Its pricing should also be improved according to Indian market requirements. In every product, there is a requirement for improvement. Especially when you're not dealing with SIEM and the correlation of the security box, we want Fortinet to be able to share that information with as many other products as it can." "Security is a continuous process.
There should be full integration within Fortinet products themselves as well as with other third-party products. "We have an issue with hotel guest vouchers." "It should be more stable. More Cisco Firepower NGFW Firewall Cons → I don't see why we should have to pay for two separate products when both could be integrated in one box." Perhaps in the future, Cisco will integrate Cisco Umbrella with Firepower. Cisco already has an on-premises sandbox solution." "One feature I would like to see, that Firepower doesn't have, is email security. When they're in the office, they respond." "Cisco makes horrible UIs, so the interface is something that should be improved." "The product line does not address the SMB market as it is supposed to do. They're in the USA and we're in Africa, so that's the difficulty. You can set up a VPN in Firepower, but you can't monitor it." "We're getting support but there's a big delay until we get a response from their technical team. So, I would like to see a lot of improvements here." "In a future release, it would be ideal if they could offer an open interface to other security products so that we could easily connect to our own open industry standard." "On the VPN side, Firepower could be better. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. It would be good to see Cisco accelerate some of those configurations that you can only do in FlexConfig into the platform, so that they are there natively." "I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. It is recommended that you configure FlexConfig policies with Cisco TAC. There are still quite a few complex things, like policy-based routing, that have to be done in FlexConfig, and it doesn't always work perfectly. There is still some work that needs to be done around FlexConfig. It is a way of allowing you to be able to configure things that wouldn't otherwise be possible until the development team can add them into Firepower's native capability. "FlexConfig is there as a bridge for features that are not yet natively integrated into Firepower. Users are protected if they accidentally go to some malicious sites." "Its user interface is good, and it is always working fine." "We use the FortiGate Sandbox to detect zero-day vulnerabilities, such as anomalies or malware, that are unknown and have not yet been discovered." "The solution is extremely reliable." "The most valuable feature is the ease of configuration." These firewalls have access point controller functionality built right into the system, so I don't even have to purchase additional devices to manage them." "It is a safe product." "The customization potential is quite impressive." "There are lots of features and most of them are deployed for internet security. I don't have to log into one interface for the firewall, another one for the access points, and another one for the switches.
I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface. One of the reasons why I started using the product was their single pane of management. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki.
"One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises.