FortiGate. Accelerated security for mid-enterprise and branch office. Designed for today s network security requirements



Similar documents
FortiGate 200D Series

FortiGate 100D Series

FortiGate/FortiWiFi -60C Series Integrated Threat Management for Small Networks

FortiGate -3700D High Performance Data Center Firewall

FortiGate/FortiWiFi 60D Series

FortiGate/FortiWiFi 90D Series

FortiGate 1500D. The Fortinet Enterprise Firewall Solution. One Enterprise Firewall Solution across the Extended Enterprise. Highlights. forti.

FortiGate 3700D. The Fortinet Enterprise Firewall Solution. One Enterprise Firewall Solution across the Extended Enterprise. Highlights. forti.

FortiGate/FortiWiFi -90D Series Enterprise-Grade Protection for Smaller Networks

FortiCore A-Series. SDN Security Appliances. Highlights. Securing Software Defined Networking (SDN) Architectures. Key Features & Benefits

FortiAuthenticator TM User Identity Management and Single Sign-On

How To Get A Fortinet Security System For Free

FortiVoice Enterprise

Fortinet FortiGate App for Splunk

FortiSandbox. Multi-layer proactive threat mitigation

FortiSwitch B and C-Series

MSSP Advanced Threat Protection Service

Use FortiWeb to Publish Applications

FortiSwitch. Data Center Switches. Highlights. High-performance and resilient managed data center switch. Key Features & Benefits.

SDN Security for VMware Data Center Environments

5 ½ Things That Make a Firewall Next Gen WHITE PAPER

FortiGate -3040B/3140B 10-GbE Consolidated Security Appliances

WHITE PAPER. Protecting Your Network From the Inside-Out. Internal Network Firewall (INFW)

The Fortinet Advanced Threat Protection Framework

Disaster Recovery with Global Server. Load Balancing

WHITE PAPER. Protecting Your Network From the Inside-Out. Internal Segmentation Firewall (ISFW)

WHITE PAPER. Protecting Your Network From the Inside-Out. Internal Segmentation Firewall (ISFW)

FortiVoice Enterprise

Improving Profitability for MSSPs Targeting SMBs

FortiDDoS DDoS Attack Mitigation Appliances

FortiDDoS DDoS Attack Mitigation Appliances

The Evolution of the Enterprise And Enterprise Security

FortiGate /FortiWiFi -80 Series Enterprise-Class Protection for Branch Offices

FortiCarrier Systems Specialized Security for Service Providers

FortiDDoS. DDoS Attack Mitigation Appliances. Advanced DDoS Protection for Enterprise Data Centers. The Ever-Changing DDoS Attack

Keeping the Store Open: Fighting the Cyber Criminal in the Retail World

FortiADC E-Series. Application Delivery Controllers. Features and Benefits. Reliable and Robust Load Balancing and Application Delivery

INDEPENDENT VALIDATION OF FORTINET SOLUTIONS. NSS Labs Real-World Group Tests

Fortinet Secure Wireless LAN

WHITE PAPER. Protecting Your Network From the Inside-Out. Internal Segmentation Firewall (ISFW)

Securing the Data Center

Transforming Your WiFi Network Into A Secure Wireless LAN A FORTINET WHITE PAPER. Fortinet White Paper

Fortinet s Data Center Solution

Coyote Point Equalizer

The Enterprise Cloud Rush

FortiSandbox. Multi-layer proactive threat mitigation

WHITE PAPER. Empowering the MSSP. Part 2: End To End Security Services Ecosystem

Secure Access Architecture

Overview. Where other. Fortinet protects against the fullspectrum. content- and. without sacrificing performance.

FortiOS Handbook - Hardening your FortiGate VERSION 5.2.3

High performance security for low-latency networks

McAfee Network Security Platform A uniquely intelligent approach to network security

Extreme Security Threat Protection G2 - Intrusion Prevention Integrated security, visibility, and control for next- generation network protection

IBM Security Network Protection

FortiAP Wireless Access Points

FortiWeb. Web Application Firewall. Unmatched Protection for Web Applications. Emerging Threats Create New Challenges. FortiWeb DATA SHEET

