FortiSwitch Secure Access switches deliver a Secure, Simple, Scalable Ethernet solution with outstanding security, performance and manageability for threat conscious small to mid-sized businesses, distributed enterprises and branch offices. Tightly integrated into the FortiGate® Network Security Platform, the FortiSwitch Secure Access switches can be managed directly from the familiar FortiGate interface. This single pane of glass management provides complete visibility and control of all users and devices on the network, regardless of how they connect.
Security Fabric Integration
Reduces complexity and decreases management cost with network security functions managed through a single console via FortiGate. This integration allows all users to be authenticated against the same user database, regardless of whether they connect to the wired or wireless network, including temporary guest users.
In addition, same security policy can apply to a user or device regardless of how or where they connect to the network.
Simplify Network Deployment
The Power over Ethernet (PoE) capability in some models, enables simple installation of wireless Access Points and IP phones in the network.
Highlights
Secure Access switches suitable for wiringcloset and desktop installations
Ideal for converged network environments; enabling voice, data and wireless traffic to be delivered across a single network
Devices are identified and users authenticated prior to being granted access to the network
Centralized security and access management from FortiGate interface
Up to 48 ports in a compact 1 RU form factor
Stackable up to 300 switches per FortiGate depending on model
Supports Wire-speed switching and Store and Forward forwarding mode
FortiLink Mode
The FortiSwitch Secure Access Switch series integrates directly into the FortiGate* Connected UTM, with switch administration and access port security managed from the familiar FortiGate interface. Regardless of how users and devices connect to the network, you have complete visibility and control over your network security and access through this single pane of glass, perfectly suited to threatconscious organizations of any size.
Standalone Mode
Virtualization and cloud computing have created dense high-bandwidth Ethernet networking requirements in the data center, pushing the limits of existing data center switching. FortiSwitch Data Center switches meet these challenges by providing a high performance 10 or 40 GE capable switching platform, with a low Total Cost of Ownership. Ideal for Top of Rack server or firewall aggregation applications, as well as enterprise network core or distribution deployments, these switches are purpose-built to meet the needs of today’s bandwidth intensive environments.
FortiSwitch 1024D, 1048D and 3032D
Standalone Switch
FortiLink Mode (FortiGate)
Security
802.1x Port Authentication
Yes
Yes
MAC Address-Based Authentication
No
Yes
MAC Black/White Listing
No
Yes
Layer 3,4 Stateful Firewall to Control Access
No
Yes
TACACS+/RADIUS Admin Access
Yes
Yes
DHCP Relay/DHCP Snooping
No
Yes
Virtual Domain
No
Yes
Routing
Layer 3, Dynamic Routing
No
Yes
Inter-VLAN Routing
No
Yes
Policy-Based Routing
No
Yes
DNS Server
No
Yes
VLANs Supported
4K
1K
Management
Auto Discovery of Multiple Switches
1
16 (model dependent)
Software Upgrade of Switches
1 switch
Central upgrade of each switch
VLAN Configuration
1 switch
Central VLAN provisioning of entire switch network
Policy Control of Users and Devices
No
Yes
Syslog Collection
Yes
