By combining stateful inspection with a comprehensive suite of powerful security features, FortiGate Next Generation Firewall (NGFW) technology delivers complete content and network protection. This solution is available for deployment on Amazon Web Services (AWS).
In addition to advanced features such as an extreme threat database, vulnerability management, and flow-based inspection, features including application control, firewall, antivirus, IPS, web filter, and VPN work in concert to identify and mitigate the latest complex security threats.
The security-hardened FortiOS operating system is purpose-built for inspecting and identifying malware and supports direct Single Root I/O Virtualization (SR-IOV) for higher and more consistent performance.
FortiGate for AWS supports active-passive high availability (A-P HA) configuration with FortiGate-native unicast HA synchronization between the primary and secondary nodes. When FortiGate detects a failure, the passive firewall instance becomes active and uses AWS API calls to configure its interfaces/ports.
FortiGate also supports active-active HA using elastic load balancing, as well as Auto Scaling.
Highlights of FortiGate for AWS include the following:
- Delivers complete content and network protection by combining stateful inspection with a comprehensive suite of powerful security features.
- IPS technology protects against current and emerging network-level threats. In addition to signature-based threat detection, IPS performs anomaly-based detection, which alerts users to any traffic that matches attack behavior profiles.
- New Docker application control signatures protect your container environments from newly emerged security threats. See Use Case: FortiGate-VM on a Docker Environment.