I use Fortinet FortiGate in security and policy for security profiles, blocking and allowing for certification on a day-to-day basis.

I block Gmail and personal mail along with other applications. We block webmail and allow corporate mail, Microsoft 365, and block unwanted categories such as pornography and weapons while implementing URL filtering.

Global systems use standard Fortinet terminology. We use FortiManager and FortiAnalyzer, where FortiAnalyzer is used for logging and FortiManager is used for centralized management across multiple gateway devices.

By implementing Fortinet FortiGate in our organization, we can control applications and block unauthorized apps.

Control security platform features such as policy enforcement and SD-WAN streaming particularly improve our work by reducing manual configuration across multiple devices, allowing faster change implementation, and reducing troubleshooting time.

This control typically leads to measurable outcomes across operations, security, and performance.

We use Fortinet FortiGate on-premises and in the public cloud.

In my experience, the best feature Fortinet FortiGate provides is its impressive logging system, which is very easy to read to understand what the issue is.

The SD-WAN feature is very valuable for us. By integrating SD-WAN, we can manage our ISP links and SD-WAN rules.

Using SD-WAN on Fortinet FortiGate provides lower latency and stability improvements, critical application routing via lower latency links, reduction in jitter and packet loss, with both links actively used instead of one idle backup, leading to better bandwidth utilization.

The biggest strength is the consolidated platform that combines firewall, SD-WAN, VPN, and security stack in one device.

We can improve the UI readability when working with large configurations. I chose a rating of nine because of the troubleshooting power and launch issues. We need CLI debug capabilities in addition to the UI.

I have been working in my current field for the last three years.

Fortinet FortiGate is a stable and scalable firewall.

Fortinet FortiGate is manageable on one platform, but scalability depends on how we scale. Model ranges for small branches and high-end applications are delivered easily by moving to a higher model.

Support is also good.

I previously used Sophos firewall before moving to Fortinet FortiGate.

We evaluated other options such as Palo Alto before choosing Fortinet FortiGate. We evaluated both Palo Alto and Sophos firewalls during our selection process.

It is a time-saving product.

My experience with pricing, setup cost, and licensing for Fortinet FortiGate is generally positive from a value perspective.

I advise others to use Fortinet FortiGate, considering the firewall size, throughput including IPS, SSL-VPN, web filtering throughput, VPN load, and UTM versus Enterprise bundle.

I used to work with Fortinet FortiGate and I am using Fortinet solutions as well. I still use Fortinet FortiGate. Everything regarding Fortinet FortiGate, I was working in a telecom operator who was a partner to Fortinet FortiGate and we were reselling Fortinet solutions to our enterprise customers. Plus, Fortinet has a lot of solutions for telecom network operators as well. So we have deployed a Fortinet solution for protecting our infrastructure as well. In my current role also, we are using Fortinet solutions as security operation center tools.

So we were using SD-WAN of Fortinet FortiGate as well and we used to sell Fortinet FortiGate SD-WAN to our enterprise clients as well, and the feedback is pretty good. The box is quite good, especially on the throughput. So usually for other vendors and the market leader vendors, whenever SD-WAN is activated on the box, the throughput of the box reduces while in Fortinet FortiGate boxes, the throughput remains consistent and you can turn on and off the features as you want, and it is quite intuitive to use Fortinet FortiGate solutions.

So we use Fortinet FortiGate data center firewall and with IDPS functionality. FortiAI is the add-on on top of Fortinet FortiGate firewall. So we use those solutions which help us to protect our setup from cyber attacks and in near real time it gives a lot of visibility using machine learning and helps us remediate the incident in near real time basis.

I work with other solutions such as VMware, Cisco, and a few more SD-WAN vendors.

Fortinet FortiGate has started as a firewall solution for branch locations and protecting a smaller branch of say 50 or 100 users to start with. Then Fortinet FortiGate has enhanced their offerings and now they are offering solutions for protecting data centers, branches, head offices, cloud infrastructure and everything. So Fortinet is one of the players who is having the full bucket of solutions for protecting applications across the deployment locations, being a branch or a head office or a data center or in the cloud as well.

Regarding Fortinet FortiGate, one of the key fundamental principles they are following while creating products is affordability. Second one is a uniform software code which they use for creating products and the interoperability with the Fortinet ecosystem. So as I said, Fortinet has started as a firewall vendor and then now Fortinet is offering SD-WAN, software-defined LAN, Wi-Fi, plus a lot of solutions for protecting cloud-based deployments and applications. I understand that I am using a few of the solutions which are required for running a managed security service provider setup and security operations center. So those products are also quite promising. To summarize, one is affordability and the efficacy of solutions. Plus I understand Fortinet keeps on investing high in their R&D budget. So that's where they are able to bring a lot of innovation and they make their product quite contemporary in that sense.

Regarding the effectiveness of Fortinet unified SASE, it provides necessary uniform security policies across multiple locations, being in the cloud or in a branch location or in some data center or anywhere in the world actually. So that's where SASE plays a pretty important part and Fortinet has achieved that objective very well.

