Fortinet FortiSandbox Reviews

Overall, it works fine. Its interface is also fine.

If we can have more dashboards, it would be good.

We have FortiSandbox and Fortinet firewalls. I have been using these solutions for three to four years.

It is stable.

Scalability will always be there. Currently, I am the only user.

Their support is good.

Its setup is not that complex.

It was done by a vendor.

Fortinet is more reasonable than Palo Alto.

I would recommend this solution. Others can use it, and there is no harm in that. I haven't used another Sandbox, so I cannot compare it with something else.

I would rate it a seven out of 10.

FortiSandbox was a solution that we mainly sold for manual protection, however, in order to have a more compact environment, like you see the security fabric that has Fortinet, in many of our clients, we performed integration within solutions. Our clients are mainly ones that have had Fortinet solutions previously or want to test Fortinet solutions. We also encourage them to use integration with Security Fabric.

Clients mainly use it for documents, or, for example, programs or execute tools that are injected in the network through the perimeter or through the DNC and also for internal analysis. When any of the users reconnect to the network after some time it will perform a check through FortiClient. They also have interaction with FortiSandbox - everything new is put in quarantine during the user's use. These files or execute tools are analyzed in the FortiSandbox.It can also analyze for scripts between documents or inside documents - mainly office documents like Excel, PowerPoint, or PDF.

Integration is one of the solution's most valuable aspects. You can integrate even third-party solutions so that they can send the information or files they quarantine through the FortiSandbox. That's one of the main features every customer relies on or likes. 

The performance capacity is impressive. Normally, you will need a big solution, I would say, or big hardware so that you can handle all the processing you have to do. However, FortiSandbox is quite a good hardware in and of itself. You can handle it without any restrictions. 

With an on-premises solution, you can do all the analysis locally and not have the need to connect to the internet to depend on that service. 

The solution can scale, however, it needs to be planned ahead of time.

The technical support on offer is quite good.

With the 3000D we had some issues with the FortiOS version. I don't remember which one it was, however, there was an interaction problem or a performance issue. It might have been the FortiOS issue as it was a very particular, very specific issue and the performance was very high. All the indicators were in the highest levels and yet the equipment was not necessarily overloaded from doing analysis.

I haven't interacted directly with these solutions. I mainly use it for design and not how they work, and therefore I haven't interacted directly with them. It would be hard for me to comment on missing features in general.

The price just could be a little bit better, I would say, however, that depends a lot on the manufacturer. If you were to compare prices between vendors and manufacturers, you would see that the lowest equipment in the Sandbox line is quite expensive for a new customer. Those kinds of clients that don't have a very big budget or at least a medium one, need to rely on cloud solutions more than hardware, as hardware is expensive. 

It would be ideal if the product had the ability to, if it cannot detect something correctly, to be able to put it on hold until a new release. That would be very circumstantial, actually. However, it could help protect against unknown entities.

I can't really speak to the stability. I haven't checked the functionalities of how they work in the current databases. So I don't have too much info about it.

Part of the design is to know how the solution can scale. You normally try to leave some space. For example, you offer a customer the possibility to scale in the future, according to their needs, however, only if you know the customer is going to grow. If the customer doesn't have that need, it doesn't make any sense to offer them equipment with some space to grow or to have more processing capacity or more licenses in the future. I would say normally you would sell what the customer needs plus a 5% to 10% cushion for the future if needed. However, it would be a properly designed solution. 

We usually work with medium to large-scale organizations.

Technical support has been pretty good. I know they respond every time. It just takes a few hours. It doesn't take too much time to respond. They're helpful and you can count on them.

We are also a reseller of Palo Alto solutions.

In terms of the initial setup, I would say it is half straightforward and half complex. It depends on the scenario and it depends on the kind of things you want to do with the Sandbox, for example, the kind of files you want to analyze or which kind of OS or images you want to analyze. It also depends on the requirements. Sometimes it's harder to deploy due to the scenario, the use case.

