FortiGate 1000D Revenda Fortinet

Hardware:

FortiGate 1000D

Interfaces

1. USB Management Port
2. USB Port
3. Console Port
4. 2x GE RJ45 Management Ports
5. 16x GE SFP Slots
6. 16x GE RJ45 Ports
7. 2x 10 GE SFP+ Slots

NP Direct

By removing the Internal Switch Fabric, the NP Direct architecture provides direct access to the SPU-NP for the lowest latency forwarding. NGFW deployments require some attention to network design to ensure optimal use of this technology.

Powered by SPU

• Custom SPU processors deliver the power you need to detect malicious content at multi-Gigabit speeds
• Other security technologies cannot protect against today’s wide range of content- and connection-based threats because they rely on general-purpose CPUs, causing a dangerous performance gap
• SPU processors provide the performance needed to block emerging threats, meet rigorous third-party certifications, and ensure that your network security solution does not become a network bottleneck

Network Processor

Fortinet’s new, breakthrough SPU NP6 network processor works inline with FortiOS functions delivering:

• Superior firewall performance for IPv4/IPv6, SCTP and multicast traffic with ultra-low latency down to 2 microseconds
• VPN, CAPWAP and IP tunnel acceleration
• Anomaly-based intrusion prevention, checksum offload and packet defragmentation
• Traffic shaping and priority queuing

Content Processor

The SPU CP8 content processor works outside of the direct flow of traffic, providing high-speed cryptography and content inspection services including:

• Signature-based content inspection acceleration
• Encryption and decryption offloading

10 GE Connectivity

High speed connectivity is essential for network security segmentation. The FortiGate 1000D provides 10 GE slots that simplify network designs without relying on additional devices to bridge desired connectivity

Software:

FortiOS

Control all the security and networking capabilities across the entire FortiGate platform with one intuitive operating system. Reduce operating expenses and save time with a truly consolidated next generation security platform.

• A truly consolidated platform with one OS for all security and networking services for all FortiGate platforms.
• Industry-leading protection: NSS Labs Recommended, VB100, AV Comparatives and ICSA validated security and performance.
• Control thousands of applications, block the latest exploits, and filter web traffic based on millions of real-time URL ratings.
• Detect, contain and block advanced attacks automatically in minutes with integrated advanced threat protection framework.
• Solve your networking needs with extensive routing, switching, WiFi, LAN and WAN capabilities.
• Activate all the ASIC-boosted capabilities you need on the fastest firewall platform available.

Services:

FortiGuard Security Services

FortiGuard Labs offers real-time intelligence on the threat landscape, delivering comprehensive security updates across the full range of Fortinet’s solutions. Comprised of security threat researchers, engineers, and forensic specialists, the team collaborates with the world’s leading threat monitoring organizations, other network and security vendors, as well as law enforcement agencies:

• Real-time Updates — 24x7x365 Global Operations research security intelligence, distributed via Fortinet Distributed Network to all Fortinet platforms.
• Security Research — FortiGuard Labs have discovered over 170 unique zero-day vulnerabilities to date, totaling millions of automated signature updates monthly
• Validated Security Intelligence — Based on FortiGuard intelligence, Fortinet’s network security platform is tested and validated by the world’s leading third-party testing labs and customers globally.

FortiCare Support Services

Our FortiCare customer support team provides global technical support for all Fortinet products. With support staff in the Americas, Europe, Middle East and Asia, FortiCare offers services to meet the needs of enterprises of all sizes:

• Enhanced Support — For customers who need support during local business hours only.
• Comprehensive Support — For customers who need around- the-clock mission critical support, including advanced exchange hardware replacement.
• Advanced Services — For global or regional customers who need an assigned Technical Account Manager, enhanced service level agreements, extended software support, priority escalation, on-site visits and more.
• Professional Services — For customers with more complex security implementations that require architecture and design services, implementation and deployment services, operational services and more.

Enterprise Bundle

FortiGuard Labs delivers a number of security intelligence services to augment the FortiGate firewall platform. You can easily optimize the protection capabilities of your FortiGate with the FortiGuard Enterprise Bundle. This bundle contains the full set of FortiGuard security services plus FortiCare service and support offering the most flexibility and broadest range of protection all in one package.

Deployment:

FortiGate deployed as data center core firewall

Data Center Core Firewall
Organizations deploying the NP (Network Processor) 6 powered FortiGate 1000 Series firewalls at their data center will enjoy superior protection and performance with industryleading, high capacity firewall technologies that deliver exceptional throughput and ultra-low latency, enabling the security, flexibility, scalability and manageability expected on a core platform. These firewalls come with numerous high-speed 40 GE and 10 GE interfaces which are ideal for segmenting network physically. Running on the latest FortiOS, these platform are virtualization and cloud-ready. They support next-generation data center architectures, multi-tenant requirements, provide APIs for rapid orchestration and easy integration with third-party ecosystems.

Mid-Enterprise Edge Firewall
Fortinet’s FortiGate 1000 Series firewalls are perfect for growing large enterprises with their agile and high performance network security capabilities. These FortiGates not only deliver protection exceeding expectations, they are suitable for consolidating other security components. This allows organizations to significantly reduce TCOs and simplifies the network. Unlike other NGFWs (Next Generation Firewalls), the FortiGates are powered by FortiASICs which provide security without compromises performance. They run on the World’s most advanced security operating systems that meet each organizations unique requirements. Advanced features such as integrated endpoint control and token server helps organizations to rapidly deploy enhanced security to their mobile workforce while device-based policies aid to implement BYOD securely. FortiGate deployed as data center core firewall FortiGate deployed.

FortiGate deployed as mid-enterprise edge firewall

Specifications:

Note: All performance values are “up to” and vary depending on system configuration. IPsec VPN performance is based on 512 byte UDP packets using AES-256+SHA1.

1. IPS performance is measured using 1 Mbyte HTTP and Enterprise Traffic Mix.
2. SSL Inspection is measured with IPS enabled and HTTP traffic, using TLS v1.2 with AES256-SHA.
3. Application Control performance is measured with 64 Kbytes HTTP traffic.
4. NGFW performance is measured with IPS and Application Control enabled, based on Enterprise Traffic Mix.
5. Threat Protection performance is measured with IPS and Application Control and Malware protection enabled, based on Enterprise Traffic Mix.
6. CAPWAP performance is based on 1444 byte UDP packets.
* Maximum loading on each PoE/+ port is 30 W (802.3at).

Documentation:

 Download the Fortinet FortiGate 1000D Data Sheet (PDF).