Skip Links

Network World

  • Social Web 
  • Email 
  • Close
Clear Choice Test: Intrusion-prevention systems
Inside this test package
View from the lab: Go inside the IPS test bed at Newman's lab
Full report of usability testing
Why no product stopped Cisco exploit

Downsides of IPS coverage

How we tested IPS systems
Archive of Network World tests | Subscribe to the Network Product Test Results newsletter

Fortinet adds features, compromises in FortiGate line

By David Newman, Joel Snyder , Network World , 09/11/2006
  • Share/Email
  • Comment
  • Print

Company: Fortinet

Product: FortiGate-3600

www.fortigate.com

As the maker of a unified threat management device, Fortinet has packed an amazing number of features into the FortiGate line at an equally attractive price point. That packaging involved some compromises, and the network manager looking for an enterprise-class IPS will not be satisfied with the FortiGate-3600. Problems in configuration, documentation, operation, along with weak forensics, reporting and alerting make the FortiGate a poor choice as a pure-play IPS. 

FortiGate has a better sweet spot: the branch office requiring moderate protection. Although we focused on signatures, FortiGate has a modest set of protocol-anomaly tools that don’t have the same issues. For the network manager looking to add some branch-office style basic IPS on top of firewall rules and antivirus scanning, FortiGate is an attractive package.

The FortiGate performed well in baseline tests handling TCP and UDP traffic, but rates plummeted and latency rose when we subjected the system to attack. Under heaviest attack, forwarding rates dropped down to zero for part of our test.


< Previous: Demarc's Sentarus | Next: NFR's Sentivist >

  • Share/Email
  • Comment
  • Print
Partner Content

Brilliantly simple security and control solutions for email, web and endpoint

www.sophos.com

Stopping data leakage

Learn how to exploit your current security investment to control the information that flows into, through and out of your network.

Download the white paper.

Why detection rates aren't enough

Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.

Download the white paper.

Applications: taking back control

Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.

Learn more today.

Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed