Skip to content Skip to navigation Skip to footer

針對 AWS 的自適應雲端安全解決方案

從雲端和資料中心到亞馬遜網路服務 (AWS) 的一致多層安全防護

針對 AWS 的自適應雲端安全解決方案簡介
針對 AWS 的自適應雲端安全解決方案 banner background banner dots

概述

適用於 AWS 安全性的 Fortinet 解決方案

許多企業轉向使用 AWS 來構建新的應用程式、擴展內部資料中心,並最終利用公共雲端的靈活性。雖然 AWS 的安全性涵蓋了其基礎設施,但客戶仍有責任保護他們所構建以及在其中儲存的所有內容。

Fortinet 使用專門構建的雲端安全功能,加速通往 AWS 的旅程。Fortinet 自適應雲端安全解決方案透過雲端應用程式的多層安全性,保護整個內部資料中心和雲端環境的工作負載和業務應用程式。組織可以實現:安全狀況的综合視圖、策略管理與治理報告的單一主控台,以及不論實體、虛擬或雲端基礎設施,跨整個私人、公共和混合雲端的事件監控。

Fortinet 提供軟體即服務 (SaaS)、虛擬機 (VM)、容器和 API 型的保護,可提供與 GuardDuty、Security Hub 和 AWS Outposts 等 AWS 服務互補的原生整合安全功能。Fortinet 產品支援行範圍最廣的一系列使用案例集,為 AWS 工作負載提供全面的安全性,包括防火牆、安全閘道、入侵預防和網站應用程式安全性。

 

Autodesk Leverages Fortinet in AWS to Scale Cloud Security With Ease

Autodesk Leverages Fortinet in AWS to Scale Cloud Security With Ease

聽聽 Autodesk 資深網路工程師 Anish John 描述他們如何使用 AWS Transit Gateway 和 Fortinet Cloud Security Services Hub 來擴展安全性並大幅降低延遲。

立即觀看

AWS Marketplace 上的特色產品

Fortinet 在 AWS 公共雲端上提供業界領先的網路安全產品系列,使客戶能夠為其雲端的基礎設施和應用程式提供進階安全防護。以下是可以直接從 AWS Marketplace 購買的產品清單。

 

icon fortigate
FortiGate 新一代防火牆

適用於 AWS 的 FortiGate-VM 解決方案為各種規模的組織提供新一代防火牆 (NGFW) 功能,並具有可部署為 NGFW 和/或 VPN 閘道的靈活性。

按需計費  |  自帶授權 (BYOL)

icon fortiweb
FortiWeb 網站應用程式防火牆 (WAF)

FortiWeb 網站應用程式防火牆 (WAF) 可保護網站應用程式免受已知和未知的零時差威脅。其 AI 型的機器學習可辨識威脅,幾乎沒有誤判偵測。 

按需計費 | BYOL | 容器版本 | WAF-as-a-Service

icon fortimanager
適用於 AWS WAF 的 Fortinet 託管規則

FortiWeb 規則集是額外的安全簽名,可用於增強基礎 AWS WAF 產品提供的保護。它們的 FortiWeb 型安全服務簽名,並定期更新,以包含來自 FortiGuard Labs 的最新威脅資訊。

完整的 OWASP 十大安全威脅  | 一般與已知漏洞利用  | SQLi/XSS | 惡意機器人 | API 閘道

icon fortimanager
FortiManager (BYOL) 集中式安全管理

FortiManager 提供單一管理介面管理,在整個擴展企業中實現統一的、端到端的保護。它能深入分析網路流量,並提供企業級的威脅遏制功能。 

icon fortianalyzer
FortiAnalyzer 集中式記錄分析

FortiAnalyzer 提供對整個攻擊面威脅的關鍵見解,並提供即時可視性、狀況感知、即時威脅情報和可執行的分析。

按需計費 | BYOL

icon fortimail
FortiMail-VM (BYOL)

FortiMail 由 FortiGuard 保護,提供包括整合式沙箱在內的最新技術和情報,甚至可以阻止最複雜的電子郵件產生的威脅。 

icon fortisandbox
FortiSandbox 進階威脅防護

適用於 AWS 的 FortiSandbox 使組織能夠防禦雲端原生的進階威脅,與網路、應用程式、電子郵件、端點安全及其他第三方安全解決方案協同工作,或作為其內部安全架構的延伸,以利用雲端的靈活性和規模。

