Fortinet Next Generation Firewall solution.
Upcoming SlideShare
Loading in...5
×
 

Fortinet Next Generation Firewall solution.

on

  • 3,572 views

SWITCHPOINT Yearly IT Checkup Conference 2012 - Fortinet Next Generation Firewall / UTM solution.

SWITCHPOINT Yearly IT Checkup Conference 2012 - Fortinet Next Generation Firewall / UTM solution.

Statistics

Views

Total Views
3,572
Slideshare-icon Views on SlideShare
3,571
Embed Views
1

Actions

Likes
1
Downloads
257
Comments
0

1 Embed 1

http://WWW.SLIDESHARE.NET 1

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • Fortinet has a wide range of devices. Besides the flagship FortiGate line of devices.In addition to FortiGate – there is a wide range of additional devices including management and analytics, wireless access points, virtual machine deployments for cloud deployments and mail, web and database among others.Six ICSA certifications (Firewall, AV, IPS, IPSec VPN, SSL, VPN, Anti-Spam)Government Certifications (FIPS-2, Common Criteria EAL4+)ISO 9001 certificationFortinet offers:End-to-end IT security including email security and WAFComplete portfolio to protect different layers of the network/communicationsIntegrated protection of wired and wireless networksVirtual appliances to secure virtual datacenters: hypervisor independent inter-VM and Inter-Zone security; XML API to ease provisioning of appliance policiesThe Result: security of the extended enterprise - from endpoints, to the perimeter and the core, including DB infrastructure, messaging servers and content systems
  • Tackle today’s challenges:The need for more control – how do I control devices – as they may be personal or belongs to the organizationThe need to protect against new threats – How do I protect the network against zero-day attacks and goes beyond using Signatures …The need to effectively enforce security with more complex network environment and requirements – How do I simplify the management and implementation, so that I as the weakness link – do it correctly! Also, How can I better understand what is going on my networkWe also take our customers feedback seriously and have adopt a number of enhancement that improves our functionalities, our deliverables and user experience

Fortinet Next Generation Firewall solution. Fortinet Next Generation Firewall solution. Presentation Transcript