Regarding the experience with the unified agent in Fortinet unified SASE, it impacts our operations mostly positively. That helps us reduce our overhead for managing the endpoint deployment. With the agent, it is a single agent that does multiple jobs. And this agent signals very well with Fortinet FortiGate SASE deployments and the overall experience is pretty good. It is easy to deploy, easy to manage, and most effective.

Regarding the dynamic segmentation feature, it is a very fantastic feature and one has to have that feature for protecting the lateral movement of cyber threats or maybe when hackers are trying to orchestrate the larger cyber attacks. So this dynamic segmentation really helps us provide a segregation of the application landscape as well as ensuring that the cross talk between the applications does not go uncontrolled. Secondly, if any malware is deployed somewhere, it helps us protect those malware implications within a certain segment only and not span across the data center.

Regarding DDoS protection for managing data center traffic, I understand Fortinet has solutions for DDoS but I do not see those being used in the market. The market is controlled, rather dominated by two or three vendors, and I guess Fortinet is not a preferred vendor for having DDoS solutions.

I would say 8 out of 10 regarding the stability of Fortinet FortiGate. It requires a lot of bug fixing and what I understand, Fortinet is fast enough to provide bug fixes and patches, but usually I suggest Fortinet should do thorough testing of their releases and software releases and once probably they can reduce the frequency of new releases but make it stable. That's what my recommendation is.

As far as the core objective of Fortinet FortiGate is concerned, I think they are meeting the targets but I guess for rolling out new features and new updates, they are doing a bit of hurry just to cope with the market dynamics. But possibly, I understand that they are compromising on the quality of the software and stability. So over there they have to improve. Rest of the aspects, I guess they are doing pretty good. We are happy.

Regarding my experience with Fortinet FortiGate in comparison to maybe some other vendors such as CyberArk, Fortinet is in the top three and they give a lot of competition to their nearest peers in the market. But I guess Fortinet is really struggling in software-defined LAN, Wi-Fi, and FortiSwitches space. So they have to make their products more affordable in Forti-switching and Forti-WiFi space. They are not able to compete effectively with the nearest competitor HP Enterprise and HP Aruba.

Around now it's almost 18 years that I've been working specifically with Fortinet FortiGate.

Regarding technical support from Fortinet, whenever the bug has been reported or stability issues are reported, we see the support provided by Fortinet is good. But again, rather than controlling damage, I guess they should be working more towards preventing the damage rather than controlling the damage.

Regarding scalability for Fortinet FortiGate, my experience says for branch networking, the product is excellent and it supports the scalability of 2X or 3X at times. But for data centers, one has to size the components and size the solution very carefully because these components are deployed one time and remain in life for at least five to seven years. So one has to keep in mind, it is not so easy to replace the boxes. For Fortinet cloud solution, I guess they have achieved the required elastic scales. One has to only upgrade the licenses and go for a higher tier of subscription and then the scalability is achieved in a very seamless way. But for hardware products, especially in data center and head office environments, one has to carefully size the products because they are not so elastic actually. One has to size it well.

I would rate them seven.

Positive

I work with HP to some extent.

Regarding deployment process, Fortinet has a component called FortiManager and FortiAnalyzer. So these two platforms are providing many templates to automate workflows and achieve zero-touch provisioning. So that way deployment is pretty straightforward and easy.

I have deployed a lot of Fortinet solutions on AWS cloud using FortiManager's FortiAnalyzer, Manager, and FortiGate virtual appliances on the AWS Marketplace.

This is clear good ROI wherever Fortinet is used as a security product, but not in the Forti-WiFi and Forti-Switching products for sure.

It's quite affordable for Fortinet FortiGate. It's quite affordable for branch networking for sure. For core security components such as firewall, IDPS, and all those things, they are pretty affordable. That's why they won the market and are now market leaders. But some solutions, such as running SOC tools, Fortinet SIM, or Forti-WiFi and Forti-switches, they are coming on a higher side. They're more expensive than their better competitors.

My main use case for Fortinet FortiGate is for VPN and its appliances and for securing all of our remote locations.

A specific example of how I use Fortinet FortiGate to secure my remote locations is that we set rules on each of our locations about what traffic can and cannot go in, so we can allow certain connections for our partners such as Frontiers.

The best features Fortinet FortiGate offers are the built-in security functions, which I think are very nice.

We find the built-in security functions most valuable in Fortinet FortiGate, particularly web filtering, as it is all hands-on. Web filtering is our standout feature, and I don't want to add anything else about the features.

Fortinet FortiGate has positively impacted my organization by centralizing the way to access all of our network firewalls.

I wish Fortinet FortiGate's UI updates would be done in a more simplified way to improve it.

I choose nine for my rating because I think there's always room for improvement, and I think some of the things in the UI need to be adjusted so they're a little bit more simplified and not overcomplicated.

I have been using Fortinet FortiGate for at least three and a half, maybe four years now.

In my experience, Fortinet FortiGate is very stable, and it has been quite consistent during times of downtime.

