I love mikrotik, and i will be sticking to the mikrotik switches BUT i finally made the migration from my CCR2004 to Fortigate router, i am more comfortable with fortigate and before did not make the move because of costs but now i finally did
The switch was effortless because my network is pretty simple also, unplugged and plugged and that was it after making a matching config copying from the CCR2004 router to the fortigate
Again mikrotik wins when it comes to switches, still loving my CRS326-24S+2Q+RM but yeah so happy with the move and now i can manage my network easier as am more comfortable with the fortigate firewall policies
So no more forum questions asking for help with firewall rules
Well … you cannot really compare a RouterOS box with a Fortinet in the Firewall/UTM area…its not a fair comparison in favor of Fortigate. (similar statement for example compared to Palo Alto)
This is not about being more “appropriate” , this is just in another league in terms of features,performance,hardware-design…
Sure price-tag is QUITE different, but sometimes that is not really an issue.
For example, similar to Fortinet we use Palo Alto modules on 1 of our environments (services > 100k users, full UTM/SSL-decrypt/webproxy/… enabled) that cost 6-digit numbers in euros only for a single line-card…
man fortigate is super awesome man
i even have ipv6 setup
paid for support and man i get the engineers to help with any issues with misconfigurations
had the support engineers help me with ipv6 setup now i have DNAT setup for ipv6
super awesome man, the support is key meaning no need to post in forums!!!
fortigate makes networking super duper simple, a complex thing like ipv6 that many people do not have setup a mere uberwebguru with mediocre networking skills got it done now!!!
What brand of switches are you using with your palo alto? just curious
i personally dont like palo alto just because i think fortinet is better even if same price, then to put icing on top fortinet is cheaper so that is done deal really
i do get palo alto have the PAN/APPID thing that is going for them but soon enough that advantage will be no more and they will lose out when it comes to price
Let me know how much you want to sell your CCR2004 for. I might be interested in buying it assuming you are in the US. I’ll netinstall it and make it purr.
How much you want to pay for it? between 1 of the power supplies is no longer working but otherwise the unit is near brand new, got it like couple of months ago
I will also add Audience device(https://mikrotik.com/product/audience) to it as i no longer need that also, that too near brand new
got the current original packaging also for CCR and audience device
I see, can tell your company got the money
i think that is what is going for these very expensive brands like cisco/palo
they got enterprise companies willing to pay the big bucks
for me am sticking with mikrotik on switching, its a no brainer
the price is bar none number of one when it comes to value
imagine doing 100G at less than $1k that is insane
good luck attempting that with cisco
Since you lack the skills but have money to throw around you could’ve done the same thing with MikroTik, hiring a consultant https://mikrotik.com/consultants would’ve been the fastest resolution.
MikroTik support is there to fix bugs in their products, not for newbie help with a dnat rule.
The forum is for the ones willing to learn something in time, it’s not for immediate free support for your company or for helping you immediately for free to do the job you’re hired to do.
MikroTik has the training program for that, you want to use MikroTik products, you signup for a class and get familiar with the products, but you do that BEFORE switching the company to MikroTik.
seems you not getting it man, mikrotik and fortinet are not in the same bracket to start off
next i only paid like less than $300 for 1 year support and i can call them and have them help me with an issue
will you accept $300 for 1 year support and i can call anytime 24/7?
at the end i bought a used fortigate and the price with support ended up being cheaper than the mikrotik with zero support
and again will repeat mikrotik and fortinet are not in same bracket plus again fortigate makes managing routers super super super easy man
so even if am in same boat with fortigate, i will still go with fortigate off the level of device differences alone
so add all i just said up and i hope you get the point now
also the support from engineers of a brand is not same as third party support for another brand, that will charge you arm and leg per hour for consultation
i will go bankrupt if i go with the approach of paid consultant, the per hour rate alone for some i paid for my fortigate plus support for less than 2-4 hours
so at the end its not am paying arm and leg, you can use these top tier brands and even pay not that much
You don’t have to pay anything if you learn to do it yourself, “a couple of months” (since you have that CCR) was more than enough to get your way around basic RouterOS config, but you didn’t
And regarding consultans, I’m sure that not all of them are there to skin you alive.
Sure, if you go get help from the commercials and ads everywhere ip archisomething guy, yeah, you’ll probably get skinned alive, but he’s not the only one in the list, thankfully.
