Fortinet FortiDDoS Reviews

We primarily use the solution in order to protect some web pages and web services.

The solution already has security profiles and it can protect from DDoS attacks and other kinds of attacks. It's a good source of protection. It already has a web application firewall.

The web interface could be much better. It's not that great right now. When you do a change, it's not as seamless as it could be.

The initial setup is difficult.

Technical support is lacking. They aren't helping a lot of the time, and some support personal don't even understand their own product.

I've been using the solution for about six months or so. It hasn't been too long just yet.

For now, the device seems to be stable. There are no bugs and glitches and it doesn't crash or freeze. However, I haven't tested it against a massive attack yet. That would be the real show of its strength, and that hasn't happened.

The solution can scale if you need it to. You can put the device in the cluster, and you can add more devices to the same cluster. That way you increase the disk qualitative and can add more devices.

We only have two people that work directly on the solution - myself and my co-worker. We do sometimes use an outside support company as well if we need to deal with customers.

Technical support isn't too good with Fortinet. They could be more responsive and helpful overall. If I call for a problem they take a long time to solve the issue or to answer. Even worse, sometimes they don't know the solution.

I've also worked with Cloudflare in the past and I find it, for example, much more user-friendly and easier to set up.

The initial setup is not exactly straightforward. We find it to be difficult. They should make it easier for new users to handle. 

It took me two weeks to deploy the product due to the fact that I hadn't installed that kind of device before. I had to learn at the same time as I worked on the implementation process, which made things even harder. CloudFlare, for example, is easier to set up.

We're a Fortinet partner.

I would advise those considering implementing the solution to get good documentation before installing it and to understand the product well. They can call support, however, they cannot state good support from Fortinet. I'd recommend they instead ask for help from Regional Account Managers from Fortinet, they can use their cell phone from there.

I'd rate the solution at a seven out of ten.

Our primary use case of this solution is for security purposes. 

Some of this solution's policies are good for security reasons, like the firewall and all the inundation when you configure the firewall. Then you have to purchase and apply the security of FortiDDos. I also like its ease of use and the technical support. I find the interface easy to use because I'm the Linux expert in our company. 

The solution can be a little more user-friendly and it can be more affordable.

I haven't had any problems with stability before, but one of my clients had. He asked me to help him when he had stability issues. We consulted the software team and asked them about software solutions. They then made some changes in their software, and since then it has been working fine.

We have a big team working on this program, and I do believe it is scalable.

The technical support is good because it's available 24/7. I don't use them often because I usually fix things myself. But if I need a password, or if my client forgot a password, we need support. Their response is very good.

The initial setup was quite straightforward and because I'm certified by Fortinet, I only reconfigured the firewall and some other things. Whenever I was uncertain about something, I did a test on Google and figured it out myself. So I was able to do everything myself. 

The pricing of this solution is better than that of Cisco and other software on the market, which are very expensive.

Most companies don't have a big budget, so a decrease in the license fees will be good. Companies with the lowest price, want the lowest price in the IT sector because their IT sector has a very big budget. I will rate this solution a seven out of ten.

We use it to protect our users and their data.

It allows me to see all the traffic on my network.

I would like to see analytics, big data.

FortiDDoS rates a nine out of ten because it's user-friendly.

We use this solution to protect the web server from application-based attacks.

This solution can protect Layer 3, Layer 4 and Layer 7 attacks of applications for us, and this is important. The net screen feature helps us deal with the Layer attacks.

I find that there have been issues in the past year with the solution hanging. It freezes often.

The solution is scalable. Our company is about 100 people.

We have received good support. 

We have prior experience with Juniper.

I use FortiDDoS in an internet datacentre with multiple upstreams to protect my infrastructure and customers from current and future DDoS attacks.

Compared to other DDoS mitigation solutions with similar deployment, FortiDDoS does not require 24x7 NOC. It has lower TCO.

• Detects and mitigates DDoS attacks at L3 to L7 - DDoS attacks are not only ICMP (L3) and UDP (L4).
• Protection from Zero-day DDoS attacks - I don’t have to worry whether my current solution is relevant in the future.
• Negligible to zero false-positives - With a high-rate of false-positives I would have to have a 24x7 NOC which would increas TCO and decreas customer confidence.
• Ability to detect and mitigate DDoS attacks while allowing legitimate traffic from the same source IP.
• Does not rely only/mainly on signature because a signature-based DDoS solution cannot detect many DDoS packets; and worse, they are the cause of false-positives.
• Purpose-built CPU.
• Generates and sends reports without the need for an expensive third-party solution - Such solutions for generating and sending reports would increase TCO.

Multiple subnets can be created in one SPP Policy. Multiple subnets can be selected in one report configuration. One report configuration can have multiple schedules. All those thresholds that need to be configured should be included in the default so that user will not forget or misconfigure.

Purpose-built ASIC mitigates DDoS attack at line-rate without affecting performance. This has been proven by an independent testing lab and during our PoC.

I find this product the best on-premises (in-line) DDoS mitigation solution that suits my current and future requirements. It can be also deployed off-ramp if the user has the know how.

Layer 3, Layer 4, and Layer 7 DDoS attack mitigation including encrypted DDoS attack. All-in-one DDoS mitigation solution.

Minimal to zero false-positives. Differentiate DDoS attack traffic from non-DDoS attack traffic from the same source IP and blocks only DDoS attack traffic. This has been proven during our PoC.

Zero-day DDoS attack mitigation. Mitigates current and future DDoS attacks as it doesn't use signature.

If deployed properly, it doesn't require 24x7 NOC. Fully automated and with minimal to zero false-positives, it has a lower TCO compared to other solutions.

SPP Policy. Ability to configure multiple subnets in one SPP Policy.

Report configuration. Ability to select multiple SPP Policy and configure multiple schedules in one report.

I have been using this for three years, as of 2017.

Earlier versions of firmware had bugs that limit my options. They were fixed on subsequent version releases. For my requirements, stability started with version 4.2

I rate it 10 (best). Support has good product knowledge.

I didn't use different solutions. I made sure to choose the right solution through comprehensive evaluation of many DDoS mitigation solutions available. I worked with vendors in evaluating their products and my colleagues who are using them.

Although I didn't attend training and just saw the setup during a demo, when I set up the solution in production it was straightforward and it didn't even cause downtime.

The price is reasonable. IP Reputation is a separate subscription but this is optional.

I evaluated products from three vendors. I worked with vendors in evaluating their products along with my colleagues who are using them in production.

Ask for a demo. Use the latest firmware version. Plan properly. Understand the features and settings before deployment.

The protection resources and the support are valuable features of the solution.

The challenge lies within the customer environment, particularly in Brazil, where companies have stringent security requirements for implementing solutions. The control data rules could be improved.

I rate the solution’s stability a seven out of ten.

The solution is very scalable. I rate the solution’s scalability a seven to eight out of ten.

The initial setup is moderately easy. We have five people to do the job.

I rate it a five out of ten, where one is difficult and ten is easy.

The security is improved with the management of an existing company, which is very good. So, the return of money is good for the company.

The product's pricing is comparable to other products.

Four people, including an analyst, database, and Oracle specialist, are enough for the solution's maintenance. 

I recommend the solution. Fortinet FortiDDoS is very good for the company due to its positive feedback. It's efficient, with excellent support, seamless implementation, and user-friendly operation.

Overall, I rate the solution a ten out of ten.