Fortinet FortiGate (BYOL) Next-Generation Firewall
Fortinet Inc. | 7.4.1Linux/Unix, Other 7.4.1 - 64-bit Amazon Machine Image (AMI)
External reviews

External reviews are not included in the AWS star rating for the product.
Best of breed NGFW (All Market Segments)
What do you like best about the product?
Fortinet FortiGate is the best for all segment firewalls. It can be in SMB or Enterprise. It has the best GUI and ease of use versus Checkpoint, Cisco, and Palo Alto. The Fabric feature helps you give visibility to all endpoints for better correlation, application control is always up to date, SDWAN in a firewall was a brilliant move. SSLVPN is also a game changer during this pandemic since most of its competitors sell this separately.
Activating a license is as easy as counting 1 2 3. Support is also responsive, but you will barely call one since the Cookbook has tons of FAQ.
Activating a license is as easy as counting 1 2 3. Support is also responsive, but you will barely call one since the Cookbook has tons of FAQ.
What do you dislike about the product?
The reporting. You need to have FAZ to get better reports (built-in) than competitors (for SMB Markets).
What problems is the product solving and how is that benefiting you?
1. Perimeter security and defenses - IPS, Application Control, Web Filter, Proxy, Sandboxing
2. Secure SDWAN - for better security connectivity across branches, not just addressing the SDWAN but also providing a secure way of doing it.
3. SSLVPN - Work from home ready.
4. Stable and realible NGFW
5. Cloud Security - it's also available in most cloud providers via marketplace
2. Secure SDWAN - for better security connectivity across branches, not just addressing the SDWAN but also providing a secure way of doing it.
3. SSLVPN - Work from home ready.
4. Stable and realible NGFW
5. Cloud Security - it's also available in most cloud providers via marketplace
Recommendations to others considering the product:
Way better than Checkpoint in terms of administration and setup with at par if not greater security.
More affordable than Checkpoint, Palo Alto, and Cisco.
Also good pick for SMB.
More affordable than Checkpoint, Palo Alto, and Cisco.
Also good pick for SMB.
- Leave a Comment |
- Mark review as helpful
Seperation one Firewall to Multiple Logical Firewall
What do you like best about the product?
FortiGate have feature called Virtual Domain (VDOM). With this feature, we can split one FortiGate to Multiple Logical FortiGate; each logical FortiGate can have a dedicated configuration (Firewall Policy, Routing, Admin Access, ...).
This feature is helpful to enterprises when they need multiple FortiGate devices to place at the dedicated zone, but they have only one FortiGate appliance. In this case, we can use split one FortiGate appliance to Multiple VDOM (each VDOM can act as a logical FortiGate).
This feature is helpful to enterprises when they need multiple FortiGate devices to place at the dedicated zone, but they have only one FortiGate appliance. In this case, we can use split one FortiGate appliance to Multiple VDOM (each VDOM can act as a logical FortiGate).
What do you dislike about the product?
I do not have any dislike point for this products.
What problems is the product solving and how is that benefiting you?
Separation one Firewall into Multiple Logical Firewall to comply with regulation
High Performance Firewall for IPSEC VPN with Security Filter
What do you like best about the product?
Currently, we are using VPN Star topology established by FortiGate Devices. All the FortiGate at Branchs are connecting to the FortiGate at Center via VPN Site to Site for user at branch can connect to application hosted at Site Center.
We also combine Security Filter (IPS, Antivirus) at the FortiGate Center for traffic coming from FortiGate Branch Sites. This setup/design is very stable, we are using this topology for about 2 years without any critical error. Still now, we still keep expand this diagram by expand more FortiGate at Branch Sites and connect VPN to FortiGate at the Center.
We also combine Security Filter (IPS, Antivirus) at the FortiGate Center for traffic coming from FortiGate Branch Sites. This setup/design is very stable, we are using this topology for about 2 years without any critical error. Still now, we still keep expand this diagram by expand more FortiGate at Branch Sites and connect VPN to FortiGate at the Center.
What do you dislike about the product?
Currently, I do not have dislike point for this product.
What problems is the product solving and how is that benefiting you?
Connecting between User at Branch and Application at Center via IPSec VPN Tunnel provided by High Performance FortiGate NGFW
Excellent Firewall once you know how to use it
What do you like best about the product?
How easy it is to create policies and reporting is excellent
What do you dislike about the product?
Migrating config between different models
What problems is the product solving and how is that benefiting you?
Multi-Tenant works brilliantly with Vdoms on the Fortigate
The Next Generation Firewall high performance and including SDWAN Function
What do you like best about the product?
The FortiGate Firewall has many Security Functions (like Web Filtering, Application Control, IPS, Antivirus, ...) that help the organization to protect the users.
Beside that, the FortiGate Firewall also has SD-WAN Function that optimizing traffic from user to application via the hybrid WAN environment (MPLS, Internet Broadband, ...).
And what i like the best is that we can combine Security Function and SD-WAN, which means I can optimize traffic from user to application and also can scan this traffic flow with Security Function to protect the Local Application Server or the User.
Beside that, the FortiGate Firewall also has SD-WAN Function that optimizing traffic from user to application via the hybrid WAN environment (MPLS, Internet Broadband, ...).
And what i like the best is that we can combine Security Function and SD-WAN, which means I can optimize traffic from user to application and also can scan this traffic flow with Security Function to protect the Local Application Server or the User.
What do you dislike about the product?
The feature is good, but the FortiOS has many bugs.
What problems is the product solving and how is that benefiting you?
I combine SD-WAN and Security Function, so I can replace the Router and old Firewall at the Branch Site with a single FortiGate device. That helps me manage the Network and Security aspects at the Branch easier.
Recommendations to others considering the product:
Make a stable FortiOS firmware.
Best User-friendly firewall
What do you like best about the product?
1. Attractive web dashboard and has easily navigatable tabs .
2. We can manage and control layer two wireless access points.
3. Building IPsec VPN and SSL VPN is easy when compared with the other firewalls.
4. We can configure Virtual networks called VDOMs within the same firewall.
5. Configuration of NAT and Static routes are pretty straightforward.
2. We can manage and control layer two wireless access points.
3. Building IPsec VPN and SSL VPN is easy when compared with the other firewalls.
4. We can configure Virtual networks called VDOMs within the same firewall.
5. Configuration of NAT and Static routes are pretty straightforward.
What do you dislike about the product?
Except syslog configuration in GUI, there is nothing much to dislike, it is very good and user-friendly firewall for beginners.
What problems is the product solving and how is that benefiting you?
1. Separating departments and configuring individual firewall rules for each department using VDOMs.
2. Exporting Netflow and Syslogs to the cloud-based log management tools.
3. Using firewall as intrusion detection intrusion prevention system.
4. Configuring Site to Site IPsec VPN between on-premise firewall and firewall deployed on the cloud.
5. Using it as a secure gateway to connect the servers inside the LAN using forticlient software.
2. Exporting Netflow and Syslogs to the cloud-based log management tools.
3. Using firewall as intrusion detection intrusion prevention system.
4. Configuring Site to Site IPsec VPN between on-premise firewall and firewall deployed on the cloud.
5. Using it as a secure gateway to connect the servers inside the LAN using forticlient software.
Recommendations to others considering the product:
It is straightforward to use and best suited for the organization who want to provide VPN access for their employees
Best budget high end next generation Firewall that has all the real world capabilities
What do you like best about the product?
The fortigate GUI is the best in class when compared to Firepower or Palo alto.
It is speedy, responsive and very user friendly. The cli console is available to run those debug command that you may need troubleshoot stuff and everything else is a click away.
It is speedy, responsive and very user friendly. The cli console is available to run those debug command that you may need troubleshoot stuff and everything else is a click away.
What do you dislike about the product?
The organisation can improve in terms of support. Simple issues takes days to get resolved and sometimes the customer comes up with resolution before the support can wven understand the issue.
What problems is the product solving and how is that benefiting you?
We are using the fortigates in our environment to replace old end of life cisco firewalls. These bring in more power and security to our network with lesser cost and manpower required to manage these.
Fortigate Next-Generation Firewall (NGFW) - A great product to secure your network
What do you like best about the product?
