FortiGate Next-Generation Firewall (NGFW) Virtual Appliance

Industry-leading multi-cloud security and high-performance threat protection

Gartner 2019 Magic Quadrant for Network Firewalls
hero fortigate vm

Network Segmentation, Secure Connectivity, and Application Protection with FortiGate-VM

FortiGate-VM offers a consistent security posture and protects connectivity across public and private clouds, while high-speed VPN connections protect data. FortiGate-VM shares the same advanced features of the FortiGate next-generation firewall (NGFW), enabling and enforcing security policies across all environments and providing single-pane-of-glass management. FortiGate-VM ensures complete application security and secure connectivity by augmenting micro-segmentation with advanced L7 security.

FortiGate-VM offers protection from a broad array of threats, with support for all of the security and networking services offered by the same FortiOS 6.2 operating system available on any public cloud, private cloud, carrier virtual network functions (VNFs) and physical form factors. It allows organizations to leverage a consistent operational model with existing skillsets.

It delivers the industry’s highest performance, value, and flexibility for complete content and network protection with the smallest footprint VM and the fastest boot times for flexible deployments for the cloud and carrier NFV deployments. Leveraging the virtual security processing unit (vSPU) architecture, it supports high-performance applications in the cloud for use cases requiring scale-up architectures such as VPN, intrusion prevention system (IPS), and application control.

Additionally, Fortinet Fabric Connectors deliver the ability to abstract security policies and provide consistent policies in dynamic, multi-vendor environments.

FortiGate-VM is available for all major cloud providers, hypervisors, and software-defined network (SDN) platforms.

FortiGate Virtual Next-generation Firewall Models and Specifications

FortiGate-VM next-generation firewall can be deployed as a virtual appliance in private and public cloud environments, either as a BYOL instance or provisioned on-demand via public cloud marketplaces.

Download the brief - Performance as a key attribute of Virtual Firewalls. 

Compare Products

 

Throughput
12 Gbps
vCPU
1x vCPU core, (up to) 2 GB RAM
Throughput
12 Gbps
vCPU
1x vCPU core, (up to) 2 GB RAM
Throughput
15 Gbps
vCPU
2x vCPU cores, (up to) 4 GB RAM
Throughput
28 Gbps
vCPU
4x vCPU cores, (up to) 6 GB RAM
Throughput
33 Gbps
vCPU
8x vCPU cores, (up to) 12 GB RAM
Throughput
36 Gbps
vCPU
16x vCPU cores, (up to) 24 GB RAM
Throughput
50 Gbps
vCPU
32x vCPU cores, (up to) 48 GB RAM
vCPU
Unlimited vCPU cores and RAM

“V” Series VMs do not include VDOM licenses by default.  VDOM licenses can be added separately.

Actual performance may vary depending on the network and system configuration. Performance metrics were observed using a DELL R740 (CPU Intel Xeon Platinum 8168 2.7 GHz, Intel X710 network adapters), running FOS v5.6.3. Tested with VMware vSphere 6.5 Enterprise Plus. SR-IOV is enabled.

FortiGate NGFW is available in many different models to meet your needs ranging from entry-level hardware appliances to ultra high-end appliances to meet the most demanding threat protection performance requirements.  This ensures that enterprise campus, core data-center, or internal segments, FortiGate can fit seamlessly into your environment.  

Compare Products

Broad Protection for Multi-Cloud Infrastructures and Applications

As public cloud adoption accelerates, organizations are increasingly reliant on cloud-based services and infrastructures. Yet, organizations often end up with a heterogeneous set of technologies in use, with disparate security controls in various cloud environments. FortiGate-VM provides broad protection across cloud infrastructure, enabling applications security and secure connectivity among cloud networks, different clouds, and users accessing the cloud. FortiGate-VM has native integration of security capabilities with public cloud platforms and leverages cloud automation services for ease of deployment. 

Fortinet secures applications and workloads in public clouds to ensure privacy and confidentiality while leveraging the cloud benefits of scalability, metering, and time-to-market. FortiGate cloud connector provides container-aware security by enabling awareness of container labels when defining security policies. FortiGate-VM, in concert with other elements of the Security Fabric, enables common deployment scenarios such as cloud security services hub, cloud workload protection, secure remote access, container security, and web application security. 

Native integration into your cloud provider

Built for the cloud, FortiGate-VM is available in all major cloud providers.

Secure Your Virtualized Data Center and Private Cloud

Virtualization and SDN security are rapidly transforming data centers into agile, innovative, software-defined, and cost-effective private clouds. Unlike public clouds, organizations are responsible for managing all aspects of the virtualization, compute, networking, and security. FortiGate-VM protects private cloud infrastructure using application-centric security policies to protect the private cloud and the data within that cloud for a variety of use cases such as North-South L7 security protection, East-West Security Protection, Form Factor consolidation, Virtual CPE for NFVs and security for the telco cloud via VNFs. It provides broad eco-system system integration by supporting all major hypervisors including Nutanix, KVM, Hyper-V, Nutanix, VMware and orchestration systems including VMware NSX-T, OpenStack, Nuage Networks.

Native integration into your private cloud and virtualization platforms

Built for the cloud, FortiGate-VM is available on all private cloud platforms.

Securing Carrier Infrastructure with High Performing FortiGate VNF

For virtualized service provider infrastructures, Fortinet offers a broad range of next-generation virtual firewalls virtualized network functions (VNFs). Powered by Fortinet’s Virtual SPU Technology, FortiGate VNFs deliver significant increases in application and carrier security performance through innovative security processing optimizations and the latest packet processing acceleration technologies. The FortiGate NGFW VNFs provide comprehensive network security capabilities along with deep application visibility and control.

These VNFs also have a small footprint, boot within seconds, and require less storage, enabling service providers to protect their virtual networks and cloud platforms cost effectively. In addition, for the efficient and agile deployment and utilization of these security VNFs, Fortinet delivers integrations with NFV platforms and SDN vendors. 

Resources