  • Fortinet Overview Michel Nys SWITCHPOINT NV/SA October 25, 20121
  • 2
  • Intro Fortinet3
  • 4
  • About Fortinet:Market Leader $434 • UTM - Fast-growth security segment FORTINET REVENUE ($MM)Advanced technology and products 48% CAGR • 80+ patents; 115+ pending $325Strong global footprint • 1,500+ employees; 30 offices worldwide $252Blue chip customer base $212 • 100,000 customers (incl. majority of Global 100) $155 $123Exceptional financial model • FY11 revenues: $434M (34% YoY growth) $80 • Q411 revenues: $121M (29% YoY growth) $39 • Strong balance sheet: $500M+ in cash; no debt $13 • IPO - November 2009 03 04 05 06 07 08 09 10 11 5
  • About Fortinet:About Fortinet:Fortinet, which is based in California, has been focusedon UTM appliances since 2002. From the start, Fortinethas focused on using custom application-specificintegrated circuits for network processing and contentinspection to reach high performance levels. Fortinetoffers nine FortiGate UTM appliances aimed at themidsize market, ranging from 20 Mbps to 1 Gbps offirewall throughput. Several versions offer integratedWLAN access points, while others include voice over IPgateway and IP PBX functionality.StrengthsFortinet continues to have the highest visibility of UTMproviders among Gartner clients, and is the companymost frequently mentioned by competitors.The product line has aggressive price/performancepoints and an easy migration path as network speedsincrease.The Fortinet UTM line has strong channel and managedsecurity service provider (MSSP) support.FortiGuard Labs is a strong source of threat andvulnerability information. 6
  • 7
  • Product Overview8
  • Product overview: FortiDDoS SMALL/MEDIUM VM SERVICE PROVIDER ENTERPRISE FortiGate FortiGate 3000-5000 Series 20-1000 SeriesFortiAuthenticator LARGE ENTERPRISE FortiGate FortiSwitch 1000-3000 Series FortiAP FortiScan FortiManager FortiDB FortiAnalyzer FortiWeb FortiMail 9
  • Product overview: FortiGate FortiMail FortiDB FortiDDoS Network Security Messaging Security Database Security Application D/DOS Platform Gateway Solution Mitigator Security FortiWeb FortiScan FortiAuthenticator Web Application Vulnerability Access Management Firewall Management FortiAP Wireless Access FortiBalancer FortiDNS Application Delivery High Performance FortiSwitch DNS Server Wired Access Network Services FortiCache FortiVoice FortiClient Content Caching VoIP & IP Telephony Endpoint Security FortiToken FortiManager FortiAnalyzer 2-Factor Authentication Centralized Device Centralized Logging Management Manager & Reporting FortiGuard FortiCare FAMS Security & Network Support Services Hosted Services Services Services Also Available as Virtual Appliance10
  • Zoom into FortiGate11
  • Zoom into FortiGate:Real-Time Protection FortiGuard™ Updates AV IPS Web Filter Antispam App Ctrl VMFully IntegratedSecurity & Networking Firewall VPN DLP WAN Opt Traffic ShapingTechnologies WLAN VoIP SSL Insp HA Load BalancingHardened Platform Specialized OSHigh Performance Purpose-Built HardwareSupport and Services FortiCare™ FortiGuard Labs • Purpose-built to deliver overlapping, complementary security • Provides both flexibility & defense-in-depth capabilities12
  • Zoom into FortiGate: FortiCare • Standard and extended hardware, software and support packages • Fortinet partner since 2002. 8x5 Enhanced: 8x5 Support, Return and Replace, • 2 certified engineers Firmware Upgrades • Dedicated SLA and EMA services 24x7 Comprehensive: 24x7 Support, Advanced • Integration services Hardware Replacement (NBD), Firmware Upgrades • Helpdesk and remote services • Cloud based Managed services13
  • Zoom into FortiGate: FortiGate Hardware Appliance FortiGate Virtual Appliance • Purposed built high performance systems • UTM solution for Cloud environment • Acceleration chips • Wired and Wireless Connectivity FortiGate-One Software • Security module for HP ProCurve networking environment Content Network Security Processor Processor Processor14
  • Zoom into FortiGate: FortiOS Operating Systems WebUI, CLI • Proprietary OS, eliminates vulnerabilities & Dashboard & SNMP Syslogging issues associated with common OSes Monitoring Statistics • Harden and small footprint for security & efficiency In-box • Runs on flash, more reliable Reporting ** Email Alerts • Nearly common feature set across all platform Content • * Default with 10 VDOMs Archives SFLOW15
  • Zoom into FortiGate: Features & Capabilities • Available by default, no requirement for hidden charges and software upgrades HA: A-A, A-P, Virtual cluster, weighted IPv6 FW + UTM Firewall VPN IPS App. Ctrl AntiVirus Web Filter Routing Protocols Wireless Controller Server LB AntiSpam DLP NAC Vuln Mgmt Traffic Shaping WAN opt.16
  • Zoom into FortiGate: FortiGuard Subscription Services FortiGuard AntiVirus Service • Deliver real-time Automated Updates • Industry Leading Threat Response FortiGuard IPS Service Time FortiGuard WCF Service • Comprehensive Threat Library 24x7x365 Operations FortiGuard Antispam Service • Power by Fortinet in-house Global FortiGuard Vuln Mmgt Service Threat Research Team17
  • FortiGate Small Business Devices Security Appliances For Small/Home Offices & Small Branch Offices FWF-20C • High performance, feature-rich multi- FGT-20C threat security for Branch Offices, SoHo and telecommuters FWF-40C FGT-40C Primary Benefits: FWF-60C ✓ High speed Firewall and IPSec VPN FGT-60C performance ✓ High Speed Application Control ✓ Accelerated IPS/AV performance ✓ On board storage for WAN Optimization, local reporting and archiving FWF-80C ✓ Integrated WiFi on certain models FGT-80C18
  • FortiGate Small Business Devices: Comparison FGT-20C FGT-40C FGT-60C FGT-80C FGT-100D Firewall 20 / 20 / 20 200 / 200 / 200 1/1/1 1/1/1 2500 / 1000 / 200 (1518/512/64 byte UDP) Mbps Mbps Gbps Gbps Mbps Concurrent Sessions 10,000 40,000 400,000 1 Mil 2.5 Mil New Sessions/Sec 1,000 2,000 3,000 12,000 22,000 IPSec VPN 20 Mbps 60 Mbps 70 Mbps 140 Mbps 450 Mbps IPS (HTTP) 20 Mbps 135 Mbps 135 Mbps 350 Mbps 950 Mbps Antivirus (Proxy/Flow) 12/20 Mbps 20/40 Mbps 20/40 Mbps 50/190 Mbps 300/700 Mbps Max FortiAP - 5 5 16 32 Max FortiToken 20 500 500 1,000 1,000 VDOM (Default/Max) - 10 / 10 10 / 10 10 / 10 10 / 10 Storage 2GB 4GB 8GB 8GB 32GB WiFi, Analog WiFi, Analog Modem, Wifi + Modem, Wifi + Variants WiFi, LENC WiFi, LENC LENC Analog Modem, Analog Modem, LENC LENC19
  • FortiGate Mid-Range Devices Mid-Range Security Appliances For Mid-Size Organizations & Large Enterprise Branch Offices • High performance multi-threat security for medium-sized enterprises and FGT-1240B branch offices of large enterprises. • Higher price/performance ratio and more interfaces than any products in FGT-1000C their class FGT-800C Primary Benefits: ✓ High speed Firewall and IPSec VPN performance FGT-600C ✓ High Speed Application Control FGT-300C ✓ Accelerated IPS/AV performance ✓ On board storage for WAN Optimization, local reporting and FGT-100D archiving*20
