Fortinet FortiWeb Room for Improvement
System Engineer at a tech services company with 11-50 employees
We would like to know more about the integration with the hardware or security products, such as Gemalto, because we need to move to that point. But, from what I understand, we haven't looked at the market to see how this can be done yet.
User administrative controls could be a little bit better. I guess that would be the main thing. The usability within Fortinet could be a little bit easier on the users. But it is what it is.
The thing that was more difficult was not the tool itself but dealing with the logistics of the compliance issues. I was applying a standard set of rules to an AWS firewall. It served a purpose. The complex part of the solution was more of a compliance issue.View full review »
The solution is rather complicated. If you know what to do, it's not bad, but it's complicated for a first time user to configure the solution. What I'd like to improve are the custom signatures. If you want a good security solution, you have to get in kicking high for things that are getting blocked and you have to whitelist some signatures to make things work. It's a time-consuming thing to do. It would be nice to whitelist private IP ranges and see which signatures are hit and whitelist them automatically - which I think is possible to do.
It would also be nice to have some extra security in the solution. I just upgraded to 6.0 and there were some security additions, but it would be nice to have some more and be able to configure them in the right way. Specifically, an updated security policy would be nice.
Technical Presales Engineer at a comms service provider with 11-50 employees
It may be better if it were easier to create roles.
The interface could be a bit better.
Everything is pretty manual. We do need to improvise a bit. Automation might make it easier.
The pricing is a little bit high for us.View full review »
The initial setup in our data center was somewhat complex.View full review »
IT Infrastructure Manager with 201-500 employees
We would like the interface to be easier to use and more user-friendly. The interface needs to be enhanced.
We had trouble understanding it at first, but we got used to using it after six months. Then, it was simple to use.View full review »
When we look at the incident reports in the dashboard, they are available for a maximum duration of 24 hours. They should provide more time for the analysis and increase the duration of the availability of these reports. Currently, it gives the options for 5 minutes, 1 hour, and 24 hours. It would be excellent if there are more options for a longer time period. It may be configurable, but I don't know how to do it.View full review »
They could improve their support a little bit for faster response time.View full review »
Information Security Specialist at a financial services firm with 201-500 employees
The Layer 7 DDoS attacks need improvement, it could be better. When you compare it with the F5 solution, FortiWeb is weak in detecting the Layer 7 DDoS attacks. At times, it generates several false positives and there should be fewer.
In the next release, I would like to see better DDoS protection. It's an essential feature that should be included.View full review »
Fortinet WAF came out recently, and there is not much feedback about customer experience. For each project, customers ask about the scenarios and references of the customers who have implemented this solution, which we don't have. They need to simplify the customer experience and provide more information so that we can propose Fortinet Fortiweb as a WAF solution to customers and convince them.
They need to improve their service and training. We need good training to implement and use it properly and know more about it. We still don't know much about Fortinet WAF. We didn't get any proper training sessions. Other vendors like Cisco, Palo Alto, Check Point, and Barracuda provide such sessions. Whenever we receive a request from a customer for this solution, we just give the price. We don't propose this solution because we don't know much about it. We propose whatever we are familiar with and what is supported.View full review »
Describing security rules should be improved. It's tricky to define new feature tools when you want to describe an attack pattern and want to block it.View full review »
Network & Telecom Manager at a retailer with 1,001-5,000 employees
I would like to see the Application Delivery Control (ADC) and Web Application Firewall (WAF) combined in one device. For example, if I have one device that costs $2,600 USD then it can have two licenses, where it can operate as a load balancer as well as a WAF.View full review »
Li Kien Lee
Network Engineer at a tech services company with 201-500 employees
The integration with other products should be improved.
This product does not come with bare metal protection, so we need more network features. We don't want to be as dependent on a separate next-generation firewall.
The pricing could be made more competitive.View full review »
SE at a tech vendor with 11-50 employees
First of all, upgrade path should be introduced for scaling up or down VM deployment. Second, they need to include better wizards for publishing common applications like MS Exchange.
What I would like to see improved in Fortinet FortiWeb will probably be included in the next release. The legal feature needs better step-by-step use of the form.
We use the FortiGate guidebook for step-by-step instructions. But the FortiWeb guidebook is only is a demonstration kit which is not enough for a new installation.View full review »
FortiWeb needs to have support for the newest technology being used in web applications. For example, some companies have developed new features using the latest technology, but we are still waiting for Fortinet to support them.View full review »
Jr. Engineer at a computer software company with 5,001-10,000 employees
We are considering an upgrade to our firewall because our current version is not compatible with our FortiAnalyzer. As there is an incompatibility, we have been advised by Fortinet that an upgrade is necessary to avoid issues.
We believe this product will become obsolete.
It needs to better integrate with other platforms.
In terms of performance, it needs to be more robust. During the lockdown, we are connecting to a VPN and the connection should be faster, there should be RAM or more hardware. Also, it should include security features.View full review »
Solutions Architect at a computer software company with 5,001-10,000 employees
They can introduce a scaled-down version for the SMB market. It would be very competitive in the environment.View full review »
Troubleshooting features could be incorporated with this solution.
The reporting could be optimized.View full review »
Jefe de Venta Especialista de Seguridad Informatica at a tech services company with 51-200 employees
We have had problems with deployments where we've had to contact technical support to resolve them.View full review »
Manager at a government with 201-500 employees
More templates should be made available for reporting.
I would like to see more improvements with respect to threat intelligence.View full review »