As we just began implementing the solution, I'm not sure if there are any features missing. We haven't come across any shortcomings in the product yet. We purchased the product through a reseller, and we don't have any issues with them and therefore, so far, don't have any issues with the solution itself. The product may not be as robust as Palo Alto. However, unless you are a big bank, you probably won't need it to be.
Software Developer/ IT Analyst Individual Contributor at AIICO Capital Limited
Real User
2020-02-06T11:37:16Z
Feb 6, 2020
The encryption detection could be improved. In my opinion, I think Sophos has better encryption detection than this solution. The security of the solution could be better. The interface needs to be updated and simplified. The management could be more in-depth or clear.
Cyber Security Engineer at a tech vendor with 1-10 employees
Real User
2020-02-05T08:05:09Z
Feb 5, 2020
Pricing should be more competitive, it's expensive. In the next release, I would like to see integration capability with SIEM tools, such as QRadar, and LogRhythm.
The price of FortiGate-VM is high and should be more competitive. In the next release, we would like to see full integration with VMware NSX virtualized networks.
Network Security Engineer at a government with 1,001-5,000 employees
Real User
2020-02-03T09:10:18Z
Feb 3, 2020
The reporting is not as good as it is with other firewalls and it should be improved. There should be a customized report, for example. The dashboard seems to change quickly from version to version, and they should follow the lead of vendors like Palo Alto, Juniper, and Cisco, and always keep it the same. The bandwidth limitations should be increased.
Manager-Information Technology at a tech services company with 1-10 employees
Real User
2020-02-02T10:42:08Z
Feb 2, 2020
There isn't anything in terms of features that we find are lacking. We don't see any places on the solution that don't cater to our requirements. I would like to see VNX security and WildFire. Those features I would like to see on the solution in the future in order to be able to evaluate it further.
Customization needs improvement. A lot of people have very unique requirements that they ask for at times. Everybody wants to get more out of the solutions so that they have more with less. I would like a little more customization, especially now that everything is becoming a lot more flexible with cloud-based deployments. A little more flexibility in terms of the offering that we can do or the bundling of products would help acquire markets much faster or much better.
Manager Information Technology at a media company with 51-200 employees
Real User
2020-01-29T08:35:00Z
Jan 29, 2020
In terms of what features should be improved with Fortinet, I feel it should give better reports. They provide some basic reports in the entry-level and middleware products but I would love this product if they gave more reports, including more MIS from the traffic because they capture everything in the UTM. They don't produce a team value report. They don't produce a usable report where the IT manager, IT head or CTO can analyze where the attack happened or figure out where the bridge is down, etc. The reports are basic. There are engines which make everything on the GUI. All the user can potentially access for the risky function in the Fortinet but it should be on the GUI, it should not be behind the command line. They could definitely provide the FortiAnalyzer with the basic UTM in a bundle pack. People should not have to ask for another FortiAnalyzer. It's an entry-level product. I understand that FortiAnalyzer is an expert level product but the functionality should be available at the entry-level as well. Fortinet should think about the entry-level and give it managing capabilities. That's why I selected Sophos because, for a small or medium office, all the reports are available there. Secondly, Sophos is cost-effective. It is comparatively much cheaper. Sophos is available for a much cheaper price than Fortinet. Also, they have some other functions like sandboxing and others. FortiGate should be more customer-friendly and budgeted better. If I am a buyer, I do not want multiple appliances to manage. It should be one box, one appliance. One mobile should do everything. Multiple products require IT to create a workaround. You have to buy two products and then there is actually another one with that, one plus one, and then there is multiple management, so the product is definitely cumbersome. The beauty of the product is implementation and maintenance without it. I have my own team to maintain this product. We are very happy as a Sophos user, as we get whatever we want from the reporting point of view. There are no glitches. There is no one issue in particular. When I ask, or my team asks, how the network is working and why there is network latency there are reports about where the traffic is going and I do not have the input after moving or switching to Sophos. I can get the support regarding which IP is working where and which IPs are making traffic, and more.
FortiGate Virtual Appliances allow you to mitigate blind spots by implementing critical security controls within your virtual infrastructure. They also allow you to rapidly provision security infrastructure whenever and wherever it is needed. FortiGate virtual appliances feature all of the security and networking services common to traditional hardware-based FortiGate appliances. With the addition of virtual appliances from Fortinet, you can deploy a mix of hardware and virtual appliances,...
As we just began implementing the solution, I'm not sure if there are any features missing. We haven't come across any shortcomings in the product yet. We purchased the product through a reseller, and we don't have any issues with them and therefore, so far, don't have any issues with the solution itself. The product may not be as robust as Palo Alto. However, unless you are a big bank, you probably won't need it to be.
The encryption detection could be improved. In my opinion, I think Sophos has better encryption detection than this solution. The security of the solution could be better. The interface needs to be updated and simplified. The management could be more in-depth or clear.
I don't see any specific features that are missing from the solution right now. The user interface needs to be improved.
Pricing should be more competitive, it's expensive. In the next release, I would like to see integration capability with SIEM tools, such as QRadar, and LogRhythm.
The price of FortiGate-VM is high and should be more competitive. In the next release, we would like to see full integration with VMware NSX virtualized networks.
When new versions are deployed they tend to be a little buggy, so they should be more fully tested before release.
The reporting is not as good as it is with other firewalls and it should be improved. There should be a customized report, for example. The dashboard seems to change quickly from version to version, and they should follow the lead of vendors like Palo Alto, Juniper, and Cisco, and always keep it the same. The bandwidth limitations should be increased.
There isn't anything in terms of features that we find are lacking. We don't see any places on the solution that don't cater to our requirements. I would like to see VNX security and WildFire. Those features I would like to see on the solution in the future in order to be able to evaluate it further.
Customization needs improvement. A lot of people have very unique requirements that they ask for at times. Everybody wants to get more out of the solutions so that they have more with less. I would like a little more customization, especially now that everything is becoming a lot more flexible with cloud-based deployments. A little more flexibility in terms of the offering that we can do or the bundling of products would help acquire markets much faster or much better.
In terms of what features should be improved with Fortinet, I feel it should give better reports. They provide some basic reports in the entry-level and middleware products but I would love this product if they gave more reports, including more MIS from the traffic because they capture everything in the UTM. They don't produce a team value report. They don't produce a usable report where the IT manager, IT head or CTO can analyze where the attack happened or figure out where the bridge is down, etc. The reports are basic. There are engines which make everything on the GUI. All the user can potentially access for the risky function in the Fortinet but it should be on the GUI, it should not be behind the command line. They could definitely provide the FortiAnalyzer with the basic UTM in a bundle pack. People should not have to ask for another FortiAnalyzer. It's an entry-level product. I understand that FortiAnalyzer is an expert level product but the functionality should be available at the entry-level as well. Fortinet should think about the entry-level and give it managing capabilities. That's why I selected Sophos because, for a small or medium office, all the reports are available there. Secondly, Sophos is cost-effective. It is comparatively much cheaper. Sophos is available for a much cheaper price than Fortinet. Also, they have some other functions like sandboxing and others. FortiGate should be more customer-friendly and budgeted better. If I am a buyer, I do not want multiple appliances to manage. It should be one box, one appliance. One mobile should do everything. Multiple products require IT to create a workaround. You have to buy two products and then there is actually another one with that, one plus one, and then there is multiple management, so the product is definitely cumbersome. The beauty of the product is implementation and maintenance without it. I have my own team to maintain this product. We are very happy as a Sophos user, as we get whatever we want from the reporting point of view. There are no glitches. There is no one issue in particular. When I ask, or my team asks, how the network is working and why there is network latency there are reports about where the traffic is going and I do not have the input after moving or switching to Sophos. I can get the support regarding which IP is working where and which IPs are making traffic, and more.
The GUI could be improved. Furthermore, the unit we have could be modified because it's not that high of a torrent.