  • FortiGate Mid Range Devices: Comparison FGT-100D FGT-300C FG-600C FG-800C FG-1000C FG-1240B 2500 / 1000 / Firewall 8/8/8 16 / 16 /16 20 / 20 / 20 20 / 20 / 20 40-44 / 40-44 200 (1518/512/64 byte UDP) Gbps Gbps Gbps Gbps / 38-42 Gbps Mbps Concurrent Sessions 2.5 Mil 2 Mil 3 Mil 7 Mil 7 Mil 5 Mil New Sessions/Sec 22,000 50,000 70,000 190,000 190,000 120,000 IPSec VPN 450 Mbps 4.5 Gbps 8 Gbps 8 Gbps 8 Gbps 16-18.5 Gbps IPS (HTTP) 950 Mbps 1.4 Gbps 3 Gbps 6 Gbps 6 Gbps 5-8 Gbps 200 / 550 600 / 1300 Antivirus (Proxy/Flow) 300/700 Mbps 1.7 / 2.1 Gbps 1.7 / 2.1 Gbps 1.2 / 1.6 Gbps Mbps Mbps Max FortiAP 32 256 512 512 512 512 Max FortiToken 1,000 1,000 1,000 5,000 5,000 5,000 VDOM (Default/Max) 10 / 10 10 / 10 10 / 10 10 / 10 10 / 250 10 / 250 64 GB, 384 Storage 32 GB 16 GB 64 GB 64 GB 128 GB GB opt. Variants LENC LENC DC, LENC - DC DC21
  • FortiGate-100D • 2x 10/100/1000 WAN Interface Ports • 1x 10/100/1000 DMZ Interface Port • 1x 10/100/1000 Mgmt Interface Port • 2x 10/100/1000 HA Interface Port • 16x 10/100/1000 Configurable Ports Hardware Performance Firewall Throughput (1518/512/64) 2500 / 1000 / 200 Mbps IPS Throughput 950 Mbps Antivirus Throughput (Proxy Based / Flow Concurrent Latency 37 μs 300 / 700 Mbps Based) Concurrent Sessions 2.5 Mil Virtual Domains (Default / Max) 10 / 10 New Sessions/Sec 22,000 Max Number of FortiAPs 32 Firewall Policies ( System/VDOM) 10,000 / 5,000 Max Number of FortiTokens 1,000 IPSec VPN Throughput 450 Mbps Client-to-Gateway IPSec VPN Tunnels 5,000 Concurrent SSL-VPN Users (Recommended SSL-VPN Throughput 300 Mbps 200 Max)22
  • FortiGate 3000 Series Security Appliances For Large Enterprises & Managed Service Providers • Ideal for securing traditional high- FG-3040B bandwidth networks, as well as virtualized, or cloud-based infrastructures. • Higher price/performance ratio and more interfaces than any products in their class FG-3140B Primary Benefits: ✓ Rich feature set for protecting next generation networks, including integrated IPS, application control, user-based policies, and endpoint FG-3240C policy enforcement ✓ On-board storage for WAN Optimization, local reporting and archiving ✓ Integration with FortiManager and FG-3950B FortiAnalyzer simplifies management, reporting and analysis for up to thousands of Fortinet devices23
  • FortiGate 3000 Series: Comparison FGT-3040B FGT-3140B FGT-3240C FGT-3950B Firewall 20-120 / 20-120 / 20- 40 / 40 / 40 Gbps 58 / 55 /43 Gbps 40 / 40 /40 Gbps (1518/512/64 byte UDP) 120 Gbps Concurrent Sessions 5 Mil 10 Mil 10 Mil 20 Mil New Sessions/Sec 200,000 200,000 200,000 250,000 IPSec VPN 17 Gbps 22 Gbps 17 Gbps 8 – 50.5 Gbps IPS (HTTP) 6 Gbps 8.4 Gbps 8 Gbps 20 Gbps Antivirus (Proxy/Flow) 2.3 / 4.5 Gbps 2.3 / 4.5 Gbps 2.6 / 5 Gbps 4 / 15 Gbps Max FortiAP 1,024 1,024 1,024 1,024 Max FortiToken 5,000 5,000 5,000 5,000 VDOM (Default/Max) 10 / 250 10 / 250 10 / 250 10 / 500 Storage 64 GB, 256 GB opt. 64 GB, 256 GB opt. 64 GB 256 GB Variants LENC LENC DC, LENC DC, LENC24
  • FortiGate 5000 Series Security Appliances For Very Large Enterprises & Managed Service Provides • Chassis-based platforms offer maximum performance, reliability, and scalability for high-speed service provider, large enterprise or telecommunications carrier networks. • Fastest chassis-based firewall in the industry • Flexibility enables protection of complex, multi-tenant cloud- based security-as-a-service and infrastructure-as-a-service environments. Primary Benefits: ✓ Native 10-GbE support for high speed requirements ✓ ATCA-compliant architecture delivers carrier-grade performance, reliability, availability and serviceability ✓ Chassis support two, six, or fourteen FortiGate-5000 series blades, allowing customization and scaling FG-5140B25
