Fortinet FortiGate Reviews

Fortinet FortiGate is mainly used for next-generation firewall features.

Most of our customers primarily use FortiGate as a general-purpose firewall and for remote work. During COVID, they needed to enable the SSL VPN licenses, which was a straightforward process, and they benefited greatly from that. However, apart from this, I don’t see a significant differentiator between FortiGate and other firewalls.

Most of our implementations are standalone. We have a few integrations as well with Active Directory and other things. It is pretty straightforward, and we have not had any issues.

The main value comes from the simplicity of the product in terms of configuring and managing. 

Their user interface could be improved from a configuration perspective.

I have personally used it for about five years, but the organization has been using Fortinet FortiGate for the organization and customers for about 10 years.

Stability is excellent. We have not had issues from the product itself.

We have deployed Fortinet FortiGate from 50 user locations to 100-200 user locations. We have not had any issues with any of those models.

I would rate their support an eight out of ten. There's always room for improvement. 

We are a small system integrator and an authorized partner for Fortinet FortiGate, Cisco, Cisco Meraki, Palo Alto, Sophos, and Check Point. We cater to the SMB and upper SMB market and some enterprise customers. Most customers do not require fully fledged integrated solutions.

In Sri Lanka, there is about 40% market penetration for Fortinet. They have partnerships with two telcos, so most corporates with MPLS links who wanted to move out with the operator are offered managed SD-WAN solutions using Fortinet FortiGate.

We have Cisco customers as well, including local customers and global customers whom we support using Cisco firewalls. Comparing Cisco and Fortinet firewalls is challenging. You cannot compare a Ferrari with a normal Nissan sedan from a product and feature perspective. The SMB market segment and the upper SMB market segment are very price-conscious. Cisco does not offer firewalls that are competitively priced for this market segment, especially compared to Fortinet's offerings. They only recently released the 200 series, which can compete with the FortiGate 50 models that we sell.

Fortinet FortiGate is pretty straightforward compared to Cisco.

It is mostly on-prem. One or two clients are using it on the cloud.

Our customers get their ROIs on the price points that we sell in this market.

For the market and the segment that we cater to, the FortiGate pricing structure is sufficient.

I would rate Fortinet FortiGate a nine out of ten.

On-premises

My typical use case for Fortinet FortiGate involves it being one of the best solutions for next-generation firewall. In terms of simplified control and in-built SD-WAN solution, there are no licenses for VPN. From a commercial perspective, it is beneficial. Technically, it has successfully stopped attacks, which is the reason the customer was using Fortinet FortiGate.

The dynamic segmentation feature in Fortinet FortiGate has an in-built switch and wireless access point controller. Fortinet FortiGate has a feature called VDOMs, virtual domains, where you can create multiple virtual firewalls within a single hardware, which is one of the fantastic features.

In terms of effectiveness, Fortinet Unified SASE covers all three use cases: Secure Internet Access, Secure Private Access, and Secure SaaS access. For any security implementation, networking is essential, and Fortinet FortiGate provisions that through FortiGate's SD-WAN. The integration with FortiSASE and Fortinet Forti-SD-WAN is very simple and straightforward.

In terms of improvement for Fortinet FortiGate, I don't find any needed improvements regarding hardware because it is very good. The operating system has most of the features. 

At this moment, I'm not finding any other improvements in this case. They are advanced in this segment. Fortinet FortiGate has in-built automation features and cyber risk assessment.

One suggestion might be to increase the storage size in the hardware for local reporting.

I have nine years of experience working with Fortinet FortiGate.

Fortinet FortiGate is a very stable solution.

In terms of scalability, Fortinet FortiGate provides more throughput compared to other OEMs, so the value for money is very high. If it is a VM, it can be scalable. In terms of hardware, it's all about scalability, throughput, and managing the number of sessions based on the hardware sizing. If the team sizing the firewall does it properly, then the solution is easily scalable.

I would evaluate customer support from Fortinet FortiGate as seven or eight out of ten. The reason I do not give 10 out of 10 for customer support is that while they follow the SLA and there is no issue with that, for them it might be P3, but for us, it might be P1 or P2 case. Remote assistance requirement should support them.

After implementing Fortinet solutions, I evaluate the return on investment as providing more throughput performance. The performance is very high in terms of packet inspection and handling the traffic. It is one of the best solutions in that case. The total cost of ownership will be low because there is no extra additional license for SD-WAN, VPN, or the VDOM feature. Considering all those things, it is a very cost-effective solution.

My advice to others looking into Fortinet FortiGate is that they can consider the return on investment or total cost of ownership. Fortinet FortiGate is definitely a good solution, not less than a better solution. It's very good compared to Palo Alto or Check Point. Those using the Fortinet FortiGate firewall should start using the features part of the solution, either it can be a WAF solution or a security rating or automation features. They can directly integrate with the cloud firewall. Operation technology is doing very well because there are many features where the network and security administrators should start enabling and making use of it. On a scale of one to ten, I would rate this solution nine or ten.

On-premises

Other

The typical use case for Fortinet FortiGate is perimeter security, which is why our clients use this solution.

We are an implementer of Fortinet solutions.

It works well to protect the edge. For protecting the edge, Fortinet FortiGate secures any data traversing the network back to the cloud or data center through encryption. I have found it easy to configure, which results in no problems.

The security services provided by Fortinet FortiGate firewall are among the best. They have been in Gartner's quadrant for a very long time, which always helps.

Fortinet FortiGate has been able to secure mission-critical data effectively. It secures our customer's network properly, so that's always beneficial.

The ability of Fortinet FortiGate to provide network and security convergence is impressive, as they have stable features including application control. They also have advanced routing policies that set themselves apart in network security. Their solutions gel effectively with a single console for management, which is a significant advantage.

FortiOS is quite good in my experience with Fortinet FortiGate, and it works very effectively and is stable for companies. The customers have given feedback that FortiOS has been very stable for a long time. 

From a feature standpoint, it's easy to set up if people want to try and set up VPNs and other configurations. Policy control is quite nice, and we have a lot of experience with this solution, which helps us a lot.

Their support can be better, and there should be better policies for immediate replacement in critical situations. Their replacement policy varies depending on the type of support subscription. With the standard support subscription, if the device goes down, the customer has to first ship the box, and then Fortinet sends the replacement. With the higher support, the customer has to ship the device after they have the replacement. It would be better for customers to get immediate replacements even with a standard subscription.

I have more than 10 years of experience working with Fortinet FortiGate.

It is very stable. I would rate it a ten out of ten for stability.

If you size the solution correctly based on the customer's network, number of users, and throughput required, there is no problem regarding scalability, so I would rate it a nine out of ten for scalability.

We have small, medium, and large customers who have opted for Fortinet FortiGate.

I would rate technical support from Fortinet an eight out of ten. Their technical support can be improved slightly as we sometimes experience delays in support for urgent customer needs.

Positive

The typical deployment model for Fortinet FortiGate is mostly on-premises. However, there is a virtual appliance available for cloud setups, but in India, most of the sales are for on-premises appliances.

Fortinet FortiGate definitely reduces the total cost of ownership because it offers better management capabilities through a single platform. Its widespread use makes skill sets more available, making it much more cost-effective for customers than other products which may require higher resource costs.

It is more affordable than Check Point and Palo Alto. Another thing is that all the features and the OS remain the same irrespective of the size of the device.

Pricing-wise, Fortinet typically provides one-year support with the firewall appliance. There is also an option for three years which is how their licensing works. They also offer add-ons for features to keep more logs or data, which is standard across their competitors as well.

The price-to-performance ratio for using Fortinet FortiGate is always better compared to any other competitor, so they are rated better than the likes of Check Point or Palo Alto.

The network availability improves when implementing a Fortinet solution; it's definitely much better for a customer compared to having no solutions in place. They are affordable overall.

I would rate Fortinet FortiGate a nine out of ten.

On-premises

We use FortiGate as the edge firewall. We integrate it with our APIs over Microsoft Azure. We work in the VOIP industry, and our services are prone to latency. Security is a major concern for us as a U.S. research company, where we frequently test attacks. FortiGate handles these attacks well.

FortiGate has led to a reduction in our security budget. Our management decided to switch to FortiGate because it offers all the necessary features and even improved features within our budget.

I'm looking forward to FortiGate's dashboard features, insights, application oversight, and monitoring, which could help us significantly.

As of now, I haven't identified areas for improvement. However, once the firewall is in production and all traffic is shifted, I might be able to provide more feedback. The configuration part was challenging, especially converting configurations from another OEM to FortiGate.

I have been working on FortiGate devices for around four years. In my previous role, we used FortiGate based on the requirements and budget constraints. Currently, my organization is transitioning to FortiGate in the Azure environment as part of the migration phase.

I rate FortiGate's stability as a nine out of ten, reflecting that there have been no major issues with stability so far.

