Shulou(Shulou.com)06/01 Report--

Magic Quadrant for Network Firewalls

Magic Quadrant for Network Firewall

Published 17 September 2019-ID G00375686-86 min read

With firewall providers embedding multiple security features in firewalls and enabling integration and automation capabilities with other security products, firewalls are evolving into network security platforms.

As firewall providers embed a variety of security features in firewalls and support integration and automation with other security products, firewalls are evolving into network security platforms.

Strategic Planning Assumptions

Strategic planning goal

By 2024, 20% of new distributed branch office firewall deployments will switch to firewall as a service, up from less than 5% today.

By 2024, 20% of new distributed branch firewall deployments will switch to firewalls in the form of services, up from less than 5% today.

By 2024, 25% of new firewall deployments will have users consider cloud-native firewall policy support of infrastructure as a service (IaaS) platforms as a mandatory selection criterion, from less than 5% today.

By 2024, 25 per cent of new firewall deployments will require users to use cloud-local firewall policy support for infrastructure-as-a-service (IaaS) platforms as a mandatory selection criteria, up from less than 5 per cent today.

By year-end 2024, 25 of firewall end-user spend will be contained within larger security "platform" deals delivered by enterprise license agreements (ELAs), up from less than 5 today.

By the end of 2024, larger secure "platform" transactions provided by the Enterprise license Agreement (ELAs) will account for 25 per cent of firewall end-user spending, up from less than 5 per cent today.

By 2024, 50 of new firewall purchases in distributed enterprises will utilize SD-WAN features with growing adoption of cloud-based services, up from less than 20 today.

By 2024, 50 per cent of new firewalls purchased in distributed enterprises will use cloud-based SD-WAN features, up from less than 20 per cent today.

Market Definition/Description Market definition / description

This year, Gartner has modified the definition of network firewalls. As we are observing more clients moving toward hybrid networks and seeking firewall capabilities in the cloud, cloud vendors are also offering native firewall capabilities to their clients.

This year, Gartner changed the definition of a network firewall. As we observe more and more clients turning to hybrid networks and looking for firewall capabilities in the cloud, cloud providers are also providing local firewall capabilities for their clients.

The traditional firewalls also offer support for these cloud platforms. Hence, starting this year, Gartner has started to also evaluate the native firewall capabilities of cloud providers, along with stand-alone firewall vendors. Also this year, the Magic Quadrants for Enterprise Firewalls and Unified Threat Management (UTM) have been consolidated into a single Magic Quadrant for Network Firewalls.

Traditional firewalls also provide support for these cloud platforms. As a result, starting this year, Gartner also began to evaluate the local firewall capabilities of cloud providers, as well as independent firewall vendors. Also this year, the magic quadrant for enterprise firewalls and Unified threat Management (UTM) has been merged into a single magic quadrant for network firewalls.

Gartner defines the network firewall market as follows: The network firewall market represented by this Magic Quadrant is composed primarily of firewalls offering bidirectional controls (both egress and ingress) for securing networks.

Gartner defines the network firewall market as follows: the network firewall market represented by this magic quadrant is mainly composed of firewalls that provide two-way control (egress and ingress) to protect the network.

These networks can be on-premises, hybrid (on-premises and cloud), public cloud or private cloud. Network firewalls can also offer additional capabilities such as application awareness and control, intrusion detection and prevention, advanced malware detection, logging, and reporting.

These networks can be primary clusters, hybrid (primary clusters and cloud), public clouds, or private clouds. Network firewalls can also provide other features, such as application awareness and control, * detection and prevention, advanced malware detection, logging, and reporting.

The companies that serve this market have an identifiable focus on network-based firewall controls-as demonstrated by the proportion of their sales and delivered with their support, sales teams and channels. These vendors provide features dedicated to solve firewall requirements and serve firewall-related use cases.

Companies serving this market have a clear focus on web-based firewall control-as evidenced by their percentage of sales and their support, sales teams, and channels. These vendors provide features specifically designed to address firewall requirements and provide use cases related to firewalls.

This Magic Quadrant includes the following types of network firewalls:

This magical quadrant includes the following types of network firewalls:

Physical equipment dedicated to Purpose-built physical appliances

Virtual appliances virtual appliance

An embedded firewall module embedded firewall module

Firewall control provided by Firewall controls delivered from IaaS platform providersIaaS platform provider

Magic Quadrant

Figure 1. Magic Quadrant for Network Firewalls

Source: Gartner (September 2019)

Vendor Strengths and Cautions

Advantages and considerations of suppliers

Barracuda

Barracuda is based in Campbell, California. Its firewalls are visible on public IaaS platforms and in SD-WAN-related use cases on Gartner clients' shortlists.

Barracuda is based in Campbell, California. Its firewall can be seen in the use cases related to sd-wan on the public IaaS platform and the shortlist of Gartner customers.

These days, with a growing number of firewall vendors offering support for public cloud, Barracuda is facing strong competition because of limited visibility in the on-premises firewall use case. The vendor continues to introduce enhancements related to support for public IaaS platforms and SD-WAN. It is primarily shortlisted by midsize enterprises.

These days, as more and more firewall vendors provide support for public clouds, Barracuda faces fierce competition because of its limited visibility in local firewall use cases. Vendors continue to introduce enhancements related to support for public IaaS platforms and SD-WAN. It is mainly shortlisted by medium-sized enterprises.

Barracuda targets organizations looking for cost-effective security solutions. Its firewall product line (CloudGen Firewall F-Series) includes physical and virtual appliances. It is available on the popular public IaaS platforms Amazon Web Services (AWS), Microsoft Azure and Google Cloud.

The goal of Barracuda is to find cost-effective security solutions for organizations. Its firewall product line (CloudGen firewall f-series) includes both physical and virtual devices. It can be used on popular public IaaS platforms Amazon Web Services (AWS), Microsoft Azure and Google Cloud.

Its firewall centralized management solution, Control Center, is only available as either a software appliance or a public cloud image. Its security portfolio extends beyond firewalls to web application firewalls, data protection and email security solutions.

Its firewall centralized management solution, Control Center, can only be used as a software appliance or a public cloud image. Its security portfolio has expanded from firewalls to web application firewalls, data protection, and email security solutions.

Recent product updates include integration with macmon for network access control (NAC) and full integration, and support for Microsoft Azure Virtual WAN, as well as new firewall instances in Microsoft Azure, Google Cloud Platform and AWS. Barracuda also discontinued its hardware appliances for centralized management, focusing on virtual and IaaS deployments.

Recent product updates include integration and full integration with macmon Network access Control (NAC), support for Microsoft Azure virtual WAN, and new firewall instances in Microsoft Azure, Google's cloud platform, and AWS. Barracuda also stops centralized management of hardware devices and focuses on virtual and IaaS deployments.

Strengths advantage SD- WAN Software defined WAN: a service formed by applying SDN technology to a wide area network scenario to connect geographically wide enterprise networks, data centers, Internet applications, and cloud services.

SD-WAN: Barracuda offers mature SD-WAN capabilities within its firewalls. It has extended this SD-WAN support, including tunnels between Barracuda devices and support of the new Microsoft Azure Virtual WAN.

SD-WAN: Barracuda provides mature SD-WAN functionality within its firewall. It extends support for SD-WAN, including tunneling between Barracuda devices and support for the new Microsoft Azure virtual WAN.

Product: Barracuda continues to enhance support for public IaaS platforms. It offers easy-to-use templates for connecting on-premises environments to multiple public IaaS vendors, specifically AWS, Microsoft Azure and Google Cloud Platform for creating policies and rules. Cloud connections to all cloud providers are configured and monitored from the centralized management console.

Products: Barracuda continues to strengthen its support for the public IaaS platform. It provides easy-to-use templates for connecting local environments to multiple public IaaS vendors, particularly AWS, Microsoft Azure, and Google cloud platforms, for creating policies and rules. Configure and monitor cloud connections to all cloud providers from the centralized management console.

NAC: In addition to offering integration with macmon (an NAC vendor), the vendor offers a lightweight NAC solution called Barracuda Network Access Client combined with its SSL solution for basic client health checks.

In addition to providing integration with macmon, a NAC vendor, the vendor also provides a lightweight NAC solution called Barracuda Network Access Client, which combines the SSL solution for basic client health checks.

Customer Feedback: Surveyed customers report higher-than-average overall satisfaction, with Barracuda highlighting ease of deployment, centralized management and service.

Customer feedback: the overall satisfaction of the customers surveyed was above average, and the barracuda emphasized the convenience of deployment, centralized management and service.

Product Strategy: The retirement of the small and midsize business (SMB)-oriented X-Series and on-premises management appliance simplifies the overall product line and centralized management options.

Product strategy: retired small and medium-sized enterprise (SMB) x-series and locally managed devices simplify the overall product line and centralized management options.

Considerations for Cautions

Customer Experience: A lack of a complete set of APIs and missing integration with the Barracuda Content Shield endpoint security solution were cited as key concerns by customers surveyed. However, in the recent firmware release (8.0), the vendor has made enhancements by offering support for relatively more APIs.

Customer experience: the lack of a complete set of api and the lack of integration with Barracuda Content Shield endpoint security solutions are key concerns of the customers surveyed. However, in the most recent firmware version (8.0), vendors have enhanced by providing support for more api.

Sales Execution: While the vendor offers firewall appliances scaling from 1.2 Gbps to 46 Gbps (pure stateful inspection throughput), Gartner does not see them as a preferred shortlist for data center and enterprise perimeter use cases by Gartner clients.

Sales execution: although vendor-provided firewall devices expanded from 1.2 Gbps to 46 Gbps (stateful inspection throughput only), Gartner did not consider them to be the preferred candidates for Gartner customers' data center and enterprise boundary use cases.

Marketing Execution: Resellers express concern that potential customers do not see the vendor as enterprise-grade or competing with larger competitors. Despite receiving high marks for ease of cloud connectivity with CloudGen Firewalls, the overall adoption rate of virtual firewall instances within IaaS as either pay-as-you-go or bring-your-own licenses remains low.

Marketing execution: dealers say they are concerned that potential customers do not think the supplier is enterprise-class or compete with larger competitors. Although CloudGen Firewall has a high score for cloud connectivity, the overall adoption rate of virtual firewall instances in IaaS (that is, using pay-as-you-go or built-in licenses) is still very low.

Geographic Strategy: Barracuda remains primarily focused on North America and Europe, and is not often seen in South America, the Asia/Pacific region and the Middle East.

Geographical strategy: the barracuda market is mainly concentrated in North America and Europe and is not common in South America, the Asia-Pacific region and the Middle East.

Market Responsiveness: Barracuda lacks a FWaaS offering and any cloud access security broker (CASB) integration, which is a favorable requirement with the growing use of SaaS applications. The firewalls also lack support for SDN platforms.

Market responsiveness: Barracuda lacks integration of FWaaS products and any Cloud access Security Agent (CASB), which is a growing demand for SaaS applications. Firewalls also lack support for SDN platform.

Sandboxing: The vendor lacks an on-premises network sandboxing product, but offers integration with Lastline.

Sandboxie: the supplier lacks local network sandbox products, but provides integration with Lastline

Product Certification: Barracuda firewalls lack certain certifications that are important to enterprises with heavy regulations such as Common Criteria EAL4.

Product certification: Barracuda Firewall lacks certain certifications that are important for companies with strict regulations, such as the common standard EAL4.

Check Point Software Technologies CP software technology science and technology

Check Point Software Technologies is a global pure-play security vendor, with headquarters in Tel Aviv, Israel, and San Carlos, California. Its firewalls are facing strong competition from leading firewall players in the market.

Check Point Software Technologies is a global pure security provider headquartered in Tel Aviv, Israel and San Carlos, California. Its firewall is facing fierce competition from the market's leading firewall manufacturers.

Gartner is gradually noticing the vendor's decreasing visibility for different firewall use cases in client inquiries as compared to other Leaders. With Check Point now showing a focus on cloud and application security with acquisitions, if executed well, it can gain traction in these use cases.

Gartner has come to notice that vendors are becoming less visible to different firewall use cases in customer inquiries than other leaders. Check Point now focuses on cloud and application security, and if well executed, it can be supported in these use cases.

Check Point's security portfolio, branded as the Check Point Infinity Architecture, includes enterprise firewall appliances (Security Gateway), virtual appliances available on the major cloud platforms (the CloudGuard brand, which includes CloudGuard IaaS, CloudGuard SaaS, CloudGuard Dome9 and CloudGuard Log.ic).

Check Point's security portfolio, known as the Check Point Infinity architecture, includes enterprise firewall appliances (security gateways) and virtual appliances available on major cloud platforms (CloudGuard brands, including CloudGuard IaaS, CloudGuard SaaS, CloudGuard Dome9, and CloudGuard Log.ic).

The SandBlast brand encompasses threat prevention technologies, including network sandboxing appliances, an endpoint security solution (SandBlast Agent) and a mobile security solution (SandBlast Mobile). Check Point's centralized management suites (Security Management, SmartEvent and Compliance) are available as a physical appliance (Smart-1 security management appliance) or as software, with a Windows-based management console (SmartConsole).

The sandblasting brand includes threat prevention technologies, including network sandboxie devices, endpoint security solutions (sandblasting agents) and mobile security solutions (sandblasting mobile). Check Point's centralized management suite (security management, SmartEvent, and compliance) can be used as a physical appliance (Smart-1 security management appliance) or as software, with a windows-based management console (SmartConsole).

Checkpoint introduced four new Security Gateway appliances in the past year. In addition, it acquired Dome9 for cloud security posture management (CSPM) and ForceNock for web application and API protection (WAAP) security. The vendor offers 23 Security Gateway models-from lower-end options to high-end appliances with 1.6 Tbps throughput.

In the past year, Check Point has introduced four new security gateway devices. In addition, it has acquired Dome9 for Cloud Security posture Management (CSPM) and ForceNock for web applications and API Protection (WAAP) security. The vendor offers 23 secure gateway models-from low-end selection to high-end devices with 1.6 Tbps throughput.

Strengths

Pricing Strategy: Check Point offers a simple pricing model where appliances come with a choice of three bundles of subscriptions: Next Generation Firewall (firewall, intrusion detection and prevention system [IDPS], application control and URL filtering), Next Generation Threat Prevention (Next Generation Firewall features plus antivirus, anti-spam and anti-bot), and Next Generation Threat Prevention & SandBlast NGTX (NGTP plus sandboxing and content disarm and reconstruction). Check Point also offers the Infinity Total Protection ELA, as well as a-la-carte pricing.

Pricing strategy: CP provides a simple pricing model, appliances have three optional subscriptions: next-generation firewalls (firewall, * detection and prevention system (idps), application control and URL filtering), next-generation threat prevention (win next-generation firewall functions + anti-virus, anti-spam messages and anti-zombie programs) Prevent and next-generation threats and sandboxie emulate NGTX (NGTP plus sandboxie and content release and reconstruction). CP also offers unlimited total protection ELA, as well as Amura la-la carte pricing.

Product Execution: Check Point has one of the largest threat research teams among the vendors evaluated in this research. It also offers a third-party threat intelligence feed as an additional option for customers, further increasing the scope of its threat intelligence offering. The vendor's attach rates for its add-on products are higher than many competitors, which improves its threat intelligence capabilities.

Product execution: Check Point has one of the largest threat research teams among the suppliers evaluated in this study. It also provides customers with a third-party threat intelligence feed as an additional option to further expand the scope of its threat intelligence. The addition rate of the supplier's additional products is higher than that of many competitors, which improves its threat intelligence capability.

Partners: Check Point has a historically strong partner ecosystem, with VMware, Silver Peak, Microsoft and Radware being the recent additions. The vendor has also launched a new partner program called Check Point Engage that rewards providers that strengthen relationships with Check Point customers focused on cloud and mobile over hardware purchases.

Partners: Check Point has a strong partner ecosystem, and VMware, Silver Peak, Microsoft and Radware have recently joined. The company has also launched a new partnership called Check Point Engage to reward suppliers who strengthen their relationships with Check Point customers who focus on cloud computing and mobile devices rather than hardware purchases.

Scalability: Check Point has invested heavily in building specialized offerings to respond to vertical-specific challenges, including ruggedized appliances for critical infrastructure, telecom-specific hyperscale, and protocols such as GTPv1, GTPv2, Diameter, SCTP and SS7. The Maestro Hyperscale Orchestrator appeals to certain verticals like telecommunications and carrier-grade networks that value extremely high throughput capacities.

Scalability: Check Point has invested heavily in building specialized products to address vertically specific challenges, including hardened equipment for critical infrastructure, telecom-specific ultra-large scale, and protocols such as GTPv1, GTPv2, Diameter, SCTP and SS7. Maestro's ultra-large-scale orchestral arrangement attracts the extremely high throughput capabilities of certain vertical areas, such as telecommunications and carrier-grade networks.

Feature: Check Point continues to lead in centralized management offerings, even for very large, complex and highly exposed environments. Its management suite includes several features such as multidomain security management and smart provisioning to specifically serve managed security service providers (MSSPs).

Features: even for very large, complex, and highly exposed environments, Check Point still leads the way in centralized management products. Its management suite includes features such as multi-domain security management and intelligent provisioning to specifically serve managed security service providers (MSSPs).

Product Support: Check Point supports a large number of private, hybrid and public IaaS environments with its CloudGuard IaaS product line, including VMware NSX, Cisco ACI, AWS, Microsoft Azure and Azure Stack, Google Cloud Platform, Oracle Cloud, OpenStack, and Alibaba Cloud. With Dome9, Check Point is showing a growing focus on public IaaS.

Product support: Check Point supports a large number of private, hybrid and public IaaS environments with its CloudGuard IaaS product line, including VMware NSX, Cisco ACI, AWS, Microsoft Azure and Azure Stack, Google Cloud platform, Oracle Cloud, OpenStack, Alibaba Cloud. Through Dome9, Check Point is paying more and more attention to public IaaS.

Cautions

Marketing Execution: Gartner estimates that, in 2018, Check Point lost market share to its rivals and increasingly is less visible in Gartner client inquiries. Client surveys indicate that the vendor is often left off of shortlists when clients are considering replacement of incumbent firewall vendors.

Market execution: Gartner estimates that Check Point lost market share to competitors in 2018, making it less and less prominent in Gartner's customer consulting. Customer surveys show that when customers consider replacing existing firewall vendors, suppliers are often excluded from the candidate list.

Market Responsiveness: Check Point is lagging its competition in introducing a full FWaaS offering. The vendor continues to lack the SD-WAN focus found with other firewall vendors.

Market reaction: Check Point lags behind its competitors in introducing a comprehensive FWaaS. The vendor still lacks the same SD-WAN focus as other firewall vendors.

Product: Check Point Security Management Portal (SMP; cloud-based management console) is only available for limited firewall models and lacks support for the entire firewall series. Check Point firewalls also lack support for TLS 1.3; the product currently downgrades TLS 1.3 connections to TLS 1.2 when decrypting traffic.

Product: Check Point Security Management Portal (SMP; cloud-based management console) is only suitable for limited firewall models and lacks support for the entire firewall family. Check Point Firewall also lacks support for TLS 1.3; this product currently downgrades TLS 1.3 to connect to TLS 1.2 when decrypting traffic

Customer Feedback: Customers and surveyed resellers perceive performance issues requiring purchase of larger appliances than anticipated, giving lower scores for overall performance, especially when enabling multiple features such as DLP. While Check Point is one of the most shortlisted firewalls for public IaaS platforms, clients cite that the installation and deployment process is not a smooth experience and often requires professional services or help from the support team.

Customer feedback: customers and surveyed distributors believe that performance problems require the purchase of larger-than-expected equipment, and the overall performance score is low, especially when multiple features such as DLP are enabled. Although Check Point is one of the most common firewalls shortlisted for the public IaaS platform, customers point out that the installation and deployment process is not smooth and often requires the help of professional services or support teams.

Marketing Strategy: Check Point continues to market Infinity as both an architecture and an ELA around the concept of generational threat protection (currently Gen V). Gartner clients express confusion around this messaging and which solutions the vendor can provide to help protect their environment. Check Point lacks strong positioning and product messaging.

