Introduction to the 3rd Gen Fortinet Security Fabric TALK ON STRATEGY LTD Authorized Fortinet Partner Last Release Date : September 2018 Presented by: George Raikos

Emerging Security Challenges Fortinet’s mission is to deliver the most innovative, highest performing network security fabric to simplify and securely implement your IT infrastructure Strategy Today’s Network Is Borderless Slow Is Broken Complexity Is The Enemy of Security Telco Enterprise SMB Enterprise Firewall Cloud Security ATP Application Security Secure Access Security Operations

BROAD POWERFUL AUTOMATED 3rd Generation Security Fabric Advanced Threat Intelligence Access Client Cloud Partner API NOC/SOC Network Application BROAD POWERFUL AUTOMATED 3rd Generation Security Fabric

Broad – The Fabric Gives You Complete Visibility, Coverage and Flexibility Across The Entire Dynamic Attack Surface Visibility Coverage Flexible/Open Cloud Security Application Security Network Security Access Security Client/IoT Security

Virtualization & SDN/NFV Broad, all-inclusive interoperability : The Fabric Allows Flexible, Scalable, Open Integration of other Security Partners Virtualization & SDN/NFV CLOUD ENDPOINT & IoT MANAGEMENT SYSTEMS INTEGRATOR SIEM

Security Processor Unit (SPU’s) Parallel Path Processing Powerful, dedicated Security Processor Unit – Increasing Performance Reduces The Burden on Infrastructure Security Processor Unit (SPU’s) Parallel Path Processing Comprehensive Range 1 Tbps Accelerates Network Traffic High End Accelerates Content Inspection Mid Range Optimized Performance for Entry Level Entry Level Main Performance Objective : Wherever security is deployed across the environment, it must operate at the speed of the network.

Real-time sharing of global and local threat intelligence. Automated Action to Provide a Fast, Coordinated Response to Threats Global & Local Audit & Recommend Coordinated Known Threats FortiGuard Demo_ISFW-Sales FP320C3X15002440 ISFW-PRI Demo_ISFW-Finance 2.62 GB Unknown Threats FortiSandbox Demo_ISFW-ENG Real-time sharing of global and local threat intelligence. Protect in a matter of seconds

Intent-based Network Security, Powered by Fabric Automatically Translate Business Needs to Infrastructure Policies Business Language Fabric Translation Apply to Fabric “Add This Mobile Phone to This Application Securely” “Convert into Policies, Ports, Connections…”

Resting on a series of open API standards THE FORTINET SECURITY FABRIC The Fortinet Security Fabric is the vision that delivers on the promise of Security without Compromise: Broad, Powerful & Automated Advanced Threat Intelligence Access Client Cloud Partner API NOC/SOC Network Application Resting on a series of open API standards

THE FORTINET SECURITY FABRIC A brief outline of the Enterprise Firewall Implementation

FORTINET SECURITY FABRIC Fortinet’s Enterprise Firewall Solution Sandbox DATA CENTER/PRIVATE CLOUD Endpoint Protection Secure Access Point NGFW Virtual Firewall Top-of-Rack Switching Cloud-IaaS SDN, Virtual Firewall Database Protection Internal Segmentation FW Internal Segmentation FW Web Servers Application Delivery Controller IP Video Security Web Application Firewall PUBLIC CLOUD Internal Segmentation FW CAMPUS Email Server DCFW/ NGFW Distributed Ent FW Email Security Cloud-SaaS Internal Segmentation FW Client Devices Client Devices LTE Extension DDoS Protection FortiCloud Sandbox BRANCH OFFICE OPERATIONS CENTER

FORTINET SECURITY FABRIC Fortinet’s Enterprise Firewall Solution ENTERPRISE FIREWALL Sandbox DATA CENTER/PRIVATE CLOUD Endpoint Protection Secure Access Point FortiGate NGFW Virtual Firewall Top-of-Rack Switching Cloud-IaaS SDN, Virtual Firewall Database Protection FortiGate Internal Segmentation FW FortiGate Internal Segmentation FW Web Servers Application Delivery Controller IP Video Security Web Application Firewall PUBLIC CLOUD FortiGate Internal Segmentation FW CAMPUS Email Server FortiGate DCFW/ NGFW FortiGate/FortiWiFi Distributed Ent FW Email Security Cloud-SaaS Client Devices FortiGate Internal Segmentation FW Client Devices LTE Extension FortiAnalyzer DDoS Protection FortiCloud Sandbox FortiGuard Threat Intelligence BRANCH OFFICE FortiManager FortiSIEM OPERATIONS CENTER

