Fortinet FortiGate Reviews

I have worked on multiple products including Fortinet FortiGate VM, Fortinet FortiGate firewalls of different models, FortiSwitch, FortiAP, FortiADC, FortiWeb, FortiAuthenticator, and some other products as well.

I have been working on Fortinet FortiGate and Fortinet FortiGate VM for around five or six years. I have deployed it as a perimeter firewall, as a data center firewall, and as a campus firewall in many banking sectors, commercial sectors, and oil and gas sectors. Most of my clients have deployed Fortinet FortiGate firewall on-premises to protect their services.

The ease of use and the user-friendly interface are the beauty of this firewall. The UI itself and the documentation are completely available on the internet. The UI is very easy, and you can easily understand the implementation. The product itself has very strong deep features and security features including IPS and malware protection to prevent and save against cyber attacks.

I have very good hands-on experience and very good deployment experience with Fortinet FortiGate SD-WAN. Fortinet FortiGate SD-WAN allows you to use multiple internets and multiple interfaces separately to load balance your internet and to load balance your services between multiple service providers. This is a very good feature in this firewall that you cannot get as a free default feature in other brands.

The network performance after enabling SD-WAN is very smooth and very efficient. I recently deployed this in forty commercial sector sites with stores that previously had MPLS circuits. With the MPLS circuit, they had a very high cost for private connectivity between sites and branches. After deploying SD-WAN, the operational cost was cut down around fifty to sixty percent because of this implementation. All MPLS costing was wiped out from their IT budget and is now dependent on internet circuits, which are normally standard internet connections.

SASE is a very good feature. For example, I recently deployed this for a customer with users in remote locations. The issue was that they wanted users to remain connected and keep monitoring systems after office hours with no malware installed on the laptop while staying protected. The use case of SASE involved implementing the POP itself on the cloud. The users, whether remotely at home or anywhere in the world, are connected to and keep connected with POP. They access the internet securely with secure company policies as defined by IT. They are not allowed to go directly to the internet without IT policies as defined on SASE POP. There is very good integration from SASE to Fortinet FortiGate firewall to access private access.

For improving sectors, they need to focus on technical support and work on the technical part. Although it is good, they need to onboard these things and improve the technical part of the support factor. Although it is good, it needs much more improvement to get more business and a bigger footprint in the market. Second, AI in the market and malware detection exist. Fortinet FortiGate already has these features in the Fortinet FortiGate sandbox features with built-in AI features. I prefer that they work on more features that they can provide in Fortinet FortiGate firewall.

I would rate this product ten out of ten. For example, when comparing it with Palo Alto and Fortinet FortiGate, I can provide a very good point. In Palo Alto, some features must be purchased separately. In Fortinet FortiGate, it comes with the Wi-Fi controller built-in. Features that you need to buy a separate license for in Palo Alto do not require additional licenses in Fortinet FortiGate as they are built as complimentary features in this firewall.

The network performance after enabling SD-WAN is very smooth and very efficient.

Scalability is the same, and I would rate it ten out of ten.

Technical support can be marked as ten out of eight. There is some lag, but you can find documentation and all things over the internet. They can provide support, and I would rate it eight point five to nine.

My technical team are all technically expert in deployment of Fortinet FortiGate firewall.

My team has around five or six people who are all technically sound in Fortinet FortiGate firewalls.

If we are talking about Check Point, Cisco, and Palo Alto, these are the top-tier firewalls and top-tier vendors for providing firewalls. Following the Gartner report, Palo Alto and Fortinet are at the top in the Gartner report. Because of that, Fortinet FortiGate firewall itself does not require management centers as required in Cisco and Check Point. Fortinet FortiGate firewall cannot be managed by a management center. In Fortinet FortiGate case, there is no requirement for these prerequisites to configure or implement Fortinet FortiGate firewall without a management center. We can deploy Fortinet FortiGate firewall without any management center. It is a very web-based firewall and you can access the firewall GUI from the website, and we can easily deploy it without any management center. In Check Point or Cisco cases, a management center is required. In Cisco case, the Firepower Management Center is required to get the advanced features. But in Fortinet case, it does not require these things. This is a very beauty of this firewall.

I suggest buying Fortinet instead of buying Palo Alto, Cisco, or Check Point. I will definitely recommend Fortinet.

Fortinet FortiGate has different models of firewalls which are high capacity and high variant firewalls that you can deploy as data center firewalls to protect your data centers, your server farms, and your services which are hosted inside a data center.

