Overview
What is FortiGate?
FortiNet FortiGate is a firewall option with high integrability. It offers a variety of deployment options and next-gen firewall capabilities, including integration with IaaS cloud platforms and public cloud environments.
Best NGFW firewall
TrustRadius Insights
Give your Network a Security Boost with FortiGate and enjoy the benefits of Peace of Mind
Fortinet FortiGate is perfect tool for gateway security
All the gates are securely closed with your Fortinet FortiGate
Getting to know Fortinet
Best Firewall for Small and Mid-sized organisation with negligible flaws
Reliable and stable network protects the platform
Fast, easy and delivers the promised...
A Cost effective Firewall to All sized company- Fortinet FortiGate
MY Review for Fortinet FortiGate devices
When you have many branches, an SD-Wan VPN is the best for you
Fortinet FortiGate for advance security features
My Fortinet FortiGate Review (my experience)
My Body for 10+ years, Allways reliable.
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- VPN (38)9.898%
- Firewall Management Console (38)9.696%
- Policy-based Controls (38)9.696%
- Reporting and Logging (38)8.282%
Reviewer Pros & Cons
Pricing
What is FortiGate?
FortiNet FortiGate is a firewall option with high integrability. It offers a variety of deployment options and next-gen firewall capabilities, including integration with IaaS cloud platforms and public cloud environments.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
347 people also want pricing
Alternatives Pricing
What is pfSense?
pfSense is a firewall and load management product available through the open source pfSense Community Edition, as well as a the licensed edition, pfSense Plus (formerly known as pfSense Enterprise). The solution provides combined firewall, VPN, and router functionality, and can be deployed through…
Product Demos
Fortinet Fortigate Firewall SSL VPN Demo
Features
Firewall
A firewall is a filter that stands between a computer or computer network and the Internet. Each firewall can be programmed to keep specific traffic in or out
- 9.7Identification Technologies(36) Ratings
Policy-based visibility and control over applications, users and content
- 8.7Visualization Tools(36) Ratings
Visualization tools present administrators with data on applications traversing the network, who is using them, and the potential security impact.
- 8.9Content Inspection(37) Ratings
Inspecting permitted application traffic by means of threat prevention, URL filtering and data filtering
- 9.6Policy-based Controls(38) Ratings
Firewall policy controls enable administrators to create firewall policies controlling what data is allowed to traverse the firewall
- 9.2Active Directory and LDAP(37) Ratings
Integration with Active Directory and LDAP directories
- 9.6Firewall Management Console(38) Ratings
Either command-line or web-based interface for centralized control and management
- 8.2Reporting and Logging(38) Ratings
Custom and summary reports, and log files enabling analysis of security incidents, application usage and traffic patterns
- 9.8VPN(38) Ratings
VPN's implement encryption and anonymize IP addresses
- 9.7High Availability(33) Ratings
Built-in capacity to prevent exposure if primary firewall stops working
- 9.6Stateful Inspection(36) Ratings
Stateful inspection analyzes packet headers and contents of packets
- 8.9Proxy Server(27) Ratings
A proxy server changes your IP address and masks the origin of your network traffic
Product Details
- About
- Tech Details
- FAQs
What is FortiGate?
Fortinet’s FortiGate is a firewall product with high integrability. It can be deployed on-premises or as a Virtual Machine in a variety of modules. The granularity of the product enables buyers to tailor their purchase to their business needs. FortiGate integrates into multivendor environments, including IaaS cloud platforms and public cloud environments.
FortiGate’s functionality includes the core firewall features, such as intrusion prevention, anti-malware, and web filtering. It also includes SSL inspection, threat protection, and scalable segmentation, all within low-latency standards.
FortiGate Video
FortiGate Technical Details
Operating Systems | Unspecified |
---|---|
Mobile Application | No |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(359)Community Insights
- Business Problems Solved
FortiGate is a versatile product that has been widely used by various organizations to address their network security needs. Users have reported that FortiGate serves as a reliable firewall solution, providing advanced security features and protecting the infrastructure from known and unknown attack types. It is not just a firewall but a full Unified Threat Management solution, offering security checks for risks like SPAM, infected attachments, and spyware.
FortiGate has proven to be suitable for different use cases, such as small office connections, enterprise proxy, threats management solution, and routing and layer 3 management. It offers excellent routing and VPN performance, making it an ideal choice as the core of a company network's layer 3 and routing infrastructure. Additionally, FortiGate is highly regarded for its ease of setup and management, delivering intuitive visibility into multiple network activities that aid in troubleshooting network and security issues.
Virtualized FortiGates are also available, making it a suitable option for companies with strong virtualization infrastructures. The product line includes devices that can withstand environmental extremes, making it viable for industrial environments. Organizations have utilized FortiGate for securing external services, inter VLAN routing, protecting users' internet access, segmenting internal networks, and creating a security fabric using Fortinet switches and APs.
FortiGate provides robust VPN capabilities for remote workers, including site-to-site VPNs for larger sites. Users have praised its user-friendly interface for policy creation and selection of security profiles. The solution is also utilized as the primary internet-facing firewall, protecting networks from outside threats while allowing secure remote access through SSL VPN.
