病毒防护定义和攻击定义更新

病毒和攻击定义升级及注册

 

 

不建议将启用推送更新作为唯一的获取更新的方式。FortiGate 设备可能无法收到 推送更新。同样,当 FortiGate 设备接收到一个更新通报的的时候,它只尝试一次连 接到 FDN 和下载更新。

过 NAT 设备的送更新

如果 FDN 必须通过一个 NAT 设备才能连接到 FortiGate 设备,您必须在 NAT 设备上 配置端口转发并在推送更新配置中添加端口转发信息。使用端口转发,FDN 使用 9443 或者您指定的备份端口连接到 FortiGate 设备。

注意:如果 NAT 设备的外部接口 IP 地址的动态的 (例如,使用 PPPoE 或 DHCP 设置的接口),您 将无法通过 NAT 设备接推送更新。

例子:过一个 NAT 设备的送更新

这个例子描述了如何配置一个 FortiGate NAT 设备以向安装在它的内部网络中的一 个 FortiGate 设备转发推送更新。为了让内部网络中的 FortiGate 设备能够接收推送 更新,这个 FortiGate NAT 设备必须配置一个端口转发虚拟 IP。这个虚拟 IP 将这个 FortiGate NAT 设备的外部接口的 IP 地址和一个指定的端口影射到内部网络中的那个 FortiGate 设备的 IP 地址上去。如果这个 FortiGate 设备运行于 NAT/ 路由模式,这个 IP 地址可以是它的外部接口 IP 地址,如果这个 FortiGate 设备运行于透明模式,那么 这个 IP 地址可以是它的管理 IP 地址。

注意:本例描了一个关于 FortiGate NAT 设备配置的例子。而,您可以使用任何具有配置 了端口转发的静态外部 IP 地址的 NAT 设备。

100

美国飞塔有限公司

Page 112
Image 112
Fortinet 500 manual 通过 Nat 设备的推送更新, 例子:通过一个 Nat 设备的推送更新, 100

500 specifications

Fortinet 500 is a next-generation firewall (NGFW) that is part of Fortinet's acclaimed FortiGate family, designed to provide advanced security for medium to large enterprises. This appliance is known for its high performance, flexibility, and ability to protect networks from a variety of cyber threats through its robust features and technologies.

One of the main features of the Fortinet 500 is its integrated security capabilities. It combines multiple security functions into a single device, allowing organizations to manage everything from intrusion prevention and antivirus to web filtering and application control. This integration leads to simplified management and increased efficiency, as users can address multiple security needs without deploying multiple devices.

The Fortinet 500 runs on the FortiOS operating system, which is known for its simplicity and user-friendliness. FortiOS provides a centralized management interface that allows for the easy configuration and monitoring of security policies across the entire network. Additionally, the Fortinet management tools, such as FortiManager and FortiAnalyzer, enable detailed insights and reporting capabilities, helping organizations stay compliant with their security mandates.

Another characteristic that sets Fortinet 500 apart is its advanced threat intelligence, powered by the FortiGuard Labs. This global threat intelligence system continuously updates the firewall with the latest threat signatures and attack vectors, ensuring that organizations stay ahead of emerging threats. The firewall also employs machine learning and artificial intelligence to detect and mitigate sophisticated attacks in real-time.

Performance is crucial in any security appliance, and the Fortinet 500 does not disappoint. With hardware acceleration and purpose-built security processors, it delivers high throughput levels, enabling organizations to maintain productivity without sacrificing security. This level of performance is particularly beneficial in environments with heavy traffic and bandwidth demands.

In addition to these core features, the Fortinet 500 supports seamless integration with other security solutions within the Fortinet Security Fabric. This comprehensive approach allows for greater visibility and control over the entire security posture of an organization.

Overall, the Fortinet 500 is a powerful NGFW that offers a blend of advanced security features, ease of management, top-notch performance, and robust threat intelligence. Its ability to adapt to the ever-evolving landscape of cybersecurity makes it a valuable asset for businesses seeking to safeguard their digital assets and ensure seamless network operation.