1 / 25

Confidential

Backup Slide. Confidential. Fortinet 公司簡介. Confidential. Fortinet 公司簡介. 2000 年 10 月由 Ken Xie 成立 成員延攬各領域的資深管理與研發團隊 包含 NetScreen, 3COM, VPNet, Symantec, HP, etc. 總部在美國 Sunnyvale, 全球 超過 500 個員工 全球唯一晶片型的防毒閘道 主要在提供即時的防護 強勢的市場接受度 2002 年 5 月首次上市 到 2003 第 3 季累計全球出貨量超過 20,000 餘台 收益成長性

chandler
Download Presentation

Confidential

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Backup Slide Confidential

  2. Fortinet公司簡介 Confidential

  3. Fortinet 公司簡介 • 2000年10月由 Ken Xie成立 • 成員延攬各領域的資深管理與研發團隊 • 包含NetScreen, 3COM, VPNet, Symantec, HP, etc. • 總部在美國 Sunnyvale,全球超過500個員工 • 全球唯一晶片型的防毒閘道 • 主要在提供即時的防護 • 強勢的市場接受度 • 2002年5月首次上市 • 到2003第3季累計全球出貨量超過20,000餘台 • 收益成長性 • 自上市以來每季成長率都在50%~100% • 2003年3Q達損益平衡

  4. A History of Rapid Growth and Achievement Developed World’s First ASIC- Accelerated Antivirus/Content Security Technology Founded by Ken Xie (Founder of NetScreen) Recognized by Gartner as Leading Visionary Fortinet Achieves Break-Even FortiGate Family Introduced

  5. FortiGate 完整產品線 FortiGate Product Family Medium Enterprise SOHO Service Provider/Telco Branch Office Large Enterprise FortiGate-4000 10G FortiGate-3600 4G FortiGate-3000 Redundant power FortiManager System 2G FortiGate-1000 Gigabit performance 1G Four 10/100/1000 ports FortiGate 800 Performance (Mbps) Multi-Zone (12 10/100 ports) FortiGate 500 NEW! 300 FortiGate-400 High Availability FortiGate-300 200 Enhanced remote client capacity FortiGate-200 Integrated Logging (20 Gbyte) 120 FortiGate-100 DMZ port, traffic shaping 95 FortiGate-60 FortiWiFi-60 70 Dual USB ports; integrated 4 managed switch ports; Dual WAN connection 30 FortiGate-50/50A Virus/Worm Scanning, Firewall, VPN, Intrusion Detection & Prevention, Content Filtering Capabilities

  6. The ASIC-Based Platforms Provide Better Protection and Higher Performance Stateful Inspection Stateful Inspection Stateful Inspection Deep Packet Inspection Deep Packet Inspection Deep Packet Inspection Complete Content Protection Complete Content Protection Complete Content Protection 10x 5x THROUGHPUT 1x ASIC-BASED FIREWALL APPLIANCE STANDARD SERVER PLATFORM ASIC-BASED FORTIGATE PLATFORM

  7. 全效能FortiASIC 晶片 • 採用行為加速(Accelerated Behavior)和內容分析系統技術Content Analysis System (ABACAS™)的全效能FortiASIC晶片共包含4個引擎 • Signature scanning engine • Crypto acceleration engine • Firewall processing engine • Flow management engine

  8. FortiGate 封包處理流程 Firewall Engine (Header Check) Crypto Engine (DES, 3DES, MD5, SHA1, AES) Content processor is needed !!! Signature Scanning Engine Flow Management Engine Content Assembly & Scanning Memory FortiAsic™ Content Processor(s) Signature Memory (Virus, Worm, Keywords, etc.) General Purpose CPU(s) System Management (CLI, Web, SNMP, AutoUpdate) FortiOS™ Operating System System Bus … Physical Interfaces (10/100, GigE, etc.)

