FortiGate-100D Spec

-----

1 :1. 20()100/1000Base-X8()10/100/1000Base-T1000BaseX100FX10/100/1000Base-T1000Base-SX1000Base-LX1000Base-ZX1000Base-BX2. 410Gigabit Base-X SFP+3. 26()10GE2 port 40GE2 port 10GE2 port 4. (Switch Fabric)296 Gbps ()220.2 Mpps()

5. MAC address Table98,000()

6. 4,096()Access Control List

7. 1GB4GB

8. (hot-swappable)AC

9. (Modular)(process)(Process Recovery)

10. 802.3ad Link Aggregation802.1w RSTP802.1s MSTPPVST+9,216 ByteJumbo Frame

11. 128()load sharing group12. 2Link aggregation13. IEEE 802.1ab Link Layer Discovery Protocol

14. 4000()VLANPort-basedProtocol-basedMAC-basedIEEE 802.1QIEEE 802.1ad VLAN

15. Private VLANVLAN TranslationVLAN AggregationVLAN

16. IPRIPv1/v2OSPFIS-ISBGP17. MPLSH-VPLSMPLS Layer 3 VPN18. ECMP(Equal Cost Multipath) IPv6 ECMP(Equal Cost Multipath)19. IGMP v1/v2/v3PIM snoopingStatic IGMPMVR(Multicast Registration Protocol)Multicast VLANMulticast Multicast20. VRRPVRRP v3

21. IPv6RIPng Policy Based Routing for IPv6

22. IPv6

A. IPv4IPv6 Dual StackDNS clientB. Ping, Traceroute, Telnet, SSH-2C. ICMPv6Neighbor Discovery

D. DHCPv6 RelayE. IPv6 Access Control List

F. 6to4 Tunnel6in4 Tunnel

23. IEEE P802.1Qaz DCBX (Data Center Bridging eXchange )DCB24. :

A. Web based

B. 802.1x User based

C. MACRadiusMAC

D. (multiple supplicants)

E. CPU DoSACL(Access Control List)DoS

F. SSHv2(Server/Client)SFTPSCPv2RADIUSTACACS+

G. DHCP snoopingIPMACACLIP IPIP spoofing

H. Trusted DHCP ServerDHCP ServerIPDHCP Server

I. Gratuitous ARP Protection ARP Validation/InspectionGatewayIPARP spoofing/poisonMan-in-the-Middle

25. (Event)VLANACLQoS

26. sFlownetflowCPU

27. IETF IPFIX( Internet Protocol Flow Information Export)28. IEEE 802.1ag Layer 2 Ping traceroute29. SNMP v1/v2c/v34RMONSMONPort MirroringRS-232 Console PortTelnetHTTP/HTTPS (WebUI)TFTP XML

30. NTP (Network Time Protocol ) server31. ULCSAENFCC

32. 2 :1. VPNASICNGFW()ATP()UTM() 2. (license)3. WEB GUI VPN

4. 4 ()10/100/1000 Gigabit Copper TX , 4()Gigabit SFP Interfaces5. 1Console2Management

6. 120GB()7. Firewall(64 byte)8Gbps ()

8. TCP6,000,000()TCP Session20,000()

9. Firewall Policies 10,000.

10. (Static Route)RIP / RIPv2 / RIPngOSPF / OSPFv3BGP / BGP4+

11. (Geography)DOSHTTPS12. IPv4IPv6NAT/PATNAT64NAT46DoSIPv6 DoSSSL/SSH (Inspection)13. Firewall LOGlog

14. 10().

15. HTTP/SMTP/POP3/IMAP/FTP2,500Mbps ()(license)16. VPNVPNSSLIPSecPPTP and L2TP VPN Performance7Gbps ()17. SnifferPacket LoggingSFlowDebug Flow

18. Radius / LDAP / AD server .

19. Policy-Based,(Anti-Virus/IPS /Web/Mail filtering)

20. URL/ Web Content FilterCookiesActiveXJava Applet

21. EmailHELO DNS lookup, Black/white list check, Return email DNS check.

22. IPS Performance2.8Gbps ()23. IPTCP/UDP24. E-mail

25. (Traffic Bandwidth & Prioritization Management)(Guaranteed bandwidth)(Maximum bandwidth)

26. Sub-interface Multiple WAN

27. Fail OverHA- Active-ActiveActive-Passive

28. Console / http / https / snmp / telnet /ssh

29. ICSA FirewallICSA IPSNSS IPSNSS NGFWNSS FirewallFIPS 140-2 86 ICSA Antivirus VB100Common Criteria EAL 4+ (ISO/IEC 15408)

30. 3 :1. :(1) Enterasys N3(2) Enterasys N3Server Farm Netflow(SIEM)Netsight2. :(1) FortiGate 300A

(2) FortiGate 300AVPN(FortiGate 500)VPN(3) (SIEM)4 :1. 45

2.