Fortinet FortiAnalyzer Reviews

I use Fortinet FortiAnalyzer to analyze network logs for increased security protection.

We can see and know our network traffic graphically.

Based on the logs of Fortinet FortiAnalyzer you can have it trigger actions. For example, if the log has a word or a sentence you specified it can send an alert to an email address or SNMP trap.

Fortinet FortiAnalyzer cannot use as SNMP Manager so cannnot receive any queries of SNMP. They should add this feature in the future to help manage solutions.

I have been using Fortinet FortiAnalyzer for approximately eight years.

I have found the solution to be stable. However, when the computer's resources are low the analysis becomes slow. There could be some optimization done.

Fortinet FortiAnalyzer is scalable. It can handle small to large-scale analysis.

The initial installation is easy. You set up the interface IP address and then you can have access. If you use the web GUI, it's very easy to connect to FortiGate and other Fortinet solutions.

If a company purchases FortiGate they should purchase Fortinet FortiAnalyzer together. The reason is FortiGate does not have an interface for analyzing logs but if you have the Fortinet FortiAnalyzer it can analyze logs and give reports on the logs giving you more protection.

I rate Fortinet FortiAnalyzer a nine out of ten.

We are using Fortinet FortiAnalyzer for analyzing network traffic and it provides us with log analytics.

Overall we are satisfied with all the features the solution provides.

There are a lot of solutions on the market and Fortinet FortiAnalyzer is limited. It cannot be used across multiple vendors. They can improve by advancing their technology.

The solution could improve by having better integration and support with Apple, Linux, and Microsoft solutions.

I have been using Fortinet FortiAnalyzer for approximately five years.

We have been making changes to the cloud signatures and categories because the market is changing and Fortinet FortiAnalyzer has been stable and reliable.

The solution is scalable but there are additional costs if you want to increase the scalability.

We have been satisfied with the support.

The installation was not difficult.

We did the implementation ourselves.

In the local market sometimes people are being charged more than other solutions. Although the market is competitive, legitimate suppliers do not receive a large enough discount to pass onto the customers. 

Fortinet FortiAnalyzer is not suitable for everyone, it is best suited for mid-sized businesses but if the price could be reduced there would be more customers in all-sized businesses.

I rate Fortinet FortiAnalyzer a seven out of ten.

We primarily use it for logging collection. 

It's a simple log collection tool. There isn't too much that's special or unique about it. 

It meets our expectations for the most part.

The solution does offer very useful integration capabilities. 

The interface is fine.

The initial setup is straightforward. 

The pricing could be better. They could work to make it more competitive on the market.

The report module could be simplified a bit to make it easier to use. 

Technical support has been very bad. They should work to improve their level of service.

I've been dealing with the solution for about seven years at this point. It's been a while. I have a lot of experience with it. 

The solution is stable and there are no bugs or glitches. It doesn't crash or freeze. It's reliable. The performance is good. 

The scalability might be limited depending on the installation.

We haven't been happy with technical support. We find the service to be quite bad. For example, in our last experience dealing with them, we had multiple issues and the outcomes were not great. We were disappointed with the help we received. 

The initial setup is not overly complex or difficult. It's straightforward enough. A company shouldn't have any issues with the setup.

The pricing isn't the least expensive on the market. They could work to improve it to make it more interesting for other companies. Adjusting pricing might be a good move.

I've personally looked into other security solutions, just to understand the market for myself. I've personally compared Fortinet, Meraki, Check Point, and Cisco ASA Firewall in terms of their safety and security capabilities. 

We're Fortinet partners. We have a business relationship with the company.

I'd give the solution a rating of six out of ten.

I'd still recommend it to other users, however. If the reporting, interface, and tech support were a bit better, I'd rate it higher. 

We primarily use the solution in order to analyze data.

If you have two devices that need to communicate with each other, so you can see where any issue is as you can see every single communication. It shows the flux of communication.

The most valuable aspect of the solution is its ability to pinpoint where the issue is. If two devices need to communicate together, you can see which interfaces they are using. 

The stability has been very good so far. We haven't had any issues with it.

Technical support is always quite responsive and very helpful.

Overall, the product is quite good. It integrates well and has good reporting and logging.

The user interface is good and it is quite easy to use.

From my point of view, at this time, the solution isn't lacking any features or functionalities. It's very complete for our purposes.

I've been working with the solution for less than a year. It's still quite new to me.

The product has been quite stable. There are no bugs or glitches. It doesn't crash or freeze. Its been reliable in terms of performance overall.

I can't speak to the scalability. It's not an aspect of the solution I've tried to deal with. I'm unsure if it expands easily or if it would be difficult to do so.

