We utilize the Fortinet FortiGate firewall to safeguard our network and provide secure VPN access from external locations.

We implemented FortiGate because we needed a firewall to protect our data.

FortiGate helped us meet our ISO requirements.

In the time we have been using FortiGate, we have not had any security breaches. 

FortiGate has reduced the risk of cyberattacks that can disrupt our production. Since implementing FortiGate we have not dealt with any such attacks.

I'm unsure whether centralized FortiGate management enhances efficiency, but our experience with it has been exceptional. We haven't encountered any issues, and the operational aspects have been seamless. Additionally, there was no downtime, which is crucial for our operations.

Our Fortinet security fabric has enhanced security across our industrial control system. By safeguarding our production environment and ensuring the security of VPN access granted to individuals, we have achieved comprehensive data protection. We have not experienced any incidents that would have occurred if our firewall was inadequate.

FortiGate does a lot of research, and the product is regularly updated, especially in the ransomware area. I know of a couple of other companies around us that had some ransomware incidents, but we never have. From that perspective, FortiGate has helped mature our approach to cybersecurity a lot.

The email protection and VPN features are the most valuable.

The process of configuring firewall rules appears excessively complex. While FortiGate offers greater functionality than other firewall solutions, its user interface could benefit from simplification.

I would like the log viewing process to be improved to provide a clearer understanding of the logs.

I have been using Fortinet FortiGate for five years.

I would rate the stability of FortiGate ten out of ten. We have never had any issues.

We used the limit of our FotiGate firewall which was around 150 users and we never noticed any performance issues. 

I would rate the scalability of FortiGate eight out of ten.

The technical support is good.

Positive

Our decision to switch from FortiGate to Sophos was solely driven by the seamless integration with our existing Sophos antivirus system. Had this integration not been an advantage, we would have maintained our FortiGate system.

The initial deployment was straightforward due to our understanding of the product and its operation. It was completed in one day by a team of two.

The price of FortiGate is comparable to that of most other firewall solutions and is more affordable than Cisco.

I would rate Fortinet FortiGate eight out of ten.

Except for the firmware updates we have to do now and then, there is no other maintenance required for FortiGate.

We had FortiGate deployed in one location in a big server room. We have 150 users.

I would recommend FortiGate to anyone. FortiGate is an out-of-the-box firewall with good pricing and excellent features.      

It's mainly used to secure our clients' network access because they do not have any servers. The only things we have connected to the FortiGate firewall are access points, CCTVs, and a printer. It's just used for web browsing and internet access.

It definitely helps with intrusion prevention. When managing a firewall, you need to create policies to dictate the traffic flow within your environment. And once you enforce a policy, it has an intrusion prevention assistant that you can activate, so it's not just acting as a firewall.

Like most next-generation firewalls today, it helps control network traffic. I don't have any problem managing the network traffic within our network. It's very easy to access and manage.

FortiGate has also helped reduce the risk of cyberattacks. If such an attack happened, the main consequences for us would be data breaches, where some of our company's most important information might be leaked and used by other people. That would endanger our production and security.

And with the System Events page, I can easily access and see the events that are happening within the device and the network. It's easy to track if something has happened and, based on that, make a decision about the next step that I should take. I can see if it is severe or if it is just something that is not critical but more than a nuisance. Even in that case, I have to think about the steps that I will take to prevent it from happening again.

Mostly, it's about protecting the internet access of our end users in the production area of our company. It protects us during our web browsing and from internet-related activities.

The feature I like most is the SD-WAN. It allows you to manage more than one ISP at the same time. And there is a high-availability mode, so if one of your ISPs is down, you still have a backup.

It also provides us with visibility because we are able to track the IP addresses, as well as the type of device, OS, vendor name, and the name of the devices.

In addition, Fortinet Security Fabric helps us meet regulations and compliance requirements.

The built-in APIs enable us to integrate with different vendors, such as TP-Link and Luigi. We did not have any problems with the integration. It's very easy to configure and connect. This helps reduce deployment time, but that has more to do with network knowledge than with the product. If you're familiar with basic networking, it would be easy for you to understand the application of a certain device and integrate it with the API of your choice.