Customers have recommended FortiGate as an alternative to more expensive solutions due to its cost-efficiency without compromising on performance or functionality. With its powerful technologies and extensive support ecosystem provided by Fortinet, FortiGate has enhanced security and resolved issues across organizations of all sizes.
In summary, FortiGate has proven to be a reliable and versatile network security solution, addressing a wide range of use cases such as firewall protection, VPN establishment, threat management, routing infrastructure, and secure remote access. It provides advanced security features, intuitive management interfaces, and cost-efficient solutions for organizations of all sizes.
Attribute Ratings
- 9.9Likelihood to Renew4 ratings
- 10Availability2 ratings
- 10Performance1 rating
- 10Usability6 ratings
- 8.6Support Rating26 ratings
- 10In-Person Training1 rating
- 8Implementation Rating4 ratings
- 9Configurability1 rating
- 9.8Product Scalability2 ratings
- 7Ease of integration1 rating
- 9Vendor pre-sale1 rating
- 10Vendor post-sale1 rating
Reviews
(1-1 of 1)We also use Fortigate captive portal with their 2FA (mobile or physical) keys to offer an additional validation before accessing our service backend networks.
- User authentication inside firewall rules. It is practically seamless and really easy to setup.
- Management of firewall rules via the GUI.
- Management of IPS rules via the GUI.
- Forticlient with SSL VPN causes a lot more problems than it solves. Windows and Mac updates keep breaking the Forticlient and it takes weeks to get updates. Fortigate updates also sometimes break the SSL VPN. Forticlient crashes and the only fix is to restart the computer to restart the VPN driver. We had this problem for 3 years and they still don't have a fix for that. We now use L2TP-IPsec and Cisco-IPsec with Windows and Mac embedded VPN clients because of all that.
- Memory issues with IPS. We tried all the firmware versions and IPS engines given to us by the Fortinet support and we are still experiencing memory leaks once in a while with the IPS engine. The only provided solution is to restart the IPS engine via CLI.
- FortiView only works properly if you disable ASIC routing. Their marketing always says that their ASICs is the reason their appliances are better than competition but you can't use it if you want reports or to be able to drill down on network usage.
- Every time they release a new firmware version, it takes 3-6 revisions for it to be free from major bugs. We are still waiting for a 5.6 revision that will not have major bugs within the features we use.
- Active-Active clusters do not offer much resilience when problems are software based. If for example the IPS engine has a memory leak, it will not automatically fallback on the other Fortigate, even if the primary one reboots.
- Everything related to virus, spam and intrusion detection (Forticlient, IPS, mail antispam, etc.) needs a lot of tweaking otherwise you will get a lot of false positive. It is also lacking in the type of actions you can do when those are detected. It is designed more for blocking than anything else.
- Because we use FortiGate in all our offices and all FortiGates run on the same firmware/OS, it is really easy to setup cross-site configuration or deploy firewall/IPS rules company wide.
- Fortinet always does things a bit differently than the rest which sometimes makes it easier to set up but most of times means that you need to contact support or search online to know what options really do. This can cost a lot of man-hour in the long run.
- The man-hour needed to fix or workaround all the small bugs as to be the most impacting thing to consider before buying FortiGate. If you really use most of the features, you will need to put the time into learning this product. Also for some reason their support doesn't seem to be trained on a lot of features they have inside the product. I often have to link Fortinet documentations to the support technician for them to even understand which feature I am trying to implement.
- Sophos Firewall, Palo Alto VPN Appliance, Palo Alto Networks Threat Protection and WatchGuard NGFW
- Price
- Product Features
- Existing Relationship with the Vendor
- Positive Sales Experience with the Vendor
- Analyst Reports
One time we were diagnosing a slowness when doing SMB traffic over L2TP VPN and even though support was trying to help but not finding the problem our SE was continually giving us things to try in parallel and in the end it wasn't even the Fortigate that was causing the problem, it was some regkey in Windows.
Once you are able to get escalated, those people are pretty knowledgeable and will normally get you at least a workaround but most of the time they will really try to understand what you want to accomplish and not only apply the solution but also educate you which is less and less common and a really good thing.
- Windows and macOS embedded VPN clients
- FortiManager
- FortiAnalyzer
- FortiAuthenticator
For the VPN integration with Windows and macOS embedded client we had to do a lot of trial and error to find the correct settings as this is again not something that is officially supported in their documentation.
- OpenVPN as a VPN client
- Clearpass
Clearpass is support though but as Fortigate only supports some types radius message and not all of them we can't do everything we would like to.
For example, it is not possible to do machine authentication as Fortigate does not support changing the group dynamically which prevents us from using a post-user-auth VLAN to do machine auth to finally send the machine/user in the correct VLAN.
- File import/export
- Single Signon
- API (e.g. SOAP or REST)
- Javascript widgets
For example with their VPN client, they push their Forticlient so hard that we were not able to get much help from support to setup the L2TP and Cisco-IPsec config. It's in the product but you have to use the CLI and the support and documentation is lacking because it's not their recommended solution.