Fortinet FortiGate's scalability has been keeping up well with my organization's growth or changes, as each location gets larger and we feel the need to put a Fortinet FortiGate in each one.

We have had to reach out multiple times to Fortinet engineers for customer support, and it has been great every time; they always seem to get to the bottom of it within one to two calls.

We did use a different solution before Fortinet FortiGate, but it has been so long that I cannot remember who it was; it may have been Palo Alto.

I believe we have seen a return on investment in terms of fewer employees needed, but otherwise, it is outside of my scope.

I was not directly involved in the pricing, setup cost, and licensing for Fortinet FortiGate.

We did consider other options before choosing Fortinet FortiGate, but it was a straightforward decision, and I am not quite sure what the other options were.

I do not have anything that is unique to us about how we use Fortinet FortiGate in our setup.

We do not utilize Fortinet FortiGate's data center solution, and we do not feel the need to consider AI and ML enhanced FortiGuard services within Fortinet FortiGate.

I would advise others looking into using Fortinet FortiGate to make sure that they get their configurations right from the start, as that means they have less of a need to get support involved. I would rate this product a nine out of ten.

We deploy the FortiGate Next Generation Firewall (NGFW) mainly in education, with retail, big retails, and other industries such as manufacturing, agriculture, and some banking.

Some of the best features with the FortiGate Next Generation Firewall (NGFW) particularly are its security focus, the easy to configure IPS, the Layer 7 capabilities, and the easy way to configure different VDOMs in each equipment so we can separate the different features or the different sites that the client may use in one data center.

The application control feature has helped manage the network traffic with filtering and antivirus capabilities. When we use it in SD-WAN solutions, we can apply in a unified and easy way the different profiles for each branch, and we can also have one profile for the hub if they have a data center with some servers connecting to the FortiGate. We can have different profiles, and it helps us to detect easily any threat that we may have in the network and control the outbound traffic to the internet, restricting those applications or those web services that the final users don't need to have access to.

The FortiGate Next Generation Firewall (NGFW)'s anti-malware protection is very effective, as we have demonstrated through our work with this feature.

The FortiGate's analytic tools have provided insights into network security events by implementing the IOC license, Indicator of Compromise, in some customers, which has been very helpful because it demonstrates that we can identify the threats more easily or the difference in the way that the customers use the network. We can identify the possible behavior of the customers on the network and can identify the possible threats and isolate that customer if we receive any threat for the network or the company.

The web filtering has also helped for maintaining network security because we have been implementing some filters in customers so they don't have access to potential sites that can make a threat to our network, for example, to access peer-to-peer networks or any other sites that are not allowed in the company.

The FortiGate Next Generation Firewall (NGFW) could be improved in application control if they can have a bigger baseline of applications that they can identify, because this is something that is always growing. I know that Fortinet with the team is updating this database, but it's something that grows at a pace that is very difficult sometimes to keep up. This applies to all vendors, not only Fortinet.

I would rate their support for the FortiGate Next Generation Firewall (NGFW) on a scale of one to ten as 7.5.

Positive

The pricing for the FortiGate Next Generation Firewall (NGFW) is fair.

My company has a business relationship with Fortinet as we are both resellers and we also use the technology. If they had any questions regarding my feedback on the FortiGate solution, not the NGFW, but the FortiGate, it would be okay for them to contact me in that regard. I rate the FortiGate Next Generation Firewall (NGFW) 8.5 out of 10.

We use Fortinet FortiGate as edge protection for the customer site. Right now, we are trying FortiNAC before deploying it for our customer. We link Fortinet FortiGate Firewall to our SIEM solution. We have a cybersecurity department, and we aggregate all the logs of the firewall, the proxy, the PC, virtual machine, and other systems.

The interest of the Fortinet FortiGate appliance is the ability to manage quickly and easily the different functionalities. It's easier to use rather than Palo Alto, for example. AI should be a good improvement. The only difficulty that I have today with the Fortinet FortiGate is that on the Forti appliance, there are many functionalities.

As we are trying FortiNAC right now, there is some improvement needed on the product. For the rest, perhaps having more packages would be beneficial. We do not use FortiManager for our own usage. We have developed some scripts using Ansible and we automate everything.

We have been using the solution for more than 10 years.

The question concerns failures on the appliance or security breaches.

Not all functionalities are scalable.

The access to the support is good. When specific information or professional services support is needed, the professional services are very expensive.

Most of the time we are implementing the UTP service.

The implementation is handled by my team. They are involved in the deployment for the customer and use it day by day. We have three people dedicated to the security part on the Fortinet FortiGate and roughly eight people working on it in the security team.

The cost reduction potential exists but is difficult to quantify.

Fortinet is increasing its value in this area. It's easier to use compared to Palo Alto.

The functionality is acceptable but nothing really impressive. For some customers, we are using Fortinet FortiGate, FortiNAC, FortiAnalyzer. FortiMonitor is used for one customer. For FortiMonitor it's FortiAnalyzer. We don't use FortiAnalyzer on AWS. For both, we need the approval of the head office.

On a scale of 1-10, I would rate this solution between seven and eight.