Marketing strategy: Check Point continues to market Infinity as an architecture and an ELA around the concept of intergenerational threat protection (currently Gen V). Check Point lacks strong positioning and product information.

Technical Support: Gartner clients continue to cite that Level 3 escalations take longer than Level 1 and Level 2 escalations, and that the vendor lacks in timely updated communication while the team is working on it.

Technical support: Gartner customers continue to point out that level 3 upgrades take longer than level 1 and level 2 upgrades, and that the supplier lacks up-to-date communication when the team makes the upgrade.

Cisco

Cisco is a large network, infrastructure and security vendor, based in San Jose, California. It continues to offer multiple firewall models for different use cases, although many models under the different firewall product lines overlap with each other. Cisco firewalls continue to be part of large Cisco infrastructure deals. Gartner does observe the vendor being shortlisted by existing Cisco clients as one of the firewall vendors. Its vision of cloud and automation, if executed well, can help the vendor gain traction in related use cases.

Cisco is a large network, infrastructure and security provider headquartered in San Jose, California. It continues to provide multiple firewall models for different use cases, although many models under different firewall product lines overlap each other. Cisco firewalls are still part of a large Cisco infrastructure deal. Gartner did note that the vendor was listed as one of the firewall vendors by existing Cisco customers. Its vision for cloud and automation, if well executed, can help vendors gain traction in related use cases.

Cisco's security product portfolio includes many solutions, including firewalls, and it has grown continually over the past few years, mainly through acquisitions. It offers endpoint security client Cisco AMP, Cisco AnyConnect (* client), Stealthwatch and Stealthwatch Cloud (network traffic analysis [NTA]), secure web gateway (SWG), email security, network access control and a CASB-with Talos threat intelligence included with Cisco security products.

Cisco's security portfolio includes many solutions, including firewalls. Over the past few years, Cisco has grown mainly through acquisitions. It provides endpoint security clients Cisco AMP, Cisco AnyConnect (* client), Stealthwatch and Stealthwatch Cloud (Network Traffic Analysis [NTA]), secure Network Gateway (SWG), email security, network access control and a CASB-including Talos threat intelligence Cisco security products.

Cisco continues to sell multiple firewall product lines: Cisco Adaptive Security Appliance (ASA) 5500 Murray Series and Adaptive Security Virtual Appliance (ASAv), its virtual firewall appliances; Cisco Firepower NGFW Series, which also exists in the form of virtual appliances (NGFWv); the Meraki MX series; and Cisco IOS Firewall. The vendor also offers two industrial firewalls (the ISA series).

Cisco continues to sell multiple firewall product lines: the Cisco Adaptive Security Appliance (ASA) 5500 NGFWv X Series and the Adaptive Security Virtual Appliance (ASAv), with its virtual firewall appliance; the Cisco firepower NGFW series, also in the form of virtual appliances (NGFWv); the Meraki MX series; and the Cisco IOS Firewall. The supplier also provides two industrial firewalls (ISA series).

Cisco Umbrella is the vendor's cloud DNS security and secure web gateway. Cisco Tetration started as cloud visibility software, and recently evolved into an agent-based firewall for application and microsegmentation.

Cisco Umbrella is the supplier's cloud DNS security and security network gateway. Originally as cloud visualization software, Cisco Tetration has recently developed into an agent-based application and micro-segmentation firewall.

Cisco Threat Response (CTR) is the Cisco web portal for threat investigation, adding context and an indicator of compromises to events sent from registered Cisco security products.

Cisco threat response (CTR) is a portal for Cisco threat investigation that adds context and hazard indicators to events sent by registered Cisco security products.

The vendor continues its effort to build a unified centralized management console with Cisco Defense Orchestrator (CDO), which aims at managing all of its firewall product lines. The Cisco Meraki MX series also offers cloud-based management targeting distributed organization use cases.

Vendors continue their efforts to establish a unified centralized management console and Cisco Defense provisioning (CDO) designed to manage all of their firewall product lines. The Cisco Meraki MX series also provides cloud-based management for distributed organizational use cases.

Firepower Management Center (FMC) is Cisco's on-premises centralized management offering, available for Cisco ASA 5500 Murray X and Firepower devices only.

The Fire Management Center (FMC) is Cisco's centralized on-site management product and is only applicable to the Cisco ASA 5500murX and firepower equipment.

Strengths

Sales Execution: Cisco's global footprint is a big asset when trying to convince large organizations to purchase its firewalls and adjacent security products. Gartner analysts see a large number of organizations signing ELAs with Cisco, including for a large number of Cisco Firepower firewalls. Many clients describe themselves as "Cisco shops."

Sales execution: Cisco's global footprint is a huge asset when trying to persuade large organizations to buy Cisco's firewalls and nearby security products. Gartner analysts believe that many organizations have signed ELAs agreements with Cisco, including a large number of Cisco firewalls. Many customers describe themselves as "Cisco stores".

Marketing Execution: Cisco owns a broad portfolio of network and security solutions. Gartner sees the vendor enthusiastically promoting the integration and automation roadmap within its products as a strong marketing and sales strategy, which is also resonating with end users. It is also an attractive proposition for clients that want to consolidate toward a single vendor.

Market execution: Cisco has a wide range of network and security solutions. Gartner believes that suppliers enthusiastically promote integration and automation roadmaps in their products, which is a powerful marketing and sales strategy that resonates with end users. This is also an attractive suggestion for customers who want to merge with a single supplier.

During inquiries, Gartner clients mention the Cisco integration story among the different Cisco products as a primary reason for the purchase.

In the inquiry, Gartner customers mentioned the story of integration between different Cisco products, which is the main reason for the purchase.

Capability: Customers and resellers continue to give high scores to Talos threat research and to advanced malware protection (AMP) features available on Firepower. Existing Sourcefire customers also like the IDPS integration on Firepower.

Capabilities: customers and resellers continue to give highly rated Talos threat research and advanced malware protection (AMP) features available firepower. Existing Sourcefire customers also like IDPS integrated on firepower.

Capability: Cisco Meraki MX appeals to distributed organizations looking for ease of deployment and maintenance. Cisco Meraki MX's proprietary auto-* and SD-WAN simplify site-to-site deployments when using only Meraki devices.

Capabilities: Cisco Meraki MX calls for distributed organizations that seek ease of deployment and maintenance. Cisco Meraki MX's proprietary automation and SD-WAN simplify site-to-site deployment when using only Meraki devices.

Feature: The Cisco AnyConnect client offers support for most mobile devices and their OSs. Gartner constantly receives inquiries in which clients rate the offered by the vendor as higher compared to other vendors. They state that the tunnels are stable and users do not experience disconnected sessions. Many Gartner clients that replace their Cisco ASAs with a firewall from a different vendor continue to use ASAs for only.

Features: the Cisco AnyConnect client supports most mobile devices and their operating systems. Gartner often receives inquiries from customers, in which the evaluation of suppliers is higher than that of other suppliers. They say that the tunnel is stable and that users will not experience disconnected sessions. Many Gartner customers have replaced their Cisco as with firewalls from different vendors, and they still only use ASAs for *.

Cautions

Project Execution: While Cisco has made progress on its competitive positioning, it struggles to win firewall evaluation against other competitors in pure firewall deals based on technical evaluation alone. This puts Cisco in a difficult spot when the three vendors offer similar prices, which is more frequent than in the past due to recent pricing strategy changes from Cisco and its competitors.

Project execution: although Cisco has made progress in competitive positioning, it is difficult for Cisco to win firewall assessments from other competitors in firewall transactions based on pure technology assessments. When the three suppliers offered similar prices, Cisco was in a difficult position. This is more frequent than ever because Cisco and its competitors have recently changed their pricing strategies.

Product Execution: Cisco clients that have purchased multiple Cisco security products with Cisco Firepower firewall to utilize integration and automation capabilities, as highlighted by the vendor at the time of sales, are often disappointed when they don't work in their environment. Gartner clients often cite the lack of automation between Cisco ISE (NAC solution) and Cisco Firepower as quite frustrating. Gartner highly recommends that clients evaluate the integration capabilities between different Cisco products before purchase.

Product execution: Cisco customers purchase multiple Cisco security products and use Cisco's "firewalls" to take advantage of integration and automation features, and as vendors emphasize during sales, they are often disappointed when they are unable to work in their own environment. Gartner customers often say that the lack of automation between Cisco's ISE (NAC solution) and Cisco's "firepower" is very frustrating. Gartner strongly recommends that customers evaluate and compare the integration capabilities of different Cisco products before purchasing.

Product Execution: Cisco Meraki MX, Firepower and, increasingly, Viptela can be relevant in overlapping use cases for distributed organizations with SD-WAN requirements. As the three solutions do not have full feature parity, prospective clients and Cisco resellers struggle to build an architecture when it needs to combine multiple solutions. CDO is still a work in progress and lacks fully featured unified management, which could help with the issue.

Product execution: Cisco Meraki MX, and Viptela may become increasingly important in overlapping use cases in distributed organizations with SD-WAN requirements. Because these three solutions are not fully functionally equivalent, it is difficult for prospects and Cisco resellers to build architectures when they need to combine multiple solutions. CDO is still in progress and lacks full-featured unified management, which helps to solve the problem.

Capabilities: Cisco Firepower lacks SD-WAN features and zero-touch deployment. Gartner observes that Cisco clients are less likely to use application control, TLS decryption and URL filtering features. Surveyed customers also express frustration with the lack of comprehensive real-time logging and reporting solutions.

Capabilities: Cisco firepower lacks SD-WAN capabilities and zero-touch deployment. Gartner noted that Cisco customers are less likely to use application control, TLS decryption, and URL filtering. The customers surveyed also expressed disappointment at the lack of a comprehensive real-time logging and reporting solution.

Geographic Strategy: Gartner is noticing declining visibility of Cisco firewalls in pure firewall deals outside North America in client inquiries. The vendor is more visible in other regions as part of large Cisco infrastructure deals. Gartner has also observed more focus by the vendor on expanding the Cisco Meraki MX product line in the U.S. And U.K.

Geo-strategy: Gartner notes that Cisco firewalls are becoming less visible in the customer consulting business outside North America. As part of a large Cisco infrastructure deal, Cisco is better known elsewhere. Gartner also noted that Cisco is paying more attention to expanding the Cisco Meraki MX product line in the United States and the UK.

Capabilities: Cisco clients continue to complain about their inability to effectively deploy Firepower virtual machines on IaaS platforms. They mention stability issues and feature inconsistencies. Gartner also does not see Cisco being deployed on public cloud, compared to competitors.

Function: Cisco customers continue to complain that they cannot effectively deploy firepower virtual machines on the IaaS platform. They mentioned stability issues and feature inconsistencies. Compared with its competitors, Gartner also believes that Cisco will not be deployed on the public cloud.

Customer Experience: Cisco scored lower than average on surveyed customers' satisfaction with quality of support. This aligns with what Gartner analysts observe during client inquiries, where the ability to get timely answers has been reported as degrading over time, especially when facing issues with centralized management features.

Customer experience: Cisco scored below average in the customer satisfaction survey on the quality of support. This is in line with what Gartner analysts have observed during customer inquiries, where the ability to get answers in a timely manner is reported to decline over time, especially when there is something wrong with centralized management.

Capability: Cisco Firepower's management API lags in maturity behind its direct competitors. This has noticeable consequences, such as delays in support from network security policy management tools (NSPM), and the absence of integration, notably with any third-party endpoint detection and response (EDR) tools.

Capabilities: Cisco firepower's management API lags behind its direct competitors in maturity. This has obvious consequences, such as delayed support for the Network Security Policy Management tool (NSPM) and a lack of integration, especially with any third-party endpoint detection and response (EDR) tool.

F5

F5, based in Seattle, Washington, is a leading data center application delivery controller vendor. It continues to focus on data center and CSP use cases for its firewall module deployment. Clients using F5 or procuring application delivery products for the vendor should consider using the firewall module offered by the vendor. The primary use case for using the vendor's firewall is vendor consolidation, higher throughput requirements and advanced routing capabilities.

F5, based in Seattle, Washington, is a leading provider of data center application delivery controllers. It continues to focus on firewall module deployment in the data center and CSP use cases. Customers who use F5 or purchase application delivery products for vendors should consider using firewall modules provided by vendors. The main use cases for using vendor firewalls are vendor integration, higher throughput requirements, and advanced routing capabilities.

F5's Advanced Firewall Manager (AFM) module, as a part of its BIG-IP appliances, is sometimes visible in the vendor's quotations with other products offered. Gartner comes across existing F5 clients that want to evaluate the firewall capabilities offered by the vendor with other firewall vendors in the market. F5 firewalls have limited visibility in data centers and large enterprise deployment.

F5's Advanced Firewall Manager (AFM) module, as part of its BIG-IP device, can sometimes be seen in quotations for other products provided by the vendor. Gartner has encountered some of the existing F5 clients and they want to work with other firewall vendors on the market to evaluate the firewall capabilities provided by that vendor. F5 firewalls have limited visibility in data center and large enterprise deployments.

F 5's security portfolio includes a WAF solution, access policy manager (APM), web fraud protection (WebSafe), and a DDoS mitigation solution, DDoS Hybrid Defender (DHD). Under the Silverline brand, F5 delivers a cloud WAF and DDoS protection. Its firewall product relies on the BIG-IP appliances (21 models, from 5 Gbps up to 320 Gbps) and VIPRION chassis (six models, up to 1.2TB throughput) hardware platforms, running the F5 Traffic Management Operating System (TMOS). F5 also offers 11 virtual appliances (F5 Virtual Editions [VE]) and centralized management (BIG-IQ) for its BIG-IP solutions.

