Content

FortiGate-500A-HD

Fortinet's FortiGate-500A-HD appliance is another 1U rack-mountable unit but, being half-depth, is smaller than some similar products. It's claim to fame is as a "multi-zone network protection solution." Fortinet says it enables organizations to segment networks into independent security "zones", each with unique access and security policies.

Startup documentation for the unit is provided as a PDF document on a supplied CD.

We accessed the configuration page via a web-based browser, although a serial connection can also be used. The main menu page provides a dashboard view of the unit, showing system resources as two speedometer-type gauges showing CPU usage and memory usage.

Clicking on an icon above these gauges you are taken to a view of various graphs showing system resource history - much like the performance graphs on Windows Task Manager. These not only show CPU and memory usage but also, usefully, virus and intrusion history.

The Fortinet appliance functions as a firewall, VPN, anti-virus, anti-spam, IPS and web-filtering device as well as an instant messaging and peer-to-peer filter. The other functions of the box have been looked at in more detail in previous tests, so we have concentrated on IM.

Clicking on the IM option brings up a statistics page that provides an overview of users and whether they are using AOL, Yahoo, MSN or ICQ. It also tracks peer-to-peer usage within the organization in relation to BitTorrent, eDonkey, Gnutella, KaZaa and WinNY.

However, the instant messaging statistics are far more detailed than peer-to-peer and show the number of users using each application, as well as information such as the total number of file transfers and blocked transfers. It also tracks the number of voice sessions over IM and applies anti-virus scanning to instant messaging sessions.

Clicking on the user option brings up three more tabs: current users, user list and configuration. The first provides a breakdown of which users are using which IM services; the user list allows the administrator to block traffic based on the individual.

And under configuration, you can set policies for individual users as well as those that are unknown to the organization. By default it will block the three main IM applications from users not known to the device.

Overall, Fortinet has delivered a solid product. The configuration and administration are intuitive, and policies and rules can be established reasonably simply

Product title
FortiGate-500A-HD
Product info
Name: FortiGate-500A-HD Description: Price: $11,495
Strength
This is a comprehensive multi-function device.
Weakness
Internal reporting capabilities are not included.
Verdict
A straightforward product with reasonable functionality.

Related

DevSecOps Scanning Challenges & Tips

There are many ways to do DevSecOps, and each organization — each security team, even — uses a different approach. Questions such as how many environments you have and the frequency of deployment of those environments are important in understanding how to integrate a security scanner into your DevSecOps machinery. The ultimate goal is speed […]

It Should Be ‘Cybersecurity Culture Month’

It’s Cybersecurity Awareness Month, but security awareness is about much more than just dedicating a month to a few activities. Security awareness is a journey, requiring motivation along the way. And culture. Especially culture.That’s the point Proofpoint Cybersecurity Evangelist Brian Reed drove home in a recent appearance on Business Security Weekly.“If your security awareness program […]

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.