The company came to us and provided a proof of concept (POC) for six or seven months for testing the machine and evaluating how we can use Fortinet FortiSandbox. Also, we use FortiSandbox for scanning files, like attachments.

Currently, there isn't a standout feature. We use Fortinet FortiSandbox for scanning files such as attachments, and we have not faced any issues so far. Up to now, it is performing well.

We sometimes face a delay in email scanning due to not having multiple virtual machines. Improvements could be made in dynamic scanning, scanning all email components such as URLs and attachments, and analyzing the Sandbox response. Additionally, better integration with cloud solutions and enhanced performance would be beneficial.

I have been using FortiSandbox for six months, specifically for testing purposes on the Alibaba Cloud platform.

The solution is stable up to now because it is still new, just six months maximum.

The solution's performance is fine and more improved compared to the last two months.

As of now, I've primarily been in contact with the consultants for support and have only needed one ticket with Fortinet. I have no substantial experience with Fortinet's direct technical support.

Neutral

I previously used Cisco, but Fortinet is much easier in terms of configuration and service time.

The initial setup of Fortinet was easy, more so than other products. Even though I'm not directly involved, it has been very easy to work with Fortinet, especially compared to other solutions.

It was a combined effort. A consultant from an external company worked alongside us on the implementation. Most of the integration and support involved consultants.

I think it's affordable. For the six to seven months of usage, the cost has been reasonable.

FortiSandbox is rated five out of ten. It meets the requirements but still has room for growth and improvements.

We use FortiSandbox for scanning files and images that pass through our networks. It integrates with different devices, such as five adapters and other Fortinet devices.

It is time-saving and more secure. It saves us from a lot of antivirus and anti-malware issues.

The adapter is beneficial as it allows integration with various devices, not just Fortinet.

It would be better if we could integrate FortiSandbox with endpoint security solutions. This would allow us to scan files opened by the endpoint user and not just over the network.

I have about one year of experience working with FortiSandbox.

I would rate the stability of FortiSandbox as eight out of ten.

I would rate the scalability of FortiSandbox as eight out of ten.

Fortinet provides really good technical support. They introduce high-level support for us.

Positive

The initial configuration is straightforward and not difficult. We have an ID for port one and can assign port three for ID two for the device.

I am not familiar with the pricing because my role is strictly technical.

I recommend using FortiSandbox, especially if your environment relies on FortiGate devices or is integrated with Fortinet. It ensures better compatibility.

I'd rate the solution nine out of ten.

We use Fortinet FortiSandbox for malware analysis, seamlessly integrating with various solutions such as FortiGate, FortiMail for Mail Security, FortiWeb, and other endpoints. FortiSandbox also supports ICAP integration with FortiWeb, enhancing its capabilities. These integrations can be configured within FortiSandbox, either internally or externally. Additionally, FortiSandbox offers integration with Exchange as an adapter.

The integration is easy with other Fortinet products like FortiMail. The technology of sandboxing FortiSandbox can cover it.

Fortinet FortiSandbox has the capability for manual analysis' Unlike its competitors, FortiSandbox offers functionalities such as banning, sniffing, and analyzing traffic in the network. It can connect as a bandwidth analyzer and provide analytics on the network traffic. It's not limited to just sandboxing; it can also operate at the endpoint, firewall, or gateway levels to submit files for analysis and monitor network traffic for analysts.

The solution must focus on API integration with other vendors.

I have been using Fortinet FortiSandbox as an integrator since 2017.

The solution is stable on dedicated appliances like virtual machines. It also depends on the capabilities of the host system, including CPU and RAM.

The solution is scalable. You can configure up to one hundred nodes as workers. Additionally, you can include up to ninety-eight worker nodes in other models, allowing them to function as a cluster.

It has a defense line from zero-day attacks and sophisticated attacks. You will need an EDR solution and the endpoint.

Six persons are using this solution.

Customer support is friendly and has a good team.

A network security engineer can deploy the solution. The organization's IT department manages administration, including application and network security. Multiple administrators may use FortiSandbox, each with their front-end interface for managing it.

The solution provide zero-day attacks which benefitted a lot.