Fortinet FortiGate has embedded services, these FortiGuard services which have machine learning-based and artificial intelligence-based malware analysis. These services analyze malwares and next-generation malwares that are not easily identified by signature-based detection. They have the capability to analyze malware by AI-based methods and can identify zero-day attacks. Before they exploit as a zero-day, they prevent this signature and stop this attack to prevent that this is an attack. Those services are hosted in my data centers, web applications, storage, and SaaS. All are protected by those cyber attacks.

Regarding pricing, we cannot compare it right now because pricing matters based on business size and the business deal. We cannot say whether it is high or low. Sometimes we can easily compete with any brand, and in some cases we cannot compete. For example, if we have a big deal, we can get good discounts from Fortinet team. In some cases, the deal is not big, so we cannot get enough good discount. Deployment from FortiSASE to your Fortinet FortiGate firewall over SD-WAN is very easy. Fortinet gives you multiple connections from SASE POP to your Fortinet FortiGate firewall. They have fully redundant connections on SASE POP if you have the same redundant connections with ISP connection on your Fortinet FortiGate firewalls. They have the secure SPX tunnel from FortiSASE to Fortinet FortiGate firewall. You can easily access from Fortinet FortiGate firewall to SASE applications and SASE users who are connected on SASE POP can access local services from SASE POP to Fortinet FortiGate and access the local services.

My overall rating for this product is nine out of ten.

My main use case for Fortinet FortiGate is for VPN and its appliances and for securing all of our remote locations.

A specific example of how I use Fortinet FortiGate to secure my remote locations is that we set rules on each of our locations about what traffic can and cannot go in, so we can allow certain connections for our partners such as Frontiers.

The best features Fortinet FortiGate offers are the built-in security functions, which I think are very nice.

We find the built-in security functions most valuable in Fortinet FortiGate, particularly web filtering, as it is all hands-on. Web filtering is our standout feature, and I don't want to add anything else about the features.

Fortinet FortiGate has positively impacted my organization by centralizing the way to access all of our network firewalls.

I wish Fortinet FortiGate's UI updates would be done in a more simplified way to improve it.

I choose nine for my rating because I think there's always room for improvement, and I think some of the things in the UI need to be adjusted so they're a little bit more simplified and not overcomplicated.

I have been using Fortinet FortiGate for at least three and a half, maybe four years now.

In my experience, Fortinet FortiGate is very stable, and it has been quite consistent during times of downtime.

Fortinet FortiGate's scalability has been keeping up well with my organization's growth or changes, as each location gets larger and we feel the need to put a Fortinet FortiGate in each one.

We have had to reach out multiple times to Fortinet engineers for customer support, and it has been great every time; they always seem to get to the bottom of it within one to two calls.

We did use a different solution before Fortinet FortiGate, but it has been so long that I cannot remember who it was; it may have been Palo Alto.

I believe we have seen a return on investment in terms of fewer employees needed, but otherwise, it is outside of my scope.

I was not directly involved in the pricing, setup cost, and licensing for Fortinet FortiGate.

We did consider other options before choosing Fortinet FortiGate, but it was a straightforward decision, and I am not quite sure what the other options were.

I do not have anything that is unique to us about how we use Fortinet FortiGate in our setup.

We do not utilize Fortinet FortiGate's data center solution, and we do not feel the need to consider AI and ML enhanced FortiGuard services within Fortinet FortiGate.

I would advise others looking into using Fortinet FortiGate to make sure that they get their configurations right from the start, as that means they have less of a need to get support involved. I would rate this product a nine out of ten.

I'm using it for web filter and then using it for VPN connection user to site, and I'm using it to make a virtual ID to link a real ID from the server to provider to my servers to publish servers.

I work with Fortinet FortiGate SD WAN. I configure the SD WAN to use two Internet service providers from two different service provider links. When one of them is down, the SD WAN goes down. I have to go to the SD WAN and remove this link from the SD WAN member. I confirmed that with the local provider and it's working. Sometimes, when a member of the SD WAN link is down, the SD WAN is down, and this is not the solution. I made the SD WAN for redundancy, however, when a member of the SD WAN link is down or I finish the quote of the Internet, all the SD WAN stops working and users experience problems.

With the web filter, when I go to post some websites under certain categories and open these categories, I experience some problems. 

Additionally, I face difficulties integrating Fortinet FortiGate with Active Directory. When I set preferences to use Active Directory users, it sometimes works and sometimes does not work. When I integrate Fortinet FortiGate with Active Directory and use this integration to make a web filter policy, the functionality is inconsistent. I have tried restarting the Active Directory domain controller and the firewall, but the problem persists. As a workaround, I use the MAC address of the user to define the settings.

