Product - Firewall....Fortinet

Fortinet (NASDAQ: FTNT) is a worldwide provider of network security appliances and a market leader in unified threat management (UTM). Fortinet was founded in 2000. Fortinet is headquartered in Sunnyvale, California, with customer support, development and sales facilities throughout the world. Our products and subscription services provide broad, integrated and high-performance protection against dynamic security threats while simplifying the IT security infrastructure. Our customers include enterprises, service providers and government entities worldwide, including the majority of the 2009 Fortune Global 100. Fortinet's flagship FortiGate product delivers ASIC-accelerated performance and integrates multiple layers of security designed to help protect against application and network threats. Fortinet's broad product line goes beyond UTM to help secure the extended enterprise - from endpoints, to the perimeter and the core, including databases and applications. Fortinet is headquartered in Sunnyvale, Calif., with offices around the world.

Firewall Solutions

Fortinet firewall technology combines ASIC-accelerated stateful inspection with an arsenal of integrated application security engines to quickly identify and block complex threats. FortiGate® firewall protection integrates with other key security features such as VPN, antivirus, intrusion prevention system (IPS), web filtering, antispam and traffic shaping to deliver multi-layered security that scales from SOHO/ROBO appliances to multi-gigabit core network or data center platforms. FortiManager™ and FortiAnalyzer™ turn-key appliances provide centralized management of thousands of FortiGate systems and detailed reporting capabilities for internal auditing and reporting.
FortiGate Firewall Technology Benefits
FortiASIC™ network processors enable firewall and traffic shaping at wire speeds in selected FortiGate platforms.
Full integration with other Fortinet security technologies (e.g., antivirus, Web filtering) enables extensive protection profiles for in-depth defense.
Virtual security domains and security zones enable network segmentation by customer, business unit, or any other physical or logical division for increased policy granularity and multi-layered security.
Three operational modes (transparent, static NAT, and dynamic NAT) adapt to existing infrastructure for deployment versatility.
Easily customized application definitions deliver additional policy granularity for more accurate protection.
FortiClient end-point security agents extend firewall protection to remote desktop computers, mobile laptops, and smartphones that operate outside the network perimeter.
H.323, SIP, and SCCP protocol support to protect VoIP services.
Support for dynamic routing protocols (RIP, OSPF, BGP and PIM) required in complex enterprise network environments.
High-availability support for uninterrupted service.
Available centralized management and reporting reduce capital and operational expenditures for firewall protection.

Antivirus Solutions

Fortinet® antivirus technology combines advanced signature and heuristic detection engines to provide multi-layered, real-time protection against both new and evolving virus, spyware, and other types of malware attacks in web, email, and file transfer traffic. The FortiASIC™ content processor integrated into FortiGate® and FortiWifi™ products accelerates both signature scanning and heuristics/anomaly detection for virus / malware protection while delivering performance that scales from entry-level appliances to multi-gigabit core network or data center platforms. The FortiGuard® threat research team and global distributed network provides industry-leading antivirus signature updates for comprehensive protection against all types of content-level threats.
Fortinet Antivirus Benefits
ASIC-based hardware design provides scalable antivirus performance for small and multi-gigabit networks alike.
Automatic updates of antivirus signatures from the FortiGuard Antivirus Service keeps organizations ahead of the latest threats.
FortiClient end-point security agents extend antivirus protection to remote desktop computers, mobile laptops, and smartphones that operate outside the network perimeter.
Available centralized management and reporting, plus security zone and virtual domain features, reduce capital and operational expenditures for antivirus protection.
Simple per-device/unlimited-user licensing delivers reduced total cost of ownership.
Transparent, NAT, and Route modes of implementation complement existing solutions and allow Fortinet appliances to adapt to existing infrastructure.
Content inspection within SMTP, POP3, IMAP, FTP, HTTP, IM and P2P protocols, with support for all major compressed file formats, provides comprehensive protection against content-level threats.
Inspection of content over VPN connections delivers defense in depth, with support for all common tunneling protocols (PPTP, L2TP, IPSec, SSL) and on-demand host integrity checking.