Fortigate Next Generation Firewall (NGFW) has the capacity to protect the systems from different types of attacks like DOS, DDOS, brute force attacks, ransomwares, man in the middle attacks, session hijacking and more. Its intrusion detection and prevention system is very good and robust. It provides a great management console to the network administrators for monitoring security performance and fine tuning the required configurations. Its packet filtering, Anti spam and IPsec features are very good and useful.
What do you dislike about the product?
The Fortigate NGFW is a great product and there are no dislikes as such. The logging and alert mechanism is also very good. It is a reliable and stable product and does not affect network performance. However it is sometimes hard to configure in an existing network.
What problems is the product solving and how is that benefiting you?
Fortigate Next-Generation Firewall provides advanced security against different types of cyber threats. It has the capacity to protect the organisation from network threats, malwares and attacks by taking action on them and blocking them if required. We can even manually block the IP addresses which seems to be suspicious. Also we can whitelist only those ports which are required. Overall it's a great product when it comes to securing your network.
Recommendations to others considering the product:
I would surely recommend others who wish to make their environment secure from the emerging cyber attacks.
Excellent next generation firewall
What do you like best about the product?
1. Deployment and the initial setup are effortless.
2. Attractive user interface on the web dashboard.
3. We can create virtual networks by using the VDOMs feature, which is very helpful.
4. We can view the physical topology of the network.
5. Visibility into top users, top applications, and destinations.
6. Configuration of security profiles is simple.
7. Community to help with any technical doughts.
2. Attractive user interface on the web dashboard.
3. We can create virtual networks by using the VDOMs feature, which is very helpful.
4. We can view the physical topology of the network.
5. Visibility into top users, top applications, and destinations.
6. Configuration of security profiles is simple.
7. Community to help with any technical doughts.
What do you dislike about the product?
Syslog and Netflow export configuration are only possible through the command-line interface.
What problems is the product solving and how is that benefiting you?
1. we are load balancing two ISPs with the SDWAN feature on FortiGate.
2. Using FortiGate as the first level of defense in the organization.
3. Detecting any intrusions on the network.
4. Allowing only specific applications for the users.
2. Using FortiGate as the first level of defense in the organization.
3. Detecting any intrusions on the network.
4. Allowing only specific applications for the users.
Recommendations to others considering the product:
Easy to learn and more technical documents available online to configure the device; in my opinion, FortiGate is a good choice.
secure and user-friendly GUI
What do you like best about the product?
1. Easy to configure web filter, application control, and SSL inspection profiles for securing the data.
2. Configuration of SSL VPN and Site-to-Site VPN is straightforward.
3. No need to create separate NAT rules, NAT option can be directly checked during the security rule creation.
4. configuring interface IP address and administrative access is very easy.
5. Botnet and suspicious activity detection in the network are good.
6. Good performance and Log visibility.
7. Easy for beginners to learn and has a lot of technical documents.
8. Effective use of multiple ISP links using SDWAN.
2. Configuration of SSL VPN and Site-to-Site VPN is straightforward.
3. No need to create separate NAT rules, NAT option can be directly checked during the security rule creation.
4. configuring interface IP address and administrative access is very easy.
5. Botnet and suspicious activity detection in the network are good.
6. Good performance and Log visibility.
7. Easy for beginners to learn and has a lot of technical documents.
8. Effective use of multiple ISP links using SDWAN.
What do you dislike about the product?
1. Whenever Fortigate releases a firmware update, it has bugs.
2. We need to stay in line for a long time to connect the customer support.
2. We need to stay in line for a long time to connect the customer support.
What problems is the product solving and how is that benefiting you?
1. Internet access for LAN users.
2. Now two internet links are load balanced using SD-WAN.
3. Providing DHCP service for connected devices.
4. providing remote access to the internal servers for the users who work from home using remote access SSL VPN.
5. Connecting other branches using SIte-to-Site IPSec VPN.
2. Now two internet links are load balanced using SD-WAN.
3. Providing DHCP service for connected devices.
4. providing remote access to the internal servers for the users who work from home using remote access SSL VPN.
5. Connecting other branches using SIte-to-Site IPSec VPN.
Recommendations to others considering the product:
Good security performance, I recommend to others.
showing 41 - 50