We primarily use the product to enhance our network security infrastructure. It monitors and investigates inbound and outbound traffic across our organization, ensuring comprehensive security coverage.
CEO at iTeam sarl
Provides an ease of deploying IoT security and good stability
Pros and Cons
- "The product's most valuable feature is the ease of deploying IoT security with a single click. Additionally, the frequent updates to the online database ensure that our security measures are always up to date, enhancing our protection against emerging threats."
- "One area for improvement is the licensing policy. If support licenses are not renewed, the product's functionality ceases, which can be disruptive."
What is our primary use case?
What is most valuable?
The product's most valuable feature is the ease of deploying IoT security with a single click. Additionally, the frequent updates to the online database ensure that our security measures are always up to date, enhancing our protection against emerging threats.
What needs improvement?
One area for improvement is the licensing policy. If support licenses are not renewed, the product's functionality ceases, which can be disruptive.
Integrating more advanced threat detection capabilities utilizing artificial intelligence would be highly beneficial in future releases.
For how long have I used the solution?
I have been using FortiGate IPS for around 15 years.
Buyer's Guide
Fortinet FortiGate IPS
November 2024
Learn what your peers think about Fortinet FortiGate IPS. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,649 professionals have used our research since 2012.
What do I think about the stability of the solution?
The solution is highly stable, with minimal disruptions. I rate it a nine out of ten for stability.
What do I think about the scalability of the solution?
Once deployed, the product scalability is constrained, requiring appliance upgrades for increased capacity.
How are customer service and support?
The customer support team is responsive but relies heavily on external partners for frontline assistance, which can lead to delays in critical situations.
How would you rate customer service and support?
Negative
How was the initial setup?
The initial setup is straightforward for those with a technical background in network security. However, configuring the system requires a deep understanding of the product.
What about the implementation team?
We implemented FortiGate IPS with our technical team, which has extensive experience with network security solutions.
What was our ROI?
Since implementing FortiGate IPS, we've seen an approximately ten percent reduction in operational costs, largely due to consolidating security measures onto a single platform.
What's my experience with pricing, setup cost, and licensing?
The platform offers a reasonable price point compared to its competitors.
Which other solutions did I evaluate?
Before opting for FortiGate IPS, I evaluated several competitors, including Palo Alto, Checkpoint, WatchGuard, Barracuda, SonicWall, and Sophos.
What other advice do I have?
FortiGate IPS is a solid choice for organizations seeking comprehensive network security. Ensure your team has the technical knowledge required for effective deployment and ongoing management.
I rate it an eight.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Jul 8, 2024
Flag as inappropriateCEO at Merit Technology Solutions (Pty) Ltd
Positively influenced our security operations
Pros and Cons
- "The most significant aspect of IPS is self-explanatory as it primarily focuses on intrusion prevention, which is crucial for Fortinet's internal outbreak prevention efforts and ensuring compliance on endpoint devices."
- "There is room for improvement in being proactive about identifying and integrating new signatures."
What is our primary use case?
We use Fortinet's intrusion prevention feature to ensure network security. This involves actively monitoring network activity for any suspicious behavior using predefined signatures and other detection methods. The goal is to proactively identify and block known threats to prevent any unauthorized or malicious activity on the network. The majority of our clients operate within the financial and retail sectors.
How has it helped my organization?
It seamlessly integrates with the existing network infrastructure, particularly from a firewall standpoint. This integration involves thorough inspection across all interfaces and segmentation layers via the firewall. IPS is utilized for both intercommunication and breakout communications, where it effectively detects and prevents outbreaks through its IP signature-checking capabilities.
It has enhanced the network security posture of our customers.
The performance and accuracy of FortiGate IPS have positively influenced security operations.
What is most valuable?
The most significant aspect of IPS is self-explanatory as it primarily focuses on intrusion prevention, which is crucial for Fortinet's internal outbreak prevention efforts and ensuring compliance on endpoint devices.
What needs improvement?
There is room for improvement in being proactive about identifying and integrating new signatures.
For how long have I used the solution?
I have been working with it for ten years.
What do I think about the stability of the solution?
It offers excellent stability. I would rate it ten out of ten.
What do I think about the scalability of the solution?
I have a diverse clientele, ranging from international enterprises to several private companies.
How are customer service and support?
I would rate customer service and support eight out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup is straightforward. I would rate it ten out of ten.
What about the implementation team?
We haven't faced any challenges with IPS regarding its deployment or management, it is straightforward. You simply add it to the policy where you want IPS inspection applied and roll it out centrally. This process is quick and can take between minutes to a maximum of an hour, depending on the number of sites involved.
What was our ROI?
When evaluating ROI based on exposures, it's challenging to quantify. However, there are definite improvements in enhancements and proactive isolation capabilities, particularly in outbreak prevention. These improvements could potentially lead to reductions in downtime, technical service requirements, and other associated costs.
What's my experience with pricing, setup cost, and licensing?
The pricing is reasonable.
What other advice do I have?
My first recommendation for any deployment is always to enable IPS. Overall, I would rate it ten out of ten.
Which deployment model are you using for this solution?
Private Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Consultant
Last updated: Mar 20, 2024
Flag as inappropriateBuyer's Guide
Fortinet FortiGate IPS
November 2024
Learn what your peers think about Fortinet FortiGate IPS. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,649 professionals have used our research since 2012.
IT at Stak
User-friendly, powerful, and has useful training certifications available
Pros and Cons
- "I love the interface."
- "The reporting was limited."
What is our primary use case?
I rent spaces for the company. I provide the services for the internet for that company, something like coworking. I need to create policies to prevent intrusions on my clients. I create the policies for each client, and I select the company and create the policy with the specific needs. After that, I apply it for the WLAN for that client. That way, I prevent intrusions on the network.
What is most valuable?
It meets my needs.
The product is very user-friendly.
It is quite scalable.
I love the interface.
The power is great.
I have a limited embedded team in IT. I have one man on the team for 1,000 users. And this person can manage all the infrastructure due to the fact that the console is very easy, and the people are very happy with the results pertaining to that interface.
Also, I have created VPNs for all my users to work from their homes.
What needs improvement?
It is very complex.
There are a variety of improvements that can be made.
The reporting was limited. I had to use FortiAnalyzer to obtain a complete solution. The reports are very limited with the solution, basically. Once you implement FortiAnalyzer, you can create very, very detailed reports for all the networks.
For how long have I used the solution?
I've been using the solution for two years now.
What do I think about the scalability of the solution?
The solution scales well. It's not an issue at all if you need to expand.
How are customer service and support?
Technical support is good. I have additional support from my provider. My provider is a Platinum partner, and half of the technicians have Level 7 or 8 in Fortinet certifications.
Which solution did I use previously and why did I switch?
In the past, I was working with Cisco and Aruba, however, this was more power and the cost was great.
How was the initial setup?
The setup is a bit complex. However, I only need three weeks to create the machines' settings.
What's my experience with pricing, setup cost, and licensing?
For two firewalls with IPS and two access points, FortiAnalyzer, with maybe ten switches, we pay maybe $4,000 a year.
We don't pay any additional costs.
What other advice do I have?
I use a lot of Fortinet devices.
I'm a customer and end-user.
I'd rate the solution ten out of ten.
Everything is good. The support is very, very expert. When you need help, all the people are ready to assist - and that is great. Only I recommended new users to take maybe the certification basics, NSE 1, NSE 2. It's free in the academy for Fortinet. Most problems you can fix with that information and that education, so it's very helpful to be knowledgable.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
ICT Professional at a tech services company with 51-200 employees
Fully integrates with our infrastructure appliances, offering useful application control capabilities
Pros and Cons
- "The most useful feature of FortiGate IPS for me is Application Control."
- "FortGate's IPS reporting could be made better by giving more details regarding the source and destination of network traffic when it comes to the overview section. This would allow me to more easily follow the flow of traffic based on IP addresses, without having to integrate the IPS with other products that perform more sophisticated traffic analysis."
What is our primary use case?
Our infrastructure includes both FortiGate (81E series) and Cisco Meraki appliances, and we have fully integrated FortiGate IPS with these devices. Essentially, whenever I secure the WAN and LAN and enhance them with security profiles, I will use the IPS's Web Filtering and Application Control features.
What is most valuable?
The most useful feature of FortiGate IPS for me is Application Control.
What needs improvement?
FortGate's IPS reporting could be made better by giving more details regarding the source and destination of network traffic when it comes to the overview section. This would allow me to more easily follow the flow of traffic based on IP addresses, without having to integrate the IPS with other products that perform more sophisticated traffic analysis.
