Senior Systems Engineer at a pharma/biotech company with 51-200 employees
Real User
Top 20
2024-05-13T03:05:03Z
May 13, 2024
Our use case for Fortinet FortiAnalyzer is analyzing traffic. We use it to investigate complaints about account access, check if something is blocked or working, and understand what's happening inside them.
Our clients use Fortinet FortiAnalyzer to analyze and locate the traffic in their network. Since it's a big customer, they have both Fortinet FortiAnalyzer and Fortinet FortiManager.
I use the solution in my company for log management and to comply with requirements associated with endpoint protection and FortiGate, as well as with all the other solutions from Fortinet.
I have been using the solution in my company since after we set up and configured the tool, we managed the migration. Sometimes, I have to take care of my customers. My customers are using the product well.
I find it to be a valuable tool for utilizing traffic logs. The product's continuous improvements and Fortinet's commitment to enhancing its capabilities contribute to its effectiveness.
Fortinet FortiAnalyzer is primarily utilized to generate quarterly reports showcasing blocked attacks and vulnerabilities. It employs features like WAV porting triggers and DNS triggers to effectively demonstrate to the client the security of their environment.
Our organization uses Fortinet FortiAnalyzer for logging purposes, including looking and digging deeper into the logs. The second use of the solution is for reporting, especially when we need some bandwidth utilization report with specific applications being used. We even use the solution's alerting functionality, especially during scenarios when our interface goes down.
We have some customers that have more than just two branches, and we use FortiManager to manage the network and have FortiAnalyzer in case we have an attack or need more information to understand when something happens. If you have some sort of loss, it's very difficult to identify what is happening without this solution's help.
It's a lock storage correlation device. You can connect locks from different devices. Not just from Fortinet, but you can send locks from other devices to FortiAnalyzer. Basically, it is a centralized repository.
Assistant Manager - Information Security & Infrastructure at lankatiles
Real User
Top 10
2022-11-10T16:38:27Z
Nov 10, 2022
Our company uses the solution to capture our Forti Firewall into a centralized box and auditing folder that is analyzed at least once per year. Four staff members use the solution, produce detailed reports, and manage operations. We initially implemented the solution on-premises at our data center in Colombo City. Now, we are implementing things to the cloud so our next plan is to secure cloud-level protection.
Section Head, Enterprise Solutions & SI Management at HGC Global Communications Limited
Real User
2022-10-05T10:16:08Z
Oct 5, 2022
We are using Fortinet FortiAnalyzer for the managing surface for our customers. We are a service provider and we are focusing on providing a service to our customers.
Security Solutions Architect at a manufacturing company with 1,001-5,000 employees
Real User
2022-09-23T14:06:29Z
Sep 23, 2022
Most importantly, it is for the administration of Forti fabric devices and reporting of Forti fabric, and being able to generate reports. It's for logging. All 40 fabric devices are able to send logs to FortiAnalyzer. Basically, the use cases are for administration, reporting, and logging.
We have multiple firewalls linked through a VPN. There is traffic from several branches and multiple points of failure, so you need to analyze this traffic to know what's coming in and going out. When you have more chains, there are more points of failure that can be exploited. I use FortiAnalyzer on-premise and on the cloud. I update the solution at least once a year. I always update the firewall to the latest edition, so I can have three months or four months to test it in the VM. I use even more products and also AWS and Azure Cloud. About 9 percent of my company is responsible for security and networking. Everybody's on my team works with FortiAnalyzer. Our department has three security architects and four network engineers. They are beginning to place assistant administrators on the network.
For most of our customers, we are installing FortiAnalyzer as a VM-based solution. We installed a big analyzer for just one customer because they needed too much storage capacity. We have about 10 clients using it currently.
Most of our clients are banking and financial institutions, so their data doesn't go to the cloud as such. Their data is on-premises only. Some of our clients can go to the cloud to save the price and do management, administration, and so on, but then most of our clients, use on-premises FortiAnalyzer.
Conseiller en architecture technologique at a government with 1-10 employees
Real User
2021-03-10T20:51:26Z
Mar 10, 2021
We primarily use the solution in order to analyze data. If you have two devices that need to communicate with each other, so you can see where any issue is as you can see every single communication. It shows the flux of communication.
Implementation Manager at a tech services company with 51-200 employees
Reseller
2021-01-17T09:11:26Z
Jan 17, 2021
We're resellers of Fortinet. The solution is a product for doing diagnostics on their security environment. Our primary clients are banks or medical organizations.
We mostly use the FortiAnalyzer VM. We sell the license for this solution and also the professional service to have it. There are different types of business needs of our clients because they're in different business areas. We have firewalls on them. Some of them are on the perimeter network, and some of them are being used as the core network solution. We collect all the logs from their FortiGates. In some cases, we also use FortiWeb, which is a web application firewall. We also use FortiMail, which is an email protection solution or email security solution. We gather all the logs on FortiAnalyzer, and we try to do some flat counting and identify behavior or do behavior analysis from those logs and see what is interesting. Our team analyzes those events so that we can prevent any disruption of service because of the security, vulnerability, or issue.
Technical Presales Engineer at Dristi Tech Pvt.ltd
Real User
2020-08-27T10:31:47Z
Aug 27, 2020
Generally, Fortinet FortiAnalyzer gives you visibility around the network. You can track and monitor devices and pick the surrounding network. You can see which packets are being sent to the network, who the users are, and what are they using. You can also view the policies and firewall rules that are being used, the IDs that are being connected to, and the IP address a particular user is using. Basically, it's a SOC. It's a security operations device. We use it for continuous monitoring, and it takes a team to do so. In my organization, three to four people are using it on a daily basis.
Assistant Manager - Cloud Planning and Development at a comms service provider with 1,001-5,000 employees
Real User
2020-03-16T06:56:09Z
Mar 16, 2020
We're a service provider. Our clients use the solution for log management. We are using physical and virtual end ware. We have a physical and logical virtual environment for using this platform, which we provide to our customers.
We use this solution for reporting. We also use it to keep logs for our clients that require logs with a history of more than seven days. In addition to our own firewalls, we have several clients with firewalls that report into the same FortiAnalyzer. We have a private cloud deployment, set up on-premises.
Technical lead at Rogers Capital Technology Services Ltd
Reseller
2019-08-29T09:32:00Z
Aug 29, 2019
Our primary use case of this solution is to deep-dive and get deep visibility analyzing of logs and proxy of the network. In other words, to get good customized reports.
System & Network Administrator at a tech services company with 11-50 employees
Real User
2019-08-29T08:53:00Z
Aug 29, 2019
We use the analyzer for reporting, to know what exactly is happening on the network. We use it to see which accesses are granted, which accesses are denied, which sites are visited, which botnets are coming in, which viruses, etc. The solution is on-premise. Most of the time we set it up on the client's premises, depending on their needs. The cloud is there for testing.
Network Administrator at a university with 501-1,000 employees
Real User
2019-08-26T06:42:00Z
Aug 26, 2019
This solution is mainly used for reporting. We collect data from the FortiGate and analyze it with this appliance. We have a physical device that is deployed on-premises.
Network & Security Administrator at Diamond Bank Plc
Real User
2019-08-26T06:42:00Z
Aug 26, 2019
We use the on-prem deployment model of this solution. My primary use case for this solution is for log collection. I have a lot of FortiGates that I have to collect logs from, so I primarily use it for log collection. We plan to deploy a SIEM and we want to try to see how to integrate all the solutions to our SIEM. We are processing for PCI data specifications. We have to respond to PCI requirements, so that's why we are making some changes and acquiring some new security solutions to deploy. Among them, we have FortiSIEM and other security solutions like antivirus.
It receives logs from the FortiGate 5000 Series (about 12 FortiGate blades), and it was configured for keep logs for about 1,050 days. The logs are divided by archive (raw logs) and analytics (logs indexed in a database). The use case is primarily for getting graphical data to make quick decisions.
Fortinet FortiAnalyzer is a powerful platform used for log management, analytics, and reporting. The solution is designed to provide organizations with automation, single-pane orchestration, and response for simplified security operations, as well as proactive identification and remediation of risks and complete visibility of the entire attack surface.