  • Performance & Resiliency • Standard Based ATCA System 5000 Series Chassis • Fully Redundant – Hot swappable blades, power supplies and fans 5020^ 5060 5140B Processing Slots 2 6 14 Max Firewall Throughput * 44Gbps 240 Gbps 560 Gbps Max IPS throughput ** 7 Gbps 56.4 Gbps 131.6 Gbps Max Concurrent Session 4M 120 M 280 M Max CPS 100 K 1.41 M 3.29 M26
  • NEW FortiOS V5.0 More Security More Control More Intelligence27 CONFIDENTIAL – INTERNAL ONLY Fortinet Confidential
  • FortiOS 5.0 Highlights More ControlFighting Advanced Threats Securing Mobile Devices Making Smart Policies-------------------------------------- ------------------------------------ ------------------------------------- Client Reputation  Device Identification - Advanced Anti-malware  Device Based Policy  Identity Centric Enforcement Protection  Endpoint Control  Secured Guest Access  Visibility & reporting More More Security Intelligence Over 150 New Features & Enhancements28 CONFIDENTIAL – INTERNAL ONLY
  • FortiClient29 FORTIN– T CONFIDE CONFIDENTIAL E INTERNAL ONLY N T I A L
  • Introducing FortiClient Endpoint Security Comprehensive end-point protection & security enforcement Multifunctional with Modular design • Flexibility in deployment • Fully integrated features, reduce needs for multiple client solutions End Point Control • Enforce compliance and security policies on mobile hosts Centralized Logging and Reporting • Via FortiManager and FortiAnalyzer for enterprise requirements30 CONFIDENTIAL – INTERNAL ONLY
  • FortiClient Premium (v4.2) New in 4.0 MR3 Windows Mac OSX* IPSec ✓ - SSL ✓ ✓ 2FA ✓ - Anti-Virus (Including RTP) ✓ - Anti-Spam Protection/Email Filtering ✓ - Web Filtering ✓ - Firewall ✓ - Logging and centralized reporting (via ✓ - FortiAnalyzer) Application Detection & Enforcement ✓ - WAN Optimization ✓ - Central Management (via FortiManger) ✓ - * Supported by SSLVPN for Mac OSX client31 CONFIDENTIAL – INTERNAL ONLY
  • FortiToken32 FORTIN– T CONFIDE CONFIDENTIAL E INTERNAL ONLY N T I A L
  • Introducing FortiToken 2 factor Authentication Token Oath Compliant Time Based Hardware One Time Password Token Supports Strong Authentication • IPSEC VPN • SSL VPN • Administrative Login • Captive Web Portal • 802.1x Authentication • Web Application Access • SSO Authentication Platforms • FortiGate (FOS4.3 and later) • FortiAuthenticator (FAC 1.4 and later) Secure Seed Delivery Options • Online Via FortiGuard • Encrypted file on CD (FTK-200S) • In-house Seed Provisioning Tool (special order)33 CONFIDENTIAL – INTERNAL ONLY
  • Introducing FortiToken Mobile 2 factor Authentication Token on Mobile Devices Oath Compliant Time Based Hardware One Time Password Soft Token Highly Secure • Pin Protected App • Device Binding • Brute Force Protection • Dynamic Seed Generation • Encrypted Seed Storage Authentication Platforms • FortiGate (FOS5.0 Beta 5 and later) • FortiAuthenticator (FAC 1.4 and later) Broad Device Support • iOS (iPhone, iPad, iPod Touch) • Android • BlackBerry (TBD)34 CONFIDENTIAL – INTERNAL ONLY
  • Zoom into FortiAnalyzer35
  • Introducing FortiAnalyzer Centralized Reporting & Analysis Logging, reporting and analysis from multiple Fortinet devices Aggregated Logging • Singular View of all Fortinet Devices • Built-in Content Archiving • Malicious File Quarantine Centralized Reporting • Predefined Summary & Device Reports • Hundreds of Customizable Charts & Graphs Analysis & Event Correlation • Vulnerability Assessment • Network & Log Analysis Scalable Solution • Hardware and VM Versions Available • Collector/Analyzer Modes for Large Deployments • High Performance Logs/Sec Processing • Support for Internal or External SQL Databases36
  • Introducing FortiAnalyzer Reporting Concise and Informative Dual Column PDF Reports UTM & Traffic Summaries Per User Summary Output Profiles (Email/FTP) Better Chart Categorization37