Another improvement, that may only tangentially relate to the IPS, would be to include more functionality and details regarding SD-WAN (such as the ISDB), in order to make it more secure.
For how long have I used the solution?
I've been using Fortinet FortiGate IPS for about seven years.
What do I think about the stability of the solution?
The stability is fine, but it would be even better if we were to deploy another appliance for higher availability of access, such that there is no downtime at all.
What do I think about the scalability of the solution?
The scalability of the IPS fits my current needs well. If we were to take on more users, however, we would likely have to change both our appliance and the license.
How are customer service and support?
The support is good because, although the response time for tickets may occasionally take some time, at the end of the day they have always solved the issue at hand. What is also nice is that they can connect with you remotely and help support you at any point.
How would you rate customer service and support?
Positive
How was the initial setup?
The setup was easy for me because I deploy appliances off all kinds and sizes, large and small. I would give the setup a 4/5 in terms of ease.
What's my experience with pricing, setup cost, and licensing?
I pay €1,200 per year for the license along with Fortinet's 81E firewall appliance. I would rate this pricing as 3/5 stars, and I believe the price is reasonably similar to its competitors in the market, being somewhere in the middle.
What other advice do I have?
Given my experience and the fact that FortiGate are a leader in the market, I would rate FortiGate IPS a nine out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Strategic Projects - Information Security at Peristent Systems
Simplifies the deployment of next-generation firewalls with integrated IPS and VPN capabilities
How has it helped my organization?
I work with multiple customers. Most are comfortable running IPS within their firewalls rather than deploying it. The standard deployment requires finding a service owner and training them on the platform. However, if I deploy a next-generation firewall with integrated IPS and VPN capabilities, it simplifies things. It's straightforward for someone to manage. Consolidating a VPN server, IPS, and standalone firewall into one appliance can be challenging for many customers. Fortinet's servers are increasingly popular.
What needs improvement?
Fortinet has serious vulnerabilities. Some of their interfaces are exposed to attacks. Since they are more prevalent, they may attract more attacks and have more vulnerabilities discovered.
What do I think about the stability of the solution?
If I'm incorporating FortiGate IPS, FortiGate firewall, Forti VPN server, or any other component into an existing Fortinet fabric, I already have a Fortinet analyzer and FortiManager. With this integrated Fortinet ecosystem, stability issues are significantly reduced. Additionally, inserting a standalone Fortinet device is much easier and much more accessible.
How are customer service and support?
Customer support is fine and fairly responsive.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
We used Cisco products and operated within a Cisco ecosystem. Currently, Cisco is too expensive, but FortiGate IPS does not position itself as premium like Cisco.
How was the initial setup?
The initial setup can be completed within a month with some IT security architecture by replacing IPS.
What's my experience with pricing, setup cost, and licensing?
The product is expensive but comparable to Cisco.
What other advice do I have?
There are limitations to consider, such as the sandbox capacity. Increasing the sandbox limit is essential for better integration with the firewall IPS, facilitating traffic offloading. Since my customers deal with heavy content, we often need to upload content for analysis by the IPS and sandbox. Thus, the system effectively fulfils its intended purpose. However, we do not need to assess features beyond what the customer requires. As long as we meet their specific needs and use case, it's satisfactory.
We're building a network of partners, you know, offering competitive pricing to engage in significant projects. Firewalls are pretty standard. The ecosystem issues may revolve around business support and pricing.
You need more considerable internal resources to manage it. For clients with a robust security solutions team, architects, and skilled developers who handle data and generate similar content, I would recommend Fortinet FortiGate IPS. These individuals should be capable of upgrading their packages and downloading them. If they are comfortable with Docker, they can deploy it as an appliance on a server.
Overall, I rate the solution a six out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: partner
Last updated: Apr 1, 2024
Flag as inappropriateNetwork Cybersecurity Consultant at a tech services company with 1-10 employees
It protects against zero-day threats, which is critical in a constantly changing the threat landscape
Pros and Cons
- "I like FortiGate's zero-trust capabilities and protection against zero-day threats. Zero-day threat protection is critical because we're seeing constant changes in the threat landscape. The sandboxing and web access controls are also robust."
- "FortiGate IPS is somewhat pricey compared to other solutions. There is also room for improvement in terms of the radio signals. The FortiGate WiFi has a relatively short range. I've found there is a lag in its zero-day malware response that could be better, and FortiGate could integrate better with other brands of equipment or identity management solutions."