FortiMail. Comprehensive Security. Comprehensive Security

Protecting against DoS/DDoS Attacks with FortiWeb Web Application Firewall

Place graphic in this box

Load Balancing Microsoft Exchange 2013 with FortiADC

Check Point 4800 Appliance

FortiOS Handbook - FortiView VERSION 5.2.3

Load Balancing Microsoft Exchange 2013 with FortiADC

Virtual Private Networks Secured Connectivity for the Distributed Organization

FortiGate Series 10-Gigabit Ready FortiGate Consolidated Security Systems

IREBOX X. Firebox X Family of Security Products. Comprehensive Unified Threat Management Solutions That Scale With Your Business

McAfee Network Security Platform A uniquely intelligent approach to network security

McAfee Network Security Platform A uniquely intelligent approach to network security

Product Factsheet MANAGED SECURITY SERVICES - FIREWALLS - FACT SHEET

Sophos SG Series Appliances

FortiGate Virtual Appliances Consolidated Security for Virtual Environments

WHITE PAPER. Securing ICS Infrastructure for NERC Compliance and beyond

FortiWeb TM. Web Application Firewall. Unmatched Protection for Web Applications. Emerging Threats Create New Challenges

SOLUTIONS GUIDE. Secure Wireless LAN Solutions Guide. Complete Wi-Fi Security for Any Network Topology

FortiOS Handbook WAN Optimization, Web Cache, Explicit Proxy, and WCCP for FortiOS 5.0

1Fortinet. 2How Logtrust. Firewall technologies from Fortinet offer integrated, As your business grows and volumes of data increase,

Purchase and Import a Signed SSL Certificate

Simple security is better security Or: How complexity became the biggest security threat

FortiGuard Security Services

High Performance NGFW Extended

FortiGate RADIUS Single Sign-On (RSSO) with Windows Server 2008 Network Policy Server (NPS) VERSION 5.2.3

Check Point taps the power of virtualization to simplify security for private clouds

Securing Next Generation Education A FORTINET WHITE PAPER

High Availability. FortiOS Handbook v3 for FortiOS 4.0 MR3

Scalable. Reliable. Flexible. High Performance Architecture. Fault Tolerant System Design. Expansion Options for Unique Business Needs

Internal Network Firewall (INFW) Protecting your network from the inside out

NSFOCUS Web Application Firewall

How To Ensure Security In Pc Ds 3.0

Achieve Deeper Network Security

WAN Optimization, Web Cache, Explicit Proxy, and WCCP. FortiOS Handbook v3 for FortiOS 4.0 MR3

Scalable. Reliable. Flexible. High Performance Architecture. Fault Tolerant System Design. Expansion Options for Unique Business Needs

FortiAuthenticator - What's New Guide VERSION 4.0

Cisco Intrusion Detection System Services Module (IDSM-2)

FortiOS Handbook - PCI DSS Compliance VERSION 5.4.0

Next-Generation Firewalls: Critical to SMB Network Security

Transcription:

DATA SHEET FortiGate 300D and 500D Accelerated security for mid-enterprise and branch office FortiGate FortiGate 300D and 500D Accelerated security for mid-enterprise and branch office With cyber threats and high profile data breaches continuing to make headlines, organizations large and small understand the importance of increasing security, especially security of their networks. This means moving forward with projects to upgrade from traditional to next generation firewalls, as well as the addition of antimalware to web filters. 5 Times Next Generation Performance Fortunately, Fortinet s midrange FortiGate appliances deliver 5 times the next generation performance of alternate products to enable midsize organizations to add new, top-rated security technologies yet still consolidate security devices. Specifically, this breakthrough performance allows most organizations to combine stateful firewall with intrusion prevention and application control, plus have room to add web filtering and antimalware all on one device. As a result, you get increased security beyond the traditional stateful firewall and web filter while removing one or more web proxies from your environment. Further, rich dashboards and reporting deliver the visibility and control you expect from a next generation firewall. Top Rated Security Finally, these features of the FortiGate FortiOS Network Security Platform are routinely submitted to independent real-world tests so you can be confident in their effectiveness. You can also see how they stack up against the competition. Fortinet FortiGate NGFW appliances deliver all of this at an affordable price that fits your constrained budgets. Designed for today s network security requirements Powered by FortiASICs that deliver industry best price/ performance. Runs FortiOS 5 the most powerful security operating system in the world, delivers more security to fight advanced threats, more control to secure mobile devices, and more intelligence to build secure policies. Backed by Fortinet s global FortiCare technical support and FortiGuard threat research teams for around-the-clock protection and support. Key Features & Benefits Industry Validation High Performance Appliances and Integrated Security Architecture Central Management and Reporting Enjoy confidence in the quality of your next generation firewall. Superior performance, enabling greater device consolidation, easier management and lower cost. Robust management systems that allows rapid provision and deployment, monitoring of device and threat status while providing actionable reports. FortiCare Worldwide 24x7 Support support.fortinet.com FortiGuard Security Services www.fortiguard.com