If the customer's operating system is supported, there's no need for a custom package. It's straightforward. If a custom operating system is required, it will take longer due to the need for package customization.

Overall, I rate the solution an eight out of ten.

We implemented FortiSandbox in three main steps: planning the infrastructure and topology, setting up dedicated Internet access for the sandbox, and configuring manual uploading and email forwarding. For email communication, we used either FortiMail or BCC/force mirroring solutions. FortiSandbox has successfully identified and blocked email attachments containing threats. 

The real-time analysis capability of FortiSandbox is beneficial for email analysis, but it's not practical for real-time web traffic analysis because users won't wait for the FortiSandbox to complete its analysis before accessing content.

I have experience working with Fortinet FortiSandbox, but it's been about one year since the first implementation.

It is stable

The solution is scalable especially suitable for enterprise businesses.

I haven't needed technical support, and while the pricing can be expensive, the performance and security it offers are commendable.

I rate the initial setup of Fortinet FortiSandbox as a little bit difficult due to licensing issues,

I would recommend FortiSandbox for high-security environments like financial or government sectors. Overall, I rate it an eight out of ten.

The most valuable features of the product include components like CDR, greylisting, sandboxing, attachment detection in sandboxing, DLP fingerprinting, and the redirect option.

For the MSSPs, it would be great if the product could display all the threat chains on a dashboard since it is an area where the tool is currently lacking.

I have been using Fortinet FortiSandbox for around two years. My company has a partnership with Fortinet. My company also operates as an MSP for Fortinet.

It is a stable solution with no issues at all. The product is scalable and stable since it is compatible with cloud solutions like AWS and Azure. The product can be deployed on the cloud services offered by Amazon AWS or Microsoft Azure.

It is an easily scalable solution.

My company caters to the needs of small, medium, and large-sized businesses where the solution is used.

The solution's technical support is satisfactory. I rate the technical support a seven to eight out of ten.

Positive

I have worked with other solutions in the past.

The product is easy to deploy.

The product can be deployed in 15 days.

Two or three people from our company are involved in the deployment, implementation, and configuration process.

Fortinet FortiSandbox saves a lot of money for its users since if an attack happens in your environment, the loss is infinite, especially in terms of the brand value and laws of data. In terms of ROI, the tools safeguard the data and brand value of the company. The percentage of the ROI can vary from company to company. If the product prevents an attack on a small or medium-sized business, then the ROI part will have a different implication in terms of numbers. If the product prevents an attack on an enterprise-sized company, the ROI part will have a different implication in terms of numbers.

Fortinet FortiSandbox is a nominally priced product, so I would not say that it is a very cheap tool. It is one of the best solutions in the market with a competitive pricing model, similar to the prices offered by products from Cisco.

I would describe Fortinet FortiSandbox, which has been deployed within our company's network for threat detection, as a proactive solution with multiple functionalities. A few of the functionalities of the product include areas like sandboxing, CDR, pattern-reading, and detection ratio, which are very good.

I rate the product's effectiveness in dealing with zero-day threats a seven to eight out of ten, where ten means it is the most effective product for dealing with zero-day threats.

As of now, Fortinet FortiSandbox is not integrated with other Fortinet solutions to improve our company's security posture. The tool is integrated with our own existing email security gateway to use anti-spam and anti-virus features.

The tool should have more ability to customize from the reporting point of view. The tool should be able to provide more slicing and dicing in data. The users of the product should try to know about threat chains t with the help of the tool's MSPs so that they know the outcome of a threat that may enter their networks. In the MSP model, it would be good if the aforementioned area gets integrated.

The reporting and alerting capabilities of the product have helped our company's security area since the tool provides good and deep-dive reports, which include proper reasoning for certain actions that were taken. The report will explain why it blocked or did not block certain aspects. There are detailed reports in terms of the logs that the tool provides its users. The tools also provide details on the areas that were quarantined. In general, the tool provides a very detailed report.

The product is easy to maintain since my company gets proper support from Fortinet.

In my company, there are many use cases to describe scenarios where the product prevented or mitigated a breach or an attack. My company operates as a managed service provider for Fortinet, and many of our customers use Fortinet FortiSandbox. When my company receives any attacks via links or attachments, FortiMail blocks such emails.

