Public Cloud Security

Protect Your Workloads in the Cloud

Read the white paper: Securing Your Public and Hybrid Cloud
适用于:

FortiGate Cloud Firewall Overview

Public clouds provide elastic and scalable infrastructure for applications, storage, and data that changes the way the world does business.  When infrastructure is offloaded to leading cloud providers such as Amazon Web Services (AWS) and Microsoft Azure, network security becomes a shared responsibility between the cloud service provider (CSP) and the enterprise tenant. Fortinet enables secure workloads in public clouds to ensure privacy and confidentiality while leveraging the cloud benefits of scalability, metering, and time-to-market.

 

FortiGate Cloud Firewall News

Fortinet Expands Fabric-Ready Partner Program with Fabric Connectors

5/22/2018: Fabric Connectors provide open, one-click integration with alliance partner technologies to automate security operations, policies and DevOps processes

 

Amazon GuardDuty and Automating Cloud Security with the Security Fabric

05/15/2018: Fortinet is excited to announce the integration of the Security Fabric with Amazon GuardDuty to automate remediation and threat intelligence in Amazon Web Services.

 

Fortinet FortiGate Virtual Machine Now Available for Google Cloud Platform

2/5/2018: FortiGate virtual appliance provides Google Cloud enterprise customers with secure workload and application.

FortiGate Cloud Videos

Cloud Security Automation with AWS Auto Scaling
Cloud Security Solution

 

 

FortiGate Cloud Firewall Product Details

Organizations adoption public clouds need to gain visibility and maintain consistent security policy as workloads, users, and data migrate to more agile, elastic, and virtualized infrastructure. The FortiGate cloud firewall provides proven security while realizing the flexibility and benefits of a virtual instance: unmatched ROI, rapid provisioning, and unlimited scalability.

To provide consistently top-rated security, greater visibility, and unmatched performance, FortiGate cloud firewalls give you the unique combination of the most advanced threat intelligence from FortiGuard Labs with a common FortiOS Operating System, simplifying management across cloud deployments.

   

Features and Benefits

Icon automation

Extensible management interface - API's for cloud automation and orchestration

analytics icon

Flexible pay-as-you-go billing and licensing options

cloud ready icon

Support for leading IaaS platforms including AWS, Azure, and all of the top five public clouds

Compliance icon

Consistent security across the public and hybrid cloud

icon benefits scalable

Scalable protection for elastic workloads

platform support icon

Segmentation between and within clouds

Fabric Connectors:

Fortinet Fabric Connectors deliver open integration of Security Fabric with SDN/private cloud, public cloud and multiple partner technology platforms. Easy to download and deploy, Fabric Connectors automate security synchronization across multi-vendor environments, reduce the security management burden, and close security gaps.  

Fabric Connectors for Public Cloud include: 

 

 

Learn more about Fabric Connectors

Fortinet Cloud Security Products by Cloud Provider

The Fortinet network security product line is available on all of the leading cloud providers by using a BYOL procurement model as well as on-demand per-usage (PAYG) models billed directly by the cloud provider. Fortinet enables customers to protect their cloud based infrastructures and applications using the most flexible deployment modes across a variety of use cases and cloud infrastructure providers. 

Fortinet offers its industry leading series of network security products over the AWS Public Cloud enabling customers advanced security protection for their cloud based infrastructure and applications. Following is a list of products that can be purchased directly from the AWS Marketplace on a PAYG basis. 

Fortinet offers additional products running over the AWS Public cloud - the following list can be viewed using this link.

Fortinet offers its industry leading series of network security products over the Microsoft Azure Public Cloud enabling customers advanced security protection for their cloud based infrastructure and applications. Following is a list of products that can be purchased directly from the Azure Marketplace on a PAYG basis. 

Fortinet offers additional products running over the Azure Public cloud - the following list can be viewed using this link.

 

Fortinet offers its industry leading series of network security products over the Google Cloud Platform Public Cloud (GCP) enabling customers advanced security protection for their cloud based infrastructure and applications. Following is a list of products that are available on GCP.

Fortinet offers its industry leading series of network security products over the Oracle Cloud Public Cloud enabling customers advanced security protection for their cloud based infrastructure and applications. Following is a list of products that are available on Oracle Cloud.

FortiGuard Services

FG Application Control

Application Control

Improve security and meet compliance with easy enforcement of your acceptable use policy through unmatched, real-time visibility into the applications your users are running. With FortiGuard Application Control, you can quickly create policies to allow, deny, or restrict access to applications or entire categories of applications.

FG Web Filtering

Web Filtering

Protects your organization by blocking access to malicious, hacked, or inappropriate websites.

Icon cloudsandbox

FortiSandbox Cloud

FortiSandbox Cloud Service is an advanced threat detection solution that performs dynamic analysis to identify previously unknown malware. Actionable intelligence generated by FortiSandbox Cloud is fed back into preventive controls within your network—disarming the threat.