Fortinet FortiAnalyzer FeaturesFortinet FortiAnalyzer has many valuable key features. Some of the most useful ones include:
Advanced threat...
Our use case for Fortinet FortiAnalyzer is analyzing traffic. We use it to investigate complaints about account access, check if something is blocked or working, and understand what's happening inside them.
As part of a company, we manage customers of Fortinet FortiAnalyzer. The solution is used to analyze and locate traffic in a particular network.
Our clients use Fortinet FortiAnalyzer to analyze and locate the traffic in their network. Since it's a big customer, they have both Fortinet FortiAnalyzer and Fortinet FortiManager.
I use the solution in my company for log management and to comply with requirements associated with endpoint protection and FortiGate, as well as with all the other solutions from Fortinet.
I have been using the solution in my company since after we set up and configured the tool, we managed the migration. Sometimes, I have to take care of my customers. My customers are using the product well.
We use the solution for enterprise firewalls, URL filtering, and SD-WAN.
I find it to be a valuable tool for utilizing traffic logs. The product's continuous improvements and Fortinet's commitment to enhancing its capabilities contribute to its effectiveness.
I utilize Fortinet FortiAnalyzer to gather various logs from FortiGate, enabling me to conduct specific investigations in particular cases.
Fortinet FortiAnalyzer is primarily utilized to generate quarterly reports showcasing blocked attacks and vulnerabilities. It employs features like WAV porting triggers and DNS triggers to effectively demonstrate to the client the security of their environment.
I use the solution for the configuration process.
Our organization uses Fortinet FortiAnalyzer for logging purposes, including looking and digging deeper into the logs. The second use of the solution is for reporting, especially when we need some bandwidth utilization report with specific applications being used. We even use the solution's alerting functionality, especially during scenarios when our interface goes down.
We use the solution for log analysis.
We have some customers that have more than just two branches, and we use FortiManager to manage the network and have FortiAnalyzer in case we have an attack or need more information to understand when something happens. If you have some sort of loss, it's very difficult to identify what is happening without this solution's help.
The solution is used for grabbing logs. It is designed for log aggregation of all Fortigate firewalls and to give visibility of traffic and usage.
It's a lock storage correlation device. You can connect locks from different devices. Not just from Fortinet, but you can send locks from other devices to FortiAnalyzer. Basically, it is a centralized repository.
We use the solution for just one company for the analysis of the FortiGate switch.
Our company uses the solution to capture our Forti Firewall into a centralized box and auditing folder that is analyzed at least once per year. Four staff members use the solution, produce detailed reports, and manage operations. We initially implemented the solution on-premises at our data center in Colombo City. Now, we are implementing things to the cloud so our next plan is to secure cloud-level protection.
We are using Fortinet FortiAnalyzer for the managing surface for our customers. We are a service provider and we are focusing on providing a service to our customers.
Most importantly, it is for the administration of Forti fabric devices and reporting of Forti fabric, and being able to generate reports. It's for logging. All 40 fabric devices are able to send logs to FortiAnalyzer. Basically, the use cases are for administration, reporting, and logging.
The product is for reporting about the use or detecting some issues or activities.
We have the most data visibility with this solution.
We have multiple firewalls linked through a VPN. There is traffic from several branches and multiple points of failure, so you need to analyze this traffic to know what's coming in and going out. When you have more chains, there are more points of failure that can be exploited. I use FortiAnalyzer on-premise and on the cloud. I update the solution at least once a year. I always update the firewall to the latest edition, so I can have three months or four months to test it in the VM. I use even more products and also AWS and Azure Cloud. About 9 percent of my company is responsible for security and networking. Everybody's on my team works with FortiAnalyzer. Our department has three security architects and four network engineers. They are beginning to place assistant administrators on the network.
We use it for reports and analysis.
We are using it only for integration and getting information from FortiAnalyzer to use and analyze important events.
I am using Fortinet FortiAnalyzer for tracing anything that happens in the network.
The primary use cases are log management and the reporting fraud forum. It provides a vision of the network.
