|
Fortinet In IPS
Fortinet offers a scalable and easy to
deploy line of FortiGate IPS security
systems that can be installed seamlessly
at the network edge or as an IPS
solution deployed at the network core to
protect critical business applications
from external as well as internal
originating attacks. In addition,
with Fortinet's SOHO and SME FortiGate
models, security administrators are now
able to cost-effectively deploy the same
level of IPS protection at branch
offices that in the past was only
available for the corporate
headquarters. By tightly
integrating industry leading security
technologies IPS, antivirus, antispam,
web filtering, VPN and Stateful
Firewall, Fortinet delivers the
best-in-class security available for
enterprises and service providers to
combat the complex blended threats that
use multiple methods to infect hosts and
self-propagate.
IPS Accelerated:
-
ASIC-based
hardware design for multi-gigabit
throughput
-
Automatic
updates of IPS signatures and
scanning engines
-
User-defined
custom IPS signatures
-
Inspection
of VPN (IPSec and SSL) content
-
Bi-directional IPS content filtering
-
Signature
and protocol anomaly engines
-
Detailed
logging and reporting
-
Support for
50+ protocols and applications
IPS
Deployment
Deployed in conjunction with an existing
firewall, the FortiGate™ IPS system is
deployed in the traffic path inspecting
incoming and outgoing packets for
malicious and malformed content.
The FortiGate system's highly accurate
IPS engine and high availability (HA)
configuration ensures maximum
availability of network resources.
Network Core
and Branch Office IPS
Fortinet's flexible architecture and
scalable product line allows for network
core deployments to protect against
external and internal attacks while the
FortiGate system's extensive product
line allows security administrators to
cost effectively deploy IPS protection
to smaller branch offices.
FortiManager™ centralized management
delivers a single console interface to
manage thousands of FortiGate systems.
Enterprise with IPS Bypass
Fortinet's FortiBridge™ option offers
enterprises fail-open protection for
FortiGate systems deployed inline in
transparent mode. The FortiBridge
device's zero-power fail open technology
means that the FortiBridge unit will
also fail open in the event of a
complete power failure.
IDS
Deployment
For traditional IDS deployments, the
FortiGate system's flexible architecture
supports monitoring of traffic from a
network tap or mirrored interfaces from
the core switch. The FortiGate
system can generate detailed traffic
logs and alerts for analysis and
auditing.
|