I have been using the solution for about five years.

I haven't configured or experienced any stability issues.

It's safe and secures my network and applications in some sites. However, I have significant problems when implementing web filters, which is a very problematic issue for me.

I often ask for help from the local provider. I haven't found the required efficient help. Currently, I have problems connecting to some banking systems and departmental Texas portals. I have asked for help but haven't found assistance through the site or through the local provider. When trying to open a ticket, they reply with solutions that are not applicable to my situation.

Positive

I didn't have a firewall previously. That said, I did have a VPN gateway.

I haven't configured or used the initial setup.

I didn't choose or have knowledge about the implementation team.

The return on investment was good.

The setup cost was good. The Egyptian pound is declining, and upgrading Fortinet FortiGate yearly costs about $2000 USD, which equals one hundred Egyptian pounds. I maintain a business relationship with the vendor and receive support from them.

I considered switching to Sophos. Due to my previous experience with Fortinet FortiGate, I preferred to stay with Fortinet FortiGate.

The solution requires careful attention, and when problems occur, they typically don't repeat once resolved. 

I miss having local provider support here in Egypt. International support is difficult to obtain. Local support is preferable yet has become very expensive due to currency devaluation in Egypt. 

My main use case for Fortinet FortiGate is content filtering, and content filtering is the primary function. I am also doing East and West traffic filtering.

I use content filtering and East-West traffic filtering by creating groups based on separate projects in Active Directory, and on the firewall side, I create policies, web application profiles, and category-based profiles tailored to each project's requirements.

We have separate projects, and I isolate those subnets from one subnet to another so that both subnets do not communicate directly and only communicate via Fortinet FortiGate itself, with policies created to manage the East and West traffic.

Some of the best features of Fortinet FortiGate are its ease of use compared to other vendors, and from a troubleshooting point of view, it is also very useful and easy to troubleshoot. It stands out as easy to use and troubleshoot because I do not need to create separate NAT policies; with Fortinet FortiGate, I align my NAT policies and content filtering within a single policy, making management straightforward, and the logs are clearly visible, making troubleshooting much easier.

Compared to other firewalls, Fortinet FortiGate offers easily manageable features such as vulnerability profiles and threat profiles, which I believe is one of its main advantages.

Fortinet FortiGate has positively impacted my organization with its cost-effectiveness because it provides features that are very similar to others, but at a much lower cost, and everything my organization needs is available with Fortinet FortiGate.

Being cost-effective has allowed us to save a lot of money, which is particularly useful since I was exploring firewalls to secure my internal labs, and finding Fortinet FortiGate was a revelation as I could achieve my requirements without the additional costs of other firewalls.

I wish Fortinet would explore SASE solutions more, as it has become very popular and people are increasingly using it.

I have been using Fortinet FortiGate for around the last seven years.

Fortinet FortiGate is stable, and I have never experienced issues similar to those from the ASA.

Fortinet FortiGate's scalability is very good, and I believe there are no issues.

I have faced challenges related to support, as I have encountered issues where support engineers are not aligned within the time frame, and sometimes they request multiple logs unnecessarily, causing delays and leaving a bad impression on my end users.

I have had a bad experience with customer support many times.

I previously used a Cisco ASA but switched due to certain performance-related issues.

My experience with pricing, setup cost, and licensing went smoothly, with no issues related to licensing or installation, and the overall cost is definitely cheaper than other prominent firewalls along with phenomenal features.

I do not have a business relationship with the vendor other than being a customer, but I do have partners to buy network equipment such as firewalls and switches.

I cannot share exact numbers for ROI, but I saved a lot of money, which made management very happy, especially knowing that I achieved my functional goals with Fortinet FortiGate that might have incurred more costs with other firewalls.

Fortinet FortiGate has positively impacted my organization with its cost-effectiveness because it provides features that are very similar to others, but at a much lower cost, and everything my organization needs is available with Fortinet FortiGate.

My experience with pricing, setup cost, and licensing went smoothly, with no issues related to licensing or installation, and the overall cost is definitely cheaper than other prominent firewalls along with phenomenal features.

I evaluated options including Palo Alto, Cisco, and other products before choosing Fortinet FortiGate.

I would rate Fortinet FortiGate a nine overall, as I only deduct one point for the support issues I have experienced.

I selected nine because, feature-wise, the product is excellent and cost-effective compared to others, but I deducted a point due to the disappointing support from Fortinet.

I advise others looking into using Fortinet FortiGate to check their requirements first, as it provides all kinds of services other firewalls do and is very cost-effective.