按需計費 BYOL

瀏覽 AWS Marketplace,獲取適用於 AWS 的 Fortinet 產品完整清單    

FortiGuard Security Services for AWS

應用程式控制

可對您的客戶正在執行的應用程式獲得無可比擬的即時可視性,並輕鬆實施您可接受的使用原則,進而提高安全性並滿足合規要求。透過 FortiGuard 應用程式控制,您可以快速建立原則來允許、拒絕或限制對應用程式或整個類別的應用程式的存取。

瞭解更多資訊

網頁篩選

透過對惡意、被入侵或不當網站的存取封鎖來保護您的組織。

瞭解更多資訊

FortiSandbox 雲端

FortiSandbox 雲端服務是一個進階威脅偵測解決方案,可執行動態分析以識別先前未知的惡意軟體。FortiSandbox 雲端產生的可執行情報會反饋到網路中的預防控制機制,進而消除威脅。

瞭解更多資訊

防毒

FortiGuard 防毒可阻斷最新病毒、間諜軟體以及其他內容層面的威脅。它採用行業領先的進階偵測引擎來阻止不斷變化的新威脅在您的網路中獲得據點、存取網路中寶貴的內容。

瞭解更多資訊

入侵防護

FortiGuard IPS 透過偵測威脅並在威脅侵入到網路裝置前進行封鎖,以此抵禦最新的網路入侵。

瞭解更多資訊

Virus Outbreak Protection Service

FortiGuard Virus Outbreak Protection Service (VOS) closes the gap between antivirus updates with FortiCloud Sandbox analysis to detect and stop malware threats discovered between signature updates before they can spread throughout an organization. OS initiates a real-time look-up to our Global Threat Intelligence database.

瞭解更多資訊

內容威脅 & 解除

內容威脅 & 解除 (CDR) 功能可即時移除檔案中所有的活動內容,建立一個清潔的平面檔案。所有活動內容都被視為可疑內容並被移除。CDR 可以處理所有入埠檔案,對它們進行解構,然後移除所有不符合防火牆原則的元素。

瞭解更多資訊

IP 聲譽評等 & 預防殭屍網路安全服務

FortiGuard IP 聲譽評等服務從 Fortinet 分佈式威脅感測器網路、CERT、MITRE、進行合作的競爭對手以及其他全球資源彙集惡意來源 IP 資料,這些資源共同協作,合力提供關於敵對來源的最新威脅情報。憑藉來自分佈式網路閘道近乎即時的情報,再結合 FortiGuard Labs 的世界級研究,組織可得到更安全的保護並對攻擊實施主動攔截。

瞭解更多資訊
FortiGate Enterprise Bundle

Our Enterprise (ENT) bundle now includes:

  • Industrial Security Service protection – SCADA (supervisory control and data acquisition) and ICS (industrial control systems). These signatures address attacks against critical infrastructure and manufacturing industries, where we are seeing frequent and sophisticated cyberattacks.
  • Security Rating Service - this service performs checks against your fabric-enabled network and provides scoring and recommendations to your operation teams. The subsequent scorecard can be used to gauge adherence to various internal and external organizational polices, standards, and regulations requirements, including providing a ranking of your firm against industry peers. 

The FortiGuard Enterprise (ENT) Protection bundle is designed to address today’s advanced threat landscape. The Enterprise Bundle consolidates the comprehensive protection needed to protect and defend against all cyberattack channels from the endpoint to the cloud. Including the technologies needed to address today’s challenging OT, compliance, and management concerns. The Enterprise Bundle offers the most comprehensive protection overall. The Enterprise Bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • Web Filtering
  • Antispam
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • Security Rating 
  • Industrial Security Service
  • FortiCare
FortiGate UTM Bundle

The FortiGuard Unified Protection Bundle (UTM) is our traditional Unified Threat Management security bundle. The Unified Protection Bundle extends threat protection across the entire digital attack surface, providing industry-leading defense against sophisticated attacks. The UTM bundle has you covered for web and email-based attacks. The UTM bundle delivers the best package available for a unified threat protection offering. The UTM Bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • Web Filtering
  • Antispam
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • FortiCare