FortiGate's scalability is rated eight out of ten. We expect network expansion both over the cloud and on-premises, and we believe FortiGate will perform well in this scenario.

We had a single instance requiring FortiGate's technical support, which was effective in solving the problem. I rate their support as eight out of ten.

Positive

We used other vendors, like Cisco. FortiGate was chosen due to its cost-effectiveness and its ability to offer improved features within our budget.

The installation process does not take much time, but the migration phase from Cisco to FortiGate is expected to take about ten days.

We have a separate team responsible for deployments over the cloud, while our networks and security team manages migrations and operations of the devices.

There has been a cost reduction in our security budget after implementing FortiGate, attributed to its offering of essential features at a reduced cost compared to previous vendors.

We pay for additional services like perpetual licenses. Despite this, FortiGate is considered a cost-effective solution. I rate the pricing as a five out of ten, reflecting a balance between cost and benefit.

We also use other vendors like Cisco, Netgate, Ubiquiti, and others in our environment.

I recommend this product. In future updates, it would be beneficial to see automation features, such as real-time alerts via phone, which we currently get from other OEMs.

I'd rate the solution eight out of ten.

Private Cloud

Microsoft Azure

The solution is used for protecting offices for outbound traffic.

To be brutally honest, it wasn't my choice of vendor, but it seems to be able to do everything, though its configurations have to be quite specific. This is neither a positive nor a negative aspect, it is simply how the solution functions.

The operational logic is not as straightforward as a Sophos XGS device. When creating rules in the Sophos firewall, they are more intuitive than in the Fortinet FortiGate IPS device. The Fortinet FortiGate IPS device is more complicated.

The solution needs to be simplified.

I have been using Fortinet FortiGate IPS for six months.

The initial setups are acceptable, though I have not been the one implementing them.

The solution is stable.

It is crucial to size your hardware correctly to avoid problems.

The solution serves about five users.

The support package being an additional extra, even with an enterprise package purchase, is pathetic.

Though I haven't had direct experience with support, the fact that it doesn't come by default, which is very misleading compared to other brands, warrants a rating of two out of ten.

Negative

A basic setup can be accomplished in a few hours, but significant customization is required to achieve the desired configuration.

I view it from the perspective that making an investment in the product prevents potentially larger costs when something goes wrong.

The solution is more affordable compared to alternatives.

The solution is suitable for small-medium customers, provided they have the ability to set it up.

The implementation has been successful so far.

On a scale of 1-10, I rate Fortinet FortiGate IPS a seven.

On-premises

Other

We use Fortinet FortiGate as edge protection for the customer site. Right now, we are trying FortiNAC before deploying it for our customer. We link Fortinet FortiGate Firewall to our SIEM solution. We have a cybersecurity department, and we aggregate all the logs of the firewall, the proxy, the PC, virtual machine, and other systems.

The interest of the Fortinet FortiGate appliance is the ability to manage quickly and easily the different functionalities. It's easier to use rather than Palo Alto, for example. AI should be a good improvement. The only difficulty that I have today with the Fortinet FortiGate is that on the Forti appliance, there are many functionalities.

As we are trying FortiNAC right now, there is some improvement needed on the product. For the rest, perhaps having more packages would be beneficial. We do not use FortiManager for our own usage. We have developed some scripts using Ansible and we automate everything.

We have been using the solution for more than 10 years.

The question concerns failures on the appliance or security breaches.

Not all functionalities are scalable.

The access to the support is good. When specific information or professional services support is needed, the professional services are very expensive.

Most of the time we are implementing the UTP service.

The implementation is handled by my team. They are involved in the deployment for the customer and use it day by day. We have three people dedicated to the security part on the Fortinet FortiGate and roughly eight people working on it in the security team.

The cost reduction potential exists but is difficult to quantify.

Fortinet is increasing its value in this area. It's easier to use compared to Palo Alto.

The functionality is acceptable but nothing really impressive. For some customers, we are using Fortinet FortiGate, FortiNAC, FortiAnalyzer. FortiMonitor is used for one customer. For FortiMonitor it's FortiAnalyzer. We don't use FortiAnalyzer on AWS. For both, we need the approval of the head office.

On a scale of 1-10, I would rate this solution between seven and eight.

On-premises

Amazon Web Services (AWS)

Mostly firewalls.

The best features of Fortinet FortiGate include everything about networking, such as routing and VPNs. Fortinet FortiGate is specifically user-friendly with an easy guide. It is easy to follow and learn about and work with. It has resources available all over the internet with an extensive database. It is very popular, so every community discusses Fortinet FortiGate. Every problem has been solved at some point.

