Fortinet FortiGate-VM Reviews

I use Fortinet FortiGate-VM in my company to manage firewall installation and endpoint connectivity.

The most valuable feature of the solution is that it is easy to operate.

If a user makes any changes, it will immediately have an effect on the solution. If a user makes any changes in a product like Palo Alto, there is a need to push those changes to the firewall and apply commit changes, which shows the configuration part, making it a good feature since it sometimes helps, considering how a user may make small errors.

Errors made by a user get applied when using Fortinet FortiGate-VM. In the production environment, if a user makes any changes in a live environment, there is a need for the user to be very alert. The aforementioned area can be considered for improvement in the solution. Palo Alto is good for the production environment.

Capacity-wise, I think the solution's log storage area is something that needs to be increased since, by default, it stores logs for only seven days. The compliance team in our company needs to check the logs, which may be older than ninety days. Though the tool provides a storage hard disk with enough space, in our company, we can't store logs.

I have been using Fortinet FortiGate-VM for more than three years. My company is a customer of the product.

As my company uses an active-passive deployment in our environment, we did not face any stability-related issues with the product. Stability-wise, I rate the solution a ten out of ten.

Around 4000 to 6000 employees in my organization use the solution.

The solution's technical support is good. I rate the technical support a ten out of ten.

Positive

I rate the product's initial setup phase a ten on a scale of one to ten, where one is a difficult setup phase, and ten is an easy setup phase.

The solution can be deployed in an hour or two.

I deployed the solution by myself in my organization.

It is a medium-priced product.

Compared to the other VMs in the market, Fortinet FortiGate-VM is very easy to use.

I rate the overall tool a nine out of ten.

We use Fortinet FortiGate-VM as an edge firewall for Internet traffic control and as the main firewall for cloud environments. Whether they're on AWS, Alibaba Cloud, or another platform, FortiGate-VM serves as the primary firewall.

One notable feature is the SD-WAN, which is a strong component of the FortiGate-VM. The fabric feature is also good, but not all customers use FortiGate's networking components, such as the switches. We enable various protection features on FortiGate, such as IPS and web application security. Most customers utilize these protection features to enhance their security.

Integrating multi-factor authentication with FortiGate-VM can be challenging. While multi-factor authentication is important, not all customers have it enabled. Integration with third-party solutions like ManageEngine or Duo can be complex and sometimes problematic during testing. However, high availability works smoothly with FortiGate-VM. We use high availability, and SD-WAN features effectively; overall, the performance is good.

I have been using Fortinet FortiGate-VM as a reseller for eight years.

The stability is good.

I rate the solution’s stability a nine out of ten.

We implemented it for more than one thousand users.

I rate the solution’s scalability a ten out of ten.

Support from the engineering team has some weaknesses. Sometimes, they focus on closing tickets quickly or asking for logs without thoroughly addressing the issue. However, the support team includes knowledgeable and responsive individuals, especially those from non-Arabic backgrounds. 

Positive

Setting up FortiGate-VM is straightforward, but there is a step that can be a bit tricky. After installing the VM, you need to log into the CLI for the first time to set a static IP address if you have multiple interfaces. By default, interfaces will receive IP addresses via DHCP from the cloud service provider. You must disable DHCP on the additional interfaces and set static IPs to ensure proper access and configuration. You may have trouble accessing the firewall if you don't do this.

Issues with certificates and licenses often arise from the distributor, not Fortinet.

The setup process is generally easy. FortiGate is becoming popular in Saudi Arabia due to its user-friendly interface and ease of configuration compared to other vendors like Palo Alto. High availability setup is also simple and not overly complicated.

When comparing Fortinet to other vendors in Saudi Arabia, like Palo Alto, Fortinet stands out positively. In comparison to Sophos, many customers are currently switching to Fortinet. Fortinet's pricing is competitive, making it an attractive option.

To block HTTPS management traffic from the WAN, you must carefully manage the HTTPS settings. If HTTPS is not enabled on the WAN interface, you won't be able to block management traffic effectively. Some customers require HTTPS because of NAT services and use public IPs. Disabling HTTPS can disrupt management access. Better controls for managing the interface from the WAN side would be helpful.

Fortinet FortiGate is easier to configure and manage compared to Palo Alto. Setting up policies, routing, and VPN tunnels on FortiGate is more straightforward and faster. Palo Alto can be complex, requiring multiple steps to create a policy and manage interfaces.

