FortiAnalyzer

Security Fabric Analytics & Automation

Download FortiAnalyzer Solution Brief
web product icon fortianalyzer

FortiAnalyzer Overview

The digital attack surface is expanding at a rapid rate, making it increasingly difficult to protect against advanced threats. According to a recent Ponemon study, nearly 80% of organizations are introducing digital innovation faster than their ability to secure it against cyberattacks. In addition, the challenges of complex and fragmented infrastructures continue to enable a rise in cyber events and data breaches. Assorted point security products in use at some enterprises typically operate in silos, obscuring network and security operations teams from having clear and consistent insight into what is happening across the organization.

An integrated security architecture with analytics and automation capabilities can address and dramatically improve visibility and automation. As part of the Fortinet Security Fabric, FortiAnalyzer provides security fabric analytics and automation to provide better detection and response against cyber risks.

 

FortiAnalyzer Videos

Analytics-Powered Security & Log Management

Ponemon recently came out with a study where they interviewed more than 2200 IT and Security professionals that had experienced a data breach – What they concluded as part of that research was that 48% are because of Malicious or Criminal attack. In this video, learn how FortiAnalyzer can help address this root cause and protect against these threats.

지금 보기
Enterprise Grade Integrations with FortiManager and FortiAnalyzer
FortiAnalyzer: Key Use Cases & Capabilities
FortiAnalyzer Video

  

Features and Benefits

visibility icon

End-to-end visibility with event correlation and threat detection

Reduce time to detection by leveraging Indicator of Compromise (IOC) service to quickly identify threat across your network
analytics icon

Enterprise-grade high availability

Automatically backs up the FortiAnalyzer database to up to four nodes in a cluster that can be geographically dispersed for disaster recovery. One of the secondary nodes can easily become a primary node.
icon benefits variety of settings

Advanced compliance reporting

Provides hundreds of pre-built reports and templates which are regulation-specific to make proving compliance easy.
Icon automation

Security automation

Reduces complexity and cost leveraging automation enabled via REST API, scripts, connectors, and automation stiches.
icon integration

Enterprise-ready integrations

Provides turn-key integration with no extra charge for trusted partner products such as Splunk, IBM QRadar, ServiceNow, Tufin, and AlgoSec. 
icon benefits infra transform1

Multi-tenancy and administrative domains (ADOMs)

Separate customer data and manage domains leveraging ADOMs to be compliant and operationally effective.

FortiAnalyzer Models and Specifications

Analytics Sustained Rate (logs/sec)
Starts at 300,000
저장 용량
200TB
Form Factor
4 RU
HA
Built-in HA
GB/로그일
100
수집기 지속 속도(로그/초)
3,000
저장 용량
4TB
GB/로그일
150
수집기 지속 속도(로그/초)
4,500
저장 용량
8TB
GB/로그일
200
수집기 지속 속도(로그/초)
6,000
저장 용량
12TB
GB/로그일
300
수집기 지속 속도(로그/초)
8,250
저장 용량
16TB
GB/로그일
600
수집기 지속 속도(로그/초)
18,000
저장 용량
32TB
GB/로그일
1,000
수집기 지속 속도(로그/초)
30,000
저장 용량
36TB
GB/로그일
5,000
수집기 지속 속도(로그/초)
42,000
저장 용량
48TB
GB/로그일
5,000
수집기 지속 속도(로그/초)
60,000
저장 용량
96TB
GB/로그일
8,300
수집기 지속 속도(로그/초)
100,000
저장 용량
240TB

FortiAnalyzer virtual machines are all supported on AWS, Google Cloud, Oracle Cloud, Ali Cloud, Nutanix AHV, VMware vSphere, Citrix Xen Server, Xen, KVM, and Microsoft Hyper-V.

GB/로그일
1
저장 용량
500 GB
GB/로그일
+1
저장 용량
+500 GB
GB/로그일
+5
저장 용량
+3 TB
GB/로그일
+25
저장 용량
+10 TB
GB/로그일
+100
저장 용량
+24 TB
GB/로그일
+500
저장 용량
+48 TB
GB/로그일
+2,000
저장 용량
+100 TB
FortiAnalyzer-VM Subscription License with Support
FC1-10-AZVMS-431-01-DD
Central Logging & Analytics subscription for 5 GB/Day logs. Include 24x7 FortiCare support, IOC, SOAR/SIEM services.
FC2-10-AZVMS-431-01-DD
Central Logging & Analytics subscription for 50 GB/Day logs. Include 24x7 FortiCare support, IOC, SOAR/SIEM services.
FC3-10-AZVMS-431-01-DD
Central Logging & Analytics subscription for 500 GB/Day logs. Include 24x7 FortiCare support, IOC, SOAR/SIEM services.

FortiAnalyzer Cloud

Cloud-based central logging and reporting service for all FortiGate devices. FortiCloud Premium customers can easily enable the FortiAnalyzer Cloud service and get real-time network insights leveraging the FortiGate deployment.

FortiAnalyzer virtual machines are available on Amazon Web Services and Microsoft Azure.

Building a Cybersecurity Workforce

Advanced training for security professionals, technical training for IT professionals, and awareness training for teleworkers.

더 알아보기

Resources

product demo fortianalyzer

FortiAnalyzer Demo

FortiAnalyzer는 Fortinet 보안 패브릭을 위한 중앙 네트워크 보안 로그 기록 및 보고를 제공합니다. FortiAnalyzer는 FortiGate, FortiMail, FortiWeb 장치 등의 여러 다운스트림 Fortinet 장치에서 인바운드 로그를 허용합니다. 개별 이벤트 로그 보기/필터링, 보안 보고서 생성, 동작 기반 경고, 드릴 다운 방식을 통한 활동 조사와 같은 기능은 모두 FortiAnalyzer의 주요 기능입니다. 이 데모에서는 애플리케이션 통합 뷰, 웹 사용량, 네트워크에 영향을 미칠 수 있는 악의적인 동작과 같은 네트워크 가시성을 어떻게 표현하는지 알아봅니다. 

Access the demo

Analytics Alliance Partners

FortiAnalyzer provide integration with many leading vendors as part of the Fortinet Security Fabric.  

Below is a list of current Product Alliance Partners:

Analytics FAQs

Does FortiManager manage FortiAnalyzer? 

Yes. This is the recommended deployment, actually. When FortiManager is managing FortiAnalyzer, all FortiAnalyzer interface tiles come up alongside FortiManager tiles, enabling all workflows.    

Should I go with FortiManager or FortiCloud?    

FortiCloud is a cloud-based service that streamlines deployment, management and reporting for FortiGate and Unified Access products. It is a simple solution that provides the basics of management and configuration. FortiManager (and FortiAnalyzer) is the full-featured central management solution for Fortinet products. Advanced configurations, workflows and reporting (through FortiAnalyzer) are available here. Your organization’s needs will dictate whether a simplified cloud service or full-featured appliance (hardware or virtual) that you manage is a better fit.    

If I only have a few FortiGates, do I need central management?      

While all FortiGate configurations can be done locally, the time saved managing elements of or a complete central policy is a strong benefit in going with FortiManager. FortiAnalyzer greatly extends reporting and analysis capabilities for FortiGate both in breadth by combining data from multiple FortiGates into a single perspective, as well as in depth with much longer reporting horizons and advanced features found in Event Manager and the FortiGuard IOC service.