FortiWeb 網站應用程式防火牆(WAF) 可保護業務關鍵型網站應用程式,避免遭受針對已知和未知漏洞的攻擊
FortiWeb 可為網站應用程式和 API 抵禦 OWASP 前 10 大威脅、 DDOS 攻擊,以及惡意 機器人攻擊。 進階 ML 驅動功能可提高安全性並減少管理開銷。功能包括異常偵測、API 發現和保護、機器人緩解和進階威脅分析,可識別所有受保護應用程式中最關鍵的威脅。
FortiWeb VM 屬於全新 FortiFlex 計畫的一部分,可讓您靈活地將服務和支出調整至最佳狀態。
阻止對應用程式的已知威脅和零時差威脅,而不會阻止合法使用者,也不會產生傳統應用程式學習所需的過多日常管理費用。FortiWeb 利用機器學習為每個應用程式建模,識別惡意異常以封鎖威脅,而且不會產生導致管理開銷的誤報。
阻止惡意機器人活動,但不會阻止支援合法業務需求的機器人,例如搜尋引擎或健康和效能監控工具。 減少對降低使用者體驗的過時技術的依賴,並利用機器人欺騙、生物特徵偵測和機器學習等進階技術,準確識別及管理機器人流量。FortiWeb Bot Mitigation 為您提供所需的可視性和控制,而且不會因不必要的驗證碼或挑戰而降低使用者的網絡速度。
保護支援企業對企業通訊以及行動應用程式的 API。FortiWeb API 發現和保護會持續評估應用程式流量,運用機器學習演算法自動發現 API。FortiWeb 還可將開箱即用策略與基於貴組織的模式規格(OpenAPI、XML、JSON)自動產生的主動安全模型策略整合在一起,防止 API 漏洞。保護您的 API,並將 API 安全無縫整合到 CI/CD 管道中。
網站應用程式和 API 已成為構建業務關鍵型應用程式的首選工具,這些應用程式必須滿足業務需求。FortiWeb 提供保護現代網站應用程式所需的效能、可管理性和廣泛的保護功能。
網站應用程式防護
抵禦 OWASP 前 10 大威脅、 DDOS 攻擊與機器人攻擊等。
ML 型的威脅偵測
利用 ML 抵禦零時差攻擊,並且儘量減少誤報與其他防禦機制。
Security Fabric 整合
整合 FortiGate新世代防火牆 NGFW 和 FortiSandbox,抵禦進階持續性威脅 (APT)
進階分析
使用建議的行動手冊和威脅獵捕功能簡化工作流程
誤報緩解
最大程度地減少了對策略與異常清單的日常管理,僅將不受歡迎的流量拒之門外
硬體型的加速
提供業界領先的受保護 WAF 吞吐量和快速流量加密/解密
FortiWeb 採用多種 FortiGuard 安全服務來保護網站應用程式免受攻擊。這些年度訂閱可以單獨購買,也可以與您的 FortiWeb 解決方案一起購買。
FortiWeb 有各種不同形式,無論您是想要入門級的硬體設備還是可適應最新雲端環境的複雜 VM,都可以滿足。
導覽:
FortiWeb 設備採用多核心處理器技術,結合硬體型的 SSL 工具,可提供極快的受保護 WAF 吞吐量。
吞吐量 |
50 Mbps |
| 港口 | 4x GE RJ45 |
吞吐量 |
250 Mbps |
| 港口 | 4x GE RJ45、4x GE SFP |
吞吐量 |
750 Mbps |
| 港口 | 4x GE RJ45 (2x bypass)、4x GE SFP |
吞吐量 |
1.3 Gbps |
| 港口 | 2x 10 GE SFP+、2x GE RJ45、4x GE RJ45 bypass、4x GE SFP |
吞吐量 |
5 Gbps |
| 港口 | 4x GE RJ45 (4 bypass)、4 SFP GE RJ45、4 x 10 GE SFP+ |
吞吐量 |
10 Gbps |
| 港口 | 8x GE (8 bypass)、10x 10G SFP+ (2 bypass) |
吞吐量 |
70 Gbps |
| 港口 | 8x GE (8 bypass)、10x 10G SFP+ (2 bypass)、2x 40G QSFP (2 bypass) |
FortiWeb 的虛擬版本可以部署在 VMware、Microsoft Hyper-V、Citrix XenServer、Open Source Xen、VirtualBox、KVM 和 Docker 平台上。
吞吐量 |
25 Mbps |
| vCPU | 1 |
吞吐量 |
100 Mbps |
| vCPU | 2 |
吞吐量 |
500 Mbps |
| vCPU | 4 |
吞吐量 |
3 Gbps |
| vCPU | 8 |
實際的效能值可能因網路流量與系統設定而異。使用 Dell PowerEdge R710 伺服器(2x Intel Xeon E5504 2.0 GHz 4 MB 快取)執行 VMware ESXi 5.5,4 vCPU 與 8 vCPU FortiWeb 虛擬設備指派 4 GB 的 vRAM,2 vCPU FortiWeb 虛擬設備指派 4 GB 的 vRAM,以查看其效能指標。
FortiWeb 容器設備可在容器化環境中保護您的工作負載和資料。
吞吐量 |
25 Mbps |
吞吐量 |
100 Mbps |
吞吐量 |
500 Mbps |
吞吐量 |
3 Gbps |
吞吐量和其他指標都是每個版本允許的最大值。實際的效能值可能因網路流量與系統設定而異。
Fortinet 致力於協助我們的客戶取得成功,並且 FortiCare 服務每年都會幫助數千家組織從其對 Fortinet 產品和服務的投入中獲得最大利益。為實現這一目標,FortiCare 遵循生命週期方法並提供獨特的服務,幫助客戶邁向成功之路。
技術支援服務
按裝置提供的各種選項可實現高效運作。FortiCare Elite 選項針對關鍵產品提供了 15 分鐘的回應時間。
進階支援
按帳戶提供各種白手套服務,透過指定專家的運作審查,減少中斷並提高生產力。
專業服務
我們的多廠商專家可以設計並部署以最佳做法為基礎的全面解決方案,協助您達成網路或安全目標並採用新功能。
維修換貨
所有產品系列均提供進階維修換貨選項,可快速更換有缺陷的硬體,達成您的可用性目標。
FortiWeb Datasheet
FortiWeb Cloud WAF as a Service Datasheet
FortiWeb Cloud WAF as a Service for GCP Datasheet
FortiWeb Cloud WAF as a Service for Azure Datasheet
FortiWeb Cloud WAF as a Service for AWS Datasheet
SANS recently reviewed Fortinet’s FortiWeb Cloud service, which offers a wide range of security capabilities and controls in a brokered model to protect applications from web application attacks, API attacks, malicious bots, and much more.
Discover how your peers are leveraging FortiWeb Cloud
FortiWeb Cloud WAF-as-a-Service by Fortinet, a Web Application Firewall Solution to protect organizations against a broad range of attacks.
Read the eBook to find a WAF to improve security of their organization’s web application needs.
Uncover The Best-Fit Solution For Your Needs
What security practitioners, DevOps, and DevSecOps need to know
Fortinet FortiWeb, in its various forms (hardware, virtual machine, or SaaS), simplifies application security and overcomes the above challenges. Using machine learning (ML) algorithms, it protects applications and APIs from inherent risks, exploitable vulnerabilities, and malicious bots
FortiWeb-Cloud WAF-as-a-Service (WaaS) delivers full-featured, cost-effective security for web applications with a minimum of configuration and management.
In this video, we will cover the different types of reference architectures based on FortiADC and FortiWeb Solutions.
In this video, we will focus on how FortiADC and FortiWeb solutions can integrated with Fortinet Security Fabric. We will be covering different types of Fortinet products that will enhance the application security platform.
FortiWeb WAF's threat analytics feature simplifies threat detection and response and speeds up your WAF alerts security investigation. Using machine learning, attacks are analyzed across all your web applications to identify common characteristics and patterns and group them into meaningful security incidents.
FortiWeb Cloud WAF-as-a-Service protects web applications and APIs from the OWASP Top 10, zero-day threats, and other application-layer attacks. FortiWeb Cloud also includes robust features such as API discovery and protection, bot mitigation, threat analytics, and advanced reporting.
Setting up Fortinet's FortiWeb Cloud WAF-as-a-Service for Azure
Setting Up Fortinet's FortiWeb Cloud WAF-as-a-Service for AWS
Alcide is a cloud-native security leader with the mission to empower DevOps and security teams to manage application and networking security through the intelligent automation of security policies applied uniformly, regardless of the workload and infrastructure.
AWS services are trusted by more than a million active customers around the world – including the fastest growing startups, largest enterprises, and leading government agencies – to power their infrastructures, make them more agile, and lower costs.
Learn more on the Fortinet-AWS alliance
Cubro is a leading manufacturer and global supplier of IT Network TAPs, Advanced Network Packet Brokers and Bypass Switches. Together with Fortinet we enable total network visibility into your traffic, where we differentiate solutions for Telecommunications, ISP, Data Centre, Enterprise, and Government in virtualized or physical environments.
D3 Security's award-winning SOAR platform seamlessly combines security orchestration, automation and response with enterprise-grade investigation/case management, trend reporting and analytics. With D3's adaptable playbooks and scalable architecture, security teams can automate SOC use-cases to reduce MTTR by over 95%, and manage the full lifecycle of any incident or investigation.
DFLabs IncMan SOAR leverages existing security products to dramatically reduce the response and remediation gap caused by limited resources and the increasing volume of incidents. Together with Fortinet, IncMan allows joint customers to respond to security incidents in a faster, more informed and efficient manner.
At ElevenPaths, Telefónica Cyber Security Unit, we believe in the idea of challenging the current state of security, an attribute that must always be present in technology. We’re always redefining the relationship between security and people, with the aim of creating innovative security products which can transform the concept of security, thus keeping us one step ahead of attackers, who are increasingly present in our digital life.
Gigamon provides active visibility into physical and virtual network traffic, enabling stronger security, and superior performance.
Google Cloud Platform is a secure, dedicated public cloud computing service operated by Google which provides a range of infrastructure and application services that enable deployments in the cloud. Fortinet provides critical firewalling, advanced security and scalable BYOL protection for elastic compute, container, and machine-learning workloads in Google’s innovative public cloud.
HashiCorp is the leader in multi-cloud infrastructure automation software. The HashiCorp software suite enables organizations to adopt consistent workflows to provision, secure, connect, and run any infrastructure for any application. HashiCorp open source tools Vagrant, Packer, Terraform, Vault, Consul, and Nomad are downloaded tens of millions of times each year and are broadly adopted by the Global 2000.
Hewlett Packard Enterprise is an industry-leading technology company that enables customers to go further, faster. With the industry’s most comprehensive portfolio, HPE's technology and services help customers around the world make IT more efficient, more productive, and more secure.