Yes (FortiGate syslog only)
Switch POE Control
Yes
Yes**
LAG support from FortiSwitch to FortiGate
Yes
Yes**
High Availability
Support for FortiGate in HA cluster
Yes
Yes**
UTM Features
Firewall
No
Yes
IPS, AV, Application Control
No
Yes
** Roadmap: enabled with FOS 5.4 release
FortiSwitch 1024D
FortiSwitch 1048D
FortiSwitch 3032D
Layer 2
Jumbo Frames
Yes
Yes
Yes
IEEE 802.1D MAC Bridging/STP (compatibility mode)
Yes
Yes
Yes
IEEE 802.1w Rapid Spanning Tree Protocol (RSTP, compatibility mode)
Yes
Yes
Yes
IEEE 802.1s Multiple Spanning Tree Protocol (MSTP)
Yes
Yes
Yes
IEEE 802.1p Mapping to Priority Queue
Yes
Yes
Yes
Spanning Tree Instances (MSTP/CST)
15/1
15/1
15/1
IEEE 802.1Q VLAN Tagging
Yes
Yes
Yes
IEEE 802.3ad Link Aggregation with LACP
Yes
Yes
Yes
Unicast/Multicast traffic balance over trunking port (dst-ip, dst-mac, src-dst-ip, src-dst-mac, src-ip, src-mac)
Yes
Yes
Yes
IEEE 802.1AX Link Aggregation
Yes
Yes
Yes
IEEE 802.3x Flow Control and back-pressure
Yes
Yes
Yes
IEEE 802.3u 100Base-TX
No
No
No
IEEE 802.3z 1000Base-SX/LX
Yes
Yes
Yes
IEEE 802.3ab 1000Base-T
Yes
Yes
No
802.3ae 10 Gigabit Ethernet
Yes
Yes
Yes
802.3 CSMA/CD Access Method and Physical Layer Specifications
Yes
Yes
Yes
Storm Control
Yes
Yes
Yes
MAC, IP, Ethertype-based VLANS
Yes
Yes
Yes
Virtual-Wire
Yes
Yes
Yes
Private VLAN
Yes
Yes
Yes
Layer 3
Static Routing (Hardware-based)
Yes
Yes
Yes
Number of Direct Attached Hosts
pv4=16K, ipv6=8K
pv4=16K, ipv6=8K
pv4=16K, ipv6=8K
Dynamic Routing
No
No
No
L3 Host/ARP Entries
16K
16K
16K
Services
IGMP Snooping (v1/v2/v3)
Please refer to the Release Notes.
Security
Port Mirroring
Yes
Yes
Yes
Admin Authentication Via RFC 2865 RADIUS
Yes
Yes
Yes
sFlow
Yes
Yes
Yes
ACL Tables
Yes, 2K entries
Yes, 2K entries
Yes, 2K entries
802.1x Authentication (Port and Mac-based)
Yes
Yes
Yes
MAC-IP Binding
Yes
Yes
Yes
Management
Telnet / SSH
Yes
Yes
Yes
SNMP v1/v2c/v3
Yes
Yes
Yes
CLI and web GUI interface
Yes
Yes
Yes
Managed from FortiGate
Yes
Yes
Yes
Support for HTTP REST APIs for Configuration and Monitoring
Yes
Yes
Yes
RFC and MIB Support
RFC 2571 Architecture for Describing SNMP Framework
Yes
Yes
Yes
RFC 2131 DHCP
Yes
Yes
Yes
RFC 854 TELNET Server
Yes
Yes
Yes
RFC 2865 RADIUS
Yes
Yes
Yes
RFC 1643 Ethernet-like Interface MIB
Yes
Yes
Yes
RFC 3176 sFlow
No
No
No
RFC 1213 MIB-II
Yes
Yes
Yes
RFC 1354 IP Forwarding Table MIB
Yes
Yes
Yes
RFC 2572 SNMP Message Processing and Dispatching
Yes
Yes
Yes
RFC 1573 SNMP MIB II
Yes
Yes
Yes
RFC 1157 SNMPv1/v2c
Yes
Yes
Yes
RFC 2030 SNTP
Yes
Yes
Yes
* Tested with Solarwinds NPM tool. Please refer to FortiSwitch Admin Guide for details on setup.
Precisa comprar, renovar licença, instalar ou migrar seu equipamento ? Planejamos sua aquisição, instalação, implantação ou migração, para mais informações faça contato com a TND Brasil através do telefone (11) 3717-5537 , e-mail [email protected] ou envie uma mensagem.
Este site usa cookies para que possamos oferecer a melhor experiência de usuário possível. As informações dos cookies são armazenadas em seu navegador e executam funções como reconhecê-lo quando você retorna ao nosso site e ajudar nossa equipe a entender quais seções do site você considera mais interessantes e úteis.
Cookies estritamente necessários
O cookie estritamente necessário deve estar sempre ativado para que possamos salvar suas preferências de configuração de cookies.
Se você desabilitar este cookie, não poderemos salvar suas preferências. Isso significa que toda vez que você visitar este site, precisará habilitar ou desabilitar os cookies novamente.