Anonymous UserProduct Manager - Technical at a tech services company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"What we like about Fortinet FortiWeb is it has all the features. We use all of them, so we have to turn on all the options."
"The most valuable feature in this solution is the ability to disseminate between the user entering some wrong value to the field, and a suspicious actor trying to exploit some known vulnerability."
"It's the extra security that is the most valuable feature. You have insight into your traffic. There are some great insights into what utilities hackers are trying to exploit. It blocks a lot of stuff from the internet."
"FortiWeb offers machine learning in the latest product. This fixed many problems. There are no false negatives."
"The most valuable features are support and security."
"The GUI is user-friendly and it's easy to understand how to manage it."
"I have recently been looking at the SSL certificate features and the learning mode of the appliance. This appliance learns from the pattern of SSL attacks."
"The GUI is user-friendly."
"The most valuable feature is that I can establish different services from the firewall."
"The most valuable feature is that there is a link in the system that will help to analyze the security of an application when something abnormal is found."
"WAF is useful to track mitigation, inclusion, prevention, and the parametric firewall."
"Fortinet FortiWeb needs to improve the way it's configured. Common services like publishing exchange should be done in one click only."
"We would like to know more about the integration with the hardware or security products, such as Gemalto, because we need to move to that point."
"The solution is rather complicated. If you know what to do, it's not bad, but it's complicated for a first time user to configure the solution. What I'd like to improve are the custom signatures."
"Fortinet FortiWeb is not scalable. You'll need more budget to change the hardware."
"I would like to see more improvements with respect to threat intelligence."
"Describing security rules should be improved. It's tricky to define new feature tools when you want to describe an attack pattern and want to block it."
"We would like the interface to be easier to use and more user-friendly. The interface needs to be enhanced."
"The integration with other products should be improved."
"The configuration needs to be more flexible because it is difficult to do things that are outside of the ordinary."
"Setting policies and parameters through the UI should be more automated because the process is manual, where we can only edit one rule at a time."
"It's challenging if you need to go for a high throughput."
"The license cost depends on the size of the box or the size of the solution. It can go from €200 Euros to a few hundred thousand Euros a year depending on your size."
"The solution gives us the best price to performance ratio."
"The costs are standard. We pay around $1,600 yearly."
"All our Fortinet pricing is bundled together for different products, like FortiGate, FortiAnalyzer, and FortiWeb. FortiWeb, by itself, is probably around $2,500 to $3,500."
"FortiWeb is more expensive than some competing products."
"Due to the situation in Iran with the sanctions, the price of this solution is very expensive."
"It's an expensive solution, although there are no additional costs."
"It is fine now. We had to earlier negotiate the price."
"The licensing fees for this solution are pretty expensive for what it does, but there is no alternative."
"Our licensing costs are about $40,000 a year."
FortiWeb is a web application firewall (WAF) that protects hosted web applications from attacks that target known and unknown exploits. Using multi-layered and correlated detection methods, FortiWeb defends applications from known vulnerabilities and from zero-day threats.
Even when you understand security, it is difficult to create secure applications, especially when working under the pressures so common in today’s enterprise. The NGINX Web Application Firewall (WAF) protects applications against sophisticated Layer 7 attacks that might otherwise lead to systems being taken over by attackers, loss of sensitive data, and downtime. The NGINX WAF is based on the widely used ModSecurity open source software.
Fortinet FortiWeb is ranked 1st in Web Application Firewall (WAF) with 21 reviews while NGINX Web Application Firewall is ranked 13th in Web Application Firewall (WAF) with 3 reviews. Fortinet FortiWeb is rated 8.2, while NGINX Web Application Firewall is rated 8.0. The top reviewer of Fortinet FortiWeb writes "Good pricing, and provides for faster and more secure application deployment". On the other hand, the top reviewer of NGINX Web Application Firewall writes "A stable system with good security and load balancing". Fortinet FortiWeb is most compared with Fortinet FortiADC, F5 BIG-IP, Fortinet FortiOS, F5 Advanced WAF and Citrix Web App and API Protection, whereas NGINX Web Application Firewall is most compared with AWS WAF, Microsoft Azure Application Gateway, F5 Advanced WAF, Azure Front Door and Cloudflare. See our Fortinet FortiWeb vs. NGINX Web Application Firewall report.
See our list of best Web Application Firewall (WAF) vendors.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.