Fortinet FortiGate Reviews

The SD-WAN feature of Fortinet FortiGate has been most impactful in maintaining our network's integrity.

Fortinet FortiGate's threat detection capabilities are good for our use because it's an internal firewall; however, we haven't enabled some of the features that are there. We've enabled IPS and antivirus generally.

They could improve the response time and quality of support.

I'm not sure what additional features they need to have in the future to make it better. For the purpose that we use it, it is doing the job, but I haven't explored some of the features.

I have been using Fortinet FortiGate for seven years.

I haven't had any issues with the stability or performance of the actual firewall. It has been fine with no bugs.

We didn't have to think about upgrading or anything; it does what we bought it for. If it wasn't for the end of support and the end of sale, we would not think about changing it. We are considering similar products for upgrading, maybe newer or bigger hardware.

The product is scalable. Currently, 120 people are using Fortinet FortiGate in my company.

I would rate their technical support about six out of ten; I'm not fully satisfied. They could improve the response time and quality of support.

Neutral

Fortinet FortiGate has delivered financial and operational ROI to my organization. It took about two to three years to realize ROI with Fortinet FortiGate.

At the time we bought them, I was satisfied with their pricing; I don't know how the new pricing will be.

We have to pay additionally for maintenance or support; it is not all included.

I would rate Fortinet FortiGate a seven out of ten.

Fortinet FortiGate is a perimeter firewall which we are using for protecting our network and for defining policies so that only restricted access is given from outside to serve this purpose.

Fortinet FortiGate serves as our perimeter firewall which we utilize for protecting our network and defining policies to ensure only restricted access is given from outside.

A disadvantage exists when we are collecting the logs, as it sometimes becomes very difficult to interpret the logs that are generated from the firewall. The main challenge is finding out which IP is generating what kind of traffic.

We have been using Fortinet FortiGate for more than 10 years. We started with FGT 60, then moved on to 100, then 300, and currently we are using 501E.

It went smoothly and we have found it very useful because we have a redundant internet lease line. It takes care of all our requirements.

We have been informed by Fortinet FortiGate that it has already reached the end of service. It will be supported until next year, so we might procure a new solution. It cannot be scaled, so we will have to replace the box itself.

We have been using Fortinet FortiGate for quite a long time. As mentioned, we have used the last four series, and we found the product to be very stable. We regularly update it when updates are available, and the support has been good so far.

Positive

We are not using any previous solutions.

The system integrator performed the installation and it went smoothly. My team mentioned it is very easy to do the setup. Since it is software-based rather than hardware-based, and our people are very familiar with the software, the implementation proceeded smoothly.

The system integrator performed the installation.

We have received a very good ROI. It has provided significant time savings of almost 20-25%.

The solution is affordable.

My team has indicated that Fortinet FortiGate is more simple and secure compared to alternatives.

I rate Fortinet FortiGate a nine out of ten.

I work in presales exclusively. I work in the public sector, focusing on presales of architecture. I usually work with enterprise businesses rather than SMB businesses.

Fortinet FortiGate is a simple solution, and the integration with other solutions in the Fortinet portfolio, such as the Security Fabric integration, is competitive. It is simple for deployment, design, and integration with other Fortinet solutions. The SD-WAN capabilities are simple because the license includes this function, making deployment straightforward for Fortinet FortiGate clients.

The impact of the SD-WAN on network performance includes cost efficiency and automation. For performance, the solution is focused on the user experience with optimal path selection. Unified SASE secures remote connections for many use cases. We use AI and machine learning enhanced FortiGuard services and FortiAnalyzer to protect data centers through deep inspection and other functionalities.

Fortinet FortiGate is stable in the data center environment and in its functionality. It is scalable. The price is competitive in the market, especially when integrated with other Fortinet solutions. It has a return on investment without the need for additional licenses for products such as FortiSwitches and FortiAP.

I have 12 years of experience in total with Fortinet FortiGate.

Fortinet FortiGate is stable in the data center environment, and it is stable in its functionality.

The solution is scalable.

Their customer service is great because the TAC service in Latin America is available 24/7 in English and Spanish. I am happy with the service. In Latin America, when I call at night, the response is in English, and during the day, it is in Spanish. The only challenge is the language availability at night, but I rate it a 10.

The setup is simple and easy, with no difficult configuration required for the devices.

Fortinet provides a return on investment. When using FortiSwitches and FortiAP, additional licenses are not required.

