The main use case of FortiGate Next Generation Firewall (NGFW) is that it is used to search for a firewall whenever we need to connect multiple sites to a VPN. At times, the solution needs a web filter or a particular filter. With the IPS and the cloud protection on the gateway, we are also looking for a firewall that can act as zero-depth protection.
Fortinet FortiGate Next-Generation Firewall
Fortinet Inc. | 7.6.3Linux/Unix, Other 7.6.3 - 64-bit Amazon Machine Image (AMI)
External reviews
External reviews are not included in the AWS star rating for the product.
A feature-rich solution that offers application blocking, web protection, and IPS, with a need to improve its support and pricing
What is our primary use case?
What is most valuable?
The solution's most important feature is that it will work on the app whenever we block the application order, making it a plus point for the NGFW firewall. The solution also works with all the other web protection aspects, because of which we get everything in a single box.
What needs improvement?
There are multiple firewalls, and I mainly worked with Sophos and FortiGate. To weigh the pros and cons, different types and aspects should be considered in different firewalls.
The support for FortiGate in the Indian region can be improved along with the scalability. The pricing of the solution is expensive, so it could be cheaper.
For how long have I used the solution?
I have worked as a system integrator with FortiGate Next Generation Firewall (NGFW) for five years.
What do I think about the scalability of the solution?
We can say that the solution's scalability is moderate. It is not that easy, nor too hard. If the technician is sound, then he can understand the solution easily.
Our customers include small, medium, and enterprise businesses.
How are customer service and support?
In India, support takes some time. If the call gets connected outside India, then it is very good. SonicWall has the best support, and Sophos also offers good support. For FortiGate, the support in the Indian region can be improved.
As for the rating, I would say that FortiGate offers very good support. Once we get the support, it is very good. However, the support team is not connecting as easily as we require. If the issue is too critical, the process becomes more complicated for us. I rate the support an eight out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I mainly worked with Sophos and FortiGate. I have used different solutions depending on the customer's requirements. We can suggest a particular solution to a customer based on their needs. Every firewall solution has its own pros and cons, which we just bifurcate as per the customer's requirement.
How was the initial setup?
The initial setup is easy if I am going to talk about Sophos' and FortiGate's installation. It is easy to install. There is not much complexity involved.
As for deployment, it depends on the customer's requirements. But the average time is 3 to 4 hours. At times, deployment takes 12 to 13 hours, but it depends on the model and the configuration.
It takes two engineers to deploy the product. One of them is the deployment engineer, and one is an architect.
The solution is deployed on-premises.
What's my experience with pricing, setup cost, and licensing?
The solution is more expensive than Sophos. It could be cheaper. The licensing is on a yearly basis. We have had it for about three years. We must only pay extra for the license, additional requirements, and the hardware box.
What other advice do I have?
I am fine with the solution's interface. The solution is easy to use. FortiGate Next Generation Firewall (NGFW) is a base product, and anyone can use it. I recommend it to those planning to use it.
There is not much maintenance for FortiGate Next Generation Firewall (NGFW). OEM provides the support. Whenever it becomes complicated or any issues come up, we can call OEM directly, and they are always available to help.
Overall, I would rate it ten out of ten.
Which deployment model are you using for this solution?
A user-friendly and easy-to-install product that has a seamless performance
What is our primary use case?
Our clients use the solution to ensure their environment is secured on all the layers. The application layer all the way to the networking. That's one of the main reasons they use the product in their environment.
What is most valuable?
It's a seamless product, and it's not buggy. The updates we receive from FortiGate are one of the most important features. The product is user-friendly and not complex.
What needs improvement?
The solution must improve the support provided for customers around the globe, considering the time differences in different places. The product could add some functionalities and features provided by its competitors to stay ahead in the market.
For how long have I used the solution?
I have been using the solution for two years.
What do I think about the stability of the solution?
The product is stable. We haven't had issues so far. I rate the stability a nine out of ten.
What do I think about the scalability of the solution?
The solution is scalable in most cases. It all depends on the customer's requirements. We haven't yet come across a situation whereby scaling is not possible. Our clients are small, medium, and enterprise businesses. Currently, one of our customers is not able to reach the specific level of scalability that they require so far. I rate the scalability an eight out of ten.
How are customer service and support?
The support is great. However, support needs to improve constantly. Even though they are good, they should try to stay ahead of the competitors.
How would you rate customer service and support?
Positive
How was the initial setup?
The solution is easy to install. The ease of setup depends upon the customer’s requirements. I rate the ease of setup a ten out of ten.
What about the implementation team?
The time to deploy the product depends on the clients’ requirements because we have to work hand in hand with the service provider. If we have to terminate a link on the firewall and everything from the networking perspective is all in place, it might just take a couple of minutes to deploy.
We need just need one to three engineers to deploy the solution. It depends on the magnitude of the client. The solution requires maintenance. More than three people are needed to maintain the product.
What's my experience with pricing, setup cost, and licensing?
The product is a little bit expensive. The certifications cost $400. Other vendors provide it for an average of $200 to $300. The product has an annual licensing fee. Additional costs depend on the user's requirements.
What other advice do I have?
People looking to use the product must ensure they have enough engineers who know how to work with it. Overall, I rate the solution a ten out of ten.
Which deployment model are you using for this solution?
Very easy to use. Great value
It's an easy security solution to deploy and added great value protecting our workloads from known vulnerabilities. We used it as a hub spoke topology.
Effective and easy to set up
Provides as good if not better coverage as our on premise NGFW. Easy to deploy and set up.
Unique Master-Slave sync in HA mode as well as API calls to the AWS infrastructure which means we don't need to run a lambda to supervise the state of the master and change the routing. The API calls take care of this.
Great product!
All the features I need, Fortigate's features are covered, and now I can use Fortigate products in multiple clouds to help us achieve hybrid clouds.
Great Security, Not many instructions
The product is simply one of the most secure you can buy. It lack instructions on how to get it working properly.