An intrusion prevention system (IPS) is a critical component of every network’s core security capabilities. It protects against known threats and zero-day attacks including malware and underlying vulnerabilities. Deployed inline as a bump in the wire, many solutions perform deep packet inspection of traffic at wire speed, requiring high throughput and low latency.
Fortinet delivers this technology via the industry-validated and recognized FortiGate platform. FortiGate security processors provide unparalleled high performance, while FortiGuard Labs informs industry-leading threat intelligence, which creates a proven success in protecting from known and zero-day threats. As a key component of the Fortinet Security Fabric, FortiGate IPS secures the entire end-to-end infrastructure without compromising performance.
FortiGate IPS is available in different form factors and models to meet the needs of your environment. All models offer full FortiGate IPS functionality and can be managed across all form factors in a single FortiManager-FortiAnalyzer instance.
View by:
IPS Throughput |
120 Gbps |
Ports |
Varied |
IPS Throughput |
60 Gbps |
Ports |
Varied |
IPS Throughput |
60 Gbps |
Ports |
Varied |
IPS Throughput |
18 Gbps |
Ports |
2x 40GE QSFP+, 2x 10GE SFP+, 2x GE RJ45 |
IPS Throughput |
170 Gbps |
Ports |
4x 100GE QSFP28, 24x 25GE SFP28, 3x 10GE SFP+,2x GE RJ45 |
IPS Throughput |
110 Gbps |
Ports |
4x 100GE QSFP28, 24x 25GE SFP28, 3x 10GE SFP+,2x GE RJ45 |
IPS Throughput |
50 Gbps |
Ports |
Multiple 100 GE/40GE QSFP28, multiple 25GE/10 GE SFP28/SFP+, two 10GE SFP+ HA, multiple 1 GE RJ45 |
IPS Throughput |
32 Gbps |
Ports |
10x 100GE QSFP28,16x 10GE SFP+, 2x GE RJ45 |
IPS Throughput |
30 Gbps |
Ports |
6x 100GE QSFP28, 16x 10GE SFP+, 2x GE RJ45 |
IPS Throughput |
30 Gbps |
Ports |
4x 100GE CFP2, 4x 40GE QSFP+ 8x 10GE SFP+, 2x GE RJ45 |
IPS Throughput |
28 Gbps |
Ports |
4x 40GE QSFP+, 20x 10GE SFP+/GE SFP, 8x SFP+, 2x GE RJ45 |
IPS Throughput |
55 Gbps |
Network Interfaces |
6x100GE/40GE QSFP28, 30x10GE SFP/SFP+, 2xGE RJ45 |
IPS Throughput |
44 Gbps |
Network Interfaces |
4x100GE/40GE QSFP 28, 22x10GE SFP/SFP+, 2xGE RJ45 |
IPS Throughput |
TBD |
Network Interfaces |
4x 40GE QSFP+, 16x 25GE SFP28 / 10GE SFP+, 14x GE RJ45, 4X 10GE RJ45 |
IPS Throughput |
26 Gbps |
Ports |
48x 10GE SFP+/GE SFP, 2x GE RJ45 |
IPS Throughput |
22 Gbps |
Ports |
32x 10GE SFP+/GE SFP, 2x GE RJ45 |
IPS Throughput |
23 Gbps |
Ports |
16x 10GE SFP+/GE SFP, 2x GE RJ45 |
IPS Throughput |
11.5 Gbps |
Ports |
10x 10GE SFP+, 2x 10GE SFP+ bypass, 34x GE RJ45 |
IPS Throughput |
TBD |
Network Interfaces |
4x 40GE QSFP+, 20x 25GE SFP28 / 10GE SFP+, 14x GE RJ45 |
IPS Throughput |
11.5 Gbps |
Ports |
6x 10GE SFP+, 34x GE RJ45 |
IPS Throughput |
18 Gbps |
Network Interfaces |
4x 40GE QSFP+ 12x 25GE SFP28 / 10GE SFP+, 2x 10GE SFP+ HA 8x GE SFP 18x GE RJ45 |
IPS Throughput |
13 Gbps |
Ports |
8x 10GE SFP+/GE SFP, 16x GE SFP, 18x GE RJ45 |
IPS Throughput |
6.8 Gbps |
Ports |
4x 10GE SFP+/GE SFP, 16x GE SFP, 18x GE RJ45 |
IPS Throughput |
12.5 Gbps |
Network Interfaces |
2x40GE QSFP+ 4x25GE SFP28, 4x10GE SFP+/SFP, 8x1GE SFP, 18xGE RJ45 |
IPS Throughput |
6 Gbps |
Ports |
2x 10 GE SFP+, 16x GE SFP, 18x GE RJ45 |
IPS Throughput |
4.2 Gbps |
Ports |
2x 10 GE SFP+, 8x GE SFP, 4x GE RJ45 Bypass, 22x GE RJ45 |
IPS Throughput |
10 Gbps |
Ports |
8x1GE RJ45, 8x1GE SFP, 2x10G SFP+ |
IPS Throughput |
5.2 Gbps |
Ports |
2x 10 GE SFP+, 10x GE RJ45, 8x GE SFP |
IPS Throughput |
7.8 Gbps |
Ports |
16x 1GE RJ45, 16x 1GE SFP |
IPS Throughput |
5 Gbps |
Ports |
18x GE RJ45, 16x GE SFP |
IPS Throughput |
2.2 Gbps |
Ports |
18x GE RJ45, 4x GE SFP |
IPS Throughput |
2.6 Gbps |
Ports |
26 1GE, 4 1GE Shared Media, 2 10GE |
Threat Protection |
250 Mbps |
SSL Throughput Inspection |
130 Mbps |
Network Interfaces |
Multiple GE RJ45, GE SFP Slots | PoE/+ Variants |
Devices/VDOMs (maximum) |
150 |
GB/Day of Logs |
100 |
Collector Sustained Rate (logs/sec) |
4500 |
Devices/VDOMs (maximum) |
200 |
GB/Day of Logs |
200 |
Collector Sustained Rate (logs/sec) |
9000 |
Devices/VDOMs (maximum) |
2000 |
GB/Day of Logs |
600 |
Collector Sustained Rate (logs/sec) |
27000 |
Devices/VDOMs (maximum) |
2000 |
GB/Day of Logs |
1000 |
Collector Sustained Rate (logs/sec) |
45000 |
Devices/VDOMs (maximum) |
4000 |
GB/Day of Logs |
3000 |
Collector Sustained Rate (logs/sec) |
60000 |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
5000 |
Collector Sustained Rate (logs/sec) |
90000 |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
8300 |
Collector Sustained Rate (logs/sec) |
150000 |
Devices/VDOMs (maximum) |
30 |
GB/Day of Logs |
2 |
Storage Capacity |
8 TB |
Devices/VDOMs (maximum) |
100 |
GB/Day of Logs |
2 |
Storage Capacity |
12 TB |
Devices/VDOMs (maximum) |
300 |
GB/Day of Logs |
2 |
Storage Capacity |
24 TB |
Devices/VDOMs (maximum) |
1200 |
GB/Day of Logs |
2 |
Storage Capacity |
36 TB |
Devices/VDOMs (maximum) |
4000 |
GB/Day of Logs |
10 |
Storage Capacity |
48 TB |
IPS Throughput |
1 Gbps |
Ports |
Up to 10 |
IPS Throughput |
1.5 Gbps |
Ports |
Up to 10 |
IPS Throughput |
3 Gbps |
Ports |
Up to 10 |
IPS Throughput |
6 Gbps |
Ports |
Up to 10 |
IPS Throughput |
12 Gbps |
Ports |
Up to 10 |
IPS Throughput |
19 Gbps |
Ports |
Up to 10 |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
1 |
Storage Capacity |
500 GB |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
+1 |
Storage Capacity |
+500 GB |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
+5 |
Storage Capacity |
+3 TB |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
+25 |
Storage Capacity |
+10 TB |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
+100 |
Storage Capacity |
+24 TB |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
+500 |
Storage Capacity |
+48 TB |
Devices/VDOMs (maximum) |
10000 |
GB/Day of Logs |
+2000 |
Storage Capacity |
+100 TB |
Devices/VDOMs (maximum) |
10 |
GB/Day of Logs |
1 |
Storage Capacity |
100 GB |
Devices/VDOMs (maximum) |
+10 |
GB/Day of Logs |
2 |
Storage Capacity |
200 GB |
Devices/VDOMs (maximum) |
+100 |
GB/Day of Logs |
5 |
Storage Capacity |
1 TB |
Devices/VDOMs (maximum) |
+1000 |
GB/Day of Logs |
10 |
Storage Capacity |
4 TB |
Devices/VDOMs (maximum) |
+ 5000 |
GB/Day of Logs |
25 |
Storage Capacity |
8 TB |
Devices/VDOMs (maximum) |
+ 10000 |
GB/Day of Logs |
50 |
Storage Capacity |
16 TB |
FortiGate IPS, FortiAnalyzer and FortiManager virtual machines are all available on Amazon Web Services and Microsoft Azure. In addition, FortiGate IPS is also available on Oracle Cloud, IBM Cloud and Google Cloud Platform.
