Skip to main content
TrustRadius
FortiGate

FortiGate

Overview

What is FortiGate?

FortiNet FortiGate is a firewall option with high integrability. It offers a variety of deployment options and next-gen firewall capabilities, including integration with IaaS cloud platforms and public cloud environments.

Read more
Recent Reviews

Best NGFW firewall

10 out of 10
January 11, 2024
If I think of a firewall, first word comes to my mind is Fortinet FortiGate. Best in the industry, as well as in reliability and …
Continue reading

TrustRadius Insights

FortiGate is a versatile product that has been widely used by various organizations to address their network security needs. Users have …
Continue reading
TrustRadius Insights
TrustRadius Insights
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 11 features
  • VPN (38)
    9.8
    98%
  • Firewall Management Console (38)
    9.6
    96%
  • Policy-based Controls (38)
    9.6
    96%
  • Reporting and Logging (38)
    8.2
    82%

Reviewer Pros & Cons

View all pros & cons
Verified User
Engineer in Engineering
Information Technology & Services Company, 201-500 employees
JS
Jai Raj Sharma
Information Technology Manager
National Engineering Industries (Utilities, 1001-5000 employees)
Return to navigation

Pricing

View all pricing
FortiGate

FortiGate

N/A
Unavailable

What is FortiGate?

FortiNet FortiGate is a firewall option with high integrability. It offers a variety of deployment options and next-gen firewall capabilities, including integration with IaaS cloud platforms and public cloud environments.

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.fortinet.com/corporate/abou…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

347 people also want pricing

Alternatives Pricing

pfSense

pfSense

$179
per appliance
What is pfSense?

pfSense is a firewall and load management product available through the open source pfSense Community Edition, as well as a the licensed edition, pfSense Plus (formerly known as pfSense Enterprise). The solution provides combined firewall, VPN, and router functionality, and can be deployed through…

Return to navigation

Product Demos

Fortinet Fortigate Firewall SSL VPN Demo

YouTube
Return to navigation

Features

Firewall

A firewall is a filter that stands between a computer or computer network and the Internet. Each firewall can be programmed to keep specific traffic in or out

9.3
Avg 8.5
Return to navigation

Product Details

What is FortiGate?

Fortinet’s FortiGate is a firewall product with high integrability. It can be deployed on-premises or as a Virtual Machine in a variety of modules. The granularity of the product enables buyers to tailor their purchase to their business needs. FortiGate integrates into multivendor environments, including IaaS cloud platforms and public cloud environments.

FortiGate’s functionality includes the core firewall features, such as intrusion prevention, anti-malware, and web filtering. It also includes SSL inspection, threat protection, and scalable segmentation, all within low-latency standards.

FortiGate Video

FortiGate Demo

FortiGate Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

FortiNet FortiGate is a firewall option with high integrability. It offers a variety of deployment options and next-gen firewall capabilities, including integration with IaaS cloud platforms and public cloud environments.

Reviewers rate VPN highest, with a score of 9.8.

The most common users of FortiGate are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(359)

Community Insights

TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!

FortiGate is a versatile product that has been widely used by various organizations to address their network security needs. Users have reported that FortiGate serves as a reliable firewall solution, providing advanced security features and protecting the infrastructure from known and unknown attack types. It is not just a firewall but a full Unified Threat Management solution, offering security checks for risks like SPAM, infected attachments, and spyware.

FortiGate has proven to be suitable for different use cases, such as small office connections, enterprise proxy, threats management solution, and routing and layer 3 management. It offers excellent routing and VPN performance, making it an ideal choice as the core of a company network's layer 3 and routing infrastructure. Additionally, FortiGate is highly regarded for its ease of setup and management, delivering intuitive visibility into multiple network activities that aid in troubleshooting network and security issues.

Virtualized FortiGates are also available, making it a suitable option for companies with strong virtualization infrastructures. The product line includes devices that can withstand environmental extremes, making it viable for industrial environments. Organizations have utilized FortiGate for securing external services, inter VLAN routing, protecting users' internet access, segmenting internal networks, and creating a security fabric using Fortinet switches and APs.

FortiGate provides robust VPN capabilities for remote workers, including site-to-site VPNs for larger sites. Users have praised its user-friendly interface for policy creation and selection of security profiles. The solution is also utilized as the primary internet-facing firewall, protecting networks from outside threats while allowing secure remote access through SSL VPN.

Customers have recommended FortiGate as an alternative to more expensive solutions due to its cost-efficiency without compromising on performance or functionality. With its powerful technologies and extensive support ecosystem provided by Fortinet, FortiGate has enhanced security and resolved issues across organizations of all sizes.

In summary, FortiGate has proven to be a reliable and versatile network security solution, addressing a wide range of use cases such as firewall protection, VPN establishment, threat management, routing infrastructure, and secure remote access. It provides advanced security features, intuitive management interfaces, and cost-efficient solutions for organizations of all sizes.

Attribute Ratings

Reviews

(1-1 of 1)
Companies can't remove reviews or game the system. Here's why
April 02, 2019

Everything you need to know about Fortigate before buying it !!

Marc-Olivier Turgeon-Ferland | TrustRadius Reviewer
Marc-Olivier Turgeon-Ferland
System Administrator
Coveo (Computer Software, 201-500 employees)
Score 7 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use FortiGate mainly for internet gateway and IPS at each of our offices. It offers us IPS, Firewall, VPN and many more features for a competitive price.

We also use Fortigate captive portal with their 2FA (mobile or physical) keys to offer an additional validation before accessing our service backend networks.
Pros and Cons
  • User authentication inside firewall rules. It is practically seamless and really easy to setup.
  • Management of firewall rules via the GUI.
  • Management of IPS rules via the GUI.
  • Forticlient with SSL VPN causes a lot more problems than it solves. Windows and Mac updates keep breaking the Forticlient and it takes weeks to get updates. Fortigate updates also sometimes break the SSL VPN. Forticlient crashes and the only fix is to restart the computer to restart the VPN driver. We had this problem for 3 years and they still don't have a fix for that. We now use L2TP-IPsec and Cisco-IPsec with Windows and Mac embedded VPN clients because of all that.
  • Memory issues with IPS. We tried all the firmware versions and IPS engines given to us by the Fortinet support and we are still experiencing memory leaks once in a while with the IPS engine. The only provided solution is to restart the IPS engine via CLI.
  • FortiView only works properly if you disable ASIC routing. Their marketing always says that their ASICs is the reason their appliances are better than competition but you can't use it if you want reports or to be able to drill down on network usage.
  • Every time they release a new firmware version, it takes 3-6 revisions for it to be free from major bugs. We are still waiting for a 5.6 revision that will not have major bugs within the features we use.
  • Active-Active clusters do not offer much resilience when problems are software based. If for example the IPS engine has a memory leak, it will not automatically fallback on the other Fortigate, even if the primary one reboots.
  • Everything related to virus, spam and intrusion detection (Forticlient, IPS, mail antispam, etc.) needs a lot of tweaking otherwise you will get a lot of false positive. It is also lacking in the type of actions you can do when those are detected. It is designed more for blocking than anything else.
Likelihood to Recommend
For the money, even with all the bugs, I think it is the application that offers the most features. If you need a lot of those features and you are ready to put the time into tweaking your FortiGates, I really think it will give you the most value. If you have the money to buy the best VPN appliance, the best Firewall, the best IPS appliance and the time to set them with each other then FortiGate is not for you. If money is not the main concern and you only need the best, FortiGate is not for you but I really doubt it will be the case for most.
Return on Investment
  • Because we use FortiGate in all our offices and all FortiGates run on the same firmware/OS, it is really easy to setup cross-site configuration or deploy firewall/IPS rules company wide.
  • Fortinet always does things a bit differently than the rest which sometimes makes it easier to set up but most of times means that you need to contact support or search online to know what options really do. This can cost a lot of man-hour in the long run.
  • The man-hour needed to fix or workaround all the small bugs as to be the most impacting thing to consider before buying FortiGate. If you really use most of the features, you will need to put the time into learning this product. Also for some reason their support doesn't seem to be trained on a lot of features they have inside the product. I often have to link Fortinet documentations to the support technician for them to even understand which feature I am trying to implement.
Alternatives Considered
I know I am repeating myself but Fortigate, for the price, is the most complete and customizable product there is. It might not be the best but we always were able to fix or workaround the problems we encountered with the help of their support.
Other Software Used
Products Replaced
Yes
It replaced an old Cisco ASA which was well due for replacement at the time. We also wanted to have better firewall rule management and implement VPN. We also had in the roadmap the project of implementing IPS and segmenting the networks and wanted to future proof as much as possible for not too much money.
Key Differentiators
  • Price
  • Product Features
  • Existing Relationship with the Vendor
  • Positive Sales Experience with the Vendor
  • Analyst Reports
For the features it offers the only thing that can beat Fortigate (at least at the time we evaluated it) was opensource solution with support contract but still Fortigate offers more features for not much more money when you include hardware cost of the opensource solutions.
Evaluation Lessons Learned
If we had to do it again now we would probably evaluation the more expensive options that were out of the budget at the time. Now though we have so much time and experience on the platform that the alternatives would need to be an order of magnitude better even with the bigger budget.
Bug Resolution
Yes
Most of the bugs I reported were only occuring in corner cases (Ex. when using 2 features in a certain way at the same time) but still the ones that got fix took years and didn't matter to us as we found workarounds or we used another product before then.
Exceptional Examples of FortiGate Support
Our SE always provides support that goes beyond what is expected.