HARDWARE FortiGate 300D FortiGate 500D 1 2 3 4 5 1 2 3 6 7 Interfaces 1. Console Port (RJ45) 2. 2x USB Ports 3. 2x GE RJ45 Management Ports 4. 4x GE RJ45 Ports 5. 4x GE SFP Slots 6. 8x GE SFP Slots 7. 8x GE RJ45 Ports Powered by FortiASICs Custom FortiASIC processors deliver the power you need to detect malicious content at multi-gigabit speeds. Other security technologies cannot protect against today s wide range of content and connection-based threats well because they rely on general-purpose CPUs, causing a dangerous performance gap. FortiASIC processors provide the performance needed to block emerging threats, met rigorous third-party certifications, and ensure that your network security solution does not become a network bottleneck. Content Processor The FortiASIC CP8 content processor works outside of the direct flow of traffic, providing high-speed cryptography and content inspection services including: Signature-based content inspection acceleration Encryption and decryption offloading Network Processor Fortinet s new, breakthrough FortiASIC NP6 network processor works inline with FortiOS functions delivering: Superior firewall performance for IPv4/IPv6, SCTP and multicast traffic with ultra-low latency down to 2 microseconds VPN, CAPWAP and IP tunnel acceleration Anomaly-based intrusion prevention, checksum offload and packet defragmentation Traffic shaping and priority queuing 2 www.fortinet.com

DEPLOYMENT FortiGate deployed as branch office firewall Branch Office Firewall Today s branch office security gateway is no longer just a basic firewall and site-to-site VPN gateway. With the prevalent adoption of cloud-based applications both public and private, there are more associated requirements for both access availability and security. A security gateway will need robust network and high availability capabilities that include intelligent WAN link forwarding and flexible network deployment options. From the security perspective, a branch office firewall should provide abilities to identify users, locations, devices and applications; thereby control access with finer granularity and visibility. With Fortinet solution for enterprises, branch offices can enjoy significant protection with centralized facilities such as File Analysis using the FortiSandbox and FortiAuthenticator for user access management. Mid-Enterprise Edge Firewall Fortinet s midrange firewalls are perfect for growing mid-enterprises with their agile and high performance network security capabilities. The FortiGate 300D and 500D not only deliver protection exceeding expectations, they are suitable for consolidating other security components. This allows organizations to significantly reduce TCOs and simplifies the network. Unlike other NGFWs (Next Generation Firewalls), the FortiGates are powered by FortiASICs which provide security without compromising performance. They run on the World s most advanced Security operating systems that meet each organization s unique requirements. Advanced features such as integrated endpoint control and token server helps organizations to rapidly deploy enhanced security to their mobile workforce while device-based policies aid to implement BYOD securely. FortiGate deployed as mid enterprise edge firewall 3

FEATURES Powerful application control with granular settings Proven with Industry Validation Third-party industry certifications, as well as real-world effectiveness and performance tests, assure quality and best-of-breed protection. Ease of Use FortiOS lowers operational costs and reduces IT staff workload. Single pane of glass management and centralized analysis ensure consistent policy creation and enforcement while minimizing deployment and configuration challenges. In-depth Visibility and Reporting Through FortiView, a collection of flexible widget-based views with drill-down capabilities, FortiOS allows administrators to quickly visualize and understand recent network activities and threat situations. Detailed logs offers deep insights to sessions that passed through the FortiGate while comprehensive reports helps organizations to trend network usage accurately. Powerful Policy Management Two types of policy management views global and section view are available to suit your preferences. Policy objects can be easily edited, duplicated or moved from the policy table. Robust management features include policy object search, tagging, sorting and filtering. With FortiManager integration, you have the ability to set up sophisticated policy implementation and provisioning workflows to meet compliance or operational requirements. The FortiManager also offers logging and reporting module that simplified and reduced TCO. Identity-Centric Enforcement FortiOS supports both local and remote authentication services such as LDAP, Radius and TACACS+ to identify users and apply appropriate access policies and security profiles accordingly. It can simplify identity-based implementations and provide a seamless user authorization experience with single sign-on capabilities. FortiOS has strong PKI and certificate-based authentication services while also integrating an internal two-factor authentication server for additional security. To tackle security for today s prevalent use of personal devices, FortiOS offers state-of-the-art device identification capabilities that empower organizations to set up more intelligent security policies. Granular Application Control Advanced application control with ability to control discrete functions lets you define and enforce policies for thousands of applications running across networks regardless of port or the protocol used for communication. Highly Effective IPS Over 8,000 IPS signatures enable you to stop attacks that have evaded most conventional firewalls. Additionally, FortiOS also offers behavior-based heuristics settings that recognize zero day threats for which no signature has been created. 4 www.fortinet.com