I've been working with Fortinet FortiGate for about 10 months.

I would like to see improvements in the support from Fortinet. Here in the Philippines, whenever we have problems with a Fortinet product, we mostly ask for support from distributors and resellers and not directly from Fortinet.

Neutral

I don't know why our company acquired FortiGate because I'm not the account manager. I'm just the technical person who installed the product. But I can assume they just looked at other companies that are securing their networks and decided to secure their internet access like those companies do.

Including the reconfiguration of the network setup, the deployment took at least five days. But the actual deployment of the device only took one day. There were four people involved.

I have no idea what the difference in pricing is if you buy it from a reseller or distributor compared to Fortinet, or even if Fortinet gives that option. The pricing is justified. It's a little pricey, but what you pay for is what you get.

I can't say how much it has reduced MTTR because I have not experienced any issues with FortiGate.

When I first built the FortiGate firewall, it enabled me to learn more about the network security field.

We use Fortinet FortiGate to safeguard our online users, who are primarily students, around the clock.

Over the past seven years, we've utilized Fortinet FortiGate to address a wide range of security challenges. Initially, we implemented a firewall to secure our network perimeter. Subsequently, we sought to protect internal network segments. Next, we implemented application-level security measures. And most recently, we've implemented selective service controls to manage access to applications like Google services, WhatsApp, and video conferencing platforms. These measures have addressed evolving security needs over time. Currently, we're focused on enhancing authentication and remote access security. To achieve this, we're implementing security tokens to verify user identities and ensure authorized access.

Fortinet FortiGate enables us to comply with regulatory governance and compliance requirements.

FortiGate is one of the security solutions we have implemented to enhance and protect our network infrastructure, including devices, across the campus for all users. Specifically, FortiGate has shielded us from Internet security threats, application threats, and unwanted websites or access to unauthorized web services. For instance, access to classified websites is restricted based on user permissions. This has resulted in a cleaner network environment, not just from a security standpoint but also in terms of overall network performance. Secondly, FortiGate has significantly alleviated the burden on network administrators and server managers. The product has proven to be highly reliable.

It has effectively reduced our risk of cyberattacks. We have experienced a very small number of incidents, primarily due to configuration loopholes. However, FortiGate has been successful in preventing intrusions from the Internet. It has effectively thwarted hacking attempts, making it a valuable tool for our computer and network security.

We operate in an educational setting and do not rely solely on online connectivity. Therefore, an internet outage would only impact academic activities. While some internet services are utilized within our campus primarily for business purposes, they are not entirely internet-dependent. Consequently, the impact of equipment failure is minimal. In the event of equipment malfunction, we have established contingency plans and alternative facilitating services in place. Additionally, our devices are designed for high availability, with two devices functioning as a backup in case one fails. We have not experienced any device failures to date.

It has streamlined the management of our network and security operations. While the machine itself doesn't provide an out-of-the-box solution, its effectiveness hinges on the expertise and security knowledge of its users. Therefore, engineering and security proficiency are paramount to maximizing the benefits of FortiGate.

FortiGate offers a lot of reporting logs and reports. By continuously monitoring these resources, we can gather sufficient information to take immediate action and implement necessary changes. However, the effectiveness of this approach hinges on having dedicated personnel to review and respond to the provided insights. The device itself cannot act autonomously without human intervention and analysis.

FortiGate has helped us reduce our mean time to remediation by 60 percent. Its user-friendly interface facilitates rapid issue resolution.

Fortinet FortiGate is an extremely user-friendly product. In terms of security, we have not experienced any security flaws or loopholes, and it has proven to be quite stable. Additionally, we have not experienced any downtime, which is of utmost importance.

The log analyzer, for instance, is a product being developed as a common solution for multiple FortiGate devices. Consequently, the log analyzer's functionalities are not fully integrated into the individual FortiGate products. I would prefer to have more detailed logs within the FortiGate products themselves rather than relying on a separate tool.

While Fortinet claims to offer a comprehensive network solution, it falls short in addressing computer application issues, particularly server security. Fortinet's capabilities are primarily focused on network security.

I have been using Fortinet FortiGate for over seven years.

I rate the stability of Fortinet FortiGate ten out of ten.

Fortinet FortiGate is a fixed configuration that depends on the number of nodes and devices.

The support from Fortinet and its vendors is good.

Positive

The initial deployment can be completed in a few days. Two to three people are involved in the deployment.

In the Asian economy in which we operate, FortiGate is expensive.

I would rate Fortinet FortiGate eight out of ten.

I'm not involved in the operation of industrial devices. We do, however, have devices that are part of laboratories, and they may be flagged during searches because we belong to the education sector. In any case, FortiGate provides protection, and I wouldn't know the extent of visibility there because it's primarily concerned with providing security for those devices. If they are connected to the network, alright.

We have around 1,500 users and over 3,000 devices that utilize FortiGate.

Our organization utilizes Fortinet FortiGate for SD-WAN. All business units within our organization connect to the SD-WAN, which is constructed using Fortinet devices.

The primary reason we implemented Fortinet FortiGate was to enhance connectivity. Our previous reliance on MPLS resulted in low bandwidth and high costs. By transitioning to SD-WAN devices and leveraging common ISP connections, we have achieved two significant goals: substantial cost savings and increased flexibility in configuring device communications across our various plants.

FortiGate offers us the capability to provide visibility into and segmentation of our industrial devices. We are currently implementing this for the LAN, and we are migrating firewalls to Fortinet FortiGate devices. In this process, we are separating the operational network from the IT network.

Knowing that some of Fortinet's devices can be used in harsh environments that's nice to have. But that's something that is not needed right now just because we are only using them in very few places. These devices are specifically used to prevent intrusions in harsh environments. 

These devices help to control network traffic with OT-specific protocols. The LAN firewalls we have implemented are purchased with the functionality of network-specific modules to enable the management of network traffic with OT-specific protocols.

The approved offerings help us achieve our budgetary goals. We are adapting the budget to align with the devices provided by Fortinet. We are doing this because we can utilize Fortinet. Therefore, all of our budgets should take this into account as well.

The decision to utilize Fortinet stems from its ability to integrate with our preferred vendors. We have plans to implement both ClearPass and Nozomi as part of our OT cybersecurity strategy, both of which offer API-based interfaces for connecting to FortiGate devices. This interoperability is crucial for our organization.

The combination of FortiGate and FortiManager provides a comprehensive overview of all the firewalls we manage. It is very convenient to have everything centralized in one place.

FortiGate has helped reduce the risk of cyberattacks that could disrupt our production, which is one of our primary goals.

We were not affected by any cybersecurity attacks that would have impacted our production operations. However, we have a comprehensive plan in place to address such incidents. FortiManager enables us to block essential protocols and implement security measures across all business units if we detect a security breach in one area. This centralized approach ensures that the security measures we implement are consistently applied throughout the organization.

FortiGate has aided in centralizing the management of our network and security operations. The impact of this on the operational efficiency of our industrial network depends on how we organize it. Centralized management has significantly simplified management tasks. However, we require a dedicated team capable of addressing the diverse needs of different plants and business units, implementing necessary changes, and resolving any issues that arise. A single point of contact facilitates this process. In this regard, we have not only improved operational efficiency but also consolidated our management structure, reducing the need for multiple teams scattered across different countries.

FortiGate provides us with actionable data that helps us make informed decisions about the appropriate actions to take. Additionally, we utilize FortiAnalyzer to analyze the type of traffic we are experiencing, potential issues, and other relevant information. Furthermore, we monitor CPU memory, bandwidth, and other metrics associated with various IP connections using Fortinet devices. This monitoring is conducted across multiple firewalls. By employing these tools, we can ensure that any changes we make are the correct ones and are made for the right reasons.

The implementation of Fortinet's Security Fabric has significantly enhanced the security of our industrial control system. Previous solutions were unable to effectively manage the diverse protocols employed in this environment, resulting in operational and technological limitations. However, with the introduction of the new security fabric, we are now able to address these challenges and achieve a more robust security posture.

The Fortinet Security Fabric helps us reduce our mean time to remediation. With all its tools and centralized management, it's much easier to identify and resolve issues, leading to improved overall security posture.

Fortinet helped mature our approach to cybersecurity for protecting our industrial equipment.

The flexibility and ease of configuration are the most valuable features.

Overall, we are satisfied with the product. However, we encounter occasional capacity issues. The FortiAnalyzer, being a hardware appliance, has limited expansion capabilities. As our organization has grown, we've outpaced the FortiAnalyzer's performance. The inability to scale the FortiAnalyzer to match our growth necessitates the purchase of new hardware. This is an area that could be improved. If we anticipate reaching the size of six countries within the next five years, investing in a solution that can accommodate such growth would be more cost-effective than repeatedly purchasing new hardware. The ability to scale the FortiAnalyzer in tandem with our growth would be a significant improvement.

I have been using Fortinet FortiGate for over three years.

FortiGate is now stable. We experienced some difficulties in the beginning, possibly due to some bugs we encountered. However, for approximately the past six months, we have been closely monitoring various ratings for FortiOS versions. As a result, we are currently running only on mature versions. Since then, we have observed that the device is significantly more stable than before.

The scalability for the FortiManger and the devices themselves is a nine out of ten but for the FortiAnalyzer it is a six out of ten.

On the few occasions that we have needed to use technical support, we have found them to be responsive.

Positive

We used different solutions such as Cisco, Watchguard and Sophos in different countries, and one of the reasons we switched to FortiGate was to standardize what we used in all the countries.

The FortiManager is one of the biggest advantages they have. From a single management point, we can manage all the devices connected to the support manager. This is something I haven't seen before. So, in that sense, I would say that the most important difference between FortiGate and other vendors is the FortiManager.

Due to the extensive network, the deployment spanned several months; however, on a site-by-site basis, each deployment was completed within a few hours. We had a minimum of two people per country involved in the deployment with 1-2 people from Central IT.

It was a mixed team vendor - in-house. The vendor expertise was really good and I would rate it on a 9 out of 10.

FortiGate's pricing falls within the mid-range when compared to other leading firewall solutions. While it's more expensive than Sophos, it's more affordable than Palo Alto.

I would rate Fortinet FortiGate eight out of ten.

We have FortiGate deployed across multiple locations with 120 firewalls.

I suggest testing FortiGate. For organizations looking for an affordable solution, with good management and initial management, Fortinet FortiGate is the right choice.

Fortinet’s SaaS offering is the best fit for anybody looking for a cloud-delivered secure web gateway to replace their on-premises solution. It combines with given capabilities, making it a good proposition for customers.

Customers are looking for a Secure Web Gateway solution focusing on securing web browsing. There are additional features like a virtual or cloud firewall. The majority of customers are seeking WAF filtering solutions.

Integrating with the SD-WAN functionality on Fortinet devices makes a compelling story for customers to choose a Fortinet-based solution, which the Fortinet Security Fabric further reinforces.

Fortinet FortiGate SWG should be localised to specific regions to comply with local data privacy regulations because of the data privacy rules in the countries. In the Middle East, data organisation and KFA requirements are stringent.

I have been using Fortinet FortiGate SWG as a global reseller.

I rate the solution’s stability a nine out of ten.

Customers keep on improving their licenses. The solution remains scalable and flexible. On-premises deployments may have some limitations. However, cloud deployments offer a high degree of flexibility.

Our customers fall into enterprise and medium business.

The technical support is very supportive.

Positive

The initial setup is not complex, especially for someone familiar with configuring firewalls.

The deployment is very easy. The hard thing is to configure the policy to decide traffic to allow or block. On top of data privacy, you need to stop data from filtering. It’s not difficult from a deployment perspective but it requires some consideration.

Fortinet provides users with configuration options to implement the security policies they require. The effectiveness of these configurations depends on the expertise of the individual configuring the device.

