Overview:
With cyber threats and high profile data breaches continuing to make headlines, organizations large and small understand the importance of increasing security, especially security of their networks. This means moving forward with projects to upgrade from traditional to next generation firewalls, as well as the addition of antimalware and web filters.
5 Times Next Generation Performance
Fortunately, Fortinet’s midrange FortiGate appliances deliver 5 times the next generation performance of alternate products to enable mid size organizations to add new, top-rated security technologies yet still consolidate security devices. Specifically, this breakthrough performance allows most organization to combine stateful firewall with intrusion prevention and application control, plus have room to add Web Filtering and Antimalware all on one device. As a result, you get increased security beyond the traditional stateful firewall and web filter while removing one or more web proxies from your environment. Further, rich dashboards and reporting deliver the visibility and control you expect from a next generation firewall.
Top Rated Protection
Finally, these features of the FortiGate FortiOS Network Security Platform are routinely submitted to independent real-world tests so you can be confident in their effectiveness. You can also see how they stack up against the competition. Fortinet FortiGate NGFW appliances deliver all of this at an affordable price that fits your constrained budgets.
Designed for Today’s network security requirements
- Powered by FortiASICs that delivers unmatched cost performance.
- Runs on FortiOS 5 - the most powerful security operating system in the world delivers more security to fight advanced threats, more control to secure mobile devices, and more intelligence to build secure policies
- Backed by Fortinet’s global FortiCare technical support and FortiGuard threat research teams for around-theclock protection and support
Key Features & Benefits |
Industry Validation |
Enjoy confidence in the quality of your next generation firewall |
High Performance Appliances and Integrated Security Architecture |
Superior performance, enabling greater device consolidation, easier management and lower cost |
Central Management and Reporting |
Robust management systems that allows rapid provision and deployment, monitoring of device and threat status while providing actionable reports.. |
Hardware:
Interfaces
- Console Port (RJ45)
- 2x USB Ports
- 2x GE RJ45 Management Ports
- 4x GE RJ45 Ports
- 4x GE SFP Slots
- FRPS Connector
Powered by FortiASICs
- Custom FortiASIC™ processors deliver the power you need to detect malicious content at multi-Gigabit speeds
- Other security technologies cannot protect against today’s wide range of content- and connection-based threats well because they rely on general-purpose CPUs, causing a dangerous performance gap.
- FortiASIC processors provide the performance needed to block emerging threats, met rigorous thirdparty certifications, and ensure that your network security solution does not become a network bottleneck.
Content Processor
The FortiASIC CP8 content processor works outside of the direct flow of traffic, providing high-speed cryptography and content inspection services including:
- Signature-based content inspection acceleration
- Encryption and decryption offloading
Network Processor
Fortinet’s new, breakthrough FortiASIC NP6 network processor works inline with FortiOS functions delivering:
- Superior firewall performance for IPv4/IPv6, SCTP and multicast traffic with ultralow latency down to 2 microseconds
- VPN, CAPWAP and IP tunnel acceleration
- Anomaly-based intrusion prevention, checksum offload and packet defragmentation
- Traffic shaping and priority queuing
Deployment:
FortiGate deployed as branch office firewall
Branch Office Firewall
Today’s branch office security gateway is no longer just a basic firewall and site-to-site VPN gateway. With the prevalent adoption of cloud based applications - both public and private, there are more associated requirements for both access availability and security. A security gateway will need robust network and high availability capabilities that include intelligent WAN link forwarding and flexible network deployment options. From the security perspective, a branch office firewall should provide abilities to identify users, locations, devices and applications; thereby control access with finer granularity and visibility. With Fortinet solution for enterprises, branch offices can enjoy significant protection with centralized facilities such as File Analysis using the FortiSandbox and FortiAuthenticator for user access management.
Mid Enterprise Edge Firewall
Fortinet’s Midrange firewalls are perfect for growing mid enterprises with their agile and high performance network security capabilities. The FortiGate 300D and 500D not only deliver protection exceeding expectations, they are suitable for consolidating other security components. This allows organizations to significantly reduce TCOs and simplifies the network. Unlike other NGFWs (Next Generation Firewalls), the FortiGates are powered by FortiASICs which provide security without compromises performance. They run on the World’s most advanced Security operating systems that meet each organizations unique requirements. Advanced features such as integrated endpoint control and token server helps organizations to rapidly deploy enhanced security to their mobile workforce while device based policies aid to implement BYOD securely.
FortiGate deployed as mid enterprise edge firewall
Powerful application control with granular settings
Proven with Industry Validation
3rd party industry certifications, as well as real-world effectiveness and performance tests assure quality and providing you best-of-breed protection.
Ease of Use
FortiOS lowers operational costs and reduces IT staff workload. Single pane of glass management and centralized analysis ensure consistent policy creation and enforcement while minimizing deployment and configuration challenges.
In-depth Visibility & Reporting
Through FortiView, a collection of flexible widget-based views with drill-down capabilities, FortiOS allows administrators to quickly visualize and understand recent network activities and threat situations.
Detailed logs offers deep insights to sessions that passed through the FortiGate while comprehensive reports helps organizations to trend network usage accurately.
