Post on 02-Oct-2015
FortiGate-100D Spec
-----
1 :1. 20()100/1000Base-X8()10/100/1000Base-T1000BaseX100FX10/100/1000Base-T1000Base-SX1000Base-LX1000Base-ZX1000Base-BX2. 410Gigabit Base-X SFP+3. 26()10GE2 port 40GE2 port 10GE2 port 4. (Switch Fabric)296 Gbps ()220.2 Mpps()
5. MAC address Table98,000()
6. 4,096()Access Control List
7. 1GB4GB
8. (hot-swappable)AC
9. (Modular)(process)(Process Recovery)
10. 802.3ad Link Aggregation802.1w RSTP802.1s MSTPPVST+9,216 ByteJumbo Frame
11. 128()load sharing group12. 2Link aggregation13. IEEE 802.1ab Link Layer Discovery Protocol
14. 4000()VLANPort-basedProtocol-basedMAC-basedIEEE 802.1QIEEE 802.1ad VLAN
15. Private VLANVLAN TranslationVLAN AggregationVLAN
16. IPRIPv1/v2OSPFIS-ISBGP17. MPLSH-VPLSMPLS Layer 3 VPN18. ECMP(Equal Cost Multipath) IPv6 ECMP(Equal Cost Multipath)19. IGMP v1/v2/v3PIM snoopingStatic IGMPMVR(Multicast Registration Protocol)Multicast VLANMulticast Multicast20. VRRPVRRP v3
21. IPv6RIPng Policy Based Routing for IPv6
22. IPv6
A. IPv4IPv6 Dual StackDNS clientB. Ping, Traceroute, Telnet, SSH-2C. ICMPv6Neighbor Discovery
D. DHCPv6 RelayE. IPv6 Access Control List
F. 6to4 Tunnel6in4 Tunnel
23. IEEE P802.1Qaz DCBX (Data Center Bridging eXchange )DCB24. :
A. Web based
B. 802.1x User based
C. MACRadiusMAC
D. (multiple supplicants)
E. CPU DoSACL(Access Control List)DoS
F. SSHv2(Server/Client)SFTPSCPv2RADIUSTACACS+
G. DHCP snoopingIPMACACLIP IPIP spoofing
H. Trusted DHCP ServerDHCP ServerIPDHCP Server
I. Gratuitous ARP Protection ARP Validation/InspectionGatewayIPARP spoofing/poisonMan-in-the-Middle
25. (Event)VLANACLQoS
26. sFlownetflowCPU
27. IETF IPFIX( Internet Protocol Flow Information Export)28. IEEE 802.1ag Layer 2 Ping traceroute29. SNMP v1/v2c/v34RMONSMONPort MirroringRS-232 Console PortTelnetHTTP/HTTPS (WebUI)TFTP XML
30. NTP (Network Time Protocol ) server31. ULCSAENFCC
32. 2 :1. VPNASICNGFW()ATP()UTM() 2. (license)3. WEB GUI VPN
4. 4 ()10/100/1000 Gigabit Copper TX , 4()Gigabit SFP Interfaces5. 1Console2Management
6. 120GB()7. Firewall(64 byte)8Gbps ()
8. TCP6,000,000()TCP Session20,000()
9. Firewall Policies 10,000.
10. (Static Route)RIP / RIPv2 / RIPngOSPF / OSPFv3BGP / BGP4+
11. (Geography)DOSHTTPS12. IPv4IPv6NAT/PATNAT64NAT46DoSIPv6 DoSSSL/SSH (Inspection)13. Firewall LOGlog
14. 10().
15. HTTP/SMTP/POP3/IMAP/FTP2,500Mbps ()(license)16. VPNVPNSSLIPSecPPTP and L2TP VPN Performance7Gbps ()17. SnifferPacket LoggingSFlowDebug Flow
18. Radius / LDAP / AD server .
19. Policy-Based,(Anti-Virus/IPS /Web/Mail filtering)
20. URL/ Web Content FilterCookiesActiveXJava Applet
21. EmailHELO DNS lookup, Black/white list check, Return email DNS check.
22. IPS Performance2.8Gbps ()23. IPTCP/UDP24. E-mail
25. (Traffic Bandwidth & Prioritization Management)(Guaranteed bandwidth)(Maximum bandwidth)
26. Sub-interface Multiple WAN
27. Fail OverHA- Active-ActiveActive-Passive
28. Console / http / https / snmp / telnet /ssh
29. ICSA FirewallICSA IPSNSS IPSNSS NGFWNSS FirewallFIPS 140-2 86 ICSA Antivirus VB100Common Criteria EAL 4+ (ISO/IEC 15408)
30. 3 :1. :(1) Enterasys N3(2) Enterasys N3Server Farm Netflow(SIEM)Netsight2. :(1) FortiGate 300A
(2) FortiGate 300AVPN(FortiGate 500)VPN(3) (SIEM)4 :1. 45
2.