I rate the initial setup a nine-point five out of ten, where one is difficult and ten is easy.

Customers who opted for the Fortinet FortiGate SWG's cloud-based version have seen a return on investment. However, using it for more than a year is typically recommended to realise the solution's benefits fully.

The solution has a combination of different flavours, which make it an attractive option for customers. The solution includes an SD-WAN, DLP, and a secure web gateway, all integrated into a single platform. It provides economies of scale.
FortiGate SWG is a cost-effective solution well-suited for organisations of all sizes.

I would recommend it to all my customers looking for SD-WAN and a secure web gateway for their SD-WAN deployment.

Overall, I rate the solution a nine out of ten.

Our standard practice involves tailoring deployments to meet specific customer needs. Typically implemented at the network edge, FortiGate SWG addresses diverse security requirements. Use cases include securing online services, protecting internal servers in a DMZ for LAN user access, and employing a segmented approach where different firewalls safeguard distinct zones, collaborating to manage and pass traffic for unique security needs. One of the firewalls also serves as the primary filter for internet traffic.

Web filters, particularly web application controls, grant us the ability to regulate user access effectively. Among the various features, I find web application control and IPS to be the most valuable.

There's room for improvement in the interface, especially following their upgrade to version nineteen. The issue arises from the increased complexity, where tasks like defining the NAS require navigating a separate window, and regular policy configurations are done in a different window.

I have been using it for seven years.

I would rate its stability capabilities nine out of ten.

Regarding scalability, I would rate Fortinet highly, giving them eight out of ten due to the effectiveness of their new hardware, which greatly enhances scalability. We've carried out installations for a variety of setups, spanning from small to medium-sized deployments.

I would rate its technical support services seven out of ten.

Neutral

WatchGuard deserves credit for offering multiple options, including a client base and a comprehensive reporting feature, all within a unified license and toolset.

I would rate the initial setup six out of ten in terms of complexity.

The deployment can take up to a week but typically can be done in a couple of days.

We essentially customize implementations based on the customer's chosen appliance. The cost varies depending on the specific appliance they purchase. We provide coverage for whatever they acquire, and throughout the year, we pay different amounts to various vendors. The cost has increased since the update so I would rate it eight out of ten.

In terms of reliability and security, FortiGate stands out. WatchGuard excels in additional features, offering the best reporting and various configuration options. While Sophos is also strong in security, I would rate it slightly lower than FortiGate. Overall, I would rate it nine out of ten.

We use it to secure our environment, ensuring no vulnerabilities or potential risks in our network configuration. Our goal is to enhance cybersecurity measures, safeguard our network, and ensure the integrity of our systems against potential threats and intrusions.

I am content with its user interface and functionalities.

There is a potential for enhanced protection. It is essential to leverage its capabilities more professionally to achieve an even higher level of security. I believe that if the cost were lower, it would be highly beneficial. While the gateway serves as a primary solution for the entire network, attention should also be given to endpoint devices.

I have been using it for approximately five years.

It is incredibly reliable. I would rate it eight out of ten.

It provides excellent scalability abilities and I would rate it eight out of ten. There are around fifty individuals actively using it.

They provide exceptional support. I would rate it eight out of ten.

Positive

When comparing Fortinet to Cisco, Fortinet stands out as a more user-friendly and practical solution. It seems especially well-suited for smaller network environments, making it the preferred choice for our small work network. The switch was prompted by the wealth of features Fortinet offers, coupled with its ease of management and deployment. The diverse interfaces and comprehensive reporting, including statistics and other relevant information, further contribute to its appeal.

The initial setup was straightforward.

The deployment duration is variable and relies on the development level and installation complexity. Initially, it may take only a few hours. However, to enhance security and stability, the process might extend to a few days or even a week. For a simple network, a single individual should be sufficient to manage it effectively.

While slightly more affordable than competitors, it remains relatively expensive due to its inclusive subscription. It operates on a subscription basis. You pay solely for this subscription, without any additional custom costs for support or other services. The subscription encompasses support, updates, and all associated features.

Overall, I would rate it nine out of ten.