I personally have opened two tickets with technical support in the past and everything has gone very well. They were knowledgeable and responsive and they helped me solve the issues. I have no complaints about their level of service. I've been very satisfied with them.

By the time I joined my current organization, the solution was already installed and configured. Unfortunately, I was not a part of the process and therefore can speak to how easy or difficult it was.

I don't handle the licensing or the costs. I can't speak to how much it is for our company or if it is expensive or affordable. I'm not privy to that kind of information.

That said, it's my understanding, as a comparison, that Fortinet products are cheaper than their Cisco counterparts.

We just installed our latest version a few weeks ago. It's the brand-new version of the product.

For those considering the solution, I've been told that it's cheaper to buy Fortinet or FortiGate instead of buying Cisco ASA. If cost is a concern, it might be a good idea to look at Fortinet.

We are just customers and end-users of Fortinet. We don't have a business relationship with them.

Overall, I would rate the solution at an eight out of ten. It's largely been very good.

Fortinet FortiAnalyzer is simple and reliable. It does what the product says it would do. We have a lot of replacements in Turkey, Palo Alto, Check Point, and Forcepoint. We are replacing these various vendors with Fortinet products. But there are some software issues, like bugs or bug fixes. Otherwise, we are very happy with Fortinet products.

In terms of what could be improved, sometimes it's lagging and also has some graphical issues with the GUI. The correlation mechanism and the analytics are not as good as the competitors like Check Point or Panorama. But for IoT and SoT, it has graphical dashboards and analytical diagram tables that can correlate various logs from other products like FortiMail and FortiWeb, so it is a good mechanism for Fortinet products. If you have various Fortinet products for your firm, you can use FortiAnalyzer like a synchro mechanism.

But it needs development for software issues like the GUI bug, some logs not showing, not collecting some logs... They need to fix them.

I have been using Fortinet FortiAnalyzer for almost five years and maybe six years experience with Fortinet products.

The scalability is good. It is also good in the cluster nodes. You can make multiple FortiAnalyzer clusters groups, and you can distribute the logs between these FortiAnalyzer nodes. In other words, you can expand the scale.

We have SLA agreements with the customers, so we are giving the technical support.

The initial setup is very simple.

If it is an individual environment, it may take one hour to complete the entire initial setup.

If the hardware requires physical adjustments for the cabinet location or the protected area, then it may take 2 hours.

I would absolutely recommend FortiAnalyzer. Fortinet products have internal logging mechanisms if they have internal disks or stores. But if you have multiple location SD-WAN branches for multiple areas you are controlling with FortiGate, the hardware doesn't give any disk or storage, only limited storage. So if you want to go further on the logging, you have limited options, maybe one week or two weeks. So if you're using a FortiAnalyzer in the SD-WAN branches, you have a centralized logging mechanism, so you can collect all the logs in a  central location and you can make the correlations or analytics with all the devices. Otherwise, you can go device, device to see what is happening on each site.

On a scale of one to ten, I would give Fortinet FortiAnalyzer a seven.

To improve this rating, as I mentioned, I need to see the older bugs, the graphical user experience, made better, like Check Point. Check Point is more visual than FortiAnalyzer. If the customer has experience with the Check Point logging mechanism, they will seek additional features in the FortiAnalyzer, but it has to be more visual. 

So as I said, the graphical issues must improve.

We're resellers of Fortinet. The solution is a product for doing diagnostics on their security environment. Our primary clients are banks or medical organizations.

The solution is very easy to deploy. 

We are very familiar with the product. It makes it easy to use and implement. 

The interface is easy to configure and fast to deploy. For that reason we use FortiAnalyzer.

FortiAnalyzer only works with other Fortinet products. If you need to analyze the data from other devices, other vendors, this solution is not the best one to use.

The interoperability with other vendors is lacking. It's very limited. You can scan the logs from other vendors within FortiAnalyzer, however, it only collects these logs. You can't analyze anything coming from other devices or vendors. This works very well with Fortinet products. When you need to interoperate with other vendors, it's difficult, because you don't have that support.

In future releases, we'd like to see more granular reporting. The reports on offer right now are pretty short.

We've been using the solution for more than ten years at this point. It's been a decade or so.

The stability of the solution is excellent. It's very robust. We don't have issues with bugs or glitches. It doesn't crash or freeze. It's extremely reliable.

The scalability is okay, however, it depends. If you do your homework and make the right sizing, you don't need the scalability. However, if you need scalability, it depends on the kind of client. You may need to change the box or move the FortiAnalyzer to another analyzer - something bigger - or maybe move the analyzer hardware to a better machine, depending on the customer.

Normally, we deal with small to medium-sized organizations.