Deployment times also vary, however, it takes, at minimum, 15 days to set everything up.

The solution is a rather sizable investment. That said, for those organizations with sensitive data, that feed to know they are protected, it's likely worth the price tag.

We are resellers of the product.

I worked as a systems engineer previously. I'm now a sales executive, however, previously, I was in charge of making all the designs and the architecture for the solutions, and therefore, I know the distribution of these products, how can they be used, and different scenarios. I know how to position, for example, a FortiGate inside of a network for network segmentation and also for perimeter protection. Working also for VPN solutions, we were using FortiClients in EMS. We can have a centralized solution for VPN and also endpoint protection.

In terms of versions we deployed, there was FortiSandbox 1000D and also FortiSandbox 3000D. 

We try to integrate solutions together so they can have some feedback on each other and they can work better to provide security and to also sharpen the attack services.

If you don't want to have any zero-day malware on your network, if you know that you will be literally exposed to those kinds of malware, it's good to have a solution such as this. That said, it's a big, big investment. It's a big investment for a business. If you really want to protect your information, if you're dealing with very, very delicate information, you need some kind of hardware or solution that can protect it from any kind of malware, especially those from zero-day. This Sandbox would be a must-have solution for those kinds of customers.

I'd rate the solution at a nine out of ten. That would be dependant on what types of third-party software a company has that the solution could integrate with effectively.

We primarily use the solution to allow us to pick up on any traffic that is suspicious.

If there is malicious traffic that is going through the web application, we can halt that action, instead of waiting for the AntiVirus to take action. It also allows us to block them. This is the most valuable aspect of the solution.

The integration is limited. The solution needs to offer better integration with multiple vendors.

The solution is very stable.

The solution is scalable. All of our web traffic currently goes through it.

Technical support is pretty good.

We didn't previously use a different solution.

The initial setup is straightforward.

We used a local vendor to help us with the initial implementation.

We use the on-premises deployment model of the solution.

I'd recommend the solution. All of its features are readily available.

I'd rate it nine out of ten.

The primary use for FortiSandbox is to provide a good environment, a test environment for us to analyze any new threat in the market. Fortinet Cloud uses its technology to analyze those threats for us and we use the analysis engine. 

Our company is a service provider of Fortinet products, providing solutions based on the company's products. This can be anything from a UTM (Urchin Tracking Module) to a cloud solution depending on the requirements of the customer. It's not one specific model of the product that we have, rather we offer products based on the solutions required by the customer. We are resellers.

There are easily more than 1,000 or 2,000 people that would be using this product through our company because we get organizations where there are maybe 500 to 600 users and others with around 1,000. So I would have to say more than 2,000.

The analysis engine is a very valuable feature. It's quite up-to-date. However, I have not been able to compare it with another manufacturer's product so I'm not really sure whether it is the best. But we just use information that we get from Ratna, and the popularity of Fortinet itself.

I'm not sure whether anything needs improvement because I feel we need to have more experience with it. Perhaps if there were issues where customers complained, that's when I would be able to comment on what could be improved. So far, I haven't come across any specific features that need improving.

I'm content with the features of the product. If they plan to provide a feature that would make it easier for the customer to configure themselves, that would be appropriate. And possibly a user interface. As a service provider, the functionality is quite satisfactory.

I have confidence in the stability of the product. We've realized that quite a number of our customers really want Fortinet products. They might not understand all the FortiSandbox features until we show them how it all works but most customers look at the brand name and where it stands in the market.

The scalability is very good, it's easily expandable and I like that there is a uniform operating system, FortiOS, in all their products. Whenever you interact with either FortiSandbox or any other feature, the interface is the same. 

We have great support from Fortinet. We have our own research partner who can assist us with configuration and getting to know the product. They're easily available to inform us about new features, new rollouts, and the new operating system in the FortiOS. 