It is used to get the logs of all boxes that a customer has.
The normal use case for FortiAnalyzer is log review, log analysis, etc.
For most of our customers, we are installing FortiAnalyzer as a VM-based solution. We installed a big analyzer for just one customer because they needed too much storage capacity. We have about 10 clients using it currently.
We are using Fortinet FortiAnalyzer for analyzing network traffic and it provides us with log analytics.
We primarily use it for logging collection.
Most of our clients are banking and financial institutions, so their data doesn't go to the cloud as such. Their data is on-premises only. Some of our clients can go to the cloud to save the price and do management, administration, and so on, but then most of our clients, use on-premises FortiAnalyzer.
We primarily use the solution in order to analyze data. If you have two devices that need to communicate with each other, so you can see where any issue is as you can see every single communication. It shows the flux of communication.
We're resellers of Fortinet. The solution is a product for doing diagnostics on their security environment. Our primary clients are banks or medical organizations.
We mostly use the FortiAnalyzer VM. We sell the license for this solution and also the professional service to have it. There are different types of business needs of our clients because they're in different business areas. We have firewalls on them. Some of them are on the perimeter network, and some of them are being used as the core network solution. We collect all the logs from their FortiGates. In some cases, we also use FortiWeb, which is a web application firewall. We also use FortiMail, which is an email protection solution or email security solution. We gather all the logs on FortiAnalyzer, and we try to do some flat counting and identify behavior or do behavior analysis from those logs and see what is interesting. Our team analyzes those events so that we can prevent any disruption of service because of the security, vulnerability, or issue.
We basically use it for security. We are using the latest version.
The Primary case is to collect & monitor logs & events from all of our firewalls and appliances in one single interface with analysis
We primarily distribute this product to our clients.
Generally, Fortinet FortiAnalyzer gives you visibility around the network. You can track and monitor devices and pick the surrounding network. You can see which packets are being sent to the network, who the users are, and what are they using. You can also view the policies and firewall rules that are being used, the IDs that are being connected to, and the IP address a particular user is using. Basically, it's a SOC. It's a security operations device. We use it for continuous monitoring, and it takes a team to do so. In my organization, three to four people are using it on a daily basis.
We are using Fortinet FortiAnalyzer to manage services for our customers. We use it for log management.
We're a service provider. Our clients use the solution for log management. We are using physical and virtual end ware. We have a physical and logical virtual environment for using this platform, which we provide to our customers.
We use this solution for reporting. We also use it to keep logs for our clients that require logs with a history of more than seven days. In addition to our own firewalls, we have several clients with firewalls that report into the same FortiAnalyzer. We have a private cloud deployment, set up on-premises.
Our primary use case of this solution is to deep-dive and get deep visibility analyzing of logs and proxy of the network. In other words, to get good customized reports.
We use the analyzer for reporting, to know what exactly is happening on the network. We use it to see which accesses are granted, which accesses are denied, which sites are visited, which botnets are coming in, which viruses, etc. The solution is on-premise. Most of the time we set it up on the client's premises, depending on their needs. The cloud is there for testing.
We primarily use the solution to protect the network and to control how the users access and use the internet.
This solution is mainly used for reporting. We collect data from the FortiGate and analyze it with this appliance. We have a physical device that is deployed on-premises.
Our primary use case of this solution is for bandwidth. We are very satisfied with this program.
We use the on-prem deployment model of this solution. My primary use case for this solution is for log collection. I have a lot of FortiGates that I have to collect logs from, so I primarily use it for log collection. We plan to deploy a SIEM and we want to try to see how to integrate all the solutions to our SIEM. We are processing for PCI data specifications. We have to respond to PCI requirements, so that's why we are making some changes and acquiring some new security solutions to deploy. Among them, we have FortiSIEM and other security solutions like antivirus.
It receives logs from the FortiGate 5000 Series (about 12 FortiGate blades), and it was configured for keep logs for about 1,050 days. The logs are divided by archive (raw logs) and analytics (logs indexed in a database). The use case is primarily for getting graphical data to make quick decisions.