We use Fortinet FortiGate IPS to filter intrusions from the internet as the Edge firewall and to protect our server farm.
We like signature-based anomaly detection and zero-day protection features. For zero-day protection, we use Cloud Sandboxing, so whenever the zero-day threat occurs, it automatically sends it to its Cloud Sandbox. After getting information from Cloud Sandbox, then the intrusion is defined.
Fortinet can add some Machine Learning and AI to improve its accuracy and give it an edge on IPS detection and protection. They have some machine language learning but can still improve using AI.
We have been using this solution for almost eight years.
It is stable, as it can be verified from Gartner's report and previously on NSS lab test reports. I rate the stability an eight out of ten.
It is scalable, and I rate the scalability a seven out of ten.
For level 1 and 2 support, our technical team can handle these cases in-house. But for higher-priority cases, we use Fortinet technical support. They have a technical assistance center in India and escalate to France for complex or higher-priority problems. I rate the technical support in India a six out of ten.
There is a lot of documentation from the vendor side for the setup, which is good, and we have some hands-on experience with the product. So with help from their technical assistance center and their system engineer, the setup is good.
The setup can be done in-house, but we have partners and colleagues with eight years of experience using the product, so we are comfortable with it.
The setup depends on customer requirements and the scope of the work. We rate the setup as difficult because it depends on the variety of servers. The more platforms there are the more signatures or IPS rules that need to be customized. So based on the requirements, we see the full list of servers and full features they want to protect, calculate the expertise level required and what needs to be deployed on the system to set it up. A mid-level consultant can deploy it, which can be completed within two to three days if the customer is clear on their requirements.
It has a competitive price. I rate the price an eight out of ten compared to other IPS solutions. Fortinet is a bit higher in terms of price.
I rate the solution a seven out of ten.