IPS Solutions

Fortinet intrusion prevention technology, available in all FortiGate® and FortiWifi™ platforms, can be installed at the network edge or at the network core to protect critical business applications from both external and internal attacks. Backed by the automatic, real-time updates delivered by the FortiGuard® Intrusion Prevention Service, FortiGate IPS technology combines a customizable database of thousands of known threats to stop attacks that evade conventional firewall defenses, plus anomaly-based detection that enables the system to recognize threats for which no signature has yet been developed. The combination of known and unknown threat prevention, plus tight integration with other Fortinet security technologies, enables FortiGate systems to stop the most damaging attacks at security check points regardless of whether the network is a wired, wireless, partner extranet, or branch office network connection.
Fortinet Intrusion Prevention Technology Benefits
FortiASIC™ processors accelerates intrusion prevention performance, enabling it to scale from SOHO appliances to multi-gigabit core network or data center platforms.
Combined signature and protocol anomaly detection protects against known and unknown threats, with support for more than 1000 protocols and applications.
Automatic updates of attack signatures from FortiGuard Intrusion Prevention Service keeps organizations ahead of the latest threats.
Simple per-device/unlimited-user licensing delivers reduced total cost of ownership.
Available centralized management and reporting reduce capital and operational expenditures for intrusion prevention.
Detailed logging and reporting aid in auditing and forensic analysis.
High-availability support for uninterrupted service.
Available bypass modules on select FortiGate appliances provide an additional layer of network availability for mission-critical network segments.

Application Control Solutions

Traditional firewalls detect and restrict applications by port, protocol and server address, and cannot detect malicious content or behavior in newer Web 2.0 applications. Fortinet Application Control, a feature provided in the FortiOS™ operating system, identifies and controls applications on networks and endpoints regardless of port, protocol, and IP address used. It gives you unmatched visibility and control over application traffic, even unknown applications from unknown sources.
FortiOS uses behavioral analysis, end-user association, and application classification to identify and restrict application usage at a granular level. Protocol decoders decrypt and examine network traffic to detect applications attempting to hide their activity through tunneling. Once network traffic is decoded, applications can be identified by their unique signatures and traffic shaping can be applied to restrict or block non-priority applications and traffic.
Application Control, coupled with the other security technologies included in FortiOS, give you complete content protection. By combining Intrusion Prevention, Data Loss Prevention, Antivirus, Antispam, and Web Filtering with Application Control, you can minimize the risks associated with allowing Web 2.0 applications in your network.
Fortinet Application Control leverages one of the largest application signature databases available - the FortiGuard® Application Control Database. This enables you to control more than 1,500 different Web-based applications, software programs, network services and network traffic protocols. FortiGuard Services deliver regularly scheduled updates to FortiGate consolidated security appliances, ensuring that Fortinet Application Control always has the latest signatures available.
FortiGate Application Control Technology Benefits
Enables identification and control of new Web 2.0 applications and associated network traffic to prevent data loss and threat propagation.
Detects more than 1,500 different web-based applications, programs, services and protocols.
Decrypts and inspects IPSec and SSL-encrypted VPN traffic, including HTTPS, POP3S, SMTPS and IMAPS.
Controls applications at a granular level, such as allowing Facebook Chat but blocking Facebook Video or disabling links in chat.
Allows traffic shaping to limit bandwidth available to non-priority applications such as YouTube.
Integration with Active Directory for identity-based policy enforcement.
FortiGuard Application Control Database is continually refreshed with the latest signatures.

Antispam Solutions

Fortinet® antispam technology offers a wealth of features to detect, tag, quarantine, and block spam messages and their malicious attachments. FortiGate® and FortiWifi™ platforms and FortiClient™ end-point security agents offer integrated antispam functionality as part of their multi-layered protection, backed by the FortiGuard™ Antispam Service. FortiMail™ appliances complement this functionality with additional features that offer an even more effective barrier against the ever-rising volume of spam, providing the maximum levels of protection against sophisticated email attacks, and with FortiMail appliance's content archiving functions, assistance with regulatory compliance.
Fortinet Antispam Technology Benefits
Scalable solutions designed for small and multi-gigabit networks alike.
FortiMail appliances extend antispam feature set for added protection, including inbound/outbound scanning, additional IP address black/white listing functionality, and additional antispam filters.
Three deployment modes of FortiMail appliances offer maximum versatility, including full-featured email server functionality for SMB/SOHO applications.
IP-based policies, deep header analysis, holistic image scanning, and the centralized FortiGuard reputation service combine with several other spam recognition methodologies to provide the highest levels of accuracy as certified by ICSA Labs.
FortiClient end-point security agents extend antispam protection to remote desktop computers, mobile laptops, and smartphones that operate outside the network perimeter.
Available centralized management and reporting, plus security zone and virtual domain features, reduce capital and operational expenditures for antispam protection.
Hard drive storage capacity of FortiMail appliances, hard-drive enabled FortiGate appliances, and the FortiAnalyzer logging and reporting appliance facilitate regulatory compliance that requires email archiving.
Simple, per-device/unlimited-user licensing simplifies administrative overhead and allows organizations to expand protection to new users without incurring additional fees, thus reducing TCO.

