Fortinet SD-WAN Architecture and Demo 2019

by | Jun 21, 2019 | IT and Security, Technology | 0 comments

Fortinet SD-WAN Architecture & Demo

Fortinet SD-WAN Architecture and Demo 2019 1Fortinet SD-WAN Architecture and Demo 2019. In this session, Stephen Watkins and Peter Chen will provide an architectural overview of the Fortinet Secure SD-WAN solution accompanied by a walkthrough demo of the 3 major SD-WAN use cases:

• Digital Transformation
• WAN Opex Reduction
• SD-Branch

Presented by Stephen Watkins, Principal Security Architect and Peter Chen, Technical Marketing Engineer.

Recorded at Networking Field Day 20 in San Jose, CA on February 14, 2019. For more information, please visit Fortinet or TechField
Request your demo HERE

Fortinet SD-WAN Architecture and Demo 2019. Fortinet has announced a new Next-Generation Firewall (NGFW), the FortiGate 100F. This new firewall also includes SD-WAN capabilities, including support for multiple link types, and application- and performance-based path selection, among other SD-WAN features.

Fortinet is also upgrading its FortiOS operating system to include new SD-WAN features such as support for Forward Error Correction (FEC).

Finally, Fortinet is rebranding one of its custom chips as the SoC4 SD-WAN ASIC, indicating the increasing importance of SD-WAN to Fortinet’s market positioning.

The 100F

Fortinet’s new NGFW/SD-WAN appliance targets mid-size and large enterprise branches and remote sites. The appliance includes 2 10Gbe ports and 18 1GbE ports.

The spec sheet promises 1Gbps throughput in SSL inspection mode, and 0.8Gbps throughput in NGFW mode.

Fortinet uses IPSec tunnels as its SD-WAN overlay. It says the 100F can support up to 2,500 tunnels per appliance.

In addition to firewalling, the 100F also serves as an SD-WAN edge device. Fortinet says the appliance includes a so-called SD-WAN ASIC to accelerate functions such as application identification. SD-WAN devices must identify applications as quickly as possible to apply the correct policies regarding link choice.

This ASIC also performs SSL inspection (with support for TLS 1.3), as well as malware filtering.

Fortinet calls this chip as the SD-WAN ASIC, but it’s not new. Many Fortinet appliances include two ASICs; one for network processing, and a second for content and security processing. This content ASIC is being re-badged as an SD-WAN chip.

For more on Fortinet’s product architecture and its SD-WAN capabilities, check out the company’s presentations at Networking Field Day 20. The delegates, myself included, made an effort to dig into how Fortinet combines security and SD-WAN capabilities in a single device, and to tease out what real-world performance would look like with multiple security and networking functions active.

More info at : PacketPusher

Trackbacks/Pingbacks

  1. What Is SD-WAN And Why You Should SWITCH Over? » Reality Maya - […] SD-WAN […]

Submit a Comment

Your email address will not be published. Required fields are marked *