F5's security portfolio includes WAF solution, access Policy Manager (APM), web Fraud Protection (WebSafe) and DDoS Mitigation solution, and DDoS Hybrid defender (DHD). Under the Silverline brand, F5 provides cloud WAF and DDoS protection. Its firewall products rely on large ip devices (21 models, from 5 Gbps to 320 Gbps) and VIPRION chassis (6 models, highest 1.2TB throughput) hardware platforms running the F5 traffic management operating system (TMOS). F5 also provides 11 virtual appliances (F5 virtual version [VE]) and centralized management (BIG-IQ) for its BIG-IP solution.

Recent product news includes multiple enhancements related to routing, traffic inspection and DDoS mitigation.

Recent product news includes several enhancements related to routing, traffic inspection, and DDoS mitigation.

Strengths

Product Strategy: F5's software is optimized for data center and ISP infrastructure protection use cases with its highly scalable architecture, native load balancing support and focus on carrier-grade issues such as carrier-grade network address translation (CGNAT) and DDoS capabilities.

Product strategy: F5's software is optimized for data center and ISP infrastructure protection use cases, with a highly scalable architecture, local load balancing support, and focus on carrier-level issues such as carrier-class network address translation (CGNAT) and DDoS capabilities.

Feature: The vendor offers strong load balancing and DDoS mitigation capabilities. This offers clients the ability to consolidate firewall functionality with mature application delivery and security capabilities. However, all the features come as separate products with dedicated subscriptions.

Features: the vendor provides powerful load balancing and DDoS mitigation capabilities. This provides customers with the ability to integrate firewall capabilities with mature application delivery and security capabilities. However, all the features are separate products and have special subscriptions.

Customer Experience: F5's customers report better-than-average satisfaction with the vendor's technical support. Customers also report above-average performance of the F5 firewall, and cite performance and throughput as key deciding factors when selecting F5 for their firewall.

Customer experience: F5 customers' satisfaction with supplier technical support is higher than average. The customer also reported that the performance of the F5 firewall was above average and cited performance and throughput as the key determinants of choosing F5 as the firewall.

Product Strategy (IaaS): F5 partners with multiple public IaaS cloud service providers including Alibaba, AWS, Azure, Google Cloud Platform, IBM and Oracle, making it a desirable shortlist candidate for mutlicloud deployments.

Product Strategy (IaaS): F5 works with several public IaaS cloud service providers, including Alibaba, AWS, Azure, Google Cloud platform, IBM and Oracle, making it an ideal candidate for multi-cloud deployment.

Product: F 5 offers strong TLS decryption in its BIG-IP appliance, as well as a dedicated TLS decryption appliance (SSL Orchestrator). F5 fully supports RFC 8446 TLS 1.3 decryption in TMOS 14.1.0.1 and higher, well ahead of many other firewall vendors, making SSL decryption capabilities stronger than the competitors.

Product: F5 provides powerful TLS decryption in its large ip devices, as well as a dedicated TLS decryption device (SSL programmer). F5 fully supports TMOS 14.1.0.1 and later RFC 8446 TLS 1.3 decryption, which is far ahead of many other firewall manufacturers and makes SSL more capable of decrypting than its competitors.

Geographic Presence: F5 is a long-established application delivery vendor with a large, loyal global channel. The vendor also has a direct presence through regional offices worldwide. This makes it a strong global vendor.

Location: F5 is a long-established application delivery provider with a large and loyal global channel. The supplier also operates directly through global regional offices. This makes it a powerful global supplier.

Cautions

Sales Execution: F5 rarely appears on Gartner client competitive shortlists for enterprise firewall selection, and often complements other firewalls rather than replacing them. In addition, there has been significant turnover in its sales leadership, impacting reseller relationships over the past year.

Sales execution: F5 rarely appears on the shortlist of Gartner clients competing for corporate firewalls and is usually a supplement to other firewalls rather than replacing them. In addition, in the past year, there has been a great turnover in its sales leadership, which has affected the relationship between dealers.

Customer Experience: F5's customers generally report satisfaction with its product, but are reluctant to provide unqualified recommendations of it due to a lack of common firewall features, which prevents it from being used in certain use cases such as end-user perimeter firewalls. Surveyed clients have reported more reliance on the vendor's professional services because of a lack of sufficient product documentation and steep learning curve as product limitations.

Customer experience: F5 customers are usually satisfied with their products, but are reluctant to provide substandard advice because of the lack of general firewall functionality, which prevents it from being used in some use cases, such as firewalls around end users. The customers surveyed reported that they relied more on the professional services of suppliers because of the lack of sufficient product documentation and steep learning curve as product limitations.

Product: The F5 firewall lacks advanced threat detection features such as anti-malware and sandboxing, native or third-party endpoint security integration, and support for SD-WAN, which are commonly provided by vendors competing in the enterprise firewall market.

Products: F5 firewalls lack advanced threat detection features, such as anti-malware and sandboxing, local or third-party endpoint security integration, and support for SD-WAN, which are typically provided by competitors in the enterprise firewall market.

Product Strategy: F5 does not offer a set of low-end appliances, a multitenant FWaaS option, NAC integration or cloud-based management consoles, and tends to focus its products on carrier-grade networks and large enterprise internal data center use cases. Unlike other vendors in the market, the network team is most likely to manage F5 due to its integration with the application delivery controller and, therefore, may not be managed or considered by security teams for firewall use cases.

Product strategy: F5 does not offer a set of low-end devices, multi-tenant FWaaS options, NAC integration, or cloud-based management consoles, and its products tend to focus on carrier-class networks and large enterprise internal data center use cases. Unlike other vendors in the market, the network team is most likely to manage F5 because it integrates with the application delivery controller, so the security team may not manage or consider F5 for firewall use cases.

Market Responsiveness: F5 includes an IDPS feature based on a limited number of SNORT signatures. Gartner advises that customers looking for high-security, network-based intrusion prevention solutions augment the F5 IDPS because it is not as robust or mature as other offerings seen in the network firewall market today.

Market responsiveness: F5 contains an IDPS feature based on a limited number of SNORT signatures. Gartner recommends that customers looking for high-security, web-based * defense solutions add F5's IDPS because it is not as robust or mature as other products currently seen in the network firewall market.

Forcepoint quasi-energy technology

Forcepoint is a security vendor headquartered in Austin, Texas. Its firewalls continue to be visible primarily in distributed office use cases where clients are looking for mature SD-WAN, and centralized management capabilities. Gartner sees good potential in the firewall to meet other use cases, but sees a delay in market responsiveness and a lack of focus to expand the customer base beyond distributed office use cases by Forcepoint.

Forcepoint is a security provider headquartered in Austin, Texas. Its firewalls are still predominantly found in distributed office use cases where customers are looking for mature SD-WAN and centralized management capabilities. Gartner believes that firewalls have good potential to meet other use cases, but it believes that the market is less responsive and lacks the focus to extend the customer base beyond distributed office use cases through Forcepoint.

The vendor offers a firewall (Forcepoint NGFW), web and email security gateways (Forcepoint Web Security and Forcepoint Email Security), data loss prevention (Forcepoint DLP), an insider threat solution (Forcepoint Insider Threat), a cloud access security broker (Forcepoint CASB), and user and entity behavior analytics (Forcepoint UEBA). It also offers government-specific security solutions.

Vendors provide firewalls (Forcepoint NGFW), web and email security gateways (Forcepoint web security and Forcepoint email security), data loss prevention (Forcepoint DLP), internal threat solutions (Forcepoint internal threats), cloud access security agents (Forcepoint CASB), and user and entity behavior analysis (Forcepoint UEBA). It also provides security solutions for the government.

Virtual Forcepoint firewalls offer support for Azure and AWS, where they are available, as pay as you go as well.

Virtual Forcepoint Firewall provides support for Azure and AWS, and you can use them whenever you want.

Forcepoint's recent news includes the introduction of five new compact desktop models. Other updates include support for new, compact desktop models (33x and 5x series), and feature enhancements for SD-WAN and networking. Support for auto-scaling and management for its visual firewalls with virtualized environments (AWS, Azure, VMware, etc.) Is available.

The latest news from Forcepoint includes the launch of five new small desktop computers. Other updates include support for new, compact desktop models (33x and 5x series), as well as enhancements to SD-WAN and networking. Support the use of virtual environments (AWS, Azure, VMware, etc.) to automatically extend and manage their visual firewalls.

Strengths

Market Execution: The majority of the installed base for Forcepoint firewalls with mature and SD-WAN capabilities is in distributed office use cases. Even the vendor is keen to focus on this use case by continually introducing more enhancements for and SD-WAN.

Market execution: the installation foundation of a mature and SD-WAN-capable Forcepoint firewall is mainly in distributed office use cases. Even vendors are keen to focus on this use case, constantly introducing more enhancements to and SD-WAN.

Product: Security Management Center (SMC), which is the vendor's centralized management offering, is very intuitive and easy to use. SMC is available as a management appliance, management appliance ISO image and software.

Products: security Management Center (SMC), is the supplier's centralized management products, very intuitive, easy to use. SMC is an available management device that manages device ISO images and software.

It offers features such as drag and drop, which is very smooth. SMC provides granular administrator access control. Administrator roles can be defined, and mapped with select NGFWs, access control lists and Domains. There is also an administrator privilege for approving pending changes with features such as drag and drop. Surveyed clients have also highly rated SMC and scored it higher in ease of management.

It provides functions such as drag and drop and is very smooth. SMC provides fine-grained administrator access control. Administrator roles can be defined and mapped by selecting NGFWs, access control lists, and domains. Administrators can also use features such as drag and drop to approve pending changes. The customers surveyed also rated SMC highly and scored higher in terms of management convenience.

Feature (IDPS): The vendor has a legacy reputation of mature IDPS offers. Forcepoint utilizes threat intelligence from McAfee GTI and the Lastline reputation service, in addition to Forcepoint TI. Forcepoint firewalls offers best-of-breed firewall clustering capabilities, with a mature load balancing capability between different appliance models and running different firmware. Surveyed clients have also highly rated the firewall clustering capabilities, which are easy to manage and failover is transparent to the network.

IDPS: this supplier has a traditional reputation for mature IDPS products. Forcepoint leverages threat intelligence from McAfee GTI and Lastline reputation services, as well as Forcepoint TI. Forcepoint firewall provides the best firewall clustering capabilities, with mature load balancing capabilities between different device models and running different firmware. The customers surveyed also spoke highly of the clustering capabilities of firewalls, which are easy to manage and that failover is transparent to the network.

Automation: Forcepoint offers cloud provisioning tools and automated scripts for DevOps use cases. The vendor offers public GitHub project SMC Python and SMC integration for Ansible.

Automation: Forcepoint provides cloud provisioning tools and automation scripts for DevOps use cases. The vendor provides public GitHub project SMC Python and SMC integration for Ansible.

Feature (): Forcepoint firewalls offer easy-to-configure templates. The vendor has a large installed base of multiple branch office use cases. The UI offers easy-to-monitor-and-manage multiple tunnels.

Feature (): Forcepoint Firewall provides templates that are easy to configure. The vendor has a large installation base of multi-branch use cases. UI provides multiple tunnels that are easy to monitor and manage.

Capability: The vendor offers built-in UEBA capabilities, bringing advanced threat detection capabilities beyond network sandboxing without the need for an additional subscription. The Forcepoint firewall platform collects data from network engines (physical/software/virtual/cloud variants), endpoint intelligence agents and via Syslog feeds from other third-party solutions deployed within an organization.

Features: the vendor provides built-in UEBA capabilities that provide advanced threat detection beyond the network sandbox without the need for additional subscriptions. The Forcepoint firewall platform collects data from Syslog feeds from network engines (physical / software / virtual / cloud variants), endpoint intelligence agents, and other third-party solutions deployed within the organization.

Cautions

Market Execution: Forcepoint sells multiple product lines, out of which Web Security, its SWG product, seems to be the primary product where most rotated work is focused. Gartner finds that the vendor focuses less on its firewall product line as a result, keeping it confined to distributed office use cases. While Gartner thinks that Forcepoint has good experience and a good rotated team, the firewall has the potential to be one of the industry leaders if the vendor focused more toward this product line.

Market execution: Forcepoint sells multiple product lines, among which its SWG product Web Security seems to be the main product that most R & D efforts focus on. Gartner found that vendors therefore paid less attention to their firewall product lines, thus limiting them to distributed office use cases. Although Gartner believes that Forcepoint has good experience and a good R & D team, firewalls have the potential to become one of the industry leaders if suppliers pay more attention to this product line.

Marketing: Forcepoint lacks strong marketing of its firewall products; as a result, it does not have much visibility on client shortlists. Despite the firewall offering mature threat detection capabilities, the marketing team markets its SD-WAN and capabilities most of the time, resulting in a lack of awareness within the end-user base.

Marketing: the marketing of Forcepoint firewall products is not strong enough; therefore, it is not very visible on the shortlist of customers. Although firewalls provide mature threat detection capabilities, marketing teams spend most of their time promoting their SD-WAN and capabilities, resulting in a lack of awareness among end users.

Offering: The vendor lacks EDR client integration capabilities. It also lacks firewall integration with third-party EDR clients.

Product: this vendor lacks EDR client integration capabilities. It also lacks firewall integration with third-party EDR clients.

Product Strategy: Despite having a strong client base and a focus on distributed office use cases, the vendor does not offer a cloud-based management portal, as offered by most competitors. The vendor also lacks FWaaS, despite offering multiple other cloud-based product lines.

Product strategy: despite its strong customer base and focus on distributed office use cases, the vendor does not provide a cloud-based management portal like most competitors. The vendor also lacks FWaaS, although it offers several other cloud-based product lines.

Customer Feedback: Surveyed clients have reported that the vendor's Level 1 support is not competent enough to deal with common support issues and escalates them further, creating longer escalation cycles.

Customer feedback: customers surveyed reported that the supplier's first-level support was insufficient to deal with common support issues and further escalated them, resulting in a longer upcycle.

Fortinet flying tower

Fortinet is a network and security player, headquartered in Sunnyvale, California. This year, Fortinet firewalls continue to be visible in distributed office deals where integrated SD-WAN is the primary selection criterion. They are also seen as replacing dedicated routers and act as an edge appliance with firewalls. Fortinet is also a favorable firewall shortlist for customers that cite pricing as an important selection criterion. The vendor offers a range of firewall models to meet multiple firewall deployment use cases. It also offers support for bare metal and virtual firewalls for Alibaba Cloud, AWS, Azure, Google Cloud Platform, IBM Cloud and Oracle OCI IaaS platforms.

Fortinet is a network and security company headquartered in Sunnyvale, California. This year, the Fortinet firewall continues to be visible in distributed office protocols that integrate SD-WAN as the main selection standard. They are also seen as an alternative to dedicated routers and act as edge devices for firewalls. Fortinet is also a good candidate for firewalls for customers who use price as an important selection criteria. The vendor provides a range of firewall models to meet multiple firewall deployment use cases. It also provides bare metal and virtual firewall support for Alibaba.

The other products in Fortinet's portfolio cover network security, endpoint security, security information and event management (SIEM), NAC, wireless access points and switches. FortiGate firewalls are still the vendor's most popular and best-selling product.

Other Fortinet products include network security, endpoint security, security information and event management (SIEM), NAC, wireless access points, and switches. FortiGate firewalls remain the supplier's most popular and best-selling product.

In 2018 and 2019, Fortinet introduced new FortiGate models 6000F, 3600E, 3400E, 600E and 400E Series. It also had two major firmware releases with enhancements for the FortiGate firewall, new SD-WAN ASIC, virtual security processors, and centralized management and reporting software. It continues to work toward integration through APIs and security fabric.

In 2018 and 2019, Fortinet introduced new defense models 6000F, 3600E, 3400E, 600E and 400E series. It also released two major firmware versions, which enhanced defense firewalls, new SD-WAN ASIC, virtual security processors, and centralized management and reporting software. It continues to integrate through api and security architecture.

Strengths

SD-WAN: Fortinet offers integrated SD-WAN capabilities within its E-Series firewalls, which makes it a favorable shortlist candidate for distributed enterprise use cases. It comes with capabilities like application-based routing, especially for SaaS applications like Office 365 that are easy to configure. The vendor also offers features such as multipath automated failover for specific applications based on health performance, latency, jitter and packet loss, which enhance the performance of the applications.

SD-WAN: Fortinet provides integrated SD-WAN capabilities in its e-series firewalls, which makes it an ideal candidate for distributed enterprise use cases. It has features such as application-based routing, especially for SaaS applications that are easy to configure (such as Office 365). The vendor also provides features such as multipath automatic failover for specific applications based on health performance, latency, jitter, and packet loss, which enhance application performance.

SSL Decryption: This year, Fortinet introduced support for TLS 1.3 in the FortiOS 6.2 release. This feature enhances existing deeper inspection capabilities for the Web Filter profile with flow-based inspection mode enabled and for the SSL/SSH Inspection profile.

SSL decryption: this year, Fortinet introduced support for TLS 1.3 in FortiOS version 6.2. This feature enhances the existing deeper inspection capabilities of Web filter profiles and SSL/SSH inspection profiles by enabling flow-based inspection mode.

Integration: Fortinet continues to extend integration capabilities using security fabric and APIs with AWS, Azure, Google Cloud Platform and Alibaba, and develops tools to offer automation. Some of the capabilities include security fabric integration using AWS Lambda, and automatically updating dynamic addresses for AWS using Fabric Connectors. The vendor also offers playbooks for integration of Ansible and Terraform modules.

Integration: Fortinet continues to use security architecture and api to integrate with AWS, Azure, Google Cloud platform and Alibaba, and to develop tools that provide automation. Some features include secure fabric integration using AWS Lambda and automatic updating of dynamic addresses for AWS using fabric connectors. The vendor also provides Ansible and Terraform module integration scripts.

Geographic Presence: FortiGate firewalls continue to be visible on Gartner client firewall shortlists in different regions, competing with regional players. Regional players have also citied Fortinet as one of the top three competitors for them locally.

Location: on the candidate list of Gartner client firewalls in different regions, enhanced firewalls are still visible, competing with regional players. Regional players also consider Fortinet to be one of their three local competitors.

Sales Execution: Fortinet works closely with many MSSPs globally that are offering Fortinet firewalls as hosted services to their clients. The vendor has specific licensing models for its VM-Series appliances specific to MSSPs. FortiManager and FortiAnalyzer also offer multiple multitenancy features that can be extended using APIs.

Sales execution: Fortinet works closely with many mssp around the world to provide Fortinet firewall hosting services to its customers. Vendors provide a specific licensing model for their mssp-specific vm series devices. FortiManager and FortiAnalyzer also provide a variety of multi-tenant features that can be extended using api.

Licensing: While the majority of Gartner clients generally complain about complex licensing by most enterprise-grade firewall vendors, Fortinet has maintained its simpler licensing by offering bundle-based licensing, which is easier to understand and renew for end users.

Licensing: although most Gartner customers often complain about the complex licenses provided by most enterprise firewall vendors, Fortinet maintains its simpler licenses by providing bundle-based licenses, which are easier for end users to understand and update.

Cautions

Visibility: Despite support for multiple cloud IaaS platforms, FortiGate is not visible on Gartner client shortlists as a preferred firewall on IaaS platforms, compared to prominent competitors that have more visibility in this use case.

Visibility: although multiple cloud IaaS platforms are supported, FortiGate as the preferred firewall on the IaaS platform is not visible on the Gartner client candidate list, compared with some well-known competitors in this use case.

Product: Although Fortinet offers security fabric and API integration capabilities for integration of its products, it lacks mature direct integration capabilities of its firewalls with other security products in the portfolio for threat correlation.

Products: while Fortinet provides the security architecture and API integration capabilities for integrating its products, it lacks mature capabilities to directly integrate its firewall with other security products in the portfolio for threat association.

The vendor offers basic visibility into infected hosts and their vulnerabilities through FortiClient as a dashboard widget, but lacks mature direct threat correlation capabilities with FortiGate. FortiManager and FortiManager Cloud lack the management controls of FortiWeb, FortiSIEM and FortiCASB.

The vendor provides infected hosts through FortiClient as a dashboard widget

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.