FORTINET SECURITY FABRIC Fortinet’s Enterprise Firewall Solution ENTERPRISE FIREWALL CLOUD SECURITY Sandbox DATA CENTER/PRIVATE CLOUD Endpoint Protection Secure Access Point FortiGate NGFW Fortinet Virtual Firewall Top-of-Rack Switching Cloud-IaaS FortiGate VMX SDN, Virtual Firewall Database Protection FortiGate Internal Segmentation FW FortiGate Internal Segmentation FW Web Servers Application Delivery Controller IP Video Security Web Application Firewall PUBLIC CLOUD FortiGate Internal Segmentation FW CAMPUS Email Server FortiGate DCFW/ NGFW FortiGate/FortiWiFi Distributed Ent FW Email Security Cloud-SaaS Client Devices FortiGate Internal Segmentation FW Client Devices LTE Extension FortiAnalyzer DDoS Protection FortiCloud Sandbox Fortinet Cloud Security BRANCH OFFICE FortiManager FortiSIEM OPERATIONS CENTER

FORTINET SECURITY FABRIC Fortinet’s Enterprise Firewall Solution ADVANCED THREAT PROTECTION CLOUD SECURITY ENTERPRISE FIREWALL FortiSandbox DATA CENTER/PRIVATE CLOUD FortiClient Secure Access Point FortiGate NGFW Fortinet Virtual Firewall Top-of-Rack Switching Cloud-IaaS FortiGate VMX SDN, Virtual Firewall Database Protection FortiGate Internal Segmentation FW FortiGate Internal Segmentation FW Web Servers Application Delivery Controller IP Video Security FortiWeb Web Application Firewall PUBLIC CLOUD FortiGate Internal Segmentation FW CAMPUS Email Server FortiGate DCFW/ NGFW FortiCloud Sandboxing FortiGate/FortiWiFi Distributed Ent FW FortiMail Email Security Cloud-SaaS FortiClient FortiGate Internal Segmentation FW FortiClient LTE Extension FortiAnalyzer DDoS Protection FortiCloud FortiSandbox UKNOWN THREATS Advanced Threat Protection (ATP) BRANCH OFFICE FortiManager FortiSIEM OPERATIONS CENTER

FORTINET SECURITY FABRIC Fortinet’s Enterprise Firewall Solution APPLICATION SECURITY ENTERPRISE FIREWALL ADVANCED THREAT PROTECTION CLOUD SECURITY FortiSandbox DATA CENTER/PRIVATE CLOUD FortiClient Secure Access Point FortiGate NGFW Fortinet Virtual Firewall Top-of-Rack Switching Cloud-IaaS FortiGate VMX SDN, Virtual Firewall FortiDB Database Protection FortiGate Internal Segmentation FW FortiGate Internal Segmentation FW FortiADC Application Delivery Controller Web Servers IP Video Security FortiWeb Web Application Firewall PUBLIC CLOUD FortiGate Internal Segmentation FW CAMPUS Email Server FortiGate DCFW/ NGFW FortiCloud Sandboxing FortiGate/FortiWiFi Distributed Ent FW FortiMail Email Security Cloud-SaaS FortiClient FortiGate Internal Segmentation FW FortiClient LTE Extension FortiAnalyzer FortiDDoS Protection FortiCloud FortiSandbox Data Center Application Security BRANCH OFFICE FortiManager FortiSIEM OPERATIONS CENTER

FORTINET SECURITY FABRIC Fortinet’s Enterprise Firewall Solution SECURE ACCESS APPLICATION SECURITY ENTERPRISE FIREWALL ADVANCED THREAT PROTECTION CLOUD SECURITY FortiSandbox DATA CENTER/PRIVATE CLOUD FortiClient Secure Access Point FortiGate NGFW Fortinet Virtual Firewall Top-of-Rack Cloud-IaaS FortiSwitch Switching FortiGate VMX SDN, Virtual Firewall FortiDB Database Protection FortiGate Internal Segmentation FW FortiGate Internal Segmentation FW FortiADC Application Delivery Controller Web Servers IP Video Security FortiWeb Web Application Firewall PUBLIC CLOUD FortiSwitch Switching FortiGate Internal Segmentation FW CAMPUS Email Server FortiCloud AP Management FortiGate DCFW/ NGFW FortiCloud Sandboxing FortiGate/FortiWiFi Distributed Ent FW FortiMail Email Security Cloud-SaaS FortiClient FortiGate Internal Segmentation FW FortiClient FortiExtender LTE Extension FortiAnalyzer FortiDDoS Protection FortiCloud FortiSandbox FortiGate Secure Access Architecture BRANCH OFFICE FortiManager FortiSIEM OPERATIONS CENTER

Security Fabric Secured by FortiGuard Firewall VPN Application Control App Control Antivirus Anti-spam IPS NEW Web Filtering Anti-malware IPS Web App Database WAN Acceleration Mobile Security Data Leakage Protection Wi-Fi Controller Web Filtering Vulnerability Management IP Reputation Advanced Threat Protection FortiGuard Security Services