Fortinet FortiAnalyzer 400B Appliance

Overview:

The FortiAnalyzer family of logging, analyzing, and reporting appliances securely aggregate log data from Fortinet devices and other syslog-compatible devices. Using a comprehensive suite of easily-customized reports, users can filter and review records, including traffic, event, virus, attack, Web content, and email data, mining the data to determine your security stance and assure regulatory compliance. FortiAnalyzer also provides advanced security management functions such as quarantined file archiving, event correlation, vulnerability assessments, traffic analysis, and archiving of email, Web access, instant messaging and file transfer content.

FortiAnalyzer™ Centralized Reporting Benefits:

• Secure data aggregation from multiple FortiGate and FortiMail security appliances provides network-wide visibility.
• Over 300 customizable reports help monitor and maintain acceptable use policies, identify attack patterns, and comply with governmental regulations regarding privacy and disclosure of security breaches.
• Network capacity and utilization data reporting enables network administrators to plan and manage networks more efficiently.
• Fully integrated with FortiManager appliances for a single point of command, control, analysis, and reporting.
• Advanced features such as event correlation, forensic analysis, and vulnerability assessment provide essential tools for in-depth protection of complex networks.
• Up to 4.8 TB of log data capacity and choice of RAID levels allow administrators to balance capacity and data assurance to match organizational needs.

Knowledge is Power

To meet the growing demand for Web-enabled applications and new IP-based services, such as multimedia messaging, voice over IP (VoIP), and video applications, enterprise networks are rapidly expanding and dramatically growing in complexity. As a result, monitoring and enforcing acceptable use policies, identifying and blocking new blended security threats, and complying with emerging governmental regulations requires sophisticated logging and reporting capabilities. Both real-time and historical views of network usage and security information are essential for discovering and addressing vulnerabilities across dispersed networks and user groups. The ability to capture network event, usage and content information for forensic purposes, and to comply with governmental regulations regarding privacy and disclosure of security breaches, is absolutely critical. Network and security administrators need a comprehensive set of logging and reporting tools that provide the knowledge required to implement a complete multi-layered security solution.

Solutions for Dynamic Security Management

The FortiAnalyzer family of real-time network logging, analyzing, and reporting systems are a series of dedicated network hardware appliances that securely aggregate log data from Fortinet devices and third-party devices. A full range of log record types may be archived, filtered and mined for compliance or historical analysis purposes. A comprehensive suite of standard graphical reports are built-in to the system, which also offers the flexibility to customize reports to specific needs. FortiAnalyzer solutions also provide advanced security management functions such as: quarantine archiving, event correlation, vulnerability assessments, traffic analysis, and archiving of email, Web access, instant messaging and file transfer content.

Key Features and Benefits: Network Event Correlation Allows IT administrators to more quickly identify and react to network security threats across the network. Streamlined Graphical Reports Provides network-wide reporting of events, activities and trends occurring on FortiGate and third party devices. Scalable Performance and Capacity FortiAnalyzer family models support thousands of FortiGate and FortiClient™ agents. Centralized Logging of Multiple Record Types Including traffic activity, system events, viruses, attacks, Web filtering events, and messaging activity/data. Centralized Content Archiving with Centralized Quarantine Provides reliable archiving of content data, such as email content, IM chat and file transfers, as well as a centralized quarantine repository for infected files. Centralized Log Aggregation Supports flexible deployment scenarios, such as deploying lower cost models in regional offices, and aggregating logs to centralized office. Seamless Integration with the Fortinet Product Portfolio Tight integration maximizes performance and allows FortiAnalyzer resources to be managed from FortiGate or FortiManager™ user interfaces.