FEATURES Beyond Next Generation Firewall Capabilities Our Secure Web Gateway capabilities allow you to prevent end users from unknowingly visiting malicious sites, shield them from inappropriate material out on the Internet, and maintain a safe and productive work environment. Real-time dashboards provide administrators visibility into end user activity while rich reporting keeps executives up to date. An advanced policy engine gives you the tools you need such as time-based quotas, user overrides and more to implement balanced policies. Recognizing that despite all of the latest security controls, targeted threats may still slip through, organizations have the opportunity to add an additional layer of inspection, focused on advanced threat detection in complement to established threat prevention. Often referred to as sandboxing or breach detection, Fortinet offers on-premise and cloud-based options to extend your next generation firewall. FortiView real-time query widget with drill-down panels FortiGuard Security Services and FortiCare Support Cutting Edge Security Expertise Our team of over 200 security researchers, vast data collection and state-of-the-art analysis systems across the globe examining the latest cyber-criminal activities and techniques to deliver real-time protection for your organization. With high marks attained by third-party evaluations, customers are assured of quality and credible security updates against the evolving sophisticated or targeted threats. World-Class Support It is critical to keep your network running properly and be able to resolve issues quickly. Our large team of knowledgable and responsive technical support engineers, together with comprehensive self-help resources are always ready to assist you in time of critical needs. In addition, Fortinet also offers a variety of support offerings that cater to your organization and project requirements. 5

