I had a demo of Fortigate's version 3.0 OS yesterday. It's no longer NDA so I can talk about it.
Besides dozens of little things that make the GUI (which was already very good) easier and faster to use, they've added SSL VPN (That's VPN connection without installing client software!), doubled the throughput of the AV engine while getting clear of the Trend patents, added a virtual inteface construct that will be familiar to all you route-based VPN fans from NetScreen landd, and improved reporting and logging to the point that there are some graphs right on the unit you can pull off now, and the boxes can now talk to Active Directory so your logging can include user name. In fact*you can replace a Websense installation with this box now* for all but the most very complex needs. Wow.
The management app that was Windows based for the FortiManager product is no more, it's all browser based for every box they sell, so it's completely platform independant.
The FortiManager, FortiGate, and Fortilogger work better together, even displaying each other's information within their GUIs.
Fortigates have added Peer to Peer and IM to the supported Antivirus protocols list, and improved their capabilities and explicit blocking rules for these protocols, (ie you can for example block files but not chat if you wanted to) as well as underestanding the usernames used within the program (so you could whitelist 3 MSNM users and block the rest for example) and they're re-organized the IPS in a very useful way that will allow tremendous flexibility by policies for application of IPS.
In short, almost my entire wish list was fulfilled, and I'm *really* excited about these boxes now, boxes for which I was already a big fan.
Slated for release in December, to run on all current boxes.