The technical support is very good. We have support right here in our country, and they give us very good support. We don't have a problem in this case. We've very satisfied with the level of service we get.

The initial setup is not complex at all. It's very, very straightforward.

The deployment is quick and it's easy to configure. How long it takes depends on the size of the company that we are working for. Normally, we're able to do it within the same day, and we deploy the device or the virtual machine within that time frame. Depending on the requirements of the company, we may also optimize the reporting.

We handle the deployment ourselves. We've been doing it for so long at this point, we've very comfortable with it.

We use different deployment versions of Fortinet solutions. We use, for example, 200E and 200D and 100 too. These are the most popular. Right now, use the virtual environment.

This is a product that is very good for when you're using a Fortinet ecosystem. If you have a mix of vendors, it's not recommended.

Overall, I would rate the solution at a nine out of ten. We've been quite happy with their offering.

We mostly use the FortiAnalyzer VM. We sell the license for this solution and also the professional service to have it. 

There are different types of business needs of our clients because they're in different business areas. We have firewalls on them. Some of them are on the perimeter network, and some of them are being used as the core network solution. We collect all the logs from their FortiGates. 

In some cases, we also use FortiWeb, which is a web application firewall. We also use FortiMail, which is an email protection solution or email security solution. We gather all the logs on FortiAnalyzer, and we try to do some flat counting and identify behavior or do behavior analysis from those logs and see what is interesting. Our team analyzes those events so that we can prevent any disruption of service because of the security, vulnerability, or issue.

Log collection is the most valuable. The UI looks great. It has a very good look and feel. We don't have the need to use solid state drives. We use mechanic drives, and we don't see any performance issues, so basically, it is doing fine.

It will be better if behavior or indicators of compromise were on the same licensing schema. Currently, it is an advanced feature that you have to purchase as an add-on. This is the reason we're trying to do the ELK so that we can integrate them and create those rules by using open-source software.

It will also be better if it has some more integration with IT service management tools so that we can do endpoint protection and response based on those indicators of compromise or those behavior analysis rules that create events that can automatically flow. We can inject that data into a service incident ticket on our IT service management tool, and that way we can assign the ticket to the proper teams and respond right away. Currently, we only have integration with ServiceNow. 

I have been using this solution for five years. 

We have the box or the VM running for more than a couple of years now. We do upgrade so that we can add new features that Fortinet is releasing, but it is pretty stable. It never crashes.

It is a little complex in terms of scalability and mostly because we're using a kind of high-end systems. For scaling, you have to order a different licensing and move more power and computing into a new architecture. It doesn't have that much scalability.

Our clients are SMB or small and medium businesses, but we also have plenty of customers on the campus wide area network.

I would rate them a five out of ten. They will have to move their base locations to a different city. I'm not a native speaker of English, and sometimes, when we're trying, there is a language barrier. They're located in India or some Middle East city. They can do really better. Sometimes their response is not as adequate as other vendors.

It was very straightforward. The deployment could take a couple of days to fine-tune all the rules for log management.

There are plenty of solutions. Fortinet FortiAnalyzer is very helpful if you are really into FortiGate devices. We handle other firewalls, but 80% to 85% of them are Fortinet, so it is a very good solution because it has native integration with everything, but I wouldn't recommend it if you have less than 50% of Fortinet firewalls. If you have agnostic technology, you can integrate all of them into the same solution. FortiAnalyzer is only for FortiGates right now.

I would rate Fortinet FortiAnalyzer a nine out of ten. It just needs more integration with IT service management tools for endpoint detection and response, which is the main objective.

We basically use it for security. We are using the latest version.

Its robust security and performance are the two main features. We also use the log reporting feature. 

We should be able to do the patch upgrades in a centralized manner. This functionality is currently not there. It would be good to be able to do the firmware updates from one place and at the same time. Currently, if we want to update all appliances, we require FortiManager, which is another solution from Fortinet.

Its documentation can be improved. It will be helpful for implementing the product and gaining knowledge for management purposes.

I have been using Fortinet FortiAnalyzer for three years.

It is stable.

It is scalable. This solution is being used for a government department with a lot of users.

Their technical support is good. We don't have any issues with their support.

In my earlier organization, I have used solutions from CheckPoint and Palo Alto. These are good products, but they are expensive as compared to Fortinet. 

The initial setup is very easy. 

We got help from Fortinet engineers. We have a tie-up with the Fortinet support team. They install it for us. 

We have three people for its deployment and maintenance. We have two network engineers and one technical support engineer.

Its price is okay for us. Fortinet products are cheaper than other solutions.

I would recommend this solution, but it also depends on the organization. We are using this solution, and we are getting good results. 

I would rate Fortinet FortiAnalyzer a ten out of ten. It is the best.