Virtual Private Network (VPN) - IPSec and SSL

Fortinet IPSec and SSL VPN technologies in FortiGate® platforms are tightly integrated with other security features such as firewall, antivirus, web filtering and intrusion prevention, providing more comprehensive protection than VPN-only security appliances. FortiGate VPN solutions scale to meet the performance requirements of organizations of any size, from SOHO/ROBO and small businesses to large enterprises and service providers. FortiManager™ centralized management appliances provides the ability to manage complex VPN deployments involving thousands of FortiGate systems from a single console.
Fortinet VPN Technology Benefits
FortiASIC™ processors provide accelerated performance that scales from SOHO/ROBO applications to multi-gigabit networks, and deliver near wire-speed IPSec VPN throughput in selected FortiGate platforms.
Support for both IPSec and SSL VPN with unlimited user licensing.
Integration with other Fortinet security technologies provides complete network-level and content-level inspection for comprehensive protection.
Extensive user authentication support (RADIUS, LDAP, Local Database, SecureID, X-Auth) for IPSec Clients for improved interoperability.
Supports all major tunneling protocols (IPSec, SSL, L2TP, and PPTP) for implementation flexibility.
Flexible configuration with both hub-and-spoke and fully-meshed support.
Integrated traffic-shaping prioritizes VPN traffic to preserve bandwidth.
FIPS 140-2 certification supports compliance with Federal Government standards.

Web Filtering Solutions

Fortinet Web filtering technology, integrated into all FortiGate® and FortiWifi™ appliances and FortiClient PC™ end-point security agents, blocks access to harmful, inappropriate, and dangerous websites which may contain phishing/pharming attacks, malware such as spyware, or objectionable content that can expose organizations to civil or criminal liability. Backed by an industry-leading ratings database and updated continuously by the FortiGuard® Web Filtering Service, Fortinet Web filtering helps organizations comply with government regulations and enforce appropriate organizational Internet usage policies.
Fortinet Web Filtering Benefits
Industry-leading ratings database with over 20+ billion rated Web pages offers comprehensive protection against malicious sites and inappropriate content.
77 ratings categories enable highly granular per-user and per-group policies and override options to control Internet access without excessive user restrictions that can impact productivity.
Quota management for user quota based usage maintain and enforce users to be more responsible in their use of network resources
Simple per-device/unlimited-user licensing delivers reduced total cost of ownership.
Automatic updates of URL database from FortiGuard Web Filtering Service keeps organizations ahead of the latest malicious or inappropriate sites.
Fully integrated with Fortinet antivirus scanning for protection against unknown malicious websites.
Simple implementation with true set-and-forget functionality is ideal for protecting remote sites and smaller organizations with limited personnel resources.
CIPA certification and Internet Watch Foundation membership (UK) to aid compliance with laws protecting children, ideal for schools and libraries.

Web Application Security Solutions

Fortinet�s Web Application Security solutions provide specialized, layered application threat protection for medium and large enterprises, application service providers, and SaaS providers. FortiWeb web application firewall protects your web-based applications and internet-facing data. Automated protection and layered security protects web applications from sophisticated attacks such as SQL Injection, Cross Site Scripting attacks and data loss. Web Vulnerability Assessment module adds scanning capabilities to provide a comprehensive solution to meet your PCI DSS section 6.6 requirements.
The solution drastically reduces the time required to protect your regulated internet-facing data and leverages an intelligent, application-aware load-balancing engine to distribute traffic and route content across multiple web servers. This load balancing increases application performance, improves resource utilization and application stability while reducing server response times. Data compression and Independent SSL encryption processor increase transaction throughput and reduce processing requirements from web servers, providing additional acceleration for web application traffic.
Fortinet Web Application Firewall Benefits
Addresses PCI DSS section 6.6 requirement with Web Application Firewall and Web Vulnerability scanner
Real Time consolidated Multi layer protection protects web applications from known and unknown application attacks such as SQL Injection and Cross Site Scripting attacks
Automatic signatures update from the FortiGuard Security Service keeps organizations ahead of the latest application threats and vulnerabilities.
Advanced Data Leak Protection provides extended monitoring and protection for credit card leakage and application information disclosure by tightly monitoring all outbound traffic.
Continuous and accurate application protection with Auto-Learn base lining which automatically and dynamically builds a security model of protected applications by constantly monitoring real time user activity.
Flexible non intrusive deployment options that can be easily introduced to any environment and in to any existing network implementation
High performance gateways fit in any environment and with the integration of award winning FortiASIC technology can process tens of thousands of web transactions and provide hardware accelerated SSL offload capabilities and advanced load balancing capabilities.
Anti Web Defacement - provides unique capabilities for monitoring protected applications for any defacement and ability to automatically and quickly revert to stored version.
Data Compression allows efficient bandwidth utilization and response time improvements
Server load balancing and content-based routing increases application speeds, improves server resource utilization and stabilizes applications.


