This document discusses wireless network security and Fortinet's solutions. It notes that wireless networks are increasingly vulnerable but also critical for businesses. Fortinet provides a unified security architecture for wireless networks, including smart access points managed by FortiCloud, centralized management and reporting through FortiManager and FortiAnalyzer, and mesh networking capabilities. The document promotes Fortinet's next generation wireless security architecture to comprehensively secure modern wireless networks and their growing threats.

1. © Copyright Fortinet Inc. All rights reserved.
Arquitetura de Segurança para Redes Wireless
Fabio Paim – Systems Engineer

2. IT Trends

3. 3
IT Trends

4. 4
IT Trends

5. 5
3rd Platform Innovation Accelerators

6. 6
3rd Platform Security Challenges Examples
E-MAIL

7. 7
3rd Platform Security Challenges Examples
INTERNAL COMMUNICATION

8. 8
3rd Platform Security Challenges Examples
CUSTOMER SERVICES

9. 9
3rd Platform Security Challenges Examples
STORAGE

10. 10
3rd Platform Security Challenges Examples
MOBILITY

11. 11
Network Impact
 Higher core throughput & scalability
 Higher port density
 Increased small/mixed packet traffic
 Low user latency
 Increased east-west traffic
3rd Platform Network Impact

12. 12Confidential
Internal Pressures Increasing
Your Enterprise is Under Constant Attack
Security is No Longer a “Nice to Have”
More and More Devices Connected to the Network
Regulations and Policies are Multiplying
Your World Isn’t Easy…

13. Fortinet Security Architecture

14. 14Confidential
…but we are protected
we have a NGFW…

15. 15Confidential
Internal Segmentation Firewall (ISFW)

16. 16
End-to-End Global Cybersecurity Platform
COREACCESS
APPs
& DATA
THREAT
INTELLIGENCE
GLOBAL
MANAGEMENT
USERS NETWORK DATA CENTER
FortiGate
FortiManager FortiAnalyzer
FortiGate
for AWS
FortiGate
VMX

17. 17
Supports Enterprises of ALL SIZES

18. Securing the Wireless

19. 19
Today’s Wi-Fi Infrastructure Trends

20. 20
Wi-Fi Becoming Primary Access Medium

21. 21
Wireless Ranked as the Most Vulnerable IT Asset

22. 22
SWITCH
Typical Architecture with Access Points
WAN OPTIMIZATION
ANTISPAM
ANTIVIRUS
FIREWALL
WIRELESS CONTROLLER
VPN
INTRUSION PREVENTION
APPLICATION CONTROL
WEB FILTERING
WI-FI
CONTROLLER
OVERLAY WIRELESS
MANAGEMENT SYSTEM
Lower cost of acquisition
Lower cost of ownership
Improves security provisioning
Security ConsolidationSecurity + Wireless Consolidation

23. 23
WLAN Architecture and Deployments

24. 24
FortiAP-S (Smart AP’s)
• Managed by FortiCloud
• No controller required
• FortiGuard services run on each AP
• Simplifies deployment and management

25. 25
FortiCloud Managed Wi-Fi Security Capabilities

26. 26
Centralized Wireless Management and Reporting
FortiManager FortiAnalyzer
• FortiManager
Global Wireless Management
Centralized AP Firmware Upgrades
SSID and Radio Policy Configuration
Centralized Rogue AP Suppression
Real-time Client Monitoring
• FortiAnalyzer
Wireless Usage Reporting
Security Log Analysis and Forensics
Wireless PCI Compliance Reporting
Branch OfficeBranch Office
Central Location
Management
Logging

27. 27
MESH Deployment
 Dynamic Multi-hop Mesh with resiliency
 Point-to-point / Multipoint Bridging

28. 28
FortiAP Flexible Approach
• “One Size Fits All” Architecture Doesn’t Work
• Some customers prefer cloud, others need controller
• Unified WLAN works for some, overlay for others
• No security or performance compromise
• Architecture change without rip-and-replace

29. 29
FortiPresence - Presence and Positioning Analytics
 Total visitor traffic
 Real time visit capture rate
 Dwell time duration
 A/B comparison across stores
 Repeat visitors, frequency
 VIP Alert
 Heat maps with animated
flows
 Real-time density, staff
resources
 Measure marketing campaign
effectiveness

30. 30
What’s next?
Let’s move to the
Next Generation Wireless Security
Architecture

31. 31
DON’T GO UNPROTECTED