Product(s): FortiGate: Next Generation Firewall (NGFW)
Overall Comment:"It's expensive, not very straightforward to learn, and the knowledgebase is not kept up to date or easy to locate tutorials and guides for common issues. We were also told over 5 years into using that we were sold demo equipment by a Fortinet partner and subsequently told we had to buy new hardware because ours was blacklisted by Fortinet. They have a very questionable sales process which did not sit well with us, and it was hard to even find an alternate vendor who was open to a working business relationship versus looking to make a quick commission and move on. "
We liked that it is highly regarded by the industry and that the SD-WAN/multi-link SLA and failover is highly customizable. Many features are highly customizable, but it can be hard to learn and determine where to go to make edits. It also frequently is updated and changed and varies heavily by model. Overall, it seems better suited to a larger organization that can afford to maintain a more expensive appliance that requires a high level of expertise to implement and customize.
The logs are very vague and don't link to helpful information or related policies and settings within the config. As mentioned in the comments above, we had tons of issues with the sales and post-sales experience for renewals. It also seems like Fortinet forces MFA to only use FortiToken and the hardware only comes with 3-5 FortiTokens. It was also unclear how to enable vendors to connect with this, so we ended up disabling this security measure.