We just raised a $30M Series A: Read our story
2018-05-23T10:30:00Z

What needs improvement with Fortinet FortiWeb?

19

Please share with the community what you think needs improvement with Fortinet FortiWeb.

What are its weaknesses? What would you like to see changed in a future version?

ITCS user
Guest
2929 Answers

author avatar
Top 20Real User

The solution could improve by being able to handle different use cases.

2021-10-29T21:31:16Z
author avatar
Top 20Real User

During the POC we did encounter problems. For example, the integration with the HSM for storing keys was not ideal. The downside is on the security side and is the firewall. When you look at the firewall, it doesn't do decryption and you have to depend on other third-party tools to do that. Or you would have to use another FortiGate product which makes things a little complicated. Today, people look for simplicity in terms of design. That's one downside to Fortinet's Firewall. The downside to FortiWeb is it had issues integrating with HSM. They fixed the issue, however, it took a long time to fix and it wasn't pleasant. I had to work with deadlines and I could not make the deadlines due to the slow timeline on their side. For the firewall, when you deploy IPS, the IPS doesn't have visibility into encrypted traffic and 70% of traffic these days is encrypted, and that's the conservative figure of the actual percentage. If your IPS doesn't have that visibility, then it is not really doing the job that it has to do. In comparison, Palo Alto is the best firewall in terms of performance and has the technical specifications that we need. The support side of things can be improved. They need to quickly tend to issues and resolve them as soon as possible. Those are the expectations.

2021-10-08T16:40:36Z
author avatar
Top 10Reseller

FortiGate could be improved on the security end because we've had some incidents with the customer. Otherwise, there is no problem.

2021-10-05T14:35:00Z
author avatar
Top 20Real User

The dashboard evaluating the performance of each application connected to the web app's firewall is quite helpful, but the tool is only available in application performance management. So I think if Fortinet could better integrate that particular feature, it would add a lot of value to the product.

2021-09-15T13:03:00Z
author avatar
Top 5LeaderboardReal User

The solution could offer more integration opportunities.

2021-07-27T15:53:35Z
author avatar
Real User

We have had problems with deployments where we've had to contact technical support to resolve them.

2021-02-18T05:08:33Z
author avatar
Top 5Real User

When we look at the incident reports in the dashboard, they are available for a maximum duration of 24 hours. They should provide more time for the analysis and increase the duration of the availability of these reports. Currently, it gives the options for 5 minutes, 1 hour, and 24 hours. It would be excellent if there are more options for a longer time period. It may be configurable, but I don't know how to do it.

2020-12-12T16:02:19Z
author avatar
Top 5Real User

The initial setup in our data center was somewhat complex.

2020-11-26T09:29:19Z
author avatar
Top 5Real User

They can introduce a scaled-down version for the SMB market. It would be very competitive in the environment.

2020-11-17T13:17:38Z
author avatar
Top 5Real User

I would like to see the Application Delivery Control (ADC) and Web Application Firewall (WAF) combined in one device. For example, if I have one device that costs $2,600 USD then it can have two licenses, where it can operate as a load balancer as well as a WAF.

2020-11-09T11:06:34Z
author avatar
Top 5LeaderboardReal User

Troubleshooting features could be incorporated with this solution. The reporting could be optimized.

2020-11-02T06:13:22Z
author avatar
Top 5LeaderboardReal User

They could improve their support a little bit for faster response time.

2020-10-20T04:19:21Z
author avatar
Top 20Real User

It may be better if it were easier to create roles. The interface could be a bit better. Everything is pretty manual. We do need to improvise a bit. Automation might make it easier. The pricing is a little bit high for us.

2020-10-19T09:33:39Z
author avatar
Top 20Consultant

User administrative controls could be a little bit better. I guess that would be the main thing. The usability within Fortinet could be a little bit easier on the users. But it is what it is. The thing that was more difficult was not the tool itself but dealing with the logistics of the compliance issues. I was applying a standard set of rules to an AWS firewall. It served a purpose. The complex part of the solution was more of a compliance issue.

2020-10-07T07:04:33Z
author avatar
Top 5Real User

Fortinet WAF came out recently, and there is not much feedback about customer experience. For each project, customers ask about the scenarios and references of the customers who have implemented this solution, which we don't have. They need to simplify the customer experience and provide more information so that we can propose Fortinet Fortiweb as a WAF solution to customers and convince them. They need to improve their service and training. We need good training to implement and use it properly and know more about it. We still don't know much about Fortinet WAF. We didn't get any proper training sessions. Other vendors like Cisco, Palo Alto, Check Point, and Barracuda provide such sessions. Whenever we receive a request from a customer for this solution, we just give the price. We don't propose this solution because we don't know much about it. We propose whatever we are familiar with and what is supported.