I worked with the implementation and presales of Fortinet FortiGate in the past. In the past two years, I haven't worked with deployment, but I have experience with presales in the last year. I am familiar with the SD-WAN capabilities. The solution focuses on user experience because the path selection is optimized for the user or application.

I rate Fortinet FortiGate a 10 out of 10 as it is a great product.

We mainly use the Fortinet FortiGate for perimeter wall protection and internet usage, protecting our network from internet threats and our endpoints, so we've set it at a perimeter level.

The main benefit I have seen from using Fortinet FortiGate is the protection it offers because I can see threats that come through in real-time, and if they are blocked, I can see that. We are able to customize those features, and it's so customizable that I can tweak it to fit our environment; it has really been helpful.

The hardware-assisted DDoS protection in FortiGate has helped us. We are able to monitor traffic in real-time and block it as needed. We have enabled this feature in every policy we created, so it consistently checks for any threats.

What I appreciate about the Fortinet FortiGate is the throughput and the management aspect; it's easy to manage. Unlike what we used before, initially, we had Microsoft Forefront, so moving from that application-based to a firewall which is appliance-based was really helpful. 

I would like to see the licensing aspect improved because there is a feature we were yearning to use, the bandwidth monitoring feature, but it's licensed separately. It's not bundled with the enterprise bundle, and since we normally buy the advanced hardware support annually, we found out that the license is licensed separately. If they could bundle it together, it could really be helpful to us.

We've been using it for the last seven years, and it has been helpful. We are looking forward to upgrading as the one we are having is at the end of life already. We are planning to upgrade to the latest one, and we are looking forward to the features it will offer.

I have been working with Fortinet FortiGate for seven years.

I haven't faced any downtimes, crashes, or issues with it; it's very stable.

It is scalable.

My experience with technical support for Fortinet FortiGate has been excellent. I would rate them nine out of ten; they've been really good.

I decided to move from Microsoft to Fortinet FortiGate. Fortinet and Cisco were rated highly worldwide. We compared those two and settled for FortiGate because of its manageability. The Microsoft firewall used to fail frequently, so we didn't want to go to another Microsoft product.

The experience with the initial setup and deployment process of the Fortinet FortiGate was complex, especially in terms of linking users. In our environment, we normally use the feature for Active Directory, and we don't give everyone internet access. We've enabled this feature called SSO linked to our Active Directory, and we create groups there. Setting that up initially was really tricky, so we had to engage the support team to sort us out. However, moving forward, it has been very good.

There are no challenges with updates and upgrades. They are straightforward. We have support from Fortinet and the local partner. 

We had a local partner here helping us with the initial setup.

It has worked and surpassed our expectations. We've really benefited from that.

It's pretty average compared to our environment.

My advice for other users looking into Fortinet FortiGate for their environment is to choose one that will serve them based on their needs, whether that's throughput or the number of users. That's really important to ensure they don't do an overkill, as we initially thought we went for a big firewall, only to realize later that it was the right choice. For our upgrade, we'll just go for a bit higher, but generally, it really serves us. 

I would rate Fortinet FortiGate a nine out of ten.

We deploy the FortiGate Next Generation Firewall (NGFW) mainly in education, with retail, big retails, and other industries such as manufacturing, agriculture, and some banking.

Some of the best features with the FortiGate Next Generation Firewall (NGFW) particularly are its security focus, the easy to configure IPS, the Layer 7 capabilities, and the easy way to configure different VDOMs in each equipment so we can separate the different features or the different sites that the client may use in one data center.

The application control feature has helped manage the network traffic with filtering and antivirus capabilities. When we use it in SD-WAN solutions, we can apply in a unified and easy way the different profiles for each branch, and we can also have one profile for the hub if they have a data center with some servers connecting to the FortiGate. We can have different profiles, and it helps us to detect easily any threat that we may have in the network and control the outbound traffic to the internet, restricting those applications or those web services that the final users don't need to have access to.

The FortiGate Next Generation Firewall (NGFW)'s anti-malware protection is very effective, as we have demonstrated through our work with this feature.

The FortiGate's analytic tools have provided insights into network security events by implementing the IOC license, Indicator of Compromise, in some customers, which has been very helpful because it demonstrates that we can identify the threats more easily or the difference in the way that the customers use the network. We can identify the possible behavior of the customers on the network and can identify the possible threats and isolate that customer if we receive any threat for the network or the company.

