Try our new research platform with insights from 80,000+ expert users
Fortinet FortiGate Logo

Fortinet FortiGate pros and cons

Vendor: Fortinet
4.2 out of 5
Badge Ranked 1
16K followers
Post review

Pros & Cons summary

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Fortinet FortiGate offers valuable features such as Virtual Domains (VDOMs) which allow for multiple firewall functionalities within a single device, and SSL-VPN that is reliable for secure communications.
Fortinet FortiGate's Secure SD-WAN combines comprehensive next-generation firewall security with advanced routing and WAN optimization capabilities, enhancing network transformation.
Fortinet FortiGate provides robust web filtering and intrusion prevention systems, effectively managing cyber threats and unauthorized access.
Fortinet FortiGate's two-factor authentication enhances remote work security, verifying user identities before network access is granted.
Fortinet FortiGate is recognized for excellent scalability, supporting both large and growing network environments without the need for frequent hardware upgrades.

CONS

Improvement is needed in the Web Filter quotas to restrict users with allocated quotas.
There is a lot of improvement needed with SSL-VPN.
The user interface could be improved to make it less confusing and easier to set up.
Fortinet does not have a CASB solution and Fortinet does not have a Zero trust solution.
We would like to see a better training platform implemented.
 

Fortinet FortiGate Pros review quotes

EhabAli - PeerSpot reviewer
Apr 20, 2023
Fortinet FortiGate is user-friendly and affordable.
Irshad Ali - PeerSpot reviewer
Jun 5, 2023
The security features that they have are quite good. On top of that, their licensing model is quite nice where they don't charge you anything for the SD-WAN functionality for the firewall.
JJ
Nov 16, 2023
I appreciate FortiGate's flexibility, which allows for centralized management through FortiManager.
Learn what your peers think about Fortinet FortiGate. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,325 professionals have used our research since 2012.
Javed Hashmi - PeerSpot reviewer
May 24, 2023
Fortinet has a very good solution for Secure SD-WAN. One very good feature is that they have robust and simple FortiOS through which they provide all solutions. That's their strength. There's not much complexity involved with the Secure SD-WAN solution of Fortinet as compared to Cisco's solution, which has a lot of flexibility but complexity also comes with that flexibility.
SM
Dec 2, 2020
The ease of setting the solution up is a valuable aspect for us.
Reviewer:734513 - PeerSpot reviewer
Jun 20, 2023
The technical support in our region is excellent.
ES
Dec 23, 2020
One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises. You can actually do both. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. They're pretty reliable and consistent. One of the reasons why I started using the product was their single pane of management. I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface. I don't have to log into one interface for the firewall, another one for the access points, and another one for the switches. These firewalls have access point controller functionality built right into the system, so I don't even have to purchase additional devices to manage them.
JC
Nov 10, 2020
There are great templates, so you don't have to customize them if you don't want to. You do have the option to custom create some folders and some reports, however, with what is there, you don't really need to go through extra effort, as they already give you a lot of predefined views of reports and so forth.
DO
May 2, 2022
FortiGate's web and URL filtering are unlike any other firewall I've used. The functionality of URL filtering in those solutions is problematic because everything is encrypted, and firewalls can't break that encryption protocol. Fortinet has an SSL proxy, so the encryption is done before the packet ever leaves the FortiGate. The URL filter is definitely one of the most helpful features.
Jose Gisbert - PeerSpot reviewer
Nov 17, 2023
The flexibility and ease of configuration are the most valuable features.
 

Fortinet FortiGate Cons review quotes

EhabAli - PeerSpot reviewer
Apr 20, 2023
For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial.
Irshad Ali - PeerSpot reviewer
Jun 5, 2023
Tunnel flapping was one of the major things I had seen wherein your internet link remains but your VPN tunnel is down. However, since I got a fix from the TAC team, I have not noticed it, but the customer complained a few times that they couldn't access the internet because of this problem.
JJ
Nov 16, 2023
Fortinet needs to overhaul its documentation.
Learn what your peers think about Fortinet FortiGate. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,325 professionals have used our research since 2012.
Javed Hashmi - PeerSpot reviewer
May 24, 2023
From a reporting perspective, there's room for improvement. They're providing FortiAnalyzer through which one can get some enhancements, but the visibility and reporting still need slight improvement.
SM
Dec 2, 2020
The biggest "gotcha" is that if the client purchases what they call the UTM shared bundle, which has unified threat management on both, it's not as easy to manage if you have more than one firewall.
Reviewer:734513 - PeerSpot reviewer
Jun 20, 2023
I would suggest that Fortinet add sandboxing to their solution.
ES
Dec 23, 2020
FortiLink is the interface on the firewall that allows you to extend switch management across all of your switches in the network. The problem with it is that you can't use multiple interfaces unless you set them up in a lag. Only then you can run them. So, it forces you to use a core type of switch to propagate that management out to the rest of the switches, and then it is running the case at 200. It leaves you with 18 ports on the firewall because it is also a layer-three router that could also be used as a switch, but as soon as you do that, you can't really use them. They could do a little bit more clean up in the way the stacking interface works. Some use cases and the documentation on the FortiLink checking interface are a little outdated. I can find stuff on version 5 or more, but it is hard to find information on some of the newer firmware. The biggest thing I would like to see is some improvement in the switch management feature. I would like to be able to relegate some of the ports, which are on the firewall itself, to act as a switch to take advantage of those ports. Some of these firewalls have clarity ports on them. If I can use those, it would mean that I need to buy two less switches, which saves time. I get why they don't, but I would still like to see it because it would save a little bit of space in the server rack.
JC
Nov 10, 2020
There are SD-WAN network monitoring, SD-WAN features, Industrial Databases, Internet of Things, Detection, etc., however, we do have not licenses for those features. We thought that if you bought a product, you should have all of the features it offers. Why should you need to make so many extra purchases to enable features? They should have one price for the entire offering.
DO
May 2, 2022
My only complaint about FortiGate is a lack of QinQ VLAN tunneling. I haven't found this feature in any Fortinet product. You can do this on all Cisco routers, including the smaller models. However, QinQ isn't available on the biggest, most expensive Fortinet units. They still don't have that. I think now we're on software version 6.0, and they still haven't found a solution for QinQ. It isn't a dealbreaker, but that's my main complaint.
Jose Gisbert - PeerSpot reviewer
Nov 17, 2023
The inability to scale the FortiAnalyzer to match our growth necessitates the purchase of new hardware.