Fortinet FortiGate-VM Reviews

My primary use case is for controlling the internet in our organization, as well as for our VPN for those working from home. I also use it for routing the connection to stores so we can access them.

This solution allows us to easily access the stores from where we are. It also blocks a lot of websites that we don't want to allow access to during working hours. It has also made our network more secure, and it's now much harder for people to intrude into our network.

The most valuable feature is that its IPsec works perfectly. The work filter also works perfectly - it's able to detect anything coming in that is not supposed to be on the network.

We have had some issues with connecting to the VPN from home after firmware updates, which could be an area for improvement.

I have been using this solution for about five years.

I think the product's stability is very good.

The scalability depends on what you want to use it for - previously, we were using 60D, and it wasn't accommodating some features we wanted, so we had to go to 100D.

The technical support is very helpful.

I previously used pfSense but found it was a bit complicated in terms of configuration and didn't give periodic updates. I switched to FortiGate because they were very consistent in giving updates on outbreaks and what they were doing to resolve them.

The setup was straightforward because of the integrator's help. Deployment took about two days, and only my assistant and I were required for deployment and maintenance.

I implemented through an integrator.

Our main ROI has been the extra stability on our network - since we implemented this solution, we haven't had any major attacks.

The cost of this product is too high on a yearly license. The license can be renewed on a monthly or yearly basis. There are additional costs for extra features.

To me, this is one of the best firewalls I've ever used. I would rate this solution as nine out of ten.

The primary use case of this product is as a firewall. We are partners of Fortinet and I'm a security engineer. 

In our organization, Fortinet is one of the trusted partners. We have offered the solution for a medium-size entrepreneur 

The dashboards are a good feature and the deployment is simple. 

The technical support could be improved. I'd like to see the security platform upgraded.

I have Started learning and deploying FortiGate for 12 months.

The solution is looking stable as per knowledge

This solution is flexible and scalable. 

They need to improve the technical support. 

I have worked with checkpoint. And that solution is also good. 

It is straightforward for deployment

Fortinet is competitively priced, it's cheaper than Palo Alto and Check Point. 

We are the technologies partner so we have recommended the solution by customer dependence upon their use cases

I recommend this solution and would rate it a seven out of 10. 

We primarily use the solution for checking a 250-person defense contracting company with multiple locations.

It's improved our operations by not being overly problematic.

The solution seems to be very reliable. 

It's a relatively simple product that is easy to use. It's not overly complex.

The initial setup is fairly straightforward.

The product does not have a good graphical interface. Their patches and their upgrades are not always compatible with configuration. That means that often you find after you upgrade that there was something else you have to do to the rest of the infrastructure, whether it's a printer or a user or whatever. It doesn't appear to me that their upgrades are well tested. They usually do what they're supposed to do, however, they also usually do some other things that FortiGate doesn't seem to be aware of.

It doesn't maintain legacy capabilities very well.

The stability of the solution isn't ideal.

They don't seem capable of supporting their own product.

The solution needs a better user interface and more intelligent services like spam blocking and auto whitelisting, gray listing, blacklisting, et cetera. It just basically needs better user monitoring.

I've been using the solution for about four years at this point. It's been a while now.

While I wouldn't describe the solution as unstable, there are definitely hiccups. I expect firewalls to be really efficient and very stable and I would say they're only sort of stable. I don't expect to have to figure out how to create a scan-to-email solution every time I upgrade my firewall, for instance.

Of course, they'll blame it on the vendor of the printer and say now how they're not following the standard or something, however, it was working with their product previously and the printer wasn't the item that changed. Their product gets a patch and it no longer works and you're like, "Well, I like your theory, but I don't exactly accept it." I don't think they have the features that a Palo Alto has, let's say.

The solution seems to be scalable. For our purposes, it scales well.

We have about 250 users on the solution currently.

Technical support isn't that great. On a scale from one to ten, they're a five at best. A couple of times where we had a problem, they couldn't solve the problem. We researched the problem on our own, unfortunately, via Google, and we found the solution and the solution was actually written by one of their techs and they didn't even know it.

The initial setup is not too difficult. It's not overly complex. I'd describe it as pretty straightforward. A company shouldn't have any issues with implementation.

