We performed a comparison between Fortinet FortiGate IPS and Vectra AI based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most useful features of Fortinet FortiGate IPS are you can create a virtual firewall within it, most other firewalls do not have this feature. You are able to manage your network and have network segmentation within your firewall. Additionally, you can create virtual switches within the firewall and have policy management, such as firewall and access policy."
"Fortinet FortiGate's most valuable features are the UTM package which provides internet blocking restrictions and load balancing. Additionally, the solution is easy to use and the security reporting is good. The security fabric which they have launched Fortinet FortiGate IPS, it's very good in terms of giving details."
"It's simple to operate and use."
"I like the solution's stability."
"Provides good VPN capabilities."
"The most significant aspect of IPS is self-explanatory as it primarily focuses on intrusion prevention, which is crucial for Fortinet's internal outbreak prevention efforts and ensuring compliance on endpoint devices."
"I have found the decryption of Fortinet FortiGate IPS very good. It's called SSL deep inspection, it's working very well. This is how you decrypt access and traffic, and it is through the IPS antivirus center. Additionally, the UI is user-friendly."
"The Fortinet FortiGate IPS has a good interface and integration."
"Vectra AI generates relevant information."
"It's important for us that the user interface is easy to understand and that is the biggest benefit we see from Vectra AI."
"The key feature for me for Detect for Office 365 is that it can also concentrate all the information and detection at one point, the same as the network solution does. This is the key feature for me because, while accessing data from Office 365 is possible using Microsoft interfaces, they are not really user-friendly and are quite confusing to use. But Detect for Office 365 is aggregating all the info, and it's only the interesting stuff."
"It provides various dashboards that facilitate the identification of connections and can detect data exfiltration, meaning data sent from your environment to another."
"The most valuable feature for Cognito Detect, the main solution, is that external IDS's create a lot of alerts. When I say a lot of alerts I really mean a lot of alerts. Vectra, on the other hand, contextualizes everything, reducing the number of alerts and pinpointing only the things of interest. This is a key feature for me. Because of this, a non-trained analyst can use it almost right away."
"Vectra AI is the best. It is a major product in our cybersecurity."
"It is doing some artificial intelligence. If it sees a server doing a lot of things, then it will assume that is normal. So, it is looking for anomalous behavior, things that are out of context which helps us reduce time. Therefore, we don't have to look in all the logs. We just wait for Vectra to say, "This one is behaving strange," then we can investigate that part."
"The automatic filtering that they provide is valuable. The logic inside that makes some detections instead of us is very useful. We are confident that if we are just looking into it and there is nothing, nothing could happen."
"We'd like to have multi-factor authentication via fiber."
"There is room for improvement in being proactive about identifying and integrating new signatures."
"It would be helpful to have a better tool for migrating all policy rules using an automatic script."
"The interface and product support could use improvement."
"Fortinet can add some Machine Learning and AI to improve its accuracy and give it an edge on IPS detection and protection."
"Its performance can be better. We have had performance issues in the past, but we sometimes tend to find that it is more related to what we do in our network than anything else. It is quite a good product, and there isn't much to improve."
"I would like to be able to generate reports about the protections that we have. I would like a report feature."
"The solution could maybe use more integration with artificial intelligence to be more proactive."
"The main improvement I can see would be to integrate with more external solutions."
"In comparison with a lot of systems I used in the past, the false positives are really a burden because they are taking a lot of time at this moment."
"They use a proprietary logging format that is probably 90% similar to Bro Logs. Their biggest area of improvement is finishing out the remaining 10%. That 10% might not be beneficial to their ML engine, but that's fine. The industry standard is Zeek Logs or Bro Logs, or Bro or Zeek, depending on how old you are. While they have 90% of those fields, they're still missing some fields. In very rare instances, some community rules do not have the fields that they need, and we had to modify community rules for our logs. So, their biggest area of improvement would be to just finish their matching of the Zeek standard."
"There could be an option where Vectra manages the solution remotely, and when there is an attack, there could be a notification center to give us information about the attack."
"You are always limited with visibility on the host due to the fact that it is a network based tool. It gives you visibility on certain elements of the attack path, but it doesn't necessarily give you visibility on everything. Specifically, the initial intrusion side of things that doesn't necessarily see the initial compromise. It doesn't see stuff that goes on the host, such as where scripts are run. Even though you are seeing traffic, it doesn't necessarily see the malicious payload. Therefore, it's very difficult for it to identify these type of host-driven complex attacks."
"The solution's marketing is not good."
"The false positives and the tuning side of it is something that could use improvement. But that could be from our side."
"The solution has not reduced the security analyst workload in our organization because we still need to SIEM. Unfortunately, while Vectra, for us, is a brilliant tool for network investigations, giving wonderful visibility, it doesn't go the whole way to replace our SIEM that is needed for compliance. So, I still have the same amount of alerting and logging that I did before. It gives us more defined ability to see incidents, but it doesn't give us enough information to satisfy a PCI or 27001 audit."
Fortinet FortiGate IPS is ranked 4th in Intrusion Detection and Prevention Software (IDPS) with 54 reviews while Vectra AI is ranked 2nd in Intrusion Detection and Prevention Software (IDPS) with 40 reviews. Fortinet FortiGate IPS is rated 8.4, while Vectra AI is rated 8.6. The top reviewer of Fortinet FortiGate IPS writes "Very stable with good network protection". On the other hand, the top reviewer of Vectra AI writes "Integrates well with other security solutions and provides good technical support". Fortinet FortiGate IPS is most compared with Palo Alto Networks Advanced Threat Prevention, Trend Micro TippingPoint Threat Protection System, Cisco NGIPS, Check Point IPS and Cisco Sourcefire SNORT, whereas Vectra AI is most compared with Darktrace, ExtraHop Reveal(x), Cisco Secure Network Analytics, Arista NDR and Corelight. See our Fortinet FortiGate IPS vs. Vectra AI report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.