FortiGate Next-Generation Firewall (BYOL)
Product Overview
FortiGate is a next-generation firewall product that combines a next-generation firewall, a high-performance SSL/IPSec VPN gateway, and SD-WAN CPE. A dual leader in Gartner's Enterprise Firewall and UTM Magic Quadrant, NSS Labs, a third-party evaluation lab, has been rated “Recommended” by the Next Generation Firewall Group six times in a row. It has the characteristics of high performance, good safety effect, rich functions, etc. It is an essential weapon for users to conduct secure networking, safety isolation, traffic inspection, and behavior monitoring locally and in the cloud. Additionally, SSL/IPsec VPN on FortiGate is free of charge and is not charged based on the number of tunnels/users. Similarly, the SD-WAN functionality integrated on FortiGate is also free of charge.
FortiGate is integrated with the Amazon Web Services platform at the API level to support master/dual master high availability deployment models in the same AZ and across AZs, and to drive autoscaling elastic scaling through API to ensure stability and performance to the greatest extent. It also supports Transit Gateway, which can be used to help users build cloud security service centers to achieve centralized security control. Additionally, FortiGate supports direct single-root I/O virtualization (SR-IOV) and C5n models for higher and more consistent performance. In terms of security, FortiGate can collect many Amazon Web Services raw data, such as instance ID, instance type, subnet, security group, AZ, tags, etc. Use the built-in lightweight orchestration engine to customize trigger conditions (instance connected to a malicious IP) and execute actions (call a Lambda script to isolate the instance).