Without a license, it becomes difficult to implement static DNS. The FortiDDNS.com functionality is particularly challenging to access without a license.

I have been working with Fortinet FortiGate for approximately a year and a half.

Fortinet FortiGate is quite stable. The main problem occurs when customers do not update their Fortinet FortiGate properly and regularly. Most issues stem from firewalls not being updated. I have not encountered any problems with Fortinet FortiGate devices.

I have not opened many cases due to lack of need. When we do open cases, we receive fast and friendly replies. The support has been good, though I have not experienced significant issues to fully evaluate this aspect.

I have worked with other firewalls including Palo Alto, specifically their Prisma Access SASE solution. I have also briefly worked with Cisco systems.

I am not in that field, but it is quite expensive, especially for personal or home use.

We recommend it primarily because we have more knowledge in the Fortinet FortiGate field. Customers ultimately choose what they prefer. We work better with Fortinet FortiGate due to our extensive experience with it.

I have not used FortiGuard extensively as it is not in my field. The only SASE solution I have used is Prisma Access from Palo Alto, not the Fortinet FortiGate SASE. The interface is very user-friendly and easy to use, though knowledge of networking aspects, VPNs, and protocols is necessary. Fortinet FortiGate offers great compatibility with other Fortinet FortiGate functions such as IDS, antivirus, and sandbox features.

All problems we have encountered have had straightforward solutions. Throughout my year and a half working with Fortinet FortiGate, I have not found myself needing additional features.

I rate this solution 8 out of 10.

On-premises

Other

I used Fortinet FortiGate to protect some perimeters, and I used it a lot for detection, filtering, domain control, and security functions and features. 

I worked for a company that used Fortinet FortiGate to provide services to many customers across various industries and through different environments. Some companies ranged from five to 50 to 100 users, and others were double that size, and even more.

We improved a lot of our users' security, including malware from outbound internet. It reduced downtime and helped detect and block malicious actions. The realization of benefits was immediate.

The most valuable features of Fortinet FortiGate are that it's simple to implement all necessary settings, and it's quite fast. 

Their web interface to manage it is excellent, even compared with other providers. 

With Fortinet FortiGate, we improved security significantly. It blocks a lot of malware from the internet and even between our hosts in different networks, thus enhancing our security and reducing any downtime by blocking problems that could stop operations.

One of the most important areas for improvement for Fortinet FortiGate is the limited resources for tests. I was limited to a few interfaces for one month, and it would be great if Fortinet could improve these features in their test versions.

I used Fortinet FortiGate for three years in total.

I would rate the support with Fortinet FortiGate a ten out of ten. 

We had a few problems, and whenever we needed support, they attended to us in a few hours or days based on the severity level, resolving the problems with minimal impact on the environment.

Positive

They were using SonicWall and pfSense before switching to Fortinet FortiGate.

Fortinet FortiGate is more user-friendly when it comes to the interface and setting every feature you need, and keeping it working as expected to protect the network, while SonicWall is too advanced and very laggy and confusing to use. SonicWall does not do anything better than Fortinet FortiGate.

The initial setup for clients was very straightforward, easy to implement, and required few steps to keep it working with Fortinet FortiGate. It takes about one day, around ten hours of work for small companies and normal offices to deploy Fortinet FortiGate. That said, it might take longer for bigger networks. However, it's not too much time compared to other companies or providers.

It required around two or three people who understand the network to deploy Fortinet FortiGate, along with one or two more for setting devices or any changes and tests to ensure everything is working as expected. The total was somewhere around five people or slightly less, depending on your knowledge about the existing network.

I cannot calculate the exact return on investment from Fortinet FortiGate. We evaluate it based on the impact of downtime when we have problems in the environment, however, the ROI is less than a year. 

Fortinet FortiGate helps save time and improve efficiency by aggregating logs that help us understand what's happening, thus improving our detection time and reducing operational errors. We reduced our time by approximately 30% with Fortinet FortiGate.

Fortinet FortiGate's pricing is comparable to others.

I am currently working for another company and not using Fortinet FortiGate. The last time I used Fortinet FortiGate was on March 25th, just a few months ago. 

I work as a technical user in cybersecurity monitoring. My current company is a partner, however, I don't have any relation with sales. 

On a scale of one to ten, I rate Fortinet FortiGate a ten.