  • Introducing FortiAnalyzer Real-Time Monitor Separate Real-Time from PDF Dashboard-style Monitors with Drill-downs Instant Access to Most Useful Ad-hoc Information38
  • Introducing FortiAnalyzer Central Management FortiManager Controls • Universal management of reports across multiple FAZs • FAZ configuration management Correlation • Cross Reference log events with configuration elements3939
  • FortiAnalyzer Series FortiAnalyzer FAZ-200D FAZ-400C FAZ-1000C FAZ-2000B FAZ-4000B Performance 350 625 1,000 3,000 6,000 (Log/Sec) Data Receive 1.4 Mbps 2.5 Mbps 4 Mbps 12 Mbps 24 Mbps Rate Max. Devices 150 200 2,000 2,000 2,000 Max. fortiClient 100 2,000 No Restriction No Restriction No Restriction Max. ADOMs 1 10 50 100 250 10/100/100 ports 4 4 4 6 2 1 GbE SPF - - - - 2 1x 2TB (8 TB 2x 2TB (12 TB 6x 1TB (24 TB Storage capacity 1x 1 TB 1x 2 TB Max) Max) Max) Yes, (RAID 0, Yes, requires Yes, (RAID 0, 1, 5, 10, 50, RAID support No No optional drives 1, 5, 10, 50) 60) (RAID 0,1,10)40
  • FortiAnalyzer-VM Series FortiAnalyzer FAZ-VM- FAZ-VM- FAZ-VM- FAZ-VM- FAZ-VM- FAZ-VM- 100 400 1000 2000 4000 UNL Performance 200 625 1,000 3,000 6,000 10,000 (Log/Sec) Data Receive 800 Kbps 2.5 Mbps 4 Mbps 12 Mbps 24 Mbps 30 Mbps Rate Max. Devices 100 200 2,000 2,000 2,000 5,000 Max. ADOMs 1 10 50 100 250 250 Storage 12 TB 1 TB 2 TB 8 TB 12 TB 12 TB capacity External SQL 1 TB 2 TB 8 TB 12 TB 24 TB Unlimited DB41
  • FortiManager42
  • Introducing FortiManager Centralized Management Tools that effectively manage any size Fortinet security infrastructure, from a few to thousands of appliances Administrative Domains (ADOMs) Locally Hosted Security Content • Enables the primary ‘admin’ to create Virtual • Allows administrators better control over security Management Domains containing devices for other content updates and provides improved response administrators to monitor and manage time for rating databases. • Run a local copy of AV, IPS, URL, A/S signature Hierarchical Objects & Policy Management databases.* • Create Global Objects and Policies • Assign to ADOM or groups of ADOMS • Create device configuration templates to quickly configure a new Fortinet appliance Web Portal SDK • JSON-based API allows MSSPs to offer administrative web portals to customers* Capabilities varied by Models 43
  • Introducing FortiManager Drag & Drop Manipulate Policies Directly • Drag & Drop between frames In-View Editing • Edit objects without opening new windows Fewer Clicks & Refreshes44
  • Introducing FortiManager Device Profiles Provisioning Templates • Device settings defined in common profile Simplified Provisioning • Bring new device online with minimal settings changes45
  • FortiManager Series FortiManager FMG-200D FMG-400C FMG-1000C FMG-3000C FAZ-5001A Max. Devices 30 300 800 5,000 4,000 Max. ADOMs 30 300 800 5,000 4,000 Max. Web - - 800 5,000 4,000 Portals Max. Portal - - 800 5,000 4,000 Users 10/100/100 4 4 4 4 2 ports Storage 1x 1 TB 1x 1 TB 1x 2TB 2x 2TB 1x 80 GB capacity Locally Hosted AV, IPS, VM, AV, IPS, VM, AV, IPS, VM, AV, IPS, VM, AV, IPS, VM, Security WF, AS WF, AS WF, AS WF, AS WF, AS Content46
  • FortiManager-VM Series FortiManager FMG-VM- FMG-VM- FMG-VM- FMG-VM- FMG-VM- FMG-VM- Base 10-UG 100-UG 1000-UG 5000-UG U-UG Max. Devices 10 +10 +100 +1,000 +5,000 Unlimited Max. ADOMs 10 +10 +100 +1,000 +5,000 Unlimited (default/Max) Max. Web 10 +10 +100 +1,000 +5,000 Unlimited Portals Max. Portal 10 +10 +100 +1,000 +5,000 Unlimited Users Max. Virtual NICs 1/4 (Min/Max) Storage capacity 80 GB / 2 TB (Min/Max)47
  • Questions ?48