Web Application Firewall (WAF)

FortiWeb: Comprehensive, High-Performance Web Application Security

  • NSS Labs “Recommended” Web Application Firewall
  • Protected WAF throughput up to 20 Gbps
  • Delivers PCI DSS 6.6 Compliance
Data Sheet
Available in:
  • Appliance
  • Virtual Machine
  • Hosted
Gartner 2016 Magic Quadrant for Web Application Firewalls

Gartner 2016 Magic Quadrant for Web Application Firewalls

See the Results
FortiWeb Recommended Again by NSS Labs

FortiWeb Recommended Again by NSS Labs

Read Now
FortiWeb and the OWASP Top 10 2013

FortiWeb and the OWASP Top 10 2013

Learn More

Industry-leading WAF Security and Performance

Unprotected web applications are the easiest point of entry for hackers and vulnerable to a number of attack types. Our multi-layered and correlated approach protects your web apps from the OWASP Top 10 and more. Our Web Application Security Service from FortiGuard Labs uses information based on the latest application vulnerabilities, bots, suspicious URL and data patterns, and specialized heuristic detection engines to keep your applications safe from:

  • Sophisticated threats such as SQL injection, cross-site scripting, buffer overflows, and cookie poisoning
  • Malicious sources
  • DoS attacks

It also includes layer 7 load balancing and accelerated SSL offloading for more efficient application delivery.

Fortinet Security Fabric

FortiWeb features include:

Vulnerability scanning and patching

Integration with FortiGate and FortiSandbox for ATP detection

IP reputation, attack signatures, and antivirus powered by FortiGuard

Behavioral attack detection

Attack insights and history

Advanced false positive and negative detection avoidance

product-web-application-firewall-fortiweb-demo

FortiWeb Product Demo

This full working demo lets you explore the many features of our FortiWeb Web Application Firewall (WAF). You’ll quickly see how FortiWeb easily displays system resource utilization and attack logs, and gives you everything you need in the easy-to-use attack console. Be sure to check out the comprehensive web protection profiles and in-depth reporting.

Get the demo

Technical Training