The typical use case for the Fortinet FortiGate firewall for my clients is its ease of use. My clients are using Fortinet FortiGate as SD-WAN.

The effectiveness of Fortinet's unified SASE in providing consistent security policies is notable because there is one security profile from either the head office or the branch office, allowing your profile to move seamlessly with you wherever you go. You have end-to-end visibility, and you can look at the analytics. To me, that moves towards SASE.

My clients appreciate it for its features. It is easy to install and manage, and it offers all-around protection, including web filtering, content filtering, IPS, and IDS.

My clients find the next-generation firewall feature of Fortinet FortiGate to be particularly valuable. It provides internet security, network security, cloud security, ZTNA, and SD-WAN security. There is a unified agent for FortiClient. There is centralized management.

Areas of improvement for Fortinet FortiGate include the need for more training and certification, especially when dealing with distributors globally, which presents challenges in product availability and delivery timelines.

There should also be more training and certification.

I have about 10 years of experience with Fortinet FortiGate.

I find Fortinet FortiGate to be a stable solution.

Fortinet FortiGate is a scalable solution, as you can start small, maybe with FortiGate 40F, and then move to FortiGate 60F or FortiGate 80F, depending on your needs.

It depends on who your distributor is. 

Neutral

It is not straightforward, but the implementation is pretty good overall. Every site is different for me. There is no standard site. We have a few different issues here and there, but overall, it's pretty good and straightforward to install. Its integration is not difficult.

It is a matter of learning and understanding the reasons why people need Fortinet FortiGate.

Fortinet FortiGate positively provides my clients' organizations with a high return on investment. There is visibility into network operations, allowing us to identify network issues. It has advanced security features. You can achieve about 200% ROI over three years, while enhancing IT teams' productivity by about 50%. It simplifies security across branches and enhances hybrid and cloud security. There is even a feature where you can predict the application performance.

It's very competitive.

Many users nowadays prefer agentless installations over installing agents on their devices, which presents challenges for endpoint security, especially concerning ZTNA, VPN, and endpoint protection.

I would rate Fortinet FortiGate an eight out of ten.

On-premises

In our organization, FortiGate Next Generation Firewall (NGFW) serves as the main security system for our firewall needs. I have utilized it to manage the firewalls and some other security appliances, such as VPNs. Currently, my usage focuses primarily on firewall management. I set up rules, search for logs, and consult logs when issues arise. This approach covers most of our security management tasks.

One of the most valuable features of FortiGate Next Generation Firewall (NGFW) is the ease of usability it offers. It is quite easy for me to learn to use. Additionally, FortiGate Next Generation Firewall (NGFW) has improved our efficiency in setting up security and provided us with more visibility over some issues and incidents we previously faced.

FortiGate Next Generation Firewall (NGFW) could be improved by including more templates for setting rules or regular jobs. I do not recall if the software includes any AI features.

I have had experience with FortiGate Next Generation Firewall (NGFW) for about five or six years.

When deploying FortiGate Next Generation Firewall (NGFW), it required one week for the initial setup and just two hours for effective deployment. There were no significant issues during this process.

In my experience, there are usually no significant stability issues with FortiGate Next Generation Firewall (NGFW). However, updating the software during issues can be quite convoluted, especially if there is an unexpected attack, such as on a Saturday.

Customer service with Fortinet for FortiGate Next Generation Firewall (NGFW) has been quite good. We experienced a major issue during one of the upgrades, and it took about an hour to reach support and rectify the problem.

Positive

Before using FortiGate Next Generation Firewall (NGFW), we used Cisco for our firewall needs. Cisco presented a lot of usability challenges. Setting up firewalls and rules with Cisco was difficult and required extensive knowledge of their system, which led us to switch to FortiGate Next Generation Firewall (NGFW).

The initial setup of FortiGate Next Generation Firewall (NGFW) was relatively smooth. It took about one week for the complete setup and two hours for the actual deployment.

The deployment involved two people from my side, and we also had assistance from a vendor during the setup.

In terms of return on investment, FortiGate Next Generation Firewall (NGFW) has been straightforward. It has notably improved our efficiency and visibility.

The pricing of FortiGate Next Generation Firewall (NGFW) is reasonably affordable. It is suitable for mid-level and high-level companies, though it might not be cheap for small companies.

I would recommend FortiGate Next Generation Firewall (NGFW) to others. Despite some issues with upgrades and vulnerabilities, Fortinet quickly addresses concerns. Overall, on a scale of one to ten, I would rate FortiGate Next Generation Firewall (NGFW) as an eight.