Solved

Anyone out there using fortinet products

Posted on 2014-09-15
2
436 Views
Last Modified: 2014-09-30
Anyone out there using Fortinet products?  Looking to bring the products in and was wondering what typical config times look like for a small business on average.
0
Comment
Question by:securitylock
2 Comments
 
LVL 13

Expert Comment

by:Sandy
ID: 40324756
What exactly your needs ? IPS/ IDS/ Network Antivirus/ DLP what ?

they are good in all these..

Ty/SA
0
 
LVL 61

Accepted Solution

by:
btan earned 500 total points
ID: 40325158
Fortinet belongs to the market of the Unified Threat Mgmt (UTM) which is a close "brother" to the Next Gen FW (NGFW). Not to confuse, the whole objective is to make sure traditional FW  approach using port based filter need more deeper content inspection and contextual intelligence hence the two technology becomes more popular.

Fortinet carries a "suite" namely in fortigate (UTM), fortiweb (web app FW), fortiGuard (database)  etc and key is the running of their FortiOS engine in those appliance...Gartner has a MQ 2014 evaluation weighting for Enterprise Network Firewalls features on the selected provider and include Fortinet, good to check out. http://www.bradreese.com/blog/5-29-2014.pdf

But do note that all-in-one or unified threat management (UTM) products are suitable for small or midsize businesses
 (SMBs), but not for the enterprise. Fortinet is most of time competitve in the management of multiple of FW and low pricing but largely customer is still feeling edgy on the aspect of cost effectiveness and value for money..Nonetheless, it is shared to be well-suited to deployments, such as in carriers, data centers, service providers and distributed enterprises (for example, retail and franchises).

Sidenote - Although there is need to further enable these FW in more visibility into the use of application awareness (a form of context awareness) provided as well as deep packet inspection techniques to permit valid (authorized) applications and deny everything else as default, performance should not waver due to scaling up capability and eventually becomes single point of failure...

Some key capabilities that you should seek vendor on how they can achieve below.
■ Real-time detection and application content awareness engine.
■ Signature-based and "Signatureless" techniques for deep inspection and filtering.
■ Careful tuning without depending too much on knowledgeable staff to avoid false positives.
■ Monitor traffic from off-network mobile endpoints.
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Join & Write a Comment

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
There are some basic methods for preventing attacks on, hacking of and unauthorized access to a network -- maybe not completely, but up to a certain level. Start with a well-reputed firewall and unified threat management (UTM) system -- a gateway…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now