The setup of Fortinet is quite straightforward. If you're going to use their products, then you really need to know what to do technically. However, there's no great learning curve in the concept of setting it up, or at least not for anyone who's interested in applying themselves.

Most of our clients will opt for us to manage the setup for them because the security is fairly new. Most of our customers feel it is better to outsource the management of security services for their hardware so they can focus on the business. We have our own team of security experts that are fully trained in Fortinet. It's easier for them to carry out the setup for the customers.

The relationship between the customer and our company is by SNA (social network analysis), so there are fewer configuration errors and instances where the configuration hasn't been carried out correctly and the product is still not working well for the customer, so most companies prefer us to do it for them.

I would recommend that for customers looking for a security solution, FortiSandbox is a good option. It's available on different platforms, both on and off-premises. It's easier for the customer to plug in any other security solution they may need to cover security issues depending on their environment. It's very easy to plug-in additional new features as opposed to most other security products where you have to find compatibility with other elements of the customer environment. And those options are usually challenging and expensive.

I would rate this product eight out of 10.

We use this solution on-premises and our primary use case is for end-point protection. 

What I find most valuable, is that it is easy to use. 

Something that needs to improve, is the end-point protection. 

I believe the solution is very stable. We've had a crash once or twice, but it was because they were having problems on their side. Now it works pretty well and we don't have any issues.

I believe the solution is scalable. We currently have only four people using it at our office.

The initial setup is easy and straightforward. If a person doesn't have experience with the product, they can do some searching to see exactly how to do it. But it's not difficult at all. 

The solution is not expensive at all.

I will rate this solution a seven out of ten. I would like to see an improvement in the end-point protection.

Our primary use case of this solution is to view the texts from our clients to their lawyers. We look for unknown malware and then I also use FortiFabric for integration. 

I like the integration between FortiSandbox and FortiClient with FortiGate.

It would be awesome if it can be integrated with other solutions. I would like to add one more feature because there are some tricks to deploy integration for all sorts in a product. I had that problem because when I had FortiSandbox, FortiLink, FortiClient, FortiManager, FortiLicense, there was one license for the integration, and the other license was called IOP or FortiAnalyzer. I would like to have one bundle or one license for each device. There should be one orchestrator for the integration because until now there have been two devices, which are the orchestrators for the integration. So most people are confused about how to use the right integration of the right Fortinet product.

The solution is very stable and I've never had any issues with stability.

I believe the solution is scalable.

The technical support is very good.

Setup and installation is very easy with the Fortinet Portal. If I remember correctly, the deployment took about a week.

There are additional costs that aren't included in the licensing fee.

I will definitely recommend this solution to others. On a scale of one to ten, my rating will be an eight. In the next version I would love to see more integration and more products from other vendors.

The solution works very well for us. It's also fast, which is a very valuable aspect.

The solution's GUI is good.

At least once a week we have a false alarm. This needs to be adjusted so that we get fewer of these occurrences.

The stability of the solution is okay.

The scalability of the solution is good.

The initial setup was straightforward.

The pricing on the solution is okay; it's not too expensive.

We're a reseller. We use the cloud deployment model of the solution.

I'd recommend the solution. The price point is decent and we've been satisfied with the results so far.

I'd rate the solution nine out of ten.

This solution is used to connect to all of our other fabric, including Fortinet solutions such as FortiGate, FortiMail, and FortiClient.

We have this solution deployed on a virtual machine.

The solution is very good because it catches a lot of threats in emails.

Sometimes, email remains in the queue, which is a problem that we have contacted support about. This is something that needs to be improved.

The response time from technical support should be improved.

This solution is stable.

We have approximately four hundred people who use this solution.

We do plan on increasing our usage.

Technical support for this solution is good, but the people can take a long time to answer you. Sometimes, by the time they answer our ticket, we have already fixed the problem.

The initial setup is easy. There are instructions to follow.

We deployed this solution on our own.

This is a solution that I strongly recommend.

I would rate this solution an eight out of ten.