What is our primary use case?
I'm a reseller with clients in industries ranging from healthcare to banking and manufacturing. My customers use FortiGate IPS for network protection and segmentation.
What is most valuable?
I like FortiGate's zero-trust capabilities and protection against zero-day threats. Zero-day threat protection is critical because we're seeing constant changes in the threat landscape. The sandboxing and web access controls are also robust.
What needs improvement?
FortiGate IPS is somewhat pricey compared to other solutions. There is also room for improvement in terms of the radio signals. The FortiGate WiFi has a relatively short range. I've found there is a lag in its zero-day malware response that could be better, and FortiGate could integrate better with other brands of equipment or identity management solutions.
For how long have I used the solution?
I have used FortiGate IPS for more than five years.
What do I think about the stability of the solution?
I rate FortiGate IPS nine out of 10 for stability. When we've had problems with the platform, they were mostly configuration issues, not the fault of the product itself.
What do I think about the scalability of the solution?
I rate FortiGate IPS eight out of 10 for scalability, but we haven't scaled it up that much. We would have a better idea of its scalability if we used it on a bigger project. We can say with certainty that FortiGate is scalable enough for the needs of small and medium-sized enterprises.
Most of our clients are small and medium-sized companies, but we do some smaller projects on the enterprise side, like consultation and subcontracting.
How are customer service and support?
I rate Fortinet support eight out of 10. They're generally quite good, but sometimes the response is slower than I would like. When you're paying for support, you usually expect a response in a day or so, but it took Fortinet two or three days to address an issue once. That was the only time I got a slow response. They are usually much quicker.
How would you rate customer service and support?
Positive
How was the initial setup?
I rate FortiGate IPS eight out of 10 for ease of setup. We do on-prem and cloud deployments. It's a hybrid cloud setup where we install FortiGate on virtual machines from AWS. We can typically deploy FortiGate in a day. It might take two days if our client needs a lot of configuration work.
What's my experience with pricing, setup cost, and licensing?
I rate FortiGate IPS two out of 10 for affordability. It's more expensive than competing solutions. It ranges between $1,000 to $7,000 depending on the model. They offer one-year or three-year licenses.
What other advice do I have?
I rate Fortinet FortiGate IPS eight out of 10. If you're already using Fortinet, I recommend staying with it. However, if you want to reduce your costs, you can consider other solutions like SonicWall, Sophos, or Palo Alto. Fortinet is an excellent cybersecurity solution, but it's expensive.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Group IT Manager at Araliya Group of Companies
Reliable solution for software security and networks, but they should focus on IP-controlling functions
Pros and Cons
- "It is a reliable solution."
- "They should add a feature for detailed reporting."
What is our primary use case?
I am using the product for enterprise network and security purposes.
What is most valuable?
I like the tool’s capabilities of integrating security around social media, site booking, and other essential features.
What needs improvement?
They can improve in the area of creating daily, monthly, and item-wise reporting. I think they should focus on including IP-controlling functions.
I would like for Fortinet to add a ransomware protection feature in the next release.
For how long have I used the solution?
I have been working with it for the last five years.
What do I think about the stability of the solution?
I would rate the stability a seven out of ten.
What do I think about the scalability of the solution?
It is highly scalable. We have around 100 users using this solution in one location. Around 60 users use it in a second location and a minimum of 40 users use the solution in a third location. These users are both on the engineering and management levels. I would rate it eight out of ten for scalability.
How are customer service and support?
They provide good technical support. I would rate it a nine out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Initially, I worked with Palo Alto. I switched to FortiGate because it is a reliable product.
How was the initial setup?
I found the process easy. The implementation took just an hour to complete.
What about the implementation team?
I did the implementation myself. If the implementation was more difficult, I would have needed more help from Fortinet. One IT manager maintains the solution.
What's my experience with pricing, setup cost, and licensing?
We pay a monthly licensing fee and there are no additional costs.
What other advice do I have?
I would rate Fortinet FortiGate a seven out of ten. I would recommend this solution to others. However, sometimes I have some troubleshooting problems and that is why I think a seven is suitable.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Assistant Manager-Networks at Amrita
Has a good set of UTM features, great bandwidth shaping mechanism, and efficient algorithms
Pros and Cons
- "Has a very user-friendly interface and doesn't require any prior knowledge."