2020-09-17T08:05:58Z
author avatar
Top 20Real User

The Layer 7 DDoS attacks need improvement, it could be better. When you compare it with the F5 solution, FortiWeb is weak in detecting the Layer 7 DDoS attacks. At times, it generates several false positives and there should be fewer. In the next release, I would like to see better DDoS protection. It's an essential feature that should be included.

2020-09-16T08:18:35Z
author avatar
Top 5Real User

We are considering an upgrade to our firewall because our current version is not compatible with our FortiAnalyzer. As there is an incompatibility, we have been advised by Fortinet that an upgrade is necessary to avoid issues. We believe this product will become obsolete. It needs to better integrate with other platforms. In terms of performance, it needs to be more robust. During the lockdown, we are connecting to a VPN and the connection should be faster, there should be RAM or more hardware. Also, it should include security features.

2020-08-19T07:57:24Z
author avatar
Top 20Real User

FortiWeb needs to have support for the newest technology being used in web applications. For example, some companies have developed new features using the latest technology, but we are still waiting for Fortinet to support them.

2020-06-28T08:50:00Z
author avatar
Top 20Reseller

The integration with other products should be improved. This product does not come with bare metal protection, so we need more network features. We don't want to be as dependent on a separate next-generation firewall. The pricing could be made more competitive.

2020-05-13T09:16:36Z
author avatar
Top 20Real User

We would like the interface to be easier to use and more user-friendly. The interface needs to be enhanced. We had trouble understanding it at first, but we got used to using it after six months. Then, it was simple to use.

2020-05-05T06:08:00Z
author avatar
Top 20Real User

Describing security rules should be improved. It's tricky to define new feature tools when you want to describe an attack pattern and want to block it.

2020-04-19T07:40:00Z
author avatar
Real User

More templates should be made available for reporting. I would like to see more improvements with respect to threat intelligence.

2020-03-18T06:06:02Z
author avatar
Reseller

What I would like to see improved in Fortinet FortiWeb will probably be included in the next release. The legal feature needs better step-by-step use of the form. We use the FortiGate guidebook for step-by-step instructions. But the FortiWeb guidebook is only is a demonstration kit which is not enough for a new installation.

2019-07-09T05:40:00Z
author avatar
Real User

The solution is rather complicated. If you know what to do, it's not bad, but it's complicated for a first time user to configure the solution. What I'd like to improve are the custom signatures. If you want a good security solution, you have to get in kicking high for things that are getting blocked and you have to whitelist some signatures to make things work. It's a time-consuming thing to do. It would be nice to whitelist private IP ranges and see which signatures are hit and whitelist them automatically - which I think is possible to do. It would also be nice to have some extra security in the solution. I just upgraded to 6.0 and there were some security additions, but it would be nice to have some more and be able to configure them in the right way. Specifically, an updated security policy would be nice.

2019-07-07T06:35:00Z
author avatar
Real User

We would like to know more about the integration with the hardware or security products, such as Gemalto, because we need to move to that point. But, from what I understand, we haven't looked at the market to see how this can be done yet.

2019-06-27T06:06:00Z
author avatar
Top 10Real User

First of all, upgrade path should be introduced for scaling up or down VM deployment. Second, they need to include better wizards for publishing common applications like MS Exchange. .

2019-06-24T12:13:00Z
author avatar
Reseller

New releases and old releases have some bugs, some features do not work as good as we want but every new release the Fortinet team fixes up problems. I don't have anything to say about what to do to improve this product. It's a great solution for us.

2019-03-06T07:41:00Z
author avatar
Reseller

I would like to have an antivirus option.

2019-03-06T07:41:00Z
author avatar
Real User

FortiWeb does not exist in a cloud-based form. Its only available for deployment as a virtual appliance on AWS and Azure IaaS platforms. Because of the trend to WAF environments, it would be good to have it as a SaaS. Also, FortiWeb would be more competitive if it combined WAF and DDoS protection.

2018-05-23T10:30:00Z
Learn what your peers think about Fortinet FortiWeb. Get advice and tips from experienced pros sharing their opinions. Updated: November 2021.
553,954 professionals have used our research since 2012.