Powerful Policy Management
Two types of policy management views - global and section view - are available to suit your preferences. Policy objects can be easily edited, duplicated or moved from the policy table. Robust management features include policy object search, tagging, sorting and filtering.
With FortiManager integration, you have the ability to set up sophisticated policy implementation and provisioning workflows to meet compliance or operational requirements. The FortiManager also offers logging and reporting module that simplified and reduced TCO.
Identity Centric Enforcement
FortiOS supports both local and remote authentication services such as LDAP, Radius and TACACS+ to identify users and apply appropriate access policies and security profiles accordingly. It can simplify identity based implementations and provide a seamless user authorization experience with single sign-on capabilities. FortiOS has strong PKI and certificatebased authentication services while also integrating an internal two factor authentication server for additional security.
To tackle security for today’s prevalent use of personal devices, FortiOS offers state-of the art device identification capabilities that empower organization to set up more intelligent security policies.
Granular Application Control
Advanced application control with ability to control discrete functions lets you define and enforce policies for thousands of applications running across networks regardless of port or the protocol used for communication.
Features:
Highly Effective IPS
Over 8,000 IPS signatures enables you to stop attacks that have evaded most conventional firewalls. Additionally, FortiOS also offers behavior-based heuristics settings that recognize zero day threats for which no signature has been created.
Beyond Next Generation Firewall Capabilities
Our Secure Web Gateway capabilities allow you to prevent end users from unknowingly visiting malicious sites, shield them from inappropriate material out on the Internet, and maintain a safe and productive work environment. Real-time dashboards provide administrators visibility into end user activity while rich reporting keeps executives up to date. An advanced policy engine gives you the tools you need- such as time-based quotas, user over rides and more- to implement balanced policies.
Recognizing that despite all of the latest security controls, targeted threats may still slip through, organizations have the opportunity to add an additional layer of inspection, focused on advanced threat detection in complement to established threat prevention. Often referred to as “sandboxing” or breach detection, Fortinet offers on-premise and cloud-based options to extend your next generation firewall.
FortiView - real-time query widget with drill-down panels
FortiGuard Security Services & FortiCare Support
- Cutting Edge Security Expertise
Our team of over 200 security researchers, vast data collection and state-of-the-art analysis systems across the globe examining the latest cyber-criminal activities and techniques to deliver real-time protection for your organization. With high marks attained by 3rd party evaluations, customers are assured of quality and credible security updates against the evolving sophisticated or targeted threats.
- World-Class Support
It is critical to keep your network running properly and be able to resolve issues quickly. Our large team of knowledgable and responsive technical support engineers, together with comprehensive self-help resources are always ready to assist you in time of critical needs. In additional, Fortinet also offers a variety of support offerings that caters to your organizations and project requirement.
Specifications:
FortiGate 300D Specifications |
GE RJ45 Interfaces |
6 |
GE SFP Slots |
4 |
USB (Client / Server) |
1/2 |
RJ-45 Console Port |
1 |
Local Storage |
120 GB SSD |
IPv4 Firewall Throughput (1518 / 512 / 64 byte, UDP) |
8 / 8 / 8 Gbps |
Firewall Latency (64 byte, UDP) |
3 μs |
Firewall Throughput (Packet per Second) |
12 Mpps |
Concurrent Sessions (TCP) |
6 Mil |
New Sessions/Sec (TCP) |
200,000 |
Firewall Policies |
10,000 |
IPSEC VPN Throughput (512 byte) |
7 Gbps |
Gateway-to-Gateway IPSec VPN Tunnels |
2,000 |
Client-to-Gateway IPSec VPN Tunnels |
10,000 |
SSL VPN Throughput |
350 Mbps |
Concurrent SSL-VPN Users (recommended Max) |
500 |
IPS Throughput |
2.8 Gbps |
Antivirus Throughput (Proxy Based / Flow Based) |
1.4 / 2.5 Gbps |
Virtual Domains (Default / Max) |
10 / 10 |
Max Number of FortiAPs (Total / Tunnel) |
512 / 256 |
Max Number of FortiTokens |
1,000 |
Max Number of Registered Endpoints |
600 |
High Availability Configurations |
Active-Active, Active-Passive, Clustering |
Height x Width x Length |
1.73 x 17 x 12.68 in
(44 x 432 x 322mm) |
Weight |
10.5 lbs / 4.8 kg |
Form Factor |
1 RU |
Power Consumption (Avg/Max) |
106 W / 194 W |
Current (Max) |
110V/4A, 220V/2A |
Heat Dissipation |
660 BTU/h |
Operating Temperature |
32 - 104 °F (0 - 40 °C) |
Storage Temperature |
-31 - 158 °F (-35 - 70 °C) |
Humidity |
20% to 90% non-condensing |
Compliance |
FCC Part 15 Class A, C-Tick, VCCI, CE, UL/cUL, CB |
Certifications |
ICSA Labs: Firewall, IPSec, IPS, Antivirus, SSL VPN |
Note: All performance values are “up to” and vary depending on system configuration. Antivirus performance is measured using 44 Kbyte HTTP files. IPS performance is measured using 1 Mbyte HTTP files. IPSec VPN performance is based on 512 byte UDP packets using AES-256+SHA1.