One time we were diagnosing a slowness when doing SMB traffic over L2TP VPN and even though support was trying to help but not finding the problem our SE was continually giving us things to try in parallel and in the end it wasn't even the Fortigate that was causing the problem, it was some regkey in Windows.
Support Rating
7
The first support level is pretty much useless for any complicated problems. They are they to guide you to the correct documentation relating to simple questions and to collect data for the 2nd level and up.

Once you are able to get escalated, those people are pretty knowledgeable and will normally get you at least a workaround but most of the time they will really try to understand what you want to accomplish and not only apply the solution but also educate you which is less and less common and a really good thing.
Systems Integrated With
  • Windows and macOS embedded VPN clients
  • FortiManager
  • FortiAnalyzer
  • FortiAuthenticator
Integrating Fortigate with other Fortinet solutions like FortiAnalyzer is for the most part really easy. The only problem I remember having was when trying to use AD users + FortiAuthenticator (2FA) in the Fortigate captive portal. As it was not a supported setup, we had to create a script that syncs AD users to the Fortigate as local users.

For the VPN integration with Windows and macOS embedded client we had to do a lot of trial and error to find the correct settings as this is again not something that is officially supported in their documentation.
Future Integration Plans
  • OpenVPN as a VPN client
  • Clearpass
To my knowledge, OpenVPN is not supported and Fortinet does not plan to support it as a VPN client and this is why we will probably stop using Fortigate as our VPN server.

Clearpass is support though but as Fortigate only supports some types radius message and not all of them we can't do everything we would like to.
For example, it is not possible to do machine authentication as Fortigate does not support changing the group dynamically which prevents us from using a post-user-auth VLAN to do machine auth to finally send the machine/user in the correct VLAN.
Types of Integration
  • File import/export
  • Single Signon
  • API (e.g. SOAP or REST)
  • Javascript widgets
Ease of Integration
7
Fortigate has easy and powerful integrations with the rest of the Fortinet portfolio but I think that they really should make the product more open to allow easier third party integrations. They always push their main solution with little regards to alternatives.

For example with their VPN client, they push their Forticlient so hard that we were not able to get much help from support to setup the L2TP and Cisco-IPsec config. It's in the product but you have to use the CLI and the support and documentation is lacking because it's not their recommended solution.
Integration Lessons Learned
You should probably stick to Fortinet products if you want to use Fortigate as they are not the best at being vendor agnostic. Sometimes they will use standard protocols and it will be possible to use third party but you will need figure out mostly by yourself if it's even possible and then how to do it.
Return to navigation