I suggest others consider whether they plan to buy a solution from a security company. I will see whether the tool I use for sandboxing is from a security company or not. I will consider the catch rate of the product. I will also consider the other solutions that the vendor can bring in for me that can improve and secure my company's security posture while being easy to use and implement.

I will consider whether the vendor who offers our company sandboxing features has a security background. I will look into whether the solution is interoperable or not. There should be interoperability if I need to deploy some other solution as well, like a DLP or a firewall.

I rate the overall tool a seven out of ten.

We use Fortinet FortiSandbox for malware. Fortinet FortiSandbox is used before entering the firewall to extract any file and check for malicious activity.

The solution extracts an attached file before reaching the user and notifies the user if there's something malicious in the attachment received along with an email. The solution prevents such malicious content from entering your enterprise network.

When you reach the maximum capacity, you cannot upgrade the solution because its hardware is very expensive. All you can do is discard it and buy another.

I have been using Fortinet FortiSandbox for five years.

We didn't face any issues with the solution's stability for the three years it was installed on-premises at our data center.

The solution’s technical support is good.

The solution’s initial setup is straightforward.

We have seen a return on investment with Fortinet FortiSandbox because it helped us a lot on the security part.

If you're using Fortinet, it's best to use the solution when using FortiGate antivirus because it's all connected and easy to manage.

Overall, I rate Fortinet FortiSandbox an eight out of ten.

We use this solution to stay updated on the latest vulnerabilities and attacks. It acts as a database for Fortinet customers to keep their equipment safe and secure.

In future releases, I would like to see more automation capabilities. 

I have a little experience with this solution. We recently purchased new equipment to upgrade from the old range to the new range. 

We previously used FortiGate 100D and upgraded to FortiGate 100S now. 

It is a stable solution.  

FortiSandbox is scalable. We have more than 1200 users across branch offices and headquarters.

Whenever we reach out to Fortinet, they give a response in time. Till now, we have had positive interactions.

We connect with FortiGate through qualified vendors, especially regarding SLA and responsiveness.

I have experience with other solutions like Sophos and CheckPoint. 

We have an IT department managing the solution. There are around 30 people in the team. 

FortiSandbox is a subscription that can be purchased from Fortinet directly. Only using FortiSandbox as features purchased as a subscription in the cloud.

We purchased the bundle. So, we got one price for the package. It was a unified package. 

Overall, I would rate the solution an eight out of ten. 

I use Fortinet FortiSandbox to detect malware in the system, especially when uploading or downloading files from the internet.

The most valuable feature of the solution is that the performance it offers to users is good, making it useful for us in our company. Fortinet FortiSandbox is more like a SASE solution.

The solution is unavailable at a lower cost and can be difficult to deploy. From an improvement perspective, I would like the solution to be made available to users at a cheaper price while making its deployment phase easier.

I have experience with Fortinet FortiSandbox.

It is a stable solution. I can't rate the solution's stability since I am unaware of it.

It is a scalable solution.

Around 500 people in my institution use the solution.

I have some previous experience with Check Point and NetScaler.

The initial setup of Fortinet FortiSandbox is straightforward.

The solution can be deployed on either a cloud or on-premises.

Though I haven't worked with Fortinet FortiSandbox, it is a good solution based on the opinion of one of my colleagues who has worked with it. Fortinet FortiSandbox can be deployed on a cloud or on-premises.

I recommend the solution to those who plan to use it. Fortinet FortiSandbox is a good security option for those who plan to use it.

The overall solution is an eight to nine out of ten.

We use Fortinet FortiSandbox to troubleshoot different software.

Performance is a valuable feature.

The delivery feature in my country is extremely bad.

I have been using Fortinet FortiSandbox for three months.

It is a stable solution. 

It is a scalable solution. 

We have the support to set it up. It took a few months to deploy it. We integrate the solution and the support takes care of the solution after that. Almost three to four people are required for the maintenance.

It is an expensive solution. 

I would rate the overall solution an eight out of ten. 