People looking for a firewall should definitely evaluate Fortinet FortiGate, as it is very cost-effective and offers all the features they are likely looking for. I gave this review a rating of nine out of ten.

Our use case for Fortinet FortiGate is network administration and network security; this is the use for Fortinet FortiGate.

The best features of Fortinet FortiGate are security, configuration facility, and easy configuration. Additionally, we get very good support from the manufacturer. The major impact of Fortinet FortiGate for clients is providing a redundant path from the service locations or servers location to the users that are in another location; this is the best impact.

One area for improvement for Fortinet FortiGate could be the price, as my clients here are small companies, and they might not have the resources or money to always buy a Fortinet FortiGate solution or FortiGate products.

I have been with that platform for about two to three years.

In general, Fortinet FortiGate's stability is very good, but in some cases, there are unusual situations. For example, we have one client with high availability with two Fortinet FortiGates, where one of them has high processor and memory usage while the other one is low, and they work in a passive-active scheme for availability. The strange part is that one Fortinet FortiGate works perfectly, and the other one has high processor and memory consumption.

Most clients are in one location, but two or three clients have SD-WAN characteristics in their implementations.

I would rate their support a nine out of ten. The support is very good, but it's not always easy to find a Spanish speaker, as some clients don't know how to speak English and need support in Spanish.

I integrate SD-WAN features for some clients; specifically, I have three or four clients with SD-WAN integrations, while most of my clients are with one location. I find it easy integrating these capabilities.

Security is very good with Fortinet for my clients; this is one of the best reasons to make a decision to buy a Fortinet solution.

Fortinet FortiGate saves a lot of time in expert hours from an expert engineer because the administration of the Fortinet FortiGate solution is easy, which may lead to fewer hours of an engineer spent on Fortinet FortiGate. It could save approximately 40 hours a month.

I would recommend this solution to others; it's the best solution in the market. The main advice I give to people who consider using Fortinet FortiGate is for security and administration, as we can get complete visibility of the network.

On a scale of 1-10, I rate this solution a 10.

For now, I have one running on a corporate network. We make use of the modules that are there such as application filtering, web filtering, IPsec VPN, Network segmentation, advanced threat protection and others.

We extensively use FortiGate's security features to proactively detect and mitigate threat.

Use Web Filtering to control websites accessible to users and block inappropriate or unproductive sites.

Use Application Control feature to limit the use of risky or bandwidth-intensive applications.

We use the network segmentation feature for isolating and limiting potential threats.

Use SD-WAN to optimize the use of our internet links.

IPS functionality detects and blocks malicious network activity.

The core benefit is that a lot is packed into it. There are many features packed and significant flexibility from Fortinet FortiGate in being able to do numerous things. Even features such as SD-WAN provide granularity that I'm happy about. Generally, every aspect of it being a next-generation firewall provides good value.

In terms of pricing, Fortinet needs to do more to compete effectively. We gained a lot of traction from Fortinet in Nigeria, however, the battle is currently intensifying. Companies such as Palo Alto are making a strong impact. Fortinet was able to gain more attraction than Cisco in Nigeria for the past ten years, however, going forward, I'm not sure that trajectory will be maintained if Fortinet doesn't strategize regarding pricing and partnerships.

Regarding maintaining skilled personnel for Fortinet solutions, if they can address the pricing for certification exams, that would help. Sometimes it's a barrier for people here, especially for companies to train people to get certified. We train people in many other solutions we deploy, however, for Fortinet, though we intend to do that, it would be beneficial if there were more incentives for people pursuing certifications.

I have been using my current solution for almost two and a half years. However, I have been using Fortinet FortiGate for up to seven years now, working with Fortinet.

I am satisfied with the performance.

It is sufficiently scalable for my needs.

Their technical support is very good. I'm happy with the technical support. When tickets are logged, the tracking system is excellent, and the response is fast. During the few times I raised tickets, I was satisfied with the support.

Positive

I have experience with Cisco and a little bit of Sophos. I found Fortinet FortiGate better than Cisco in terms of functionality being packed in one device. 

The scalability for Fortinet FortiGate was unparalleled at that time. I saw Fortinet as a company that had strong strategic plans in terms of maintaining market dominance and having long-term plans to survive in the industry. This industry is very dynamic and Fortinet has been doing the right things to compete effectively.

The initial setup is simple. It's far better than my experience with Cisco.

In-house

The return on investment is satisfactory.