FG Antivirus

Antivirus

FortiGuard Antivirus protects against the latest viruses, spyware, and other content-level threats. It uses industry-leading advanced detection engines to prevent both new and evolving threats from gaining a foothold inside your network and accessing its invaluable content.

Credential Stuffing Defense Icon

Content Disarm & Reconstruction

Content Disarm & Reconstruction (CDR) strips all active content from files in real-time, creating a flat sanitized file. All active content is treated as suspect and removed. CDR processes all incoming files, deconstructs them, and removes all elements that do not match firewall policies.

FG Intrusion Prevention

Intrusion Prevention

FortiGuard IPS protects against the latest network intrusions by detecting and blocking threats before they reach network devices.

Security Rating Service icon

Security Rating

Security Audit Update Service is intended to guide customers to design, implement and continually maintain the target Security Fabric security posture suited for their organization. The Security Fabric is fundamentally built on security best practices and by running these audit checks, security teams will be able to identify critical vulnerabilities and configuration weaknesses in their Security Fabric setup, and implement best practice recommendations.

icon product menu cloud access security broker

FortiCASB

FortiCASB is a cloud-native Cloud Access Security Broker (CASB) subscription service that is designed to provide visibility, compliance, data security, and threat protection for cloud-based services being used by an organization. With support for major SaaS service providers, FortiCASB provides insights into users, behaviors, and data stored in the cloud with comprehensive reporting tools.

FG AntiBotnet

IP Reputation & Anti-botnet Security

The FortiGuard IP Reputation Service aggregates malicious source IP data from the Fortinet distributed network of threat sensors, CERTs, MITRE, cooperative competitors, and other global sources that collaborate to provide up-to-date threat intelligence about hostile sources. Near real-time intelligence from distributed network gateways combined with world-class research from FortiGuard Labs helps organizations stay safer and proactively block attacks.

FG Mobile Security

Mobile Security

Fortinet’s Mobile Security Service provides effective protection against the latest threats targeting mobile devices. It employs industry-leading advanced detection engines to prevent both new and evolving threats from gaining a foothold inside your network and gaining access to its invaluable information.

Industrial Control systems icon

Industrial Control Systems

The FortiGuard Industrial Security Service continuously updates signatures to identify and police most of the common ICS/SCADA (supervisory control and data acquisition) protocols for granular visibility and control. Additional vulnerability protection is provided for applications and devices from the major ICS manufacturers.

FG AntiSpam

Antispam

FortiGuard Antispam provides a comprehensive and multi-layered approach to detect and filter spam processed by organizations. Dual-pass detection technology can dramatically reduce spam volume at the perimeter, giving you unmatched control of email attacks and infections.

 

FortiGuard Service Bundles for FortiGate

Enterprise Protection Bundle
Protection to address today's advanced threat landscape. It delivers all FortiGuard security services available for the FortiGate including: NGFW Application Control and IPS, Web Filtering, FortiCloud Sandbox, Antivirus, Mobile Security, IP Reputation & Antibotnet, Antispam, and core FortiCare security services with a choice of 8x5 or 24x7 support.

UTM Protection Bundle
Traditional UTM security services including NGFW Application Control and IPS, Web Filtering, Antivirus, Antispam, and core FortiCare security services with a choice of 8x5 or 24x7 support

Threat Protection Bundle 
Core protection technologies including: Application Control, IPS, AV, Botnet IP/Domain and Mobile Malware Service. FortiCare security services include 24x7 support. 

Product Demo

The FortiGate cloud firewall can be demonstrated as a free trial directly from leading public cloud marketplaces, with cloud-native scripts available to automatically deploy FortiGate in common cloud usage scenarios.  Trial instances are fully functional and can be converted into paid instances – see each cloud marketplace for more details. 

Public Cloud Security

FortiGate Cloud Firewall Alliance Partners

 

Amazon Web Services

Amazon Web Services

AWS services are trusted by more than a million active customers around the world – including the fastest growing startups, largest enterprises, and leading government agencies – to power their infrastructures, make them more agile, and lower costs.

Solution brief

Learn more on the Fortinet-AWS alliance

 
IBM Security

IBM

IBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The portfolio enables organizations to effectively manage risk and defend against emerging threats.

 

Microsoft Azure

Microsoft Azure

Microsoft is the leading platform and productivity company for the mobile-first, cloud-first world, and its mission is to empower every person and every organization on the planet to achieve more.

Oracle

Oracle

Oracle offers a comprehensive and fully integrated stack of cloud applications and platform services.

Solution brief

Google Cloud Platform

Google Cloud Platform

Google Cloud Platform is a secure, dedicated public cloud computing service operated by Google which provides a range of infrastructure and application services that enable deployments in the cloud. FortiGate provides critical firewalling and advanced security for Google Cloud Platform regions. Fortinet provides scalable BYOL protection for elastic compute, container, and machine-learning workloads in Google’s innovative public cloud.

Solution brief