I use Fortinet FortiGate SWG in my company for security purposes and the SD-WAN in our networks.

The network load balancing is one of the best features of Fortinet FortiGate SWG. Fortinet FortiGate SWG's SD-WAN compatibility with any of the providers is also one of its good features. The security devices work well with the solution, and it works well for anything pertaining to security, including the HTML files and VPN, which is beneficial for our company.

The graphical user interface of Fortinet FortiGate SWG is an area of concern where improvements are required.

I have been using Fortinet FortiGate SWG for three years. I use the solution's latest version, which is Fortinet FortiGate 100F Series. I am an end user of the solution.

Stability-wise, I rate the solution an eight out of ten.

Scalability-wise, I rate the solution an eight and a half out of ten.

My company uses Fortinet FortiGate SWG in around 350 locations spread across India, and we have a user base of over 5,000 users.

The response from the technical support team has always been excellent. I rate the technical support a nine out of ten.

Positive

There were no issues with the product's installation phase. In our company, there were some initial things like checking the networks and managing the area of whitelisting in the firewall.

The solution's installation process doesn't take longer than an hour.

The solution is deployed on an on-premises model since my company has security gateway appliances across the company for 350 locations.

There was a team of six engineers in my company to take care of the implementation part of the product.

I was a part of the design and implementation team of the solution in my company.

Earlier, in my company, we had constraints in regard to the link load balancer and the site getting isolated because of the internet. Now, the good part is that the failovers and integration have become entirely seamless, and the site remains connected, meaning, in our company, we don't see the site getting isolated.

I rate the price of Fortinet FortiGate SWG a seven and a half out of ten since it is not a cheap solution, though I feel it is a good product for the money one pays.

There were no additional costs apart from the licensing charges of the product, and the extra payments were related to the shipping charges so that it could be shipped to multiple cities.

My company plans to use FortiAnalyzer and FortiManager.

I rate the overall tool an eight out of ten.

Fortinet FortiGate SWG is a robust and secure product compared to Sophos. It has a valuable SD-WAN feature and provides good performance. Along with that, it has efficient bandwidth and policy management features as well.

They could provide bandwidth concentrators and traffic filtering features. They should make the product user-friendly and enhance the security features.

We have been using Fortinet FortiGate SWG for ten years. At present, we use the latest version.

I rate the product's stability an eight out of ten.

I rate the product's scalability an eight out of ten. It is suitable for small to large enterprises.

I rate the product's initial setup process a seven out of ten. It takes a few hours or a few days to complete.

I rate the product's pricing a seven out of ten. Its one-year license cost is competitive with three and five-year licenses offered by other products.

I recommend the product to others and rate it a nine out of ten.

We use it for our security needs. It enables us to effectively manage and monitor all the websites our employees access.

One of the features I appreciate the most is application control which offers great flexibility.

They should consider making some improvements regarding the pricing. It could be more competitive and cost-effective. I would also like to know more about Fortinet's XDR offering, understand how it operates, and how we can effectively implement it in our network.

I have been working with for one year.

It offers reliable and stable performance.

I would rate its scalability capabilities ten out of ten. In my previous job, I worked with it, and the company was substantial in size. They used Fortinet's FortiGate in a Solaris environment, which was quite extensive. Now, I'm with a different company, which falls somewhere in the mid-range in terms of size.

I have had excellent experiences with its support team and they have been proactive in responding to my inquiries. I rate their support services a solid ten.  It is robust and efficient, and I currently have no difficulties in this regard.

Positive

Previously, we relied on Cisco WAFSA and Cisco AC, but with FortiGate, we have completely revamped our infrastructure and gained full control over security policies.

I set up a lab using Fortinet's FortiGate (FGT) within VMware on my laptop. Creating the lab environment was a challenge, but not overly difficult, so I would say it fell somewhere in between, not too hard and not too easy. I would rate it five out of ten.

When comparing it to other vendors such as Palo Alto and Check Point, it is on the the expensive side. I would rate it four out of ten.

Overall, I would rate it nine out of ten.