FortiClient Endpoint Security 5

Was a user of earlier versions, but CPU utilization was too high. How is the performance of this version?

 

Could you please test it?

 

I will wait for results from someone else. I'm using Avira and HMPA CTP2 for the moment.

 

Performance was, and still is, somewhat on the slow side.

 

FortiClient 5.2.1.0605

 

What about the performance of the latest version?

 

Install it, then run it.
Then run a full scan.
Give it a day or two to populate it's hash database.

Performance should improve significantly over a few days.

(Note, I'm a certified fortinet engineer - NSE-3

 

Very nice, from now on I will contact you regarding all Fortinet AV questions.

 

I'm more focused on the appliances, and backend aspects. The client is generally used for VPN, IPSEC, Management, and Configured Deployments in business environments. That is the Fortigate appliances can be used to deploy, configure, and manage the clients themselves. I do know a few things about the AV as a result of it's integration with the appliances though. I must admit that I do not like the client being free as it limits our ability to deploy it in situations where we would like to license the product, and make money due to the necessity of supporting it for those deployments. I personally feel Fortinet needs to allow a free version for individuals/homes, and then require licensing under any business environment. Right now it's the wild-west for Forticlient as you have companies with hundreds deployed, unmanaged, and nobody making any money on them. (for support or otherwise)

Overall it's a competent AV that seems to improve, and is probably the best free solution. The URL filter in it is very powerful.

 

the high quality web filtering is what makes me use this software on my families HTPC. very nice for free

 

https://www.wilderssecurity.com/thre...-test-for-september-2014.369278/#post-2417903

 

i assume you are trying to highlight my use of the word quality by referencing a poor showing on a file detection test. however i was referring to the website category control filtering (blocking of porn etc) which has been perfect in my view, has not let me down in quite a while

a relevant link http://www.av-comparatives.org/parental-control/

 

As heavy as usual.
Disclosure:
OK, I don't have the patience to wait several days to see any improvement.
A single full scan should be enough in my opinion.
If that's not enough, then I think the software needs some improvements.
Otherwise it's nice.

 

Web filtering, and malicious URL filtration is very good in Fortinet. It's pulled from millions of worldwide Fortigate appliances, and combined into their enterprise infrastructure and DNS server.

 

+1

 

I see.

I think that FortiClient it's AV, and I comment on his purpose and his capabilities (heavy on resources and mediocre detection results, IMHO).
Now if you are using it just as URL filter/Parental Control, that's another story.

 

Forticlient detections are far from mediocre. What the 'free' client lacks are more advanced features such as a HIPS, Download Validation, and Fingerprinting. it does however have an acceptable heuristics system. Forticlient as it stands is a very traditional AV. Signatures, Heuristics, URL Scanner. That's it. I've made the claim that traditional AV's will slip as time progresses because of morphing threats, more intelligent threats, state sponsored threats with a large amount of engineering behind them. This is why Trend is climbing the charts, and other products are remaining somewhat stagnant. Forticlient is a GOOD traditional AV with an EXCEPTIONAL URL filter. Forticlient has a proactive engineering team, I work with them almost daily. BASH for example they allocated tremendous resources to get IPS Signatures deployed to their UTM's within a couple of hours of it's discovery.

As a free, traditional AV, with an exceptional URL scanner it's a great solution. Would I trust it against a wide array of malicious threats, and zero day attacks? Not really. Would I install it on Grandmas computer? Surely.

 

could not agree more Mayahana. i disable the AV and just use it as a website category filter which as you say is exceptional and the best i have across for free. perfect for a family PC

 

Good idea! I usually install Forticlient with only VPN activated for clients. However it seems it would be a fantastic little add-on for URL filtration-only. Forticlient has legendary quality URL filtration, and it's one of the best aspects of their appliances. So one could use a more proactive Antivirus product, then use the URL-Filtration aspects only of Forticlient. That's a powerful combination.

My only beef is malicious URL filtration is attached to the Antivirus settings, not the general URL/Category filtration. I will need to check to see if I can disable the AV aspect while leaving the malicious category aspect ON, along with the URL/Category filtration. Do you know off hand if this is possible? I don't have it sitting in front of me right now. On Fortigate appliances the malicious filtration is bundled under URL filtration.

 

To see what I mean you can login to our Fortigate demo.. Login/PW are both 'demo' without the quotes. This is a 140D POE demo system.

http://www.fortigate.com/login

Select Security Profiles, then Web filters.. On the client they branched Security Risk category out from the URL Filtration, and put it with the AV.

 

See this picture.. 5.0 and prior, Security Risk was the correct category, same as the UTM appliances. Which included Spam/Phishing/Malicious. This was actually in the Category section on Forticlient. Come 5.2 they pulled this out, and moved it up to the Antivirus Section. So in theory, if you disable the AV you are likely to be disabling the very effective "Security Risk' Category since it is dropped off the URL filtration options. Does that make what I am trying to say more clear? I MUCH PREFER the older method, especially if you want to use Forticlient as an exclusive URL/Category filter w/AV disabled.

 

not an issue for me as have 'block unknown sites' enabled along with the other risk categories and this in my experience stops all malicious domains except for hijacked known friendly domains in which case only a http scanner would pick up (handled by my separate real-time AV)

 

v4 handled it the best where you just not install the AV at all and just install the web filter. they should bring that back

 

very true, shame they did that. makes the choice of a companion AV a much smaller one as it needs a http scanner to compensate for this. however for someone like me who uses it block porn and the like, not a deal breaker. limited accounts and executable blockers take care of the malware. my use of forticlient is just to prevent my family accidentally visiting a porn site and forticlient is the best i have found for this

 

Forticlient 5.2.2 is waiting for you - http://www.forticlient.com/

Could anyone please test it? Better perfomance would be great.