The web filtering has also helped for maintaining network security because we have been implementing some filters in customers so they don't have access to potential sites that can make a threat to our network, for example, to access peer-to-peer networks or any other sites that are not allowed in the company.

The FortiGate Next Generation Firewall (NGFW) could be improved in application control if they can have a bigger baseline of applications that they can identify, because this is something that is always growing. I know that Fortinet with the team is updating this database, but it's something that grows at a pace that is very difficult sometimes to keep up. This applies to all vendors, not only Fortinet.

I would rate their support for the FortiGate Next Generation Firewall (NGFW) on a scale of one to ten as 7.5.

Positive

The pricing for the FortiGate Next Generation Firewall (NGFW) is fair.

My company has a business relationship with Fortinet as we are both resellers and we also use the technology. If they had any questions regarding my feedback on the FortiGate solution, not the NGFW, but the FortiGate, it would be okay for them to contact me in that regard. I rate the FortiGate Next Generation Firewall (NGFW) 8.5 out of 10.

We are using Fortinet FortiGate for branch-to-branch connectivity. It handles internet outages, internet breaks to the cloud, and internet connectivity to the internal systems in the branches.

The SD-WAN and VPN tunnels are the best features of Fortinet FortiGate in my opinion. My major workload runs on Fortinet FortiGate, as it serves as the main backbone of the network.

The firmware in Fortinet FortiGate needs improvement. Some firmwares have many bugs, such as filter issues and VPN connectivity problems. Last month, with version 7.4.6, we experienced web filter issues. They need to fix the bugs before releasing firmware.

We have been using Fortinet FortiGate for up to 15 years, and it performs well.

In my opinion, Fortinet FortiGate is a stable solution.

Fortinet FortiGate's scalability is flexible and scalable.

The customer service and technical support of Fortinet FortiGate rates seven out of ten. The technical support and RMA process are acceptable. We don't raise many tickets, but when we do, we receive late responses for technical tickets, which is why I rate it seven out of ten.

We used Palo Alto and Cisco Meraki before choosing Fortinet FortiGate.

The initial setup of Fortinet FortiGate is very easy.

We used in-house resources for our setup instead of an integrator, reseller, or consultant.

We currently have approximately 110 Fortinet FortiGates and 40 managers. Each year we increase by almost 10 to 20 FortiGates. We are also considering FortiSASE and have discussed this with Fortinet FortiGate. We are planning changes in return on investment from this solution this quarter.

The pricing depends on market competition, which is high because Cisco Meraki and Palo Alto offer similar costs for pricing, setup, and licensing of Fortinet FortiGate. They need to compete with lower margins as prices are getting high for Fortinet FortiGate.

We are currently using Palo Alto and Cisco due to some issues with the Fortinet FortiGate sales people. We have installed equipment in almost four locations, and we are using these three solutions simultaneously.

We are planning to implement SASE and have already discussed this with Fortinet FortiGate. We are currently only discussing the possibility of using SASE.

The integration of SD-WAN capabilities with Fortinet FortiGate has positively impacted application performance. The implementation is straightforward for new users. My experience in integrating SD-WAN capabilities with Fortinet FortiGate has been excellent, rating it 10 out of 10.

Overall, I rate Fortinet FortiGate 9 out of 10.

We deal with messaging, specifically A2P, P2P, and RCS, a rich communication service.

We use Fortinet FortiGate 500, 600, and 900E, which are mainly used for data center activities.

Fortinet FortiGate has helped us significantly in many ways. Previously, we had multiple data centers interconnected over IPsec tunnels. Each IPsec tunnel was individual, and if that tunnel went down, manual intervention was needed to reroute the traffic to the available path. To avoid such cases, I introduced the SD-WAN concept using ADVPN (auto-discovery VPN). With this solution, I have almost four sites where critical traffic flows, avoiding many impacts. The reason we prefer Fortinet FortiGate SD-WAN is that it enables automatic establishment of the next available VPN if any connectivity goes down, ensuring all hub and spoke connectivity flows through the hub. Using ADVPN, spoke-to-spoke communication is established so that hub bandwidth or hub firewall does not get overloaded.