Wireless networks are a significant source of risk for most enterprises, due to the lack of robust security technologies and the use of a separate security infrastructure for wireless networks. Fortinet reduces your WLAN risk with a comprehensive, integrated security solution for your wireless and wired networks. We integrate all wired and wireless traffic into a single FortiGate security platform, giving you unmatched visibility and control of all network threats.
You have the flexibility to choose between thick and thin access points (APs), all managed by the integrated Wireless Controllers in FortiGate platform that deliver comprehensive, proven threat management and policy enforcement. Fortinet's unique approach allows you to integrate security for your wired and wireless networks quickly and easily. You can manage all policies from a 'single pane of glass' management console, improving protection while simplifying your network.
Our wireless security solution consists of three components:
FortiAP (Thin AP)
  FortiAP Access Points are affordable 802.11n-capable Thin APs that provide integrated security and WiFi client access on both the 2.4 GHz and 5 GHz spectrums. The FortiAP series utilizes industry-leading wireless chip technology that enables the FortiAP to reach wireless association rates as high as 300 Mbps per radio and allows the coverage to extend twice as far as legacy 802.11a/b/g.
FortiWiFi (Thick AP)
  FortiWiFi security appliances integrate Thick AP capabilities with the FortiGate comprehensive enterprise-class protection for smaller locations at an affordable price. Each FortiWiFi model is capable of broadcasting up to seven SSIDs or Virtual Access Points (VAPs) enabling multi-tenant environments in a single device.
FortiGate Platforms (Wireless Controller)
  Fortinet consolidated security platforms deliver fully integrated security technologies in a single device, delivering increased performance, improved protection, and reduced costs. They act as a wireless controller while providing firewall, VPN, intrusion prevention, application control, web filtering and many other security and network technologies. There are FortiGate platforms for every size network, from small offices to global carriers and service providers
Fortinet Wireless Technology Benefits
Manage all access points from a single 'pane of glass' management console
Simplify your network by eliminating a separate Wireless Controller
Improve threat visibility and response by eliminating blind spots caused by separate security systems
Detect and mitigate rogue access points
Integrated comprehensive security incorporates a wide range of security and network services in a single device
Automatic updates of attack signatures from FortiGuard Security Subscription Services keep wireless networks ahead of the latest threats.
Support for multiple user authentication methods support directory integration for improved wireless security management.
Strong encryption support overcomes WEP weakness for improved wireless security.
Policy-based traffic shaping delivers more cost-effective allocation of shared wireless bandwidth.
Fortinet® FortiGate® appliances integrate all the essential security services needed to protect a business in an affordable package, including antivirus, firewall, VPN, intrusion prevention, Web filtering, antispam, antispyware, and traffic shaping. These easy-to-deploy and manage systems deliver comprehensive protection in a flexible, turn-key platform that is ideally suited to provide smaller businesses and branch offices with the security they need.
SMB/SOHO Features and Benefits
Complete threat protection within a single appliance provides simplicity and ease of implementation: firewall, intrusion prevention system (IPS), VPN, traffic shaping, antivirus, antispyware, antispam, web content filtering, and application control (e.g., IM and P2P).
Specialized FortiASIC™ content processors deliver full, ICSA-certified, high-performance, enterprise-class security in an affordable, compact platform.
Intuitive web-based management interface is consistent across all Fortinet appliances for rapid deployment and simple management.
Threat databases offer automated real-time threat detection updates backed by a 24x7x365 Fortinet Global Threat Research Team, allowing customers to maintain the highest levels of security without interruption.
Models available with a built-in wireless access points and a PC Card slots extend the security capabilities to wireless broadband deployments for mobile retail, and small office/home office applications.
Related Products
FortiGate FortiWifi FortiClient
  1. FortiGate-111C
  2. FortiGate-110C
  3. FortiGate-80C/CM
  4. FortiGate-60C
  5. FortiGate-50B
  6. FortiGate-30B
  1. FortiWifi-80CM
  2. FortiWifi-60C
  3. FortiWifi-50B
  4. FortiWifi-30B
  1. FortiClient
  2. FortiMobile
Client Speak


Instant Touch Base