My company uses Fortinet FortiSandbox to integrate with the email system named FortiMail. Fortinet FortiSandbox also helps with the integration of network infrastructure, allowing our company to extract some objects from the network and analyze them.

The main benefit of Fortinet FortiSandbox is that it allows organizations to detect and prevent unknown threats from entering an infrastructure.

The most valuable feature of Fortinet FortiSandbox is its ability to be integrated with email infrastructure, like FortiMail, with a blocking mode option, which means that FortiSandbox not only allows the detection of some malicious objects in emails but also helps block them to prevent end users from receiving from malicious emails.

The main area of concern in Fortinet FortiSandbox is its detection capabilities. I have seen some cases where the solution doesn't provide any clue of threats or malicious objects to its users. When FortiSandbox was not able to detect some malicious objects, Fortinet's competitors were able to do that. The aforementioned area can be considered for improvement.

I have been using Fortinet FortiSandbox for three to four years. I am an end user of the solution.

It is a pretty stable solution. Stability-wise, I rate the solution an eight to nine out of ten.

It is a scalable solution. From my experience, I can say that the solution's embedded functionality was enough to cover all use cases in the past involving different environments.

Scalability-wise, I rate the solution an eight out of ten.

I have contacted Fortinet's technical support and found them to be pretty responsive and fast. I rate the technical support a nine out of ten.

Positive

Kaspersky, FireEye, and Trend Micro were the solutions I used in the past. Kaspersky, FireEye, and Trend Micro were the solutions I used in the past. I cannot compare the solutions I have used in the past with Fortinet FortiSandbox and comment on which one was the best solution I used since the use of each solution depends on the use cases and Infrastructures. The main advantage of Fortinet FortiSandbox is that it is a part of Fortinet Security Fabric, meaning Fortinet has its own security framework. It is really easy to deploy FortiSandbox and integrate with other Fortinet solutions. Suppose your company has a Fortinet stack or technologies across your network or infrastructure for endpoint protection or network protection. I think Fortinet FortiSandbox would be the easiest choice. I cannot say that Fortinet FortiSandbox is better than Kaspersky, FireEye, or Trend Micro.

The initial setup phase of Fortinet FortiSandbox was pretty straightforward because, in my case, I worked with the physical appliances. According to the documentation, the setup phase for virtual appliances would be exactly the same as for physical appliances. You just deploy the box and then configure it, after which you create some integrations with FortiMail and other systems, which may take less than an hour.

The solution is deployed on an on-premises model.

The solution can be deployed in an hour or even less in the easiest scenarios. In the not-so-easy scenarios, the deployment phase for the solution may take a day or two. Some of my company's customers want to integrate Fortinet FortiSandbox with FortiMail and other tools, so it involves multiple integration points. The purpose of integrating Fortinet FortiSandbox with other tools may be to simultaneously monitor network or email traffic and use some customized images for virtual machines, which does take time. There is a need to perform fine-tuning in the solution to set up detection capabilities and some mechanisms.

I take care of the solution's installation phase in my company. For the solution's installation phase in my company, I sought the help of my colleagues from the IT department to manage the integration of Fortinet FortiSandbox with our company's email system since certain settings are to be done not only in FortiCentral but also in FortiMail and network layers. In most scenarios, you are not able to do it by yourself because you don't have proper access to a particular system.

It is a problem task to prove the ROI of any security solution. I saw several cases where FortiSandbox was able to detect some zero-day ransomware attacks at a time when there were no solutions, like FortiSandbox, making it easy for the ransomware attack to be successful. Dealing with a successful ransomware attack would cost a lot of money.

Though I don't know the exact numbers related to pricing, the solution is priced adequately or fairly.

I rate the product's pricing a five or six on a scale of one to ten, where one is low, and ten is high.

Though the solution comes with embedded licenses, there is always a problem for all the vendors when it comes to the virtual machines from Windows. Since Fortinet provides for the additional licenses, there is no need to buy any additional licenses.

If a company has some Fortinet equipment in its environment already, then Fortinet FortiSandbox would be the best choice for them. If a company wants to go for the deployment of some other solution for all their infrastructures, then it would be good to analyze the integration and detection capabilities.

I rate the overall solution a nine out of ten.