The FortiGuard Advantage: 

  • FortiGuard processes over 69 million websites every hour, providing up-to-the-minute reputation and categorization. 
  • Prevent malicious downloads and browser hijacking attacks with top-rated web filtering (VBWeb Verified)
  • Improved email productivity through superior spam prevention validated with 3rd party independent testing (VBSpam + Verified)
FortiGate Advanced Threat Protection Bundle

The FortiGuard Advanced Threat Protection (ATP) bundle provides the foundational security needed to protect and defend against known and unknown cyber threats. The Advanced Threat Protection bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • FortiCare 24*7
Services Table
Service Advanced Threat Protection
(ATP)
 		 Unified Protection
(UTM)
 		 Enterprise Protection
(ENT)
 		 360 Protection
FortiManager Cloud
      
FortiAnalyzer Cloud
      
SD-WAN Cloud Assist Monitoring
      
SD-WAN One Click VPN Overlay
      
FortiConverter Service
      
Industrial Security Service
    

Security Rating
    

CASB
      
Anti-Spam
  


Web Filtering
  

Advanced Malware Protection



IPS



FortiCare + Application Control



導覽:

  • 電子書
  • 資訊圖
  • 解決方案指南
  • 白皮書
  • 影片
  • 案例研究
  • 資料表
  • 參考架構
  • 分析報告
  • 部署指南
  • 設定課程

電子書

Prioritize Cloud Risks and Protect Your Workloads

Use context-driven insights to manage cloud workload risks across your AWS environments

Key Steps to Optimizing Cloud Security

Elevating security on AWS using Fortinet application-level visibility

Fortinet Managed IPS Rules for AWS Network Firewall

This Ebook will provide you an overview of the security challenges faced by users when deploying workloads into Amazon VPCs and how Fortinet Managed ...

Enterprise Security for Changing Times - Protection for Expanding Infrastructures, Increasing Attacks, and Compliance

Exploring security from Fortinet and AWS

Advanced Protection for Web Applications on AWS and APIs

As companies migrate business-critical applications from their on-premises infrastructures to the cloud, they increase their exposure to known and ...

Dynamic Security in AWS

Read this eBook to understand how the Fortinet Security Fabric natively integrates into AWS to provide full visibility and control of applications ...

資訊圖

Fortinet Adaptive Cloud Security - AWS Better Together

What's standing in your way of getting the cloud security you want? And how Fortinet's Adaptive Cloud Security on AWS can help you get there.

Protect Web Apps and APIs on AWS with FortiWeb Cloud WAF-as-a-Service

Why Higher Education Needs to Address Web Application Security Now More Than Ever

The dramatic rise in online access requires an advanced, web application firewall (WAF) to help ensure access to information and learning at higher education institutions remains easy and safe.

解決方案指南

Secure Your Migration to AWS with a Cloud-Native Managed Firewall Service

Ensuring consistent protection and visibility across distributed environments requires an enterprise-class network security solution with ...

FortiCNP for AWS

Nearly all organizations have adopted the cloud to modernize their operations, enable rapid innovation, and accelerate growth, and there are no signs ...

Cloud Security for AWS

Understand how the Fortinet Security Fabric natively integrates into AWS to provide full visibility and control of applications, centralized ...

Fortinet Secures SAP on AWS

Many enterprises turn to SAP to improve decision-making and integrate information from customers, supply chains, and vendors to transform business ...

Fortinet Managed IPS Rules Service for AWS Network Firewall

Easily Filter Malicious Traffic at the Perimeter of Your Amazon VPC

Fortinet Cloud Services Hub in AWS

When adopting a new cloud environment on AWS organizations must balance the potential benefits of the cloud against their own ability to maintain ...

白皮書

Amazon Web Services (AWS) Reference Architecture

The public cloud, often referred to as the cloud, is a popular model of cloud computing.

影片

Autodesk Leverages Fortinet in AWS to Scale Cloud Security With Ease

Discover why Autodesk chose to leverage Fortinet's Dynamic Cloud Security solutions for AWS to protect their cloud migration.

