Fortinet FortiAnalyzer Virtual Appliances

Overview:

The FortiAnalyzer Virtual Appliances securely aggregate log data from Fortinet devices and other syslog-compatible devices. Using a comprehensive suite of easily-customized reports, users can filter and review records, including traffic, event, virus, attack, Web content, and email data, mining the data to determine your security stance and assure regulatory compliance.

FortiAnalyzer Virtual Appliance Features & Benefits:

• Secure data aggregation from multiple FortiGate and FortiMail security appliances provide network-wide visibility
• Over 300 customizable reports help monitor and maintain acceptable use policies, identify attack patterns, and comply with governmental regulations regarding privacy and disclosure of security breaches
• Network capacity and utilization data reporting enables network administrators to plan and manage networks more efficiently
• Fully integrated with FortiManager appliances for a single point of command, control, analysis, and reporting
• FortiGuard subscription services deliver dynamic updates to vulnerability management functionality through intelligence gathered by Fortinet's dedicated global threat research team
• Advanced features such as event correlation, forensic analysis, and vulnerability assessment provide essential tools for in-depth protection of complex networks

Enhanced Visibility With FortiAnalyzer-VM

FortiAnalyzer-VM integrates network logging, analysis, and reporting into a single system, delivering increased knowledge of security events throughout a network. Utilizing virtualization technology, FortiAnalyzer-VM is a software-based version of the FortiAnalyzer hardware appliance and is designed to run on VMware™ hardware platforms. It offers all the features of the FortiAnalyzer hardware appliance.

FortiAnalyzer-VM provides organizations of any size with centralized security event analysis, forensic research, reporting, content archiving, data mining, malicious file quarantining and vulnerability assessment. Centralized collection, correlation, and analysis of geographically and chronologically diverse security data from Fortinet appliances and third-party devices deliver a simplified, consolidated view of your security posture.

The FortiAnalyzer-VM family minimizes the effort required to monitor and maintain acceptable use policies, as well as identify attack patterns that can be used to fine tune the security policy, thwarting future attackers. In addition, FortiAnalyzer-VM provides detailed data capture that can be used for forensic purposes to comply with regulations and policies regarding privacy and disclosure of information security breaches.

Proven Success in Virtual Environments

Fortinet introduced Virtual Domain (VDOM) technology in 2004. Since that time, we have offered virtualized security to service providers and enterprises alike. With the addition of the virtual appliance form factor, Fortinet now provides greater choice and flexibility by providing the ability to deploy Fortinet

Choice of Form Factor

Very few organizations use 100% hardware IT infrastructure or 100% virtual IT infrastructure today, creating a need for both hardware appliances and virtual appliances in your security strategy. Fortinet allows you to build the security solution that's right for your environment, which often includes a mix of virtual and physical IT infrastructure. We also allow you to manage your Fortinet security from a single pane of glass management platform, allowing you to control and manage hardware appliances, virtual appliances, or a combination of both.

Security Event Information Management

You can put time back in your day by deploying a FortiAnalyzer-VM into your security infrastructure, creating a single view of your security events, archived content, and vulnerability assessments. FortiAnalyzer-VM accepts a full range of data from Fortinet solutions, including traffic, event, virus, attack, content filtering, and email filtering data. It eliminates the need to manually search multiple log files or manually analyze multiple consoles when performing forensic analysis or network auditing. FortiAnalyzer- VM central data archiving, file quarantine and vulnerability assessment functionality further reduces the amount of time you need to spend managing the range of security activity in your enterprise or organization.

Vulnerability Management

FortiAnalyzer-VM offers an enhanced scanning capability that utilizes a dynamic signature dataset to detect vulnerabilities and recommend remediation. Additional capabilities include device discovery, mapping, assets definition, asset prioritization, and customized reporting. An optional Vulnerability Management subscription provides frequent updates developed by the FortiGuard Labs with up-to-date vulnerability scan data to keep abreast of current threats.

Features & Benefits:

Technical Specifications:

*Internal storage limit includes internal database, raw logs and archives.

Graphic Reporting:

FortiAnalyzer systems empower the network or security administrator with the knowledge needed to secure their networks through a comprehensive suite of standard graphical reports and the total flexibility to customize custom reports. Network knowledge can be archived, filtered and mined for compliance or historical analysis purposes.

Grandular Information:

The FortiAnalyzer User Interface (UI) enables administrators to drill deep within security log data to provide the granular level of reporting necessary to understand what is happening on your network. Historical or real-time views allow administrators to analyze log and content information, as well as network traffic. The advanced forensic analysis tools allow the administrator to track user activities to the content level.

Real-Time Log Viewer:

The ability to monitor network, traffic and user events in real-time or browse historical for specific events provides powerful insight into network security threats, performance and user behavior.

Supported Devices:

• FortiGate Multi-Threat Security Systems
• FortiMail Messaging Security Systems
• FortiClient Endpoint Security Suite
• FortiManager Centralized Management
• Any Syslog-Compatible Device

FortiAnalyzer-VM provides the following features:

Services & Support:

FortiGuard Security Subscription Services

FortiGuard Security Subscription Services deliver dynamic, automated updates for Fortinet products. The Fortinet Global Security Research Team creates these updates to ensure up-to-date protection against sophisticated threats. Subscriptions include antivirus, intrusion prevention, web filtering, antispam, vulnerability and compliance management, application control, and database security services.

FortiCare Support Services

FortiCare Support Services provide global support for all Fortinet products and services. FortiCare support enables your Fortinet products to perform optimally. Support plans start with 8x5 Enhanced Support with "return and replace" hardware replacement or 24x7 Comprehensive Support with advanced replacement. Options include Premium Support, Premium RMA, and Professional Services. All hardware products include a 1-year limited hardware warranty and 90-day limited software warranty.

Documentation:

Download the Fortinet FortiAnalyzer Virtual Appliances Datasheet (PDF).