Fortinet FortiGate Reviews

The tool is a nice product and easy to handle. The software's user interface is also good. You can easily implement remote access in the solution. 

I would like to see improvements in the product's application rules. 

I have been working with the tool since 2015. 

The tool is stable. 

The tool is scalable. 

I did not contact the tool's technical support team because it is very strong and stable. 

The tool is easy to deploy. 

I would rate the product an eight out of ten. 

FortiGate covers multiple schemes. I am using the firewall for basic protection. The work console and access console are powerful tools.

I like Fortinet's cloud management. It allows me to manage all my devices in different branches for three cloud accounts. Even though I use on-prem devices, I can manage everything on the cloud.

I would like Fortinet to add more automation to FortiGate.

We've been using FortiGate for six years.

FortiGate is a highly stable system.

FortiGate covers everything we need. Our company has looked into changing our firewall, but I recommended this solution because it meets all our requirements. Currently, we have between 150 to 200 users covered by the platform.

Fortinet technical support is nice.

Setting up FortiGate isn't complicated. I handled the installation myself, but we have two technicians responsible for maintenance. 

We have a yearly subscription. 

I rate FortiGate eight out of 10. I'm from Egypt, and FortiGate has a vast share of the security market in this country. Fortinet isn't the leader in routing or switching, but they have a nice share in security.

Our use case for Fortinet FortiGate is that it's a firewall for managing our security.

What I found most valuable in Fortinet FortiGate is its easy integration.

It's also able to individually manage users.

I also like the VPN aspect of this solution.

It's a product that's easy to work with, especially when you work from home, e.g. you're able to integrate it easily with the users.

Bandwidth usage in reporting could be improved. There's an aspect in reporting that I'm trying, but what I noticed is if you logged into the VPN, there's an effect on the reporting in terms of bandwidth, that needs improvement.

We've dealt with Fortinet FortiGate for the last four years.

We didn't have any issues with the stability of Fortinet FortiGate.

We find Fortinet FortiGate scalable, because currently, we have 150 users of it, and it could handle up to 1,000 users. It's good for growth.

Technical support for this solution is really good.

The first time we were using it, we called support and reported an issue, and saw that support was really good. There's nothing I can complain about regarding technical support for Fortinet FortiGate.

The setup for Fortinet FortiGate was easy, because we had it done by another company. It was a construction company that we had this set up for, but I can't remember their name.

Another company implemented this solution for us, and they also took us through the training and it was okay.

If you compare Fortinet FortiGate with Sophos and other firewall products available in the market, this solution is affordable. If you really want to use Fortinet FortiGate, you'll find that it's affordable.

Fortinet FortiGate works well for me. I have not encountered any issues that required me to recommend an action or request if this solution could be improved. It suited the needs of the organization I'm using it in, so I didn't really find an area that needs to be improved, because this solution works very well for us.

My advice to others looking into implementing Fortinet FortiGate is that they need to do their research. They need to find out exactly why they need to use this product and for what purposes, because there are so many options for users. They really need to know what they want for their organization before they implement Fortinet FortiGate. They also need to think about the type of files they require, how many users will use this product, and what they intend to do with it.

If I could give Fortinet FortiGate a score of 11 out of 10, I would. It's very good. It's a ten out of ten for me. It's a really good solution.

The UTM (application control) features have been very important, because they have solved many issues that other firewall providers have not developed as Fortinet has.

A clear example of this feature advantages is blocking and allowing the Google suite. For example, without UTM, we would not have been able to execute some customer requirements like this one:

A customer asked us that some host on their LAN is going to be assigned to be a POS workstation. They needed that workstation to have permissions to some applications and some URLs, and they needed to block users from opening sites like YouTube, Google+, and Google Drive, but they needed to get in to some POS URLs hosted in the Google cloud. We were working with rules allowing some specified URLs, but it didn’t work because the subnetting IP address the customer needed to be allowed, sometimes matched the YouTube service. Google support engineers told us they rotate their IP addressing subnets to be more secure and they do not always attach an IP address to a domain name. So, sometimes the customer’s workstations were able to open YouTube sites too.

The way we could block YouTube and allow the customer POS URLs sites, was by configuring an application control sensor, where we were able to block some categories like this:

Another requirement was to allow some specified applications, so we configured the next sensor structure:

Another customer reported to us they had issues working with Gmail attachment files; they could not do it. Executing some packet captures and with the Fortinet TAC help, we found they were using the latest Chrome versions that use the QUIC Google protocol, which is not supported by Fortinet because it is not a valid protocol. We proceeded to block the QUIC protocol using an application control sensor.