AWS This is My Architecture: FortiWeb Cloud WAF-as-a-Service

Fortinet uses AWS serverless to provide a highly available control-plane for FortiWeb Cloud

Configuring AWS GuardDuty Integration

Accelerate time-to-protection for new threats detected by AWS GuardDuty by deploying native AWS scripting to automatically push malicious IP or DNS addresses into dynamic FortiGate policies.

Cloud Security Automation with AWS Auto Scaling

Your cloud security must keep up with your cloud instances when they scale. Fortinet embeds the latest AWS Auto Scaling functionality and FortiGate CloudFormation template configuration into our ...

Getting Started with FortiAnalyzer On-Demand in AWS

Demo on how to set-up FortiAnalyzer AWS Instance in Amazon Cloud

Configuring FortiGate Autoscaling

Fortinet's integrates with AWS Auto Scaling and Load Balancing (ELB), allowing the FortiGate virtual instances to scale dynamically yet independently per AWS workloads.

案例研究

Nubank

Leading Latin American FinTech Company Relies on Fortinet Cloud Security Solutions

WeLab

WeLab Uses Fortinet on AWS to Build Virtual Bank and Ensure Compliance

資料表

FortiCNP for AWS Datasheet

Prioritize Risk Management Activities

Fortinet Managed IPS Rules for AWS Network Firewall Data Sheet

Fortinet Technologies Inc.

FortiGate VM AWS Data Sheet

FortiGate VM AWS Datasheet

FortiWeb™ Cloud WAF as a Service for AWS Data Sheet

Managed Rules for AWS WAF

FortiWeb™ Cloud WAF as a Service for AWS Data Sheet

AWS 參考架構

Amazon Web Services (AWS) Reference Architecture

The public cloud, often referred to as the cloud, is a popular model of cloud computing.

Fortinet Cloud Security Reference Architecture Overview Video

The Fortinet Cloud Solution Architecture Team designs solutions for multi-cloud deployment in the enterprise.

分析報告

Agencies Secure Newly-Deployed Cloud Technologies

2021 is the year of the hybrid

Today’s blended workplaces, workforces and cyber threats challenge security. How can you rise to the challenge?

部署指南

FortiWeb on AWS

FortiWeb Web Application Firewalls (WAFs) provide advanced features and AI-based machine learning detection engines that defend web applications from known and zero-day threats.

FortiGate-VM on AWS

By combining stateful inspection with a comprehensive suite of powerful security features, FortiGate Next Generation Firewall (NGFW) technology delivers complete content and network protection

FortiWeb Cloud on AWS

FortiWeb Cloud is a SaaS cloud-based web application firewall (WAF) that protects public cloud hosted web applications from the OWASP Top 10, zero day threats, and other application layer attacks.

FortiGate-VM on AWS

By combining stateful inspection with a comprehensive suite of powerful security features, FortiGate Next Generation Firewall (NGFW) technology delivers complete content and network protection

FortiManager for AWS

FortiManager's security-operationalized visibility across your Fortinet Security Fabric enables true security effectiveness and foresight to identify and understand the scope of threats and facilitates actionable responses and risk remediation.

FortiADC on AWS

Amazon Elastic Compute Cloud (Amazon EC2) provides scalable computing capacity in the Amazon Web Services (AWS) cloud.

FortiAnalyzer for AWS

Fortinet FortiAnalyzer securely aggregates log data from Fortinet devices (both physical and virtual) and other syslog-compatible devices.

設定課程

Set-up Tutorial: Fortinet Managed Rules for AWS WAF

Set-up Tutorial: FortiWeb Cloud on AWS.

Set-up Tutorial: FortiGate on AWS

增強您的 AWS 環境的安全性並改善高可用性實踐。檢視各種部署場景

相關資源

Fortinet AWS 使用案例

Fortinet 自適應雲端安全解決方案為 AWS 提供涵蓋範圍最廣的一系列使用案例。

雲端平台可視性與控制

  • 雲端基礎設施可視性與控制。
    監控多個雲端資源的活動和設定,同時簡化監管合規性報告。
  • 雲端合規性。
    自動化內部和雲端環境的合規性稽核和報告。
  • 於雲端的安全管理和分析。
    利用 AWS 的全球影響力,在雲端部署集中式全域安全管理和分析系統。