SPECIFICATIONS FORTIGATE 300D FORTIGATE 500D Interfaces and Modules GE RJ45 Interfaces 6 10 GE SFP Slots 4 8 USB (Client / Server) 1 / 2 1 / 2 RJ45 Console Port 1 1 Local Storage 120 GB SSD 120 GB SSD Included Transceivers 2x SFP (SX 1 GE) 2x SFP (SX 1 GE) System Performance and Capacity IPv4 Firewall Throughput (1518 / 512 / 64 byte, UDP) 8 / 8 / 8 Gbps 16 / 16 / 16 Gbps Firewall Latency (64 byte, UDP) 3 μs 3 μs Firewall Throughput (Packet per Second) 12 Mpps 12 Mpps Concurrent Sessions (TCP) 6 Mil 6 Mil New Sessions/Sec (TCP) 200,000 280,000 Firewall Policies 10,000 10,000 IPsec VPN Throughput (512 byte) 7 Gbps 14 Gbps Gateway-to-Gateway IPsec VPN Tunnels 2,000 2,000 Client-to-Gateway IPsec VPN Tunnels 10,000 10,000 SSL-VPN Throughput 350 Mbps 400 Mbps Concurrent SSL-VPN Users (Recommended Maximum) 500 500 IPS Throughput 2.8 Gbps 4.7 Gbps Antivirus Throughput (Proxy Based / Flow Based) 1.4 / 2.5 Gbps 1.7 / 3.4 Gbps CAPWAP Clear-text Throughput (HTTP) 4.00 Gbps 4.85 Gbps Virtual Domains (Default / Maximum) 10 / 10 10 / 10 Maximum Number of FortiAPs (Total / Tunnel) 512 / 256 512 / 256 Maximum Number of FortiTokens 1,000 1,000 Maximum Number of Registered Endpoints 600 2,000 High Availability Configurations Active-Active, Active-Passive, Clustering FORTIGATE 300D FORTIGATE 500D Dimensions and Power Height x Width x Length (inches) 1.73 x 17 x 12.68 1.73 x 17 x 12.68 Height x Width x Length (mm) 44 x 432 x 322 44 x 432 x 322 Weight 10.5 lbs (4.8 kg) 10.8 lbs (4.9 kg) Form Factor 1 RU 1 RU Power Consumption (Average / Maximum) 106 W / 194 W 113 W / 202 W Current (Maximum) 110V/4A, 220V/2A 110V/4A, 220V/2A Heat Dissipation 660 BTU/h 690 BTU/h Operating Environment and Certifications Operating Temperature 32 104 F (0 40 C) Storage Temperature 31 158 F (-35 70 C) Humidity 20 90% non-condensing Operating Altitude Up to 7,400 ft (2,250 m) Compliance FCC Part 15 Class A, C-Tick, VCCI, CE, UL/cUL, CB Certifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN Note: All performance values are up to and vary depending on system configuration. Antivirus performance is measured using 44 Kbyte HTTP files. IPS performance is measured using 1 Mbyte HTTP files. IPsec VPN performance is based on 512 byte UDP packets using AES-256+SHA1. For complete, up-to-date and detailed feature set, please refer to the Administration Handbook and FortiOS Datasheet. ORDER INFORMATION Product SKU Description FortiGate 300D FG-300D 6x GE RJ45 ports (including 4x FortiASIC-accelerated ports, 2x management ports), 4x GE SFP slots, 120 GB onboard storage. FortiGate 500D FG-500D 10x GE RJ45 ports, (including 8x FortiASIC-accelerated ports, 2x management ports), 8x GE SFP slots, 120 GB onboard storage. Optional Accessories Redundant AC Power Supply FRPS-100 External redundant AC power supply for up to 4 units: FG-300C, FG-310B, FS-348B and FS-448B. Up to 2 units: FG-200B, FG-200D, FG-240D and FG-300D, FG-500D, FDD-200B, FDD-400B and FDD-800B. Not supported for: FG-200D-POE/240D-POE. 1 GE SFP LX Transceiver Module FG-TRAN-LX 1 GE SFP LX transceiver module for all systems with SFP and SFP/SFP+ slots. 1 GE SFP RJ45 Transceiver Module FG-TRAN-GC 1 GE SFP RJ45 transceiver module for all systems with SFP and SFP/SFP+slots.. 1 GE SFP SX Transceiver Module FG-TRAN-SX 1 GE SFP SX transceiver module for all systems with SFP and SFP/SFP+ slots. GLOBAL HEADQUARTERS Fortinet Inc. 899 Kifer Road Sunnyvale, CA 94086 United States Tel: +1.408.235.7700 www.fortinet.com/sales EMEA SALES OFFICE 120 rue Albert Caquot 06560, Sophia Antipolis, France Tel: +33.4.8987.0510 APAC SALES OFFICE 300 Beach Road 20-01 The Concourse Singapore 199555 Tel: +65.6513.3730 LATIN AMERICA SALES OFFICE Prol. Paseo de la Reforma 115 Int. 702 Col. Lomas de Santa Fe, C.P. 01219 Del. Alvaro Obregón México D.F. Tel: 011-52-(55) 5524-8480 Copyright 2015 Fortinet, Inc. All rights reserved. Fortinet, FortiGate, FortiCare and FortiGuard, and certain other marks are registered trademarks of Fortinet, Inc., in the U.S. and other jurisdictions, and other Fortinet names herein may also be registered and/or common law trademarks of Fortinet. All other product or company names may be trademarks of their respective owners. Performance and other metrics contained herein were attained in internal lab tests under ideal conditions, and actual performance and other results may vary. Network variables, different network environments and other conditions may affect performance results. Nothing herein represents any binding commitment by Fortinet, and Fortinet disclaims all warranties, whether express or implied, except to the extent Fortinet enters a binding written contract, signed by Fortinet s General Counsel, with a purchaser that expressly warrants that the identified product will perform according to certain expressly-identified performance metrics and, in such event, only the specific performance metrics expressly identified in such binding written contract shall be binding on Fortinet. For absolute clarity, any such warranty will be limited to performance in the same ideal conditions as in Fortinet s internal lab tests. In no event does Fortinet make any commitment related to future deliverables, features or development, and circumstances may change such that any forward-looking statements herein are not accurate. Fortinet disclaims in full any covenants, representations, and guarantees pursuant hereto, whether express or implied. Fortinet reserves the right to change, modify, transfer, or otherwise revise this publication without notice, and the most current version of the publication shall be applicable. FST-PROD-DS-GT3H5H FG-300D500D-DAT-R5-201502

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information