The FortiAnalyzer Virtual Appliances securely aggregate log data from Fortinet devices and other syslog-compatible devices. Using a comprehensive suite of easily-customized reports, users can filter and review records, including traffic, event, virus, attack, Web content, and email data, mining the data to determine your security stance and assure regulatory compliance.
FortiAnalyzer platforms integrate network logging, analysis, and reporting into a single system, delivering increased knowledge of security events throughout your network. They provide organizations of any size with centralized security event analysis, forensic research, reporting, content archiving, data mining, malicious file quarantining and vulnerability management. Centralized collection, correlation, and analysis of geographically and chronologically diverse security data from Fortinet appliances and third-party devices deliver a simplified, consolidated view of your security posture.
The FortiAnalyzer family minimizes the effort required to monitor and maintain acceptable use policies, as well as identify attack patterns to help you fine tune your policies. In addition, FortiAnalyzer platforms provide detailed data capture for forensic purposes to comply with policies regarding privacy and disclosure of information security breaches.
You can put time back in your day by deploying a FortiAnalyzer platform into your security infrastructure, creating a single view of your security events, archived content, and vulnerability assessments. FortiAnalyzer platforms accept a full range of data from Fortinet solutions, including traffic, event, virus, attack, content filtering, and email filtering data. It eliminates the need to manually search multiple log files or manually analyze multiple consoles when performing forensic analysis or network auditing. A FortiAnalyzer platform’s central data archiving, file quarantine and vulnerability assessment further reduce the amount of time you need to spend managing the range
Very few organizations use 100% hardware IT infrastructure or 100% virtual IT infrastructure today, creating a need for both hardware appliances and virtual appliances in your security strategy. FortiAnalyzer can be deployed as either hardware or a virtual appliance to fit your environment, which may include a mix of virtual and physical IT infrastructure. FortiAnalyzer will log events from FortiOS-based hardware appliances, virtual appliances, or a combination of both.
|Network Event Correlation||Allows IT administrators to more quickly identify and react to network security threats across the network.|
|Graphical Summary Reports||Provides network-wide reporting of events, activities and trends occurring on FortiGate and third party devices.|
|Scalable Performance and Capacity||FortiAnalyzer family models support thousands of FortiGate and FortiClient™ agents, and can dynamically scale storage based on retention/compliance requirements.|
|Centralized Logging of Multiple Record Types||Including traffic activity, system events, viruses, attacks, Web filtering events, and messaging activity/data.|
|Seamless Integration with the Fortinet Product Portfolio||Tight integration maximizes performance and allows FortiAnalyzer resources to be managed from FortiGate or FortiManager™ user interfaces.|
|Choice of Standalone, Collector or Analyzer mode||Can be deployed as an individual unit or optimized for a specific operation (such as Store & Forward or Analytics)|
|FortiAnalyzer Virtual Appliances|
|Hardware Platform Requirements|
|GB/Day of Logs||1 incl.||+1||+5||+25||+100|
|Sessions/Day||3.5 M||3.5 M||18 M||85 M||360 M|
|Device Quota||200 GB||+200 GB||+1 TB||+8 TB||+16 TB|
|Devices/ADOMs/VDOMs Supported (Max)||10,000||10,000||10,000||10,000||10,000|
|Hypervisors Supported||VMware ESX/ESXi 4.0/4.1/5.0/5.1, Microsoft Hyper-V 2008 R2 / 2012|
|Network Interface Support (Min / Max)||1 / 4|
|vCPUs (Min / Max)||1 / Unlimited|
|Memory Support (Min / Max)||1 GB / Unlimited|
|FortiAnalyzerOS Security Services|
General System Functions
DLP Archive / Data Mining
Log Analysis & Reporting
Log Browser And Real-Time Log Viewer
FortiAnalyzer systems empower the network or security administrator with the knowledge needed to secure their networks through a comprehensive suite of standard graphical reports and the total flexibility to customize custom reports. Network knowledge can be archived, filtered and mined for compliance or historical analysis purposes.
The FortiAnalyzer User Interface (UI) enables administrators to drill deep within security log data to provide the granular level of reporting necessary to understand what is happening on your network. Historical or real-time views allow administrators to analyze log and content information, as well as network traffic. The advanced forensic analysis tools allow the administrator to track user activities to the content level.
Real-Time Log Viewer
The ability to monitor network, traffic and user events in real-time or browse historical data for specific events provides powerful insight into network security threats, performance and user behavior.
FortiGuard Security Subscription Services deliver dynamic, automated updates for Fortinet products. The Fortinet Global Security Research Team creates these updates to ensure up-to-date protection against sophisticated threats. Subscriptions include antivirus, intrusion prevention, web filtering, antispam, vulnerability and compliance management, application control, and database security services.
FortiCare Support Services provide global support for all Fortinet products and services. FortiCare support enables your Fortinet products to perform optimally. Support plans start with 8×5 Enhanced Support with “return and replace” hardware replacement or 24×7 Comprehensive Support with advanced replacement. Options include Premium Support, Premium RMA, and Professional Services. All hardware products include a 1-year limited hardware warranty and 90-day limited software warranty.