- Forums
- Knowledge Base
- Customer Service
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- Fortigate cloud subscription
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Fortigate cloud subscription
Dear support team,
I have a requirement to provide solution for IT/OT network segregation. Kindly advise if the below consideration is ok.
I am planning to use F90G HA firewall cluster between IT and OT (2gbps IPS throughput including all enterprise and OT subscription?)
Use FS-124F-FPOE to connect OT devices (manage via FortiLink)
Use FAP-231G and FAP-433G for WiFi access.
Use FC1-10-EMS04-428-01-36 for SSL VPN service subscription.
Use FortiToken for both WiFi captive portal and VPN.
To manage the devices and event logging, use Fortgate cloud (assuming the part code is FC-10-0090G-131-02-36).
Question 1: From the data sheet of fortigate cloud, it is mentioned that log retention perried is 1 year only. Is there a way to increase this?
Question 2: What the daily limit or storate limitation in the cloud of transferring the date from firewall to Fortigate cloud?
Question 3: Do we need to buy 2xFC-10-0090G-131-02-36 if we implement two 90G firewalls in HA active/passive mode?
Question 4: Advise about the switch if that is fit to use on OT side?
Question 5: Advise about the SSL VPN subscription is ok to use?
Question 6: Advise about the Fortitoken whether we can use the single named user subscription for both WiFi and SSL VPN?
Question7: Can I confirm Fortigate cloud will provide exact function of Fortimanager cloud and Fortianalyzer cloud?
Thank you in advance for your advise.
Regards,
Siraj
Siraj
Regards,Siraj
Labels:
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Siraj,
Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.
Thanks,
Anthony-Fortinet Community Team.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Siraj,
We are still looking for someone to help you.
We will come back to you ASAP.
Regards,
Anthony-Fortinet Community Team.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @sirajtp - Let me try to answer your other questions.
Question 1: From the FortiGate Cloud datasheet, it is mentioned that the log retention period is only 1 year. Is there a way to increase this?
Answer: As far as I know, we only have a one-year log retention limit, and I'm not aware if the FortiCloud team offers extended on-demand log storage options. If you want to confirm, you can reach out to our sales team about this.
Question 2: What is the daily limit or storage limitation in the cloud for transferring data from the firewall to FortiGate Cloud?
Answer: I don't have a direct answer for this, but as far as I remember, they do not advertise a specific daily transfer limit for Firewall logs.
Question 3: Do we need to buy 2xFC-10-0090G-131-02-36 if we implement two 90G firewalls in HA active/passive mode?
Answer: For this, it seems you only need one because the license applies to the management solution, not individual firewalls in the cluster.
Question 4: Advice about the switch if it is fit to use on the OT side?
Answer: It's better to contact the Fortinet Local Partner and Sales Team about this. But if you want to push through with the FS-124F-FPOE, it should be okay as long as you consider various factors like security hardening options, industrial certifications, and potential vulnerabilities.
Question 5: Advice about the SSL VPN subscription—is it okay to use?
Answer: FC1-10-EMS04-428-01-36 SSL VPN subscription should be suitable, but double-check if it covers the number of required concurrent users. Contact our Sales and Customer Service Team about this.
Question 6: Advice about the FortiToken—can we use the single named user subscription for both WiFi and SSL VPN?
Answer: Yes, a single FortiToken named user subscription can likely be used for both WiFi captive portal and SSL VPN. However, verify this with Fortinet licensing to ensure it aligns with your intended usage model. Contact our Sales and Customer Service Team.
Question 7: Can I confirm that FortiGate Cloud will provide the exact function of FortiManager Cloud and FortiAnalyzer Cloud?
Answer: FortiGate Cloud focuses on centralized device management, basic configuration, and limited log access. FortiManager Cloud provides advanced configuration and device management, including automation, while FortiAnalyzer Cloud delivers in-depth security analytics and reporting.
Best,
Ricky
Ricky
Related Posts
- Fortigate client based ssl-vpn with saml... 155 Views
- #FortianalyzerCloud #License 101 Views
- FortiMangaer and FGT Hub migration issues... 136 Views
- Slowness towards the internal network connected... 