• OBTAIN A QUOTATION
• DOWNLOAD WHITEPAPER
• OBTAIN AN EVALUATION
• DOWNLOAD DATASHEET

Unified Threat Management

 

 

Unified Threat Management (UTM) reduces the capital and operational expenses of purchasing, managing and maintaining different solutions.

Fortinet's UTM approach offers organisations a multi-threat security platform which is scalable and provides a path for future adoption of additional security functions without the need to
purchase additional hardware. This enables reduced total cost of ownership (TCO).

Click here to read about the FortiGate 110C rated 4 stars by SC Magazine>>

 

Fortinet firewall technology combines ASIC-accelerated stateful inspection with an arsenal of integrated application security engines to quickly identify and block complex threats. FortiGate firewall protection integrates with other key security features such as VPN, antivirus, intrusion prevention system (IPS), web filtering, antispam and traffic shaping to deliver multi-layered security that scales from SOHO/ROBO appliances to multi-gigabit core network or data center platforms. FortiManager and FortiAnalyzer turn-key appliances provide centralised management of thousands of FortiGate systems and detailed reporting capabilities for internal auditing and reporting.

• FortiASIC network processors enable firewall and traffic shaping at wire speeds in selected FortiGate platforms.
• Full integration with other Fortinet security technologies (e.g., antivirus, Web filtering) enables extensive protection profiles for in-depth defense.
• Virtual security domains and security zones enable network segmentation by customer, business unit, or any other physical or logical division for increased policy granularity and multi-layered security.
• Three operational modes (transparent, static NAT, and dynamic NAT) adapt to existing infrastructure for deployment versatility.
• Easily customised application definitions deliver additional policy granularity for more accurate protection.
• FortiClient end-point security agents extend firewall protection to remote desktop computers, mobile laptops, and smartphones that operate outside the network perimeter.
• H.323, SIP, and SCCP protocol support to protect VoIP services.
• Support for dynamic routing protocols (RIP, OSPF, BGP and PIM) required in complex enterprise network environments.
• High-availability support for uninterrupted service.
• Available centralized management and reporting reduce capital and operational expenditures for firewall protection.

 

Fortinet intrusion prevention technology, available in all FortiGate and FortiWifi platforms, can be installed at the network edge or at the network core to protect critical business applications from both external and internal attacks. Backed by the automatic, real-time updates delivered by the FortiGuard Intrusion Prevention Service, FortiGate IPS technology combines a customizable database of thousands of known threats to stop attacks that evade conventional firewall defenses, plus anomaly-based detection that enables the system to recognise threats for which no signature has yet been developed. The combination of known and unknown threat prevention, plus tight integration with other Fortinet security technologies, enables FortiGate systems to stop the most damaging attacks at security check points regardless of whether the network is a wired, wireless, partner extranet, or branch office network connection.

• FortiASIC processors accelerates intrusion prevention performance, enabling it to scale from SOHO appliances to multi-gigabit core network or data center platforms.
• Combined signature and protocol anomaly detection protects against known and unknown threats, with support for more than 1000 protocols and applications.
• Automatic updates of attack signatures from FortiGuard Intrusion Prevention Service keeps organizations ahead of the latest threats.
• Simple per-device/unlimited-user licensing delivers reduced total cost of ownership.
• Available centralized management and reporting reduce capital and operational expenditures for intrusion prevention.
• Detailed logging and reporting aid in auditing and forensic analysis.
• High-availability support for uninterrupted service.
• Available bypass modules on select FortiGate appliances provide an additional layer of network availability for mission-critical network segments.

 

Fortinet IPSec and SSL VPN technologies in FortiGate platforms are tightly integrated with other security features such as firewall, antivirus, web filtering and intrusion prevention, providing more comprehensive protection than VPN-only security appliances. FortiGate VPN solutions scale to meet the performance requirements of organisations of any size, from SOHO/ROBO and small businesses to large enterprises and service providers. FortiManager centralised management appliances provides the ability to manage complex VPN deployments involving thousands of FortiGate systems from a single console.