Amazon Web Service
Microsoft Azure
Oracle Cloud
IBM Cloud
Google Cloud Platform
FortiGate IPS is the primary user of the FortiGuard Intrusion Prevention service, but your detection, control and security posture are greatly improved with any combination of the following FortiGuard services, many of which are included in the FortiGuard bundles.
Effective best-in-class security requires timely, global intelligence combined with fast decision-making and response across all critical vectors. Fortinet offers proven and one of the most certified artificial intelligence-driven protection available in the market today powered by FortiGuard Labs.
For customers implementing FortiGates as NGFWs, here’s how FortiGuard subscriptions can help:
Mission critical security-driven networks deserve the best support available. FortiCare provides 24x7 support options to help keep your FortiGates up and running. We also have services to help you recover in the rare moments when bigger bumps seem to come out of nowhere such as our Premium RMA options with 4-hour replacements.
Want faster resolution? Choose our Advanced Support option.
Need help to get going with new deployments and integrations? FortiCare can do it, too, with Professional Services and Resident Engineers! Contact Sales to find out how.
Enterprise Protection Bundle
Protection to address today's advanced threat landscape. It delivers all FortiGuard security services available for the FortiGate including: NGFW Application Control and IPS, Web Filtering, FortiCloud Sandbox, Antivirus, Mobile Security, IP Reputation & Antibotnet, Antispam, and core FortiCare security services with a choice of 8x5 or 24x7 support.
UTM Protection Bundle
Traditional UTM security services including NGFW Application Control and IPS, Web Filtering, Antivirus, Antispam, and core FortiCare security services with a choice of 8x5 or 24x7 support.
Threat Protection Bundle
Core protection technologies including: Application Control, IPS, AV, Botnet IP/Domain and Mobile Malware Service. FortiCare security services include 24x7 support.
You can find more information here.
View by:
FortiGate IPS provides integration with many leading IT vendors as part of the Fortinet Security Fabric. Below is a list of current Product Alliance Partners:
The leading provider of business-driven security management solutions, AlgoSec helps over 1,500 enterprises align security with their business processes, to make their organizations more agile, secure and compliant.
Attivo Networks is an award-winning innovator in cyber security defense. As the leader in deception-based threat detection technology, Attivo empowers continuous threat management using dynamic deceptions for the real-time detection, analysis, and accelerated response to cyber incidents.
Centrify is the leader in securing enterprise identities against cyberthreats that target today’s hybrid IT environment of cloud, mobile, and on-premises.
FireMon solutions deliver continuous visibility into and control over network security infrastructure, policies, and risk.
IBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The portfolio enables organizations to effectively manage risk and defend against emerging threats.
Nozomi Networks is a leading provider of real-time visibility, advanced monitoring capabilities, and strong security for industrial control networks supporting critical infrastructure. Nozomi has been deployed in some of the largest industrial installations, providing some of the fastest return-on–investment in the industry.
ServiceNow makes work better. Our applications automate, predict, digitize and optimize business processes across IT, Customer Service, Security Operations, HR and more, for a better enterprise experience.
Splunk Inc. is the market-leading platform that powers Operational Intelligence.
Tufin leads the Security Policy Orchestration market, enabling enterprises to centrally manage, visualize, and control security policies across hybrid cloud and physical network environments.
UBiqube is a vendor-agnostic provider of end-to-end network and security orchestration solutions. UBiqube’s MSActivator™ is a multi-tenant software framework enabling the design, automation, and management of services over hybrid communication infrastructures (SDN/NFV/IoT).
Leading threat intelligence
Virtual patching
Industry validated
High performance
Advanced threat protection
Security Fabric integration
Encrypted traffic blindspot
|
Fortinet’s FortiGate offers a comprehensive security driven network platform that delivers an industry validated solution to the enterprises. Purpose built for enterprises and designed to deliver superior security efficacy and the industry’s best IPS performance. Powered by the AI/ML driven threat intelligence from FortiGuard Labs.
Watch the videoThe evolution in network infrastructure has led to the expansion of the attack surface for known, unknown, and zero-day threats. It delivers industry-validated, consistent, and sustained performance with high security efficacy. It includes multiple inspection engines, threat intelligence feeds, and advanced threat capabilities to defend against all types of attacks. It is available as part of the FortiGate platform across hybrid infrastructures with advanced analytics and policy workflows through FortiAnalyzer. Its best-of-breed performance offers unique architecture and superior threat intelligence capabilities through FortiGuard Labs.