FortiGate also excels in troubleshooting and logging. The logs are easier to read and provide better classification, making it simpler to troubleshoot issues. In contrast, Sophos is less effective for larger-scale operations and doesn’t match Fortinet’s capabilities. 

In cloud environments, we recommend FortiGate-VM because it integrates well with cloud service providers. On-premises, many customers prefer physical FortiGate hardware, particularly with VMware setups. However, FortiGate-VM is more commonly used for service providers like SCC, Alibaba, and AWS.

Overall, I rate the solution a ten out of ten.

We use the solution for our private cloud.

We use Fortinet for everything in our organization. Our organization has Fortinet experts. The virtualized network features work fine. The flexibility is fine. It’s easy to integrate the solution with our network infrastructure.

We face some issues with the IPsec connection during replication. It must be improved.

I have been using the solution for six months.

The stability is fine.

I rate the tool’s scalability an eight out of ten. We have many users in our organization.

The initial setup is complex because we use CLI. The solution is cloud-based. We have moved our on-premise VM to a private VM.

I have used Netgate. I prefer Fortinet FortiGate-VM.

Overall, I rate the product a nine out of ten.

We are using Fortinet FortiGate-VM for network-level security.

There is a cloud and on-premise version of the solution available.

Our company deploys this solution to many companies.

The most valuable features of Fortinet FortiGate-VM are the ease of use, IPS system, application filter, web filtering, and email security. Additionally, there is a migration tool that other vendors do not provide. We only need to upload the configuration file to the tool, and it converts everything, except the passwords, and gives us the new configuration, which we can directly upload on the firewall. This migration process takes a maximum of 15 minutes.

The solution can improve by adding separate interfaces for proxy and flow-based usage.

In the next release, the web application firewall should be integrated into the hardware. There is separate hardware for the web application firewall and for  FortiGate.

I have been using Fortinet FortiGate-VM for approximately seven years.

I rate the stability of Fortinet FortiGate-VM an eight out of ten.

We have approximately 30 users and 30,000 users.

This is a scalable solution.

I rate the scalability of Fortinet FortiGate-VM an eight out of ten.

The support from Fortinet FortiGate-VM exhibits high responsiveness. Whenever I raise a ticket on their portal, they typically respond within 15 to 20 minutes. In urgent cases, we can contact them via a ticket, and an engineer will be promptly assigned to assist.

I rate the support from Fortinet FortiGate-VM an eight out of ten.

Positive

I have used multiple types of firewalls and vendors, such as Cisco Firepower. Palo Alto, and Sophos.

Palo Alto is a great solution but it is expensive. I would choose them over Fortinet FortiGate-VM but they are too expensive. For my use case, Fortinet FortiGate-VM is the best for the environment.

Fortinet FortiGate-VM has discounts for generalized partners.

The initial setup time of Fortinet FortiGate-VM depends on the policies and filters that need to be applied to different users. The time can vary a lot on the environment. Its time ranges from minutes to a month. However, we can do the process remotely and it takes approximately 10 minutes.

We do the implementation of the solution.

The license can be purchased at intervals of one, three, and five years.

The price of the solution is in the middle range compared to the other vendors. However, the vendor is increasing the price gradually.

One person is suitable in a 24-hour period for the maintenance of the solution. A three to five administrator maintenance team would be sufficient to cover all the maintenance shifts per week.

I highly recommend Fortinet FortiGate-VM to others.

I rate Fortinet FortiGate-VM a nine out of ten.

I use FortiGate VM primarily to enhance network security within our environment. It acts as a primary firewall.

FortiGate VM provides valuable network security features that are effective in enhancing our security posture. The ease of deployment and management is commendable. Its VPN capabilities support our remote workforce effectively. Monitoring and cost-effectiveness are also significant areas where it helps. AI integration has not been tested yet.

Interoperability could be improved. The API needs better integration to match accounts and objects more effectively. VPN capabilities present some issues, and configuration and customization could be refined.

I have been using FortiGate VM for four years now.

I rate the stability of the solution at eight out of ten.

I rate the scalability of the solution at nine out of ten.

I rate technical support at eight out of ten. Their support is helpful and effective.

Positive

I switched from another vendor to FortiGate VM, which has significantly reduced our operational costs.

The initial setup was easy, and I did it myself without requiring assistance from third-party services.

Two engineers from our side were involved in the installation process.

I observed a fifty to sixty percent reduction in operational costs after migrating to FortiGate VM.

I find the pricing of FortiGate VM to be quite affordable.

I considered other vendors and chose FortiGate VM primarily for its cost-effectiveness.

I would recommend FortiGate VM to others due to its ease of deployment, ease of management, and cost-effectiveness. 

I rate the overall solution eight out of ten.

It's crucial for protecting my internet network. It works well internally.

Fortinet FortiGate-VM improved security within our virtualized environment.

However, I would rate the ease of management a seven out of ten, with ten being the best. 

The policies are very valuable. They allow me to secure and manage future traffic effectively.

The biggest area for improvement is storage configuration. It could be smoother.

I have been using it for four years. 

When it comes to stability, various factors are involved, including partners, configurations, and third-party integrations. 

However, we do use it, and it seems reliable and secure for most situations.

The company that acquired us already had similar technology in place, so there wasn't a significant change when they integrated FortiGate-VM.

We have around 60 end users in our company using this solution. It is a very scalable solution.

It's a new technology, and we're still learning. Support is crucial.

Neutral

The initial setup is straightforward and quick.  

We moved the equipment to the site, connected it to the internet, and configured it through the console.

I took a consultant's help.  

It improved security a lot.

My recommendation is: If you use FortiGate-VM, make sure your infrastructure is good first and that power generation is very stable. 

We deploy the tool for customers who want a firewall in front of their cloud environment. We can use it for anything they want to protect in their data center or private cloud.

The solution has given us a good revenue stream and a better solution for our customers for network security. The product can take our customer’s basic firewall and take it to the next level and give them much more visibility and control over the traffic.

All the security features that are built into the product are valuable. It includes web filtering, DNS filtering, and intrusion prevention. FortiGate is the best firewall in the market. It pretty much does most things.

Support could be improved a little.

I have been using the solution for four and a half years.

I rate the solution’s stability a ten out of ten.

I rate the tool’s scalability a ten out of ten.

Sometimes, we get really good, knowledgeable engineers. At other times, it feels like we got somebody who started that day. We have to go through the wringer with them.

Neutral

The initial setup was very easy.

I have seen an ROI on the product.

The price is pretty decent compared to other products. The product’s licensing must be a little cheaper.

If you're looking for an enterprise-level next-generation firewall, go with FortiGate. It’s hands down the best value for what you pay. Overall, I rate the solution a ten out of ten.

I use the solution in my company for the data center's server protection to segregate the data center VLANs and the other VLANs used in the production, testing, and development phases, including the areas consisting of DMZ and VLAN. We are using Fortinet FortiGate-VM as a software-based tool and as a firewall for our data center.

It filters out the unnecessary connectivity that I would probably expect to be connected from the end user site or from external to the data center site. It is also used to filter unauthorized access to sites and to mitigate risks if, in cases, because of the asset policy, the remote desktop connectivity or remote connectivity is not allowed to restrict something. It is used to deal with phishing or something that may not pass through the network. The tool serves as an industrial firewall so that we can use it as a filter more efficiently.

The security offered by the tool has certain shortcomings, making it in area where improvements are required. Security, by nature, is very dynamic, and continuous improvement is required. Every time, the policy and the configuration need to be checked in that aspect now, so in that aspect, it needs some improvement, especially when it comes to some filtering mechanisms, and protocols.

I have been using Fortinet FortiGate-VM for more than three years.

In terms of stability, it is stable. Stability-wise, I rate the solution an eight out of ten.

It is scalable because it is a virtual appliance. You can probably scale it up more.

Fortinet FortiGate-VM is a security solution, so users are not expected to access it. It is actually required to protect the network and the environment, so there is no need for actual user access for the solution.

The product's initial setup phase requires some special expertise. The initial setup phase might not be complex, but it requires experts since it is a security solution.

If there is an expertise that is actually doing the implementation or deployment, then it is a straightforward process.

The solution requires a license. The tool is neither expensive nor cheap, so it is okay.

The product's implementation does affect our compliance with industry regulations, and it is one of the reasons why we prefer using Fortinet FortiGate-VM.

My suggestion to other people related to the tool depends on their requirements because there are other different solutions in terms of cost, efficiency, security, reliability, and security. Depending on the requirements, the tool is recommendable. Fortinet is one of the top security solutions in the market. Anybody can choose from multiple tools in the market, including Palo Alto products and other solutions. Fortinet is usually recommended to others.

I think that Fortinet FortiGate-VM has some solutions that offer AI features. For our use case, we don't actually use the AI functionalities since we want to control everything. In my company, we are the ones who are actually dealing with the product and are just not supported by AI.

I rate the tool a seven out of ten.