• FortiASIC processors provide accelerated performance that scales from SOHO/ROBO applications to multi-gigabit networks, and deliver near wire-speed IPSec VPN throughput in selected FortiGate platforms.
• Support for both IPSec and SSL VPN with unlimited user licensing.
• Integration with other Fortinet security technologies provides complete network-level and content-level inspection for comprehensive protection.
• Extensive user authentication support (RADIUS, LDAP, Local Database, SecureID, X-Auth) for IPSec Clients for improved interoperability.
• Supports all major tunneling protocols (IPSec, SSL, L2TP, and PPTP) for implementation flexibility.
• Flexible configuration with both hub-and-spoke and fully-meshed support.
• Integrated traffic-shaping prioritizes VPN traffic to preserve bandwidth.
• FIPS 140-2 certification supports compliance with Federal Government standards.

 

Fortinet antivirus technology combines advanced signature and heuristic detection engines to provide multi-layered, real-time protection against both new and evolving virus, spyware, and other types of malware attacks in web, email, and file transfer traffic. The FortiASIC content processor integrated into FortiGate and FortiWifi products accelerates both signature scanning and heuristics/anomaly detection for virus / malware protection while delivering performance that scales from entry-level appliances to multi-gigabit core network or data center platforms. The FortiGuard threat research team and global distributed network provides industry-leading antivirus signature updates for comprehensive protection against all types of content-level threats.

• ASIC-based hardware design provides scalable antivirus performance for small and multi-gigabit networks alike.
• Automatic updates of antivirus signatures from the FortiGuard Antivirus Service keeps organisations ahead of the latest threats.
• FortiClient end-point security agents extend antivirus protection to remote desktop computers, mobile laptops, and smartphones that operate outside the network perimeter.
• Available centralised management and reporting, plus security zone and virtual domain features, reduce capital and operational expenditures for antivirus protection.
• Simple per-device/unlimited-user licensing delivers reduced total cost of ownership.
• Transparent, NAT, and Route modes of implementation complement existing solutions and allow Fortinet appliances to adapt to existing infrastructure.
• Content inspection within SMTP, POP3, IMAP, FTP, HTTP, IM and P2P protocols, with support for all major compressed file formats, provides comprehensive protection against content-level threats.
• Inspection of content over VPN connections delivers defense in depth, with support for all common tunneling protocols (PPTP, L2TP, IPSec, SSL) and on-demand host integrity checking.

 

Fortinet antispam technology offers a wealth of features to detect, tag, quarantine, and block spam messages and their malicious attachments. FortiGate and FortiWifi platforms and FortiClient end-point security agents offer integrated antispam functionality as part of their multi-layered protection, backed by the FortiGuard Antispam Service. FortiMail appliances complement this functionality with additional features that offer an even more effective barrier against the ever-rising volume of spam, providing the maximum levels of protection against sophisticated email attacks, and with FortiMail appliance's content archiving functions, assistance with regulatory compliance.

• Scalable solutions designed for small and multi-gigabit networks alike.
• FortiMail appliances extend antispam feature set for added protection, including inbound/outbound scanning, additional IP address black/white listing functionality, and additional antispam filters.
• Three deployment modes of FortiMail appliances offer maximum versatility, including full-featured email server functionality for SMB/SOHO applications.
• IP-based policies, deep header analysis, holistic image scanning, and the centralised FortiGuard reputation service combine with several other spam recognition methodologies to provide the highest levels of accuracy as certified by ICSA Labs.
• FortiClient end-point security agents extend antispam protection to remote desktop computers, mobile laptops, and smartphones that operate outside the network perimeter.
• Available centralised management and reporting, plus security zone and virtual domain features, reduce capital and operational expenditures for antispam protection.
• Hard drive storage capacity of FortiMail appliances, hard-drive enabled FortiGate appliances, and the FortiAnalyzer logging and reporting appliance facilitate regulatory compliance that requires email archiving.
• Simple, per-device/unlimited-user licensing simplifies administrative overhead and allows organisations to expand protection to new users without incurring additional fees, thus reducing TCO.

 

 

 

 

Download the UTM Solution Brochure

Solution Design | Professional Services | Remote Support & Management | Managed Hosting Services | UTM | Firewalls | High Availability | Secure VPNs | Remote Access | End Point Security | Single Sign On | Laptop & Device Encryption | USB Device Control | Strong Authentication | Web Filtering | Application Control | Anti Virus | Anti Spam | Content Security