The best features in Fortinet FortiGate are the SD-WAN, IPsec tunnel, and the SSL VPN. It is very user friendly, and we can integrate multiple underlay links to the firewall. From there, you can manage it, and by using this SD-WAN concept, the device itself will make decisions about which path to take to reach the destination. If there are any issues on the desired path, it will automatically select the best path based on the configuration defined in the SLAs. This feature is particularly impressive. Before introducing SD-WAN, I had perimeter devices such as independent routers where intelligent routing across the underlay links was not possible.

It is very informative and easy to implement. The GUI is very user friendly. Using this solution, we can easily integrate security profiles based on needs and requirements of internal stakeholders to avoid malicious traffic or security-related issues.

When onboarding any Fortinet FortiGate to your production platform with active internet connectivity, the device connects to FortiGuard to fetch all signatures and behavioral patterns based on your security policy. It detects anomalous traffic and packets undergo deep inspection. If there are any anonymous or malicious activities, it immediately blocks them based on defined policy actions and alerts the end user and network administrator via FortiManager or via the cloud.

I don't have any areas for improvement in terms of features. With the introduction of AI/ML, they are performing behavioral pattern checks in terms of security. They have removed the SSL web-based and tunnel-based features, and they are improving in many aspects including the UI. However, throughout this year, their support has been very poor.

We have been using Fortinet FortiGate for more than 10 years.

It's stable. I would rate it a ten out of ten for stability.

It's scalable. I would rate it a ten out of ten for scalability. 

We have clients with more than 2,000 users.

Their support needs improvement. When raising a service request on the portal, it normally takes two to three days for a response. Even for production issues, they do not initiate contact. The customer has to call the TAC before they schedule calls, which is problematic.

Neutral

The deployment is very easy. People who are familiar with Fortinet FortiGate can implement it through CLI and GUI. It is very user-friendly for deploying complex configurations. There is also a tool called FortiExporter, which can convert all configurations from any OEM to Fortinet FortiGate.

It doesn’t require much maintenance. The only maintenance activity required is firmware updates.

We have approximately 84 devices in production, demonstrating our investment in Fortinet FortiGate and its usefulness in many ways.

We have invested almost 60% to 70% in Fortinet FortiGate as we don't have any other firewall apart from it. In some cases where we had Palo Alto, we removed it and purchased Fortinet FortiGate. We are using Fortinet FortiGate as our production firewalls in our organizations, corporate offices, and all locations.

It's economical.

In terms of cost, features, and security, everything is top-notch. I would recommend everyone to use Fortinet FortiGate instead of purchasing expensive firewalls such as Palo Alto and other OEMs. It is more economical and provides more flexibility and granularity in terms of access.

Fortinet is a market leader. It is phenomenal in terms of price and kind of services.

I would recommend Fortinet FortiGate to others. I would rate it a ten out of ten.

I currently work in the automotive industry, providing software for automotive dealers, and we only use Fortinet FortiGate for corporate purposes.

One of the best features of Fortinet FortiGate is how effectively the software is written; the virtual network interfaces significantly outperform Cisco in my project. I didn't need separate switches or load balancers because I was able to resolve internal FQDNs of the load balancers, which was impressive. The centralized management allowed us to manage 50 devices effectively, which I found better than Cisco.

During a recent upgrade from old devices to the latest ones, corporate IT faced challenges as there was no straightforward migration process, requiring many manual steps. I've completed upgrades with Cisco before where the process was simple, but this time it wasn't the case for corporate IT. I also heard that SSL-based VPN will be discontinued, which could be concerning.

I have used Fortinet FortiGate for several years; initially, I brought FortiGate to my previous company during a project.

Integrating SD-WAN capabilities with Fortinet FortiGate is straightforward, with minimal complexity involved.

My experience with Fortinet FortiGate support has been excellent, as I was fortunate to have an office in Vancouver where Fortinet had staff. We worked closely with tech personnel through the project. While I usually don't give perfect scores, the support was great. However, one area for improvement is that many functions can only be accessed via CLI, which has discrepancies between the web interface and direct connection.

I pushed corporate IT to replace SonicWall with Fortinet FortiGate, and now in my current company, we have FortiGate that we recently upgraded to the latest models.

Managing Fortinet FortiGate involves three corporate IT personnel, and although it initially took them quite a while to handle some tasks, I provided scripts that allowed them to work much quicker. What took them a day or two is now a job of just 10 to 15 minutes. Scripting and utilizing Git repositories would make things smoother, and I intended to publish modules for Terraform but haven't had the time yet.

Overall, I would rate Fortinet FortiGate around an eight, as there is always room for improvement.