Protect your Enterprise Network from the Inside-Out

With many different ways into an enterprise network today, Advanced Threats once inside take advantage of the flat and open network. The Solution is a new model of Firewall - Internal Segmentation Firewall (ISFW) - that sits at strategic points of the internal network.

As organizations embrace the latest IT technologies such as Mobility and Cloud, traditional network boundaries have become more complex to control and secure. With many different ways into an enterprise network today, Advanced Threats once inside take advantage of the flat and open network. The Solution is a new model of Firewall – Internal Segmentation Firewall (ISFW) - that sits at strategic points of the internal network. Internal firewalls add an extra level of security to provide Network Segmentation of key internal data/assets in the event a threat gets past the perimeter. 

What is Recommended

  • Inside-out visibility

  • Internal network segmentation

  • Easy deployment and administration

Rapid Deployment and Complete Protection


Internal Segmentation Firewall

Not long ago Firewall ports were marked External (Untrusted) and Internal (Trusted). The internal network usually consists of non-security aware devices like switches and routers. So once inside the internal network, the entire Enterprise Network is potentially accessible including the valuable assets.

With default Transparent Mode, Fortinet’s Internal Segmentation Firewall (ISFW) can be deployed rapidly with minimum disruption while keeping up the multi-gigabit speeds of internal networks. Fortinet’s new FortiGate SFW approach delivers continuous visibility and protection of the network from the inside out shortening the window of exposure and limiting potential damage.

Enhancing the ATP Cycle with Internal Visibility

Next-generation firewall’s (NGFW) play a key role in a continuous cycle of prevention, detection and mitigation for Advanced Threat Protection, by blocking known threats and handing off unknown high-risk items to a sandbox for detection. However, as most NGFW’s are deployed traditionally at the external gateway, this sees a subset of malicious activity during ingress and egress. Deploying FortiGate as an ISFW provides enhanced visibility throughout the internal network to prevent and detect lateral movement, as hackers attempt to locate assets and data of value and spread from compromised hosts to others.

Highlights

  • Complete, continuous inside-out protection against advanced threats

  • Easy default Transparent Mode deployment without network reconfiguration

  • Multi-gigabit performance supports wire speed East-West traffic