If you were talking to someone whose organization is considering Fortinet FortiAnalyzer, what would you say?
How would you rate it and why? Any other tips or advice?
We are Fortinet partners. For those organizations that need to use a product for reporting or some analysis of logs, this is a good solution. I'd rate the solution seven out of ten. The features are basic, and there's not too much business intelligence behind them. If it offered more of that, I'd rate it higher.
This solution, at every stage, does what I expect it to. My advice for anybody researching this solution is to consider the size of their organization. If it is very big and they need to retain a log for a specific number of days or a period of time, for example, going back to thirty days and they also need to analyze the traffic in real-time, then FortiAnalyzer would be ideal. However, the same service is now available on FortiCloud, which is something else that I highly recommend. With other solutions, such as NetFlow Analyzer, you can really customize your report to what you expect. Together you can insert logs, you can customize your reports with the logs that you're receiving, unlike with FortiAnalyzer. This is a major drawback. I would rate this solution a seven out of ten.
I rate this solution a 6 out of 10. It is a good security firmware for automation. From a single dashboard we can get all the logs and traffic information on our firewall. We can get more visibility, so there is no need for the engineer to go in each and every firewall to get information. Even if we don't use the FortiAnalyzer, we can use a FortiCloud to send a log. But we are still using a cloud-based solution. We are using our internet bandwidth to send logs. That's in real-time or scheduling. If bandwidth is the key factor, I will not recommend the customer to use a FortiCloud. And even if you are using the FortiCloud, the basic free version, you have a retention log for only seven days. If you want to have a longer retention log, let's say for one year, then you need to create a subscription with FortiGate. In that case, it is better to have a FortiAnalyzer on-premise. Always try to listen to your customer.
Anyone who asks me about a Fortinet product, I'll give that person a thumbs-up. So far, Fortinet has been the best for me. It's a value-for-money appliance, it has an easy to use interface, and it gives you exactly what you want. The only drawback would be the price.
We are using the private cloud deployment model. I would rate the solution nine out of ten. I don't have much to compare it to, but it's been fairly good.
I would recommend this solution to somebody considering it. The relevance of this solution will depend on the case. If you are considering this solution I would ask what you really intend to accomplish with it and what model you want. It's going to be based on the data you need to protect and analyze. If I had to choose between FortiSIEM and FortiAnalyzer for log position it's better to go for SIEM. We all know that we can do a lot more with SIEM than just a log collection. Log collection is included in FortiSIEM; so, why acquire FortiAnalyzer is you can have FortiSIEM? I would rate FortiAnalyzer a 6.5 out of ten.
I will definitely recommend this solution to others. My rating is a ten out of ten.
FortiAnalyzer is a good product, and anybody who implements this solution will get good results from it. The support from Fortinet is awesome. I would rate this solution an eight out of ten.
My only experience is with a very important customer, the most recognized in Latin America.