- "The system can slow down when inspections are carried out."
What is our primary use case?
We manage a university and we're dependent on Fortigate to monitor everything including our research activities. All our network related services are logged by Fortigate. I'm a network administrator and we are customers of Fortinet.
How has it helped my organization?
Fortigate has been helpful in mitigating ransomware attacks and we receive notification of threats from the cloud services.
What is most valuable?
We've found the most valuable feature to be the very user-friendly interface. The solution doesn't require any prior knowledge and that's not the case with other firewalls. Fortigate can mitigate all attacks, it can handle a lot. It has a good set of UTM features, a good bandwidth shaping mechanism, and other features. It has efficient algorithms and it competes well with Palo Alto and TechPoint. In terms of VPNs, it has an unlimited count, better than other solutions and it's included in the package.
What needs improvement?
We sometimes have issues when carrying out inspections because the system slows down and our clients complain about it. The only other drawback is that we have to manually insert certificates for our clients. Most social networking sites have dependencies and to completely block them requires a deep inspection profile. For protection, we need to put the certificates in for all of our clients. It's a major drawback not having it embedded in the system. I would very much like to see Forticlient's new TNA technology included with the original license for Fortigate. It currently requires an additional license which is quite costly for us as a middle-size organization. We could include it with VPN for our clients.
For how long have I used the solution?
I've been using this solution for 10 years.
What do I think about the stability of the solution?
This is a really stable product and one of the main reasons we've stayed with it for the past eight years.
What do I think about the scalability of the solution?
The solution is completely scalable, we have over 8,000 users. Almost half of those are students and the rest are teaching staff and researchers. We also have 500 people involved as part of the system support team, IT engineers, and software engineers. The solution requires maintenance and regular upgrades and we have a 9-person team for that.
How are customer service and support?
I'm happy with the technical support although we don't require it much.
How was the initial setup?
The initial deployment took us around one month back when it was a software-based solution. We had to completely migrate all existing policies to Fortigate. We didn't use any third parties for the implementation.
What's my experience with pricing, setup cost, and licensing?
We purchase a license annually and it's a little expensive. We pay extra for SA. You need a decent budget for Fortigate but once you have that, it's completely scalable.
Which other solutions did I evaluate?
We previously used Palo Alto and had a ransomware attack they did not detect so we switched to Fortinet. Aside from that, we preferred Fortigate because it's so user-friendly. Admin can configure all the policies easily using the graphic interface in Fortigate. Palo Alto requires a specific application for all admin aspects and some of them can only be done with command line tools. It's really tough for normal admins to do day-to-day configuration.
We also tried Salesforce but felt that we were unable to depend on it for the entire system. We've implemented it for 2,000 people but it's not as user-friendly as Fortigate and without any expertise it's difficult to use. It's mainly command-line technology. It's time-consuming and budget-wise it can't compete with Fortinet.
What other advice do I have?
I recommend this solution for a mid-level or enterprise organization and rate it nine out of 10.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free Fortinet FortiGate IPS Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Intrusion Detection and Prevention Software (IDPS)Popular Comparisons
Darktrace
Vectra AI
KerioControl
Palo Alto Networks Advanced Threat Prevention
Splunk User Behavior Analytics
Trend Micro Deep Discovery
Check Point IPS
Trend Micro TippingPoint Threat Protection System
Palo Alto Networks URL Filtering with PAN-DB
Cisco Secure IPS (NGIPS)
Cisco Sourcefire SNORT
Trellix Intrusion Prevention System
ExtraHop Reveal(x) 360
Buyer's Guide
Download our free Fortinet FortiGate IPS Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- What are the threats associated with using ‘bogus’ cybersecurity tools?
- When evaluating Intrusion Detection, what aspect do you think is the most important to look for?
- What is your recommended cost-effective solution to detect and prevent APT attacks?
- What product do you recommend for a Campus IPS appliance implementation?
- How do you use the MITRE ATT&CK framework for improving enterprise security?
- What are the pros and cons of Darktrace vs CrowdStrike Falcon vs alternative EPP solutions?
- Which alternative solutions (other than Darktrace) do you recommend for an SMB?
- Which is the best intrusion detection and prevention solution?
- What is the best IDPS security tool and why?
- What is Cognitive Cybersecurity and what is it used for?