For deployment, we did one site and then the other site and it took probably two weeks to deploy it, with maybe 30 days to get it fully configured. Then, once we had one site deployed, configured, and functional, we implemented a copy of that to the other site. We followed this pattern for each of our locations.

In terms of maintenance, it's hard to quantify what you need for the firewall. The firewalls are relatively low in terms of required maintenance. We have one IT administrator that may be a day a month has duties that are firewall-related. It varies, however, it's not significant work to maintain the firewall.

We did not need the assistance of an integrator or consultant. We were able to handle it ourselves.

We haven't really seen an ROI. It does what it's supposed to do, however, I'm not sure that it makes my job easier. It's kind of a sunk cost. It's one of the frustrations I have. I would expect it to be smarter and capable of doing things that it really doesn't do.

We pay a yearly licensing fee. It's probably a couple of thousand dollars per firewall.

On top of that, if you maintain a hardware warranty, so that you own the devices, you still maintain a warranty on them. There's sort-of a service contract, or you can go at risk. I don't know where we are in that. I'd have to go look, but I know at one point in time we talked about again, if we're going to be doing a tech exchange, maybe we don't want to maintain the warranties on them anymore.

The competitors actually have lower prices for more functionality. On the higher side, if you go with Cisco, it's more expensive, however, it's obviously more functional. A Palo Alto is probably a better solution than a FortiGate.

We're currently looking for alternatives to this solution.

We're looking at alternatives. However, the deficiencies that they have are not significant enough that I would like to immediately leave them, however, they're big enough that I'm looking for alternatives. 

When I come to end the life and I do a tech refresh, if we're not going to go 100% virtual, which is certainly another consideration, I am going to look at an alternate product. I'm not sure we're going to go away from them with a timeline right now, however, I'm certainly looking at it.

We don't yet have a shortlist, however, we'll likely look at the top big names in the market.

We're an end-user and a customer.

We have a plug-in with the subscription. We use the current version on their 100Es.

In general, I would advise other users that they need to look at whether they're going to go physical or virtual. I'd advise once they decide that to then look at the maybe lesser known next-generation firewalls that have functionality. The folks that are going to be operating the tool need to look at the user interface to make sure that that it is easy to use. Most users at an enterprise don't even know the firewall's there, let alone what it is, so they're not unique. I think all of the firewalls are pretty decent at not impacting users. The differentiator is which ones are easy to set up, which ones are easy to configure and use and how good they are at reporting.

The other thing I would say is, look at whether or not they integrate into your overall IT management, whether you're using ServiceNow or what you're using for IT management. How do the firewalls integrate with that or not? It's important.

I'd rate the solution at a four out of ten. It does base functions and it's doing that at a pretty high price.

We can control application filtering and UTM with Fortinet FortiGate-VM. We rely on it for configuring IP address filters, VPN settings, and point-to-site connections. We haven't encountered any issues with its use cases as a firewall.

The tool ensures inbound traffic, specifically on a specific port. We have Fortinet FortiGate-VM as well as F5 for application support.

It gives us an enhanced security solution for any kind of alert that we have configured.

The price and licensing of the solution can be better.

I have been using Fortinet FortiGate-VM for 3 to 4 years. We are using the V7.4 of the solution.

I rate the solution’s stability a six out of ten.

I rate the solution’s scalability an eight out of ten.

We have used Sophos and Palo Alto before. Palo Alto is expensive. Fortinet’s UI is more user-friendly. You can easily understand the source and destination requests.

We have not faced any difficulty. We recently migrated our data center from on-prem to the cloud and then established the firewall.

The solution is more reliable for firewalls.

Overall, I rate the solution an eight out of ten.

We primarily use the solution as a virtual machine for firewalling.

The solution is very user-friendly. 

We have a next-generation firewall and can lock things in on a parameter level very effectively.

It is easy to set up the solution. 

The solution is stable.

I've found the technical support to be helpful and responsive. 

I can't recall any aspects that need improvement.

The pricing could be a bit better.

We'd like to have more customization and easier customization of policies. 

The scaling can be a bit better. 

I've been using the solution for the last two years. 

The solution is okay in terms of stability. We have not had issues. It's not too difficult to work with it. 

I'm the only person working directly with the product.