應用程式安全性

  • 網站應用程式安全性。
    使用 Fortinet 網站應用程式安全性解決方案保護網站應用程式免受已知攻擊和未知攻擊。
  • 容器安全性。
    為容器部署與推出的所有階段提供安全防護。

網路安全性

  • 安全的混合雲端。
    為混合雲端部署部署安全連線、網路區隔和應用程式安全性。
  • 雲端安全服務中樞。
    透過中央安全服務中樞或轉接網路統一不同的環境。
  • 邏輯(意圖型)區隔。
    部署意圖型的區隔,根據使用者身分或業務邏輯構建存取規則和區段,並動態調整規則以響應連續的信任評估。
  • 安全遠端存取
    透過跨多個雲端和內部環境的虛擬私人網路 (VPN) 連接,連線到雲端資源。

按一下此處,深入瞭解這些使用案例。 

功能與優點

Icon automation

透過跨 AWS 和內部資料中心的單一管理介面控制,簡化安全性管理

icon benefits management

利用 Fortinet 雲端安全服務中樞實現可擴展的多層安全連線

cloud ready icon

為您的 AWS 工作負載和應用程式獲得雲端原生可視性和控制

reduce cash icon

VM、容器和 SaaS 形式的安全產品,提供靈活的自帶授權 (BYOL) 和即用即付 (PAYG) 計費選項。

針對 AWS 的自適應雲端安全解決方案

Fortinet Dynamic Security for AWS - Diagram


Fortinet 打破了阻礙跨私人、公共和混合雲端平台的安全可視性和管理的障礙。適用於 AWS 的 Fortinet 自適應雲端安全解決方案幫助組織在責任共擔模式中,從內部到雲端都能保持運作上可行、一致的安全防護。它為 AWS 使用者提供全面且完全可程式化的多層安全防護與威脅預防功能。

如需更多資訊,請閱讀 AWS 參考架構

 

The FortiGate Next Firewall on AWS

於 AWS 推出的 FortiGate 新一代防火牆 (NGFW)

適用於 AWS 的 FortiGate 為各種規模的組織提供 NGFW 功能,並具有可部署為 NGFW 和/或 VPN 閘道的靈活性。它提供廣泛的防護與自動化管理,在混合雲端基礎設施中實現一致的實施和可視性。FortiGate 從業內最小的佔地面積擴展到 AWS 上容量最高的 NGFW 虛擬設備。

立即觀看

 

 

FortiGate NGFW 在 AWS 上快速啟動

在 AWS 上部署 FortiGate 自動擴展基線只需幾個步驟,即可快速測試全套強大的安全功能。包含 Marketplace 上的 15 天免費試用。

AWS 快速啟動

FortiWeb Cloud WAF-as-a-Service

FortiWeb Cloud WAF-as-a-Service 是安全即服務 (SaaS) 的雲端網站應用程式防火牆 (WAF),可保護公共雲端託管的網站應用程式免受 OWASP 十大安全威脅、零時差威脅以及其他應用程式層攻擊。

無需硬體或軟體,FortiWeb 的 WAF 閘道群可以在大多數 AWS 區域執行。這使組織能夠清理其應用程式所在相同區域內的應用程式流量,解決效能和法規問題,並將流量成本降至最低。

瞭解更多資訊


適用於 AWS 的託管 IPS 規則

保護虛擬私人雲端網路和應用程式工作負載至關重要,而且必定不會增加安全團隊的營運負擔。

適用於 AWS 的 Fortinet 託管 IPS 規則增強了 AWS 網路防火牆提供的基線保護。縮短了學習曲線,並提供有效、可用和可擴展的網路安全性,同時保持管理簡單。

瞭解更多資訊


利用 FortiCWP 保護雲端工作負載

FortiCWP 是 Fortinet 的雲端工作負載保護 (CWP) 解決方案。FortiCWP 使用與 AWS 管理和安全服務整合的 API 層來監控和追蹤雲端資源,包括其設定、活動、流量。FortiCWP 還將掃描雲端資料儲存是否有敏感或惡意的內容,並就組織對常見監管標準的合規性產生報告。FortiCWP 還支援 Microsoft Azure 和 Google Cloud Platform。

瞭解更多資訊

更多 Fortinet 資訊

links image 1

請求產品展示

contact sales icon

搜尋經銷商