  9. What is the weakest point for point solution?(Why policy based management is needed ?) FortiASIC Content Processor Chip Secure, Filtered Network Traffic Unprocessed Network Traffic Protocol Processing & File Content Assembly Content Scanning VPN (IPsec, L2TP, PPTP) Flow Management Firewall (Stateful Inspection) Intrusion & DoS Detection Traffic Shaping Rules Virus & Worm Signatures, Keywords, etc. Firewall Rules, URL List Security Associations Protocol & File Rules Attack Signatures *Note: Blocks can be used in multiple combinations, e.g. firewall, AV, and other functions can be applied to decrypted VPN tunnels

  10. Superior Competitive PositioningFortinet is taking market share from all its competitors in Security

  11. Flawless Execution Fortinet's blue chip customer base and industry awards validate the company's value proposition

  12. Why Fortinet • 高度差異化產品 • 提供高效能的防毒防火牆VPNNIDS內容過濾等功能 • 肯定的技術能力 • 4張 ICSA認證(NIDS,Antivirus, Firewall & IPSec) • 完整的後勤支援團隊 • FortiResponse Services • 獨特整合技術與合理的投資報酬率 • 提供最符合客戶期望的產品 • 提供未來可擴充的平台 • 於同一平台上因應威脅需求增加對應的解決方案

  13. FortiGate 5000 Series

  14. Fortinet extends performance barrier • Chassis based family of products • Extends product line with high end family • 2 systems at initial launch • FortiGate 5020 and FortiGate 5050 • Standards based approach supports additional scalabilty • Scaleable High performance • Interchangeable Modules • usable in ether chassis • Flexible configuration • High Availability – cluster technology

  15. FortiGate 5000 Series Uses New ATCA Architecture • Advanced Telecom Computing Architecture (AdvancedTCA) • Industry standard specifications for the next generation of carrier grade communications equipment. • Intel is a major backer (over 100 companies involved) • Benefits • High density • High availability • Flexibility • Features • Designed to meet needs of service provider environments • Serviceability, reliability, manageability • High scalability • Up to 14 blades per chassis • Investment protection as systems grow • FortiGate Blades can work in any FortiGate 5000 chassis

  16. Chassis and Hot swappable Blade architecture Supports high-availability and clustering for added capacity and reliability Multi-zone and VLAN support for segmented, granular security Deploys as an all-in-one solution or a high-performance antivirus/content-filtering gateway Performance: Delivers up to 8 Gbps Firewall and 1200 Mbps 3DES VPN throughput (aggregate) Interfaces: 8 GigE interfaces per blade (total 16) 4 SFP and 4 10/100/1000 on each module FortiGate-5020 Fully equipped chassis – Update: final product front will be painted black

  17. FortiGate Antivirus Firewall on a Blade Works in any FortiGate 5000 series chassis 8 GigE interfaces per blade 4 SFP removable (SX standard – LX option) 4 10/100/1000 TX Console access DB9 on current boards USB x 2 (future use) Locking handles and thumbscrews Hot swappable operation and standardized LED status indicators FortiGate-5001 Module for FG-5000 series Power Hard Disk Access Status 1 2 3 4 5 6 7 8 Console Connection Module Lock Mounting Knot Gigabit Fiber 10/100/1000 USB

  18. FortiGate-5050 chassis FortiGate-5001 Blade FortiGate-5001 Blade FortiGate-5001 Blade FortiBlade-5003 Blade FortiBlade-5003 Blade DC Power Only – External AC to DC power convert Unit required for AC applications Not shown: shelf management module

  19. FortiGate 5020 HA Deployment Scenario #1-Redundant Modules Internet Router 2 Internet Router 1 • High Availability with Fortinet Cluster • Active – Active support • Load sharing - both units active • Active - Passive • Hot Standby • HA link for cluster communication • Session sync • Configuration sync Chassis backplane provides HA Link DMZ Internal Network

  20. FortiGate 5020 HA Deployment Scenario #2- Redundant Chassis Internet Router • High Availability with Fortinet Cluster • Active – Active support • Load sharing - both units active • Active - Passive • Hot Standby • HA link for cluster communication • Session sync • Configuration sync HA Link DMZ Internal Network

  21. FG-5050 HA Deployment Scenario- Redundant Chassis Internet Router 2 Internet Router 1 • High Availability with Fortinet Cluster • Active – Active support • Load sharing - both units active • Active - Passive • Hot Standby • HA link for cluster communication • Session sync • Configuration sync HA Link DMZ Internal Network

  22. FortiGate 5020 Performance * VPN not clustered

  23. FortiGate 5020 - Comparison with FG 3600

  24. Competitive Comparison FortiGate 5020

  25. Summary - FortiGate AntiVirus Firewallsare purpose-built to protect today’s networks from today’s internet threats in the most cost effective way. - By providing all applications layer servicesaccelerated via the unique ASIC architecture. - FORTINEToffers complete network protection solutions !

More Related