Please share with the community what you think needs improvement with Fortinet FortiSwitch - Secure Access.
What are its weaknesses? What would you like to see changed in a future version?
In Fortinet, the packet reconstruction in the SD-WAN solution needs a little bit of improvement. When it comes to the Secure Access to the switches or the mix of Fortinet solution, the very small ones do not have the capability to use fiber cables. So, the small FortiGates have to work with the copper cables and cannot use fiber cables. Even though they have the capacity and throughput on all technical connectors, they don't have the interfaces, which is one of the good things with Cisco. They just add models to it. You buy the independent models, and you add them.
The security of the solution could be a bit better. We've tried to mobilize the infrastructure of the network, however, with security, it's tricky. We've had issues with faulty switches. Right now we have only two firewalls and we're trying to change to a new firewall and fix a faulty switch. We're looking to change in the next three to six months to help us move away from faulty lines. The fiber optic switch needs to be changed a bit. The specifications need to be adjusted.
I can tell you from personal experience, while the interface is clear for somebody in the IT business, it really isn't clear for a novice. It would also help if they lowered the cost of their service. Their terminology could be better. The terminology is all IT. It's an IT dictionary, and I believe that there has to be a way to state things in clear, plain old English, and I would like to see more of that.
There are currently issues with some of the switches, problems with the firmware. I think they need to check the firmware, especially, with the new FortiGate firmware integration and they need to offer a strong switching feature like Cisco, especially in the VLAN management systems and integration.
The product could be improved with additional security-related features, you can never have enough. Otherwise, I find it quite an easy product to use. Scalability could also be improved. For additional features, I would again mention the security and it would be nice if the 4G system was directly on the operating system.
The technical support could be improved.
I don't like the way it's managed. For some of the smaller switches that we have, I was not able to log into it and manage it. I am not sure if it is something that I am missing or something that I am not doing correctly or if this applies to all switches. It had to be managed through the FortiGate firewall appliance, which to me is one of the downsides. I am not sure if they have management outside of FortiGate itself. The switches should have the capability to be managed without having to connect to FortiGate. You might have clients who are using Cisco or other solutions who would have to use FortiGate at the access level but won't be able to log in into the switch, then it would be completely useless to them and it becomes unmanaged. There is no console port and nothing in the default IP that could help with this issue. I checked online and there was nothing available. The dashboards are easy but a bit cloggy. The more switches that you connect the more cloggy it becomes.
In terms of improvements, the solution has SD-WAN but it doesn't have SDN. This should be added. The solution can only be managed by FortiGate.
I think that Fortinet needs to focus on its pricing and improving the packages offered to users. When our company offers a client the FortiSwitches product, the customer ends up comparing FortiSwitch's pricing directly with HP and Cisco. Both of these other products cost less but they have fewer features. Fortinet needs to bring the price down to levels that are more competitive at-a-glance with these other products. If they do that, they will take more of the market because they have more features and clients will compare by features rather than by price. It is actually justified as it stands to charge more, but customers often only see the price tag. Another thing that could be improved, although it is not actually part of the product itself, is the technical support. The technical support team is slow to respond and the responses are not always complete.