Firewall Fortinet FortiGate 30E – Review
In our day to day operations providing IT support to small and medium business in and around Canberra, we often are tasked with installing new networks or upgrading existing networks. As part of this process we come across a lot of different networking equipment such as, Routers, Switches and Firewalls.
More recently, we have rolled out several different Fortinet products including the Fortinet FortiGate 30E Firewall.
The Fortinet FortiGate 30E is a compact unit not much bigger than your typical ADSL/VDSL router, its heavier than it looks and is a relatively plain looking device. It has a USB port, a Console Port, 1x GE WAN port and 4x GE Switch Ports.
The FortiGate 30E is much more than a typical firewall. It has many features and a lot of ability for its sub $1000 price tag. Its features include, IPS (Intrusion Prevention Scanning), NGFW (Next Generation Firewall), Threat Protection, AntiVirus Scanning, Web Filtering, DNS Filtering, Application Control, SSL VPN and even a Web Application Firewall for those wanting to run on premise web services.
The claimed throughput on this device is 950Mbps (Standard Firewall), 300Mbps IPS, 200Mbps NGFW and 150Mbps Threat Protection Throughput. Whilst we have not tested the maximum throughput, we have installed these devices in multiple locations with 100Mbit NBN connections and around 15 – 20 users without any issues.
The interface is very intuitive, and settings can easily be found, I wouldn’t say its super easy to configure for a novice, but with a little know how these devices can be deployed very quickly and very seamless.
The visibility into network traffic is amazing once you know where to look. You can look at FortiView which provides information on traffic in and out of LAN/DMZ and traffic from the WAN interface. This gives you a good summary of the bandwidth used by device, by application, the category of the traffic and the risk associated with the traffic. You can also look under Log and Report for real time traffic, what policy is being used, application control and web filter triggered events.
With all Business Telephone Systems being switched to VoIP (Voice Over IP) on the NBN in Australia, it is imperative to ensure bandwidth hogs do not affect the quality of telephone calls in your business. One of the excellent features of the FortiGate 30E is the Traffic Shaper. You can assign a high priority to VoIP traffic and a minimum amount of bandwidth to ensure you clients can hear you clearly and concisely.
Business owners might also be thrilled at the ability to schedule firewall policies. For example, if you wanted to lock users out of social media except for during their lunch break, you can do this with ease with Fortinet Schedules.
Overall, we have found this device to be very stable with a high level of protection and performance. We would recommend this product to all small business who require more protection and visibility than a default ADSL / VDSL modem / router built in firewall.
The only downside of FortiGate Firewall 30E is for reporting and any logging of events outside of what is happening right now, you need to purchase the additional FortiAnalyzer. Which does have some cool features, but pushes the price of the solution up. It is well worth it if you are interested in exactly what is happening on your network.
There is an annual subscription for the FortiGate products, but not overly expensive. I can’t say this is the best firewall on the market under the $1000 mark as I have not tested them all. I can say that value for money we are very impressed with the level of protection and performance.
This is not a paid review.