Datencenterlösungen Neues aus dem Bereich Security

Datencenterlösungen Neues aus dem Bereich Security Markus Hirsch Copyright Fortinet Inc. All rights reserved.

Quiz Was verbindet diese Unternehmen? Sie sind die Nr. 1 in ihrem Markt! 2

Fortinet - A Global Leader in Network Security Founded in 2000, 1st shipment 2002, IPO 2009 HQ: Sunnyvale, 90+ offices worldwide Employees: 3700+ 235,000+ customers Over 2 million devices shipped Market-leading tech - 243 patents, 215 pending 500.000 400.000 300.000 200.000 Worldwide Network Security Appliance Shipments Cisco Check Point Custom ASIC-based scalable architecture FortiASIC Industry-leading, validated Threat Research FortiGuard Custom, converged Networking + Security OS FortiOS Global Infrastructure & Support FortiCare 100.000 - Juniper Palo Alto 2011 2012 2013 2014 3

NSS Labs bestätigt den Vorteil von FORTINET Fortinet ist durchgehend Recommended X-axis = TCO per protected Mbps, Value Y-axis = Security Effectiveness NGFW Upper right quadrant = Recommended Lower left quadrant = Caution Other quadrants Neutral Breach Detection Next Generation IPS 4

in einem österreichischen DataCenter gefunden... 5

FortiNetwork 6

FortiGate 1500D Ideal für s Rechenzentrum 16x GE RJ45 Ports 8x 1/10GE SFP/+ Slots Key Features Firewall Performance (80Gbps) Low Latency (3 µsec) 32 x 1GE and 8 x 10GE Ports High Availability Modes Cloud & Appliance Based ATP Option 2x GE RJ45 Mgmt Ports 16x GE SFP Slots Powered 7

FortiGate 3700D Data Center ISFW Darf es ein bisserl mehr sein? 4 x 40GE QSFP Slots 8 ultra-low latency 10GE SFP+ Slots 2x GE RJ45 Mgmt Ports Powered 20 x 1/10GE SFP/+ Slots Key Features Firewall Performance/VPN (160Gbps) NGFW (25 Gbps) Network Segmentation Ultra Low Latency 28 x 10Ge and 4 x 40G Ports High Availability Modes Space & Power Saving (Chassis) Software Upgrade to NGFW Cloud & Appliance Based ATP Option 8

FortiGate 3810D Cloud ISFW Darf es noch ein bisserl mehr sein? 6 x 100GE CFP2 Slots 2x GE RJ45 Mgmt Ports Key Features 320 Gbps Firewall 30 Gbps + NGFW (Software Upgrade) 6 x 100G Ports Faster than Competitors Chassis based Systems High Availability Modes Space & Power Saving (Chassis) Software Upgrade to NGFW Cloud & Appliance Based ATP Option Powered 9

FortiNetwork 10

FortiNetwork 11

FortiNetwork 12

Aktuelle Herausforderungen Xxxxxxx.xxxxxx mhirsch@fortinet.com http://quickbet88.net/ kzjvjgns9l 13

FortiNetwork 14

Integration mit anderen Herstellern

Fortinet Programmable Networking Partnership Ecosystem Software-Defined Security Framework Platform Extensibility SDN CONTROLLERS ORCHESTRATION PLATFORMS API s ACI PROGRAMMABLE SWITCHING vcns certified NSX program CENTRALIZED POLICY & ANALYTICS 16

Fortinet s Integration in Cisco ACI

Cisco ACI 18

Application Integration 19

Fortinet s App for HP VAN SDN Controller

Prevention Use Case DATACENTER INFECTED USER HP SWITCH Virtual or Physical FortiGate NGFW HP VAN SDN CONTROLLER 21

Live Migration Use Case DELETE POLICY ADD POLICY FORTIGATE-01 FORTIMANAGER FORTIGATE-01 HP SWITCH DELETE FLOW HP VAN SDN CONTROLLER ADD FLOW HP SWITCH VMWare vcenter Server DATACENTER-01 DATACENTER-02 22

OpenStack Full flexibility, full integration into everything ;-)

OpenStack Working Beta for demo purpose available FortiGate as a Newtron Network Node Management via Newtron Modular Layer 2 (ml2) plugin 24

VMware NSX

FortiGate-VMX Solution Integration/Interactions 6. Kernel agent creation and default re-direction rules for each host in cluster 3. Auto-deploy FortiGate-VMX to all hosts in security cluster 4. FortiGate-VMX connects with FortiGate-VMX Service Manager 8. Push policy synchronization to all FortiGate-VMX deployed in cluster vcenter Server vcloud Networking & Security Manager 1. Initiate communication with vcenter Server 7. Real-time updates of object database 2. Register Fortinet as security service with vcns Manager FortiGate-VMX Service Manager 5. License verification and configuration synchronization with FortiGate-VMX FGT-VMX dvswitch FGT-VMX 26

FGT-VMX Service Manager Policy Creation 27