We performed a comparison between Fortinet FortiOS and Vectra AI based on real PeerSpot user reviews.
Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls."Security, SD-WAN, and Streetscape are valuable features."
"Easy to implement, and it is also reliable."
"The security fabric is excellent."
"From the firewall perspective, the rules and policies are very sufficient and easy to use."
"The Fortinet FortiGate local partners were good. I did not have direct contact with Fortinet support."
"The web tutor and automatic rules by schedule are good features."
"The main reason why I purchased the particular unit was that it had good reviews and what other people were saying as far as its completeness and its leading capabilities in terms of endpoint security was very good."
"The simplicity of the product is great. It's very easy to use, which is a compliment we get all the time in terms of feedback."
"All networks are security-driven, we get throughputs and security. We feel that the people at Fortinet are easy to deal with from a support standpoint. If they need to jump in and help us, they're very willing to do that. Their email filtering, their data loss prevention, their intrusion prevention, type of products in the newest OSs has been outstanding."
"What I like about this solution, is that it is the only solution that currently offers VPN for clients."
"There are many useful features, such as web security and advanced threat detection."
"The interface is good."
"Fortinet FortiOS's valuable features include intuitive policy creation and deployment, precise parameter settings to determine thresholds, and security profiles such as web filtering and remote application filtering, among others."
"It's simple to use in terms of inbound and outbound traffic management."
"Performance-wise, I think FortiOS is much better than its Juniper counterpart. Based on our actual experience and performance metrics, FortiOS-based products are much better than Juniper."
"The SSL VPN is fee for use is most attractive."
"Vectra AI helped our team be more productive and save time. We have less work thanks to it."
"What I like best about Vectra AI is that it alerts you about suspicious activities."
"Vectra AI generates relevant information."
"The most valuable feature for Cognito Detect, the main solution, is that external IDS's create a lot of alerts. When I say a lot of alerts I really mean a lot of alerts. Vectra, on the other hand, contextualizes everything, reducing the number of alerts and pinpointing only the things of interest. This is a key feature for me. Because of this, a non-trained analyst can use it almost right away."
"It is doing some artificial intelligence. If it sees a server doing a lot of things, then it will assume that is normal. So, it is looking for anomalous behavior, things that are out of context which helps us reduce time. Therefore, we don't have to look in all the logs. We just wait for Vectra to say, "This one is behaving strange," then we can investigate that part."
"It gives you access, with Recall, to instant visibility into your network through something like a SIEM solution. For us, being able to correlate all of this network data without having to manage it, has provided immediate value. It gives us the ability to really work on the stuff where I and my team have expertise, instead of having to manage a SIEM solution..."
"We often use the new feature to create PCAP files from the whole data traffic. It makes it much easier to find network problems such as whether the server is responding to a request. It has nothing to do with security, but it helps a lot to find other problems."
"One of the most valuable features is all the correlation that it does using AI and machine learning. An example would be alerting on a host and then alerting on other things, like abnormal behavior, that it has noticed coming from the same host. It's valuable because we're a very lean team."
"The logging details need to be improved."
"I would like some automated custom reporting."
"One of the problems I was having was with user mapping, and it is an issue for which I have escalated tickets with Fortinet support."
"It should provide better visibility over the network and more information in the form of reports for the end users. Its installation should also be easier."
"MTBF: Hardware failure is more common when compared to SonicWall or Cisco ASA."
"Its reporting capabilities can be improved. It should have some out-of-the-box reporting capabilities and some degree of customization. The basic reporting that it currently has is not sufficient to create more usable reports. It needs some sort of out-of-the-box reporting. They try to make customers purchase FortiAnalyzer for this kind of reporting, which is an additional cost. Other firewall vendors, such as SonicWall and Sophos, provide this sort of reporting without any additional cost."
"The solution could be more evenly structured."
"There are some license issues. Not every feature must have a separate license. There must be some of kind synergy between the license so we don't have to pay for every individual license that we would like to have."
"There is some room for improvement in the support."
"Fortinet FortiOS need to manage its memory and CPU utilization better. It peaks at times, which sometimes can be challenging."
"The solution needs to adjust its pricing models. With the way they are structured, everything is very disparate and sold separately, and, depending on the solution, it can get quite pricey."
"The technical support is good. However, during the holidays they can get a little slow to respond."
"Fortinet FortiOS is stable. However, last month we had an issue with a released patch. We had to receive another update to fix the firewall issue consuming all of the resources. The patches should be tested more before going into circulation."
"In terms of what needs improvements, the troubleshooting could use improvement. When we work with other products like Cisco ASA, Palo Alto, and Check Point, we see a big difference in the troubleshooting. It's not easy to find a report."
"For monitoring purposes, we don't have any option to monitor the ISP link."
"FortiOS doesn't work well with all browsers. I think they need to do a better job of making it compatible with the various browsers that are out there."
"One of the things that we are missing a bit is the capability to add our own rules to it. At the moment, the tech engine does its thing, but we have some cool ideas to make additional rules. There should be an option in the platform to add custom rules, or there should be some kind of user group where we can suggest them for the roadmap and see if they get evaluated and get transparent communication on whether they will be implemented in the product or not."
"The solution has not reduced the security analyst workload in our organization because we still need to SIEM. Unfortunately, while Vectra, for us, is a brilliant tool for network investigations, giving wonderful visibility, it doesn't go the whole way to replace our SIEM that is needed for compliance. So, I still have the same amount of alerting and logging that I did before. It gives us more defined ability to see incidents, but it doesn't give us enough information to satisfy a PCI or 27001 audit."
"It does a little bit of packet capture on alert so you can look at the packet capture activity going on, but it doesn't collect a whole lot of data. Sometimes it's only one or two frames, sometimes it does collect more. That's why they have the addition of their Recall platform, because that really does help expand the capability."
"We have a lot of system solutions and integrations with system solutions. Vectra is a type of black box. It implements AI-informed detection mechanisms, but we cannot create system detections. I understand that the product is designed this way, but it would be great if we could create our own detections as well."
"I would like to see data processed onshore. Right now, the cloud components, like Office 365, must be processed on servers outside of Australia. I would like to see a future adoption of onshore processing."
"We would like to see more information with the syslogs. The syslogs that they send to our SIEM are a bit short compared to what you can see. It would be helpful if they send us more data that we can incorporate into our SIEM, then can correlate with other events."
"One of the things I am not so happy about when it comes to Vectra is the scoring board."
"One area where there's room for improvement is the absence of a comprehensive TCP recording and replay feature."
Fortinet FortiOS is ranked 15th in Firewalls with 73 reviews while Vectra AI is ranked 2nd in Intrusion Detection and Prevention Software (IDPS) with 41 reviews. Fortinet FortiOS is rated 8.4, while Vectra AI is rated 8.6. The top reviewer of Fortinet FortiOS writes "Provides effective filtering features, good stability but initial setup is moderately challenging". On the other hand, the top reviewer of Vectra AI writes "Integrates well with other security solutions and provides good technical support". Fortinet FortiOS is most compared with Fortinet FortiManager, Fortinet FortiGate-VM, Fortinet FortiWeb, Infoblox Advanced DNS Protection and Cisco IOS Security, whereas Vectra AI is most compared with Darktrace, ExtraHop Reveal(x), Cisco Secure Network Analytics, Arista NDR and SolarWinds NetFlow Traffic Analyzer.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.