The license doesn't currently cover Secure Access Service Edge. Even though our currency in this part of the world is becoming increasingly weak, the pricing is now expensive for us. I have tried pushing Fortinet FortiGate to some customers, however, sometimes the transactions don't conclude due to pricing issues. Fortinet FortiGate may need to give special consideration for countries where currency has depreciated significantly, such as Nigeria. This will help in the competition.

I have previously worked with Cisco and Sophos and might have considered those before choosing Fortinet.

I'm always an advocate of Fortinet FortiGate. It's natural that it's the first OEM I recommend when it comes to networking and network security infrastructure solutions. 

Fortinet is my number one, especially regarding the Fortinet FortiGate. For virtual appliances and cloud security, Fortinet is still performing well. For endpoint security, other solutions appear more popular, so perhaps Fortinet should focus more on the endpoint security aspect. 

I rate Fortinet FortiGate nine out of ten.

We are a systems integrator in Paraguay, and my task is usually to configure Fortinet FortiGate as a perimeter firewall and provide all the security features to our clients.

Some of the best features of Fortinet FortiGate include the next-generation firewall features. Before Fortinet FortiGate, we usually used Juniper, which is very good for routing and switching, but in security, Fortinet FortiGate is far better than Juniper, especially with deep inspection and data leak prevention. We have nearly every financial institution in Paraguay as a client, putting special focus on preventing leaks of credit card numbers.

The field I’m interested in is the courses we provide to our clients. The PDFs available in the learning system are fantastic. The features they implement are exactly what everyone is looking for. To me, Fortinet is very good and useful.

From my perspective, every day is a new opportunity for improvement. I believe that the continual improvement is Fortinet’s best feature. I’m very happy with their ability to consistently improve.

I've been using this solution for about ten years.

Fortinet FortiGate is stable. Based on my experience, whenever we faced an attack, many other brands, including Juniper, often had vulnerabilities. However, Fortinet consistently delivered the best performance and effectively stopped any threats.

Since we are a small country, our clients usually have minimal security requirements due to relatively slow network speeds. The entry-level versions of Fortinet FortiGate are good enough for our top clients.

We work with both enterprise and SMB clients. We are also an Internet provider. We provide the connectivity and the equipment to bring security to the client. We have all kinds of clients.

I would rate Fortinet's customer service or technical support as an eight out of ten. We have many skilled technicians for Fortinet FortiGate configurations. We only require support for a very advanced feature. People representing Fortinet here in Paraguay are very friendly and work well with us.

The initial setup of Fortinet FortiGate was easy. The setup is easy because most companies don't have complex requirements and just need a basic firewall to shield against external threats and filter internal connections, making the basic configuration good enough until they ask for advanced features.

I cannot say definitively about the return on investment with Fortinet FortiGate because I have always been in the technical field, but most of our clients are very happy since threats were stopped, generating confidence in the Fortinet brand among our clients.

I do not consider it an expensive solution. It's not cheap, but it's not expensive, especially compared to Cisco, which is the de facto standard here in Paraguay. Cisco suppliers often set high prices, allowing us to enter the security field easily, thanks to our pricing.

Another team handled the SD-WAN capabilities with Fortinet FortiGate. I know that FortiGate can do that. From my knowledge, it is for the balance between two ISPs, but I don't know about performance tests.

I would rate Fortinet FortiGate an eight out of ten.

I am using Fortinet FortiGate as a firewall and for IDS. We also use FortiSIEM.

The firewall is pretty good if you understand how to use it. It performs at a very high level, and we are loving it. The SASE and ZTNA features are quite good as well. 

It does extensive work for our organization. It provided additional policies we were not aware of and gave us an overview and knowledge about those policies. I have had a good experience. It's not difficult to manage. The software is good.

It is particularly effective when it comes to integration, as it can be integrated with many other vendors.

Since everyone is talking about AI, they should consider having AI embedded or working with developers in terms of AI to improve Fortinet FortiGate. 

The issue lies with features available in GUI versus CLI during configuration. When using GUI, I want to accomplish everything there, but sometimes it requires using CLI to ensure proper configuration.

It has been almost two to three years.

It has its ups and downs but they are minor things. One can work around them with proper knowledge of the system. We never had many incidents with it. I have had a good experience.

The scalability is quite good.

I am very satisfied with their technical support. They are very supportive, though sometimes they can be a bit busy.

I have not used any other solutions. The deciding factors were the price, technology, effectiveness of the solution, and the skill that we had for it.

It was easy to deploy. It took us a week to deploy it.

It is very effective and provides value for money. After a month, we could see from our reporting when the system was up and running that it was very effective.

I would rate Fortinet FortiGate a seven out of ten.