Knowledge is the Key to Dynamic Security Management Security threats are becoming much more dynamic with attacks now using multiple vectors to penetrate, then exploit their intended targets. Businesses must immediately recognize new vulnerabilities or attacks and implement protective measures before the damage is done. FortiAnalyzer systems are a critical component of the comprehensive Fortinet security solution, providing enterprise-class logging and reporting features necessary to discover, analyze and mitigate threats. The FortiAnalyzer system’s forensic analysis tool enables detailed user activity reports, while the vulnerability assesment tool can automatically discover, inventory and assess the security posture of servers and hosts. Complete the security management solution with a FortiManager system for comprehensive and seamless centralized management for your entire network.

Deployments:

Centralized Logging & Reporting with FortiAnalyzer Integration for Complete Knowledge and Control
 

	Security Reporting—Security Management FortiAnalyzer is a centralized solution to the logging and reporting challenges in today’s complex and dynamic security environments. Implemented on scalable, high-performance platforms. FortiAnalyzer captures granular information across the entire range of security threats, not just the Firewall or IPS elements, and delivers the information in reports that are easy to configure, understand and use.
	Understanding the Dynamic Security Environment Not only are the security threats more complex in today’s business environment, but new regulatory, compliance and legal mandates also require businesses to not only understand activities on their networks but to proactively implement and enforce such regulatory requirements and to be responsible for acceptable use policies. FortiAnalyzer provides hundreds for standard reports as well as the ability to fully customize reports to unique business needs. Reports can be tailored to and delivered in the exact formats needed based on user requirements. Profile-based Administration allows unique access privileges and rights to be assigned to different users based on requirements and needs.
	Content Logging & Data Mining Network wide log aggregation and archiving is critical to identifying security threats and managing network usage. In addition to in-depth, real-time logging and reporting, FortiAnalyzer enables detailed content logging of user activities and network traffic. Activity can be monitored in real-time or logged, archived and later mined as needed. Activity be tracked by user, protocol, source, destination, etc., and the actual content exchanged in a session can be captured. Not only is content logging critical in order to implement regulatory mandates such as HIPAA and SOX compliance but absolutely required to enforce acceptable use policies and to protect valuable corporate assets and intellectual property.

Technical Specifications:

FortiAnalyzer Series Specifications:
FortiAnalyzer Models
	FortiAnalyzer-400B
System Specifications
Number of Licensed Network Devices	200
Number of Licensed FortiClient Agents	2,000
Number of FortiMail Devices	100
Operating System	Hardened FortiAnalyzer OS
Recommended FortiGate Models	Any FortiGate model
Hardware Specifications
10/100/1000 Interfaces (Copper, RJ-45)	4
Hard Drive Bays	2
Hard Drive Included	1 x 500 GB
RAID Support	Yes (RAID 0 or 1, with optional second drive)
Dimensions (H, W, L)	1.7 x 17.25 x 14.5 in(4.5 x 43.8 x 36.8 cm)
Weight	10 lbs (4.5 kg)
Rack Mountable	Yes
Input Voltage	100-240VAC
Input Current	4.0A (Max)
Average Power Consumption	121W
Environmental
Operating Temperature	32 to 104 deg F (0 to 40 deg C)
Storage Temperature	-13 to 158 deg F (-25 to 70 deg C)
Humidity	5 to 95% non-condensing.
Regulatory
Regulatory	FCC Class A, Part 15, UL/CUL, C Tick, CE, VCCI

Features:

All FortiAnalyzer models provide the following features:
 

Services & Support:

FortiGuard Security Subscription Services:

• Antivirus
• Intrusion Prevention
• Web Filtering
• Antispam
• Premier Signature Service
  Includes Antivirus and Intrusion Prevention Updates with additional service level agreements

FortiCare Support Services:

Includes:

• 24/7/365 Web-Based Technical Support
• Technical Account Management Service (Optional)
• 24-Hour Phone-Based Support (Optional)
• Professional Services (Optional)
• 1-Year Limited Hardware Warranty
• 90-Day Limited Software Warranty

Documentation:

Download the Fortinet FortiAnalyzer 400B Datasheet (PDF).