I have a customer using an ASA 5550 and recently considering migrating to a FortiGate 620B
The main reason is because it can run as a Firewall, web filtering, anti-spam, anti-virus, IPS and has 20 accelerated ports to avoid any degradation in performance by doing all this. Also, it can handle 500 SSL VPN connections at no additional cost. It can be virtualized to protect several network segments
at L3 and L2. All ports can operate at 1GB and has a very good throughput.
Here's the datasheet:
http://www.wickhill.de/knowledge_library/fortinet/pdf/FortiGate/FortiGate%20620B.pdfI know for a fact that Cisco has better support and reputation, but my questions are:
1. ASAs come by default with 2 SSL VPN connections. You can increase this at additional costs purchasing a license (high cost). Is no comparison with FortiGate.
2. FortiNET claims that Cisco only incorporate CPU and RAM to higher models, making the ASAs not able to provide a good performance when used as
an all-in-one box. (FortiGate devices use ASICs on all its 20 ports to deliver security throughput at switching speeds)
I have always worked with ASAs and have looked at some FortiGates and they seem to get the job done real nice (with a very low cost compared to Cisco).
I just want to know what you guys think.