After this blocking action, the customer was able to work without any issue.

It can block applications in level 7.

Even though other companies have latest-generation firewalls, FortiGate’s database is bigger.

They could improve performance with all the UTM features working.

Sometimes, we have seen that when you enable the antivirus sensor, customers report slow web browsing. We know this is normal, but we would like to know if it is possible to make feel the customer their web browsing is fast with not as much delay. The antivirus sensor analyzes all the protocols and packets we specified, and this is an important performance affectation. In my personal point of view, I don’t think it is a serious issue, but we receive many reports from users who browse the web with antivirus sensors applied to their firewall policies.

I have been using it for seven years.

It is working in route mode, with all UTM licences active; it has FSSO configured to give permission to the users. It is configured to provide VPN SSL service.

I have encountered stability issues only when we enable all the UTM features.

I have not encountered any scalability issues.

Technical support is 9/10.

We have been using FortiGate solutions for eight years. We have been upgrading when solutions in the family become unsupported.

The initial setup is easy; no issues with doing it.

My company did not evaluate other options. They decided to purchase FortiGate directly.

Work a lot with all of the UTM features because they can be very helpful right now with configuring firewall policies. The policies became very whole.

The solution is mostly used for the connection with VPN clients. We use the solution for network security and network segmentation.

It's a flexible solution. The security that it's providing is a valuable aspect of the product.

FortiGate integrates well with other equipment such as FortiSwitch, FortiIB, and more, and delivers one pane of glass for the management of those devices. 

It's an easy solution to set up.

Technical support has been good.

The configuration option availability is not 100% from the website of the FortiGate web management site. When we log on to the web interface on FortiGate, we do not have everything under this web solution. If we need some specific configuration or need to do some specific configuration, we need to do additional things on the CLI. 

The stability could be a bit better.

I've used the solution for at least the last 12 months.

In terms of stability, there are some areas in which they need to improve. There are different versions and we understand from past implementations which will work best according to our client's needs. The wrong one may not be as stable as they would like. 

Some clients may increase usage in the future. FortiGate is fast becoming a very popular solution and its use will likely grow in general. 

In general, technical support is helpful. We are quite happy with the level of support on offer.

The solution's initial setup is pretty simple and straightforward. It's not overly complex or difficult. 

The length of time it takes to deploy really depends on the size of the project. 

While we do assist the client with the implementation, they tend to handle the maintenance on their end. 

Typically we, as integrators, will assist the client with the initial setup. 

The overall costs are pretty typical. It's not overly cheap or overly expensive. 

I work as an integrator and maybe 60% of my work is around FortiGate. My company is a Fortinet partner and integrator.

If companies are thinking about the security of their network, they should consider FortiGate as a gate to the internet. I would highly recommend it to others. 

For small or mid-size businesses, I'd rate the solution an eight out of ten.

We're a Fortinet partner and reseller. We work with FortiGate models 40 through 600, and our customers have hybrid and on-prem deployments. The cloud providers are Microsoft Azure and Wasabi.

Its use cases are related to increasing the security posture, SD-WAN implementation, simplified management and licensing, and cost savings.

It increases security posture and is helpful for firewall reporting, intrusion protection, web filtering, and SD-WAN implementation.

The hardware is reliable. There are no surprises in terms of performance or add-on pricing.

The cloud management and automation capability could be improved.

I have been working with this solution for six years.

Its stability is excellent.

Its scalability is very good. There are 100 to 3,000 users, and they are knowledge workers with different roles, such as engineers, lawyers, accountants, etc.

Their technical support is very good. I would rate them a four out of five.

Most of the customers replaced Cisco.

It is straightforward for someone with Fortinet experience. If you don't know anything about Fortinet, you can take it out of the box and plug it in.

Its deployment is usually on a location-by-location basis. Each location often takes one day for the implementation of a new data service. One person is usually enough for its deployment and maintenance.

I don't know the numbers, but it typically results in a 20% to 30% reduction in data communications costs.

Fortinet costs are 25% lower than the high-cost provider. There is an equipment cost and a recurring monthly cost for licenses and technical support.

Most of the customers look at Cisco, Cisco Meraki, Palo Alto, and Fortinet. They go with Fortinet because of the best performance per dollar spent and ease of licensing and management.

I would advise sizing the equipment appropriately to support future growth. You should look for a four to six-year life of a server. You should compare vendors for price versus performance, ease of management, ease of use, and completeness of features.

I would rate it a nine out of 10. We've had a good experience with it. There were no surprises.

We mostly use the solution for our internet-facing firewall.

The next-generation firewall features are the solution's most valuable aspect.

The implementation and deployment are pretty simple.

The pricing is very good.

We've found the solution to be pretty stable.

The solution isn't really lacking features per se.

The product does need better support in the cloud environment. It's not exactly cloud-native right now.

The solution needs to do more on the deployment in the multi-cloud. For example, clients have GCP and AWS. How do we deploy FortiGate in a cloud environment? Right now, there's no solution for that.

We're worried that the scalability isn't as good as it could be.

We've been using the solution for about two years or so. It hasn't been an extremely long time, however, it's been a while.

Stability, in our experience, is quite good. It doesn't run a lot of unexpected downtimes or anything of that nature. We haven't encountered any serious problems. There have been a few minor items here and there, however, by and large, it's quite good.

The solution isn't exactly scalable, especially when it comes to the public cloud environment. We'll need to scale up, so we will have to figure out how to do it effectively.

We primarily work with medium and large enterprises.

We find the solution to be pretty straightforward to set up and deploy. We didn't have any difficulties with implementation. 

The deployment takes less than a week. It's a pretty quick process.

We provide maintenance services for our clients.

We actually provide deployment services to our customers that need it. We can handle this aspect for customers.

The solution is on the cheaper side. There are other products that are competitors that are much more expensive.

That said, the pricing isn't just based on licensing costs. There are add-on costs as well a company will need to consider.

We are more of a solution integrator. We are not a straight reseller. We are partners, however. We recommend people to use products. That said, we don't actually resell the actual boxes.

We use different versions and deployments of the solution. It really is dependant on the client and their needs.

We mostly work with Fortinet. It's the main solution we recommend and use.

I'd recommend the solution to other organizations. We've had a pretty good experience.

I'd rate the solution eight out of ten.

Our primary use case of this solution is for intrusion detection and prevention.

We use a southern institution that's audited for IT security and the reporting that automatically comes off the unit makes it much easier to meet compliance standards and makes it easier as far as the amount of time that has to be spent to compile that information. If you get your reporting set up correctly when you initially set it up, you just select the one you want and hit print. The auditing trail on it is the best features.

There's an all-inclusive appliance where all of the logs, registers, and everything is customizable as far as the way reporting comes back.

They should make the rule sets more understandable for the end user. When you're trying to explain to somebody how a computer network is secured, sometimes it's difficult for an end user or customer to understand. If there was a way to make the terminology more accessible to the end user, the set up could be easier. They should translate the technical jargon to an easily relatable and understandable conversation for the end user, the customer. Particularly in an environment where the IT structure is audited regularly, there's always pressure from the auditor to up the standards and up the security and you get your USCERT's that come out and there's a warning about this and the customer will want to lock out so much so when you apply it they run into issue where they can't search the internet or print to their remote office. Of course they can't print to their remote office, they just locked it up. They should make the language more understandable for the customer. If there's a product out there that made the jargon understandable to John Q. Public, I would buy that.

There's a link off of the reports that you can click and make suggestions, which is pretty awesome because it seems like somebody is reading those and doing something about it. If I could save reports on a format where I could save space and not have to reprint them and move information down from letterheads and that sort of stuff that would be great. Formatting reports is the only thing I would change about that product right now.

It's solid. It's a rock solid solution.

Scalability is excellent. Across three locations we have 120 users.

Their technical support is excellent.

We did use a different solution. We switched primarily because of the audit trails because the user interface, what you saw on the screen and the options you were presented with were difficult to configure and we ended up spending a lot of time trying to get the information that we wanted. 

For the product that it is, the initial setup was straight forward but not so simple. The Dell EMC product is simple, this is more complicated than that but it wasn't incredibly difficult. We rolled that out on a test network initially and to try to get our rule sets correct so that we didn't run into issues and did testing for about a week. The initial set up time took around an hour and a half, and it was on a virtual network with a bunch of virtual machines. We just tested it for about a week just to make sure that we weren't going to run into a lot of issues switching from the old IDS to the new one.

I installed it. I did the product research and was involved in the purchase decision but I did not purchase the product, I was not a vendor of the product, and I did not make any money on it.

As far as the licensing goes for the small product that we have, the pricing was pretty competitive. It wasn't as simple and as cheap as a SonicWall but for the service we would get it was a good price.

There's a setup guide on the Fortigate website that is a video that is far better than the written manual that is provided. If you've set up other products before, that may get you through, but the training on their website was far more useful to me than the user manual.

I would rate this solution a nine out of ten.