The scalability is limited. If we have to scale, we need to upgrade licenses after the license is up for renewal. Otherwise, we need to buy replacement licenses on top of the licenses we've already purchased instead of just expanding and adding onto what we have.

I've worked with technical support in the past. They are very good. When we open tickets, they respond quickly. I'm happy with the level of support overall. 

I have worked with other firewalls. Which is best depends on the requirements. It is also dependent on the budget. We need to consider performance and scalability and take onto consideration how much support will be available as well. 

The solution is easy to set up. There is a lot of documentation provided. For 70% to 80% we can do just fine, and for the rest, we just request documentation and can finish the job. 

We do not need much maintenance. We handle that ourselves, and it's not too difficult. 

The solution is set up and configured in-house. 

The pricing is okay. However, it could always be better. When you need to scale, you need to buy bigger, different licenses. 

We are using the latest version of the solution. 

I'd recommend the solution to others, depending on the business requirements. It's a pretty good solution in general. 

I'd rate the product eight out of ten. 

We are a reseller of FortiGate, but also a customer. I have configured it in my office. Our primary case use includes equipment installed with customers.

We have Fabric Security that integrates with other FortiGate family products like firewalls and switches. This means that we don't need to buy other licenses and it's easy to configure.

With every new version, there are issues and new parts due to the improvements. But the improvements are not always easy for the customer, especially when making a big configuration. Rather than being an improvement, it becomes more complicated.

We have been using FortiGate for almost 12 years.

The support is fine now, however, our last purchase was not as good. They have changed their situation and improved support again.

I had used Sophos UTM, the Endpoints, Access Points, and XG for two years in my office. We switched because of FortiGate's service and because it is a more flexible solution.

Installation does not require another license so it is inexpensive and easy to configure. 

Sophos has a nice interface and is easy to configure. The XG products are good and so are the endpoints. Sophos access points and on-premise are not good.  Sophos also doesn't have enough support to get into the console. Sophos has a Linux box, which is easy to try to resolve most issues, but Sophos support is not good.

We are using FortiGate-VM for the protection of our internal network and also for VPN services. Right now, there are about 200 end users in our main office and in other business units we have an additional 100-200 end users. We have about five different firewalls, yet almost all of our units are using FortiGate-VM. So, in total, we have about 500-600 users. 

The best part about FortiGate-VM is its strong security. Besides that, it's nice that there are different models for different sizes of businesses. For example, there are models tailored to enterprise companies and small organizations, and the model that we are using is perfectly suitable for our usage.

One thing that can be better is added automation. And, on top of that, enhanced security when it comes to the automation itself.

I have been using Fortinet FortiGate-VM for five years.

I think it is stable. 

I am impressed by its scalability, given that we are already using it for over 500 users. And, in future, we plan to increase usage even more. 

We have used Palo Alto before, but we switched because at that time Fortinet was more scalable and there were more options available.

I also use Sophos Firewall, though not within the organization, but rather just for small business or personal use.

Currently, we only require the services of three engineers and administrators on our technical team when it comes to deployment and maintenance.

The license we pay is a yearly fee. I can't say it's very expensive; it is a good price and is highly suitable for our usage.

FortiGate-VM is a good solution, and I would say one of the best solutions on the market.

I would rate it an eight out of ten. 

We provide Fortinet services to our clients, sometimes on-prem and sometimes on cloud. 
We are a system integrator which makes us a partner of Fortinet. I am an information technology solutions manager.

I like the web filtering and I like the IPS functionality.

Data reporting could be improved and also in terms of performance, some improvement should be made on VM, it should be more optimized. Scalability of the solution could also be improved. 

For an additional feature, Fortinet should add more SD-WAN with caching as a special functionality. It should be integrated with Fortinet. 

I've been using this solution for five years. 

Stability is good enough. It's not that problematic for now.

Scalability is a problem because the solution is VM. As a VM, you cannot have much scalability.

The Fortinet technical support is generally good. There are times when we don't get an immediate response and it requires escalation but that's all. 

The initial setup is straightforward. Deployment time depends on the case but can normally be done anytime from two hours to two days for it to be functional.

FortiGate-VM would be for more like a cloud or on-premise SMB environment. And for anyone wanting to scale-up and get big performance, it should be used as a physical appliance.

I would rate this solution a nine out of 10.