can connect with you remotely and help support you at any point.

Positive

The setup was easy for me because I deploy appliances off all kinds and sizes, large and small. I would give the setup a 4/5 in terms of ease.

I pay €1,200 per year for the license along with Fortinet's 81E firewall appliance. I would rate this pricing as 3/5 stars, and I believe the price is reasonably similar to its competitors in the market, being somewhere in the middle.

Given my experience and the fact that FortiGate are a leader in the market, I would rate FortiGate IPS a nine out of ten.

I work with multiple customers. Most are comfortable running IPS within their firewalls rather than deploying it. The standard deployment requires finding a service owner and training them on the platform. However, if I deploy a next-generation firewall with integrated IPS and VPN capabilities, it simplifies things. It's straightforward for someone to manage. Consolidating a VPN server, IPS, and standalone firewall into one appliance can be challenging for many customers. Fortinet's servers are increasingly popular.

Fortinet has serious vulnerabilities. Some of their interfaces are exposed to attacks. Since they are more prevalent, they may attract more attacks and have more vulnerabilities discovered.

If I'm incorporating FortiGate IPS, FortiGate firewall, Forti VPN server, or any other component into an existing Fortinet fabric, I already have a Fortinet analyzer and FortiManager. With this integrated Fortinet ecosystem, stability issues are significantly reduced. Additionally, inserting a standalone Fortinet device is much easier and much more accessible.

Customer support is fine and fairly responsive.

Neutral

We used Cisco products and operated within a Cisco ecosystem. Currently, Cisco is too expensive, but FortiGate IPS does not position itself as premium like Cisco.

The initial setup can be completed within a month with some IT security architecture by replacing IPS.

The product is expensive but comparable to Cisco.

There are limitations to consider, such as the sandbox capacity. Increasing the sandbox limit is essential for better integration with the firewall IPS, facilitating traffic offloading. Since my customers deal with heavy content, we often need to upload content for analysis by the IPS and sandbox. Thus, the system effectively fulfils its intended purpose. However, we do not need to assess features beyond what the customer requires. As long as we meet their specific needs and use case, it's satisfactory.

We're building a network of partners, you know, offering competitive pricing to engage in significant projects. Firewalls are pretty standard. The ecosystem issues may revolve around business support and pricing.

You need more considerable internal resources to manage it. For clients with a robust security solutions team, architects, and skilled developers who handle data and generate similar content, I would recommend Fortinet FortiGate IPS. These individuals should be capable of upgrading their packages and downloading them. If they are comfortable with Docker, they can deploy it as an appliance on a server.

Overall, I rate the solution a six out of ten.

I'm a reseller with clients in industries ranging from healthcare to banking and manufacturing. My customers use FortiGate IPS for network protection and segmentation. 

I like FortiGate's zero-trust capabilities and protection against zero-day threats. Zero-day threat protection is critical because we're seeing constant changes in the threat landscape. The sandboxing and web access controls are also robust. 

FortiGate IPS is somewhat pricey compared to other solutions. There is also room for improvement in terms of the radio signals. The FortiGate WiFi has a relatively short range. I've found there is a lag in its zero-day malware response that could be better, and FortiGate could integrate better with other brands of equipment or identity management solutions.

I have used FortiGate IPS for more than five years.

I rate FortiGate IPS nine out of 10 for stability. When we've had problems with the platform, they were mostly configuration issues, not the fault of the product itself. 

I rate FortiGate IPS eight out of 10 for scalability, but we haven't scaled it up that much. We would have a better idea of its scalability if we used it on a bigger project. We can say with certainty that FortiGate is scalable enough for the needs of small and medium-sized enterprises. 

Most of our clients are small and medium-sized companies, but we do some smaller projects on the enterprise side, like consultation and subcontracting. 

I rate Fortinet support eight out of 10. They're generally quite good, but sometimes the response is slower than I would like. When you're paying for support, you usually expect a response in a day or so, but it took Fortinet two or three days to address an issue once. That was the only time I got a slow response. They are usually much quicker. 

Positive

I rate FortiGate IPS eight out of 10 for ease of setup. We do on-prem and cloud deployments. It's a hybrid cloud setup where we install FortiGate on virtual machines from AWS. We can typically deploy FortiGate in a day. It might take two days if our client needs a lot of configuration work. 

I rate FortiGate IPS two out of 10 for affordability. It's more expensive than competing solutions. It ranges between $1,000 to $7,000 depending on the model. They offer one-year or three-year licenses. 

I rate Fortinet FortiGate IPS eight out of 10. If you're already using Fortinet, I recommend staying with it. However, if you want to reduce your costs, you can consider other solutions like SonicWall, Sophos, or Palo Alto. Fortinet is an excellent cybersecurity solution, but it's expensive.

I am using the product for enterprise network and security purposes.

I like the tool’s capabilities of integrating security around social media, site booking, and other essential features.

They can improve in the area of creating daily, monthly, and item-wise reporting. I think they should focus on including IP-controlling functions. 

I would like for Fortinet to add a ransomware protection feature in the next release.

I have been working with it for the last five years.

I would rate the stability a seven out of ten.

It is highly scalable. We have around 100 users using this solution in one location. Around 60 users use it in a second location and a minimum of 40 users use the solution in a third location. These users are both on the engineering and management levels. I would rate it eight out of ten for scalability.

They provide good technical support. I would rate it a nine out of ten.

Positive

Initially, I worked with Palo Alto. I switched to FortiGate because it is a reliable product.

I found the process easy. The implementation took just an hour to complete.

I did the implementation myself. If the implementation was more difficult, I would have needed more help from Fortinet. One IT manager maintains the solution.

We pay a monthly licensing fee and there are no additional costs.

I would rate Fortinet FortiGate a seven out of ten. I would recommend this solution to others. However, sometimes I have some troubleshooting problems and that is why I think a seven is suitable.

We manage a university and we're dependent on Fortigate to monitor everything including our research activities. All our network related services are logged by Fortigate. I'm a network administrator and we are customers of Fortinet. 

Fortigate has been helpful in mitigating ransomware attacks and we receive notification of threats from the cloud services. 

We've found the most valuable feature to be the very user-friendly interface. The solution doesn't require any prior knowledge and that's not the case with other firewalls. Fortigate can mitigate all attacks, it can handle a lot. It has a good set of UTM features, a good bandwidth shaping mechanism, and other features. It has efficient algorithms and it competes well with Palo Alto and TechPoint. In terms of VPNs, it has an unlimited count, better than other solutions and it's included in the package. 

We sometimes have issues when carrying out inspections because the system slows down and our clients complain about it. The only other drawback is that we have to manually insert certificates for our clients. Most social networking sites have dependencies and to completely block them requires a deep inspection profile. For protection, we need to put the certificates in for all of our clients. It's a major drawback not having it embedded in the system. I would very much like to see Forticlient's new TNA technology included with the original license for Fortigate. It currently requires an additional license which is quite costly for us as a middle-size organization. We could include it with VPN for our clients. 

I've been using this solution for 10 years. 

This is a really stable product and one of the main reasons we've stayed with it for the past eight years. 

The solution is completely scalable, we have over 8,000 users. Almost half of those are students and the rest are teaching staff and researchers. We also have 500 people involved as part of the system support team, IT engineers, and software engineers. The solution requires maintenance and regular upgrades and we have a 9-person team for that.

I'm happy with the technical support although we don't require it much. 

The initial deployment took us around one month back when it was a software-based solution. We had to completely migrate all existing policies to Fortigate. We didn't use any third parties for the implementation. 

We purchase a license annually and it's a little expensive. We pay extra for SA. You need a decent budget for Fortigate but once you have that, it's completely scalable. 

We previously used Palo Alto and had a ransomware attack they did not detect so we switched to Fortinet. Aside from that, we preferred Fortigate because it's so user-friendly. Admin can configure all the policies easily using the graphic interface in Fortigate. Palo Alto requires a specific application for all admin aspects and some of them can only be done with command line tools. It's really tough for normal admins to do day-to-day configuration.

We also tried Salesforce but felt that we were unable to depend on it for the entire system. We've implemented it for 2,000 people but it's not as user-friendly as Fortigate and without any expertise it's difficult to use. It's mainly command-line technology. It's time-consuming and budget-wise it can't compete with Fortinet. 

I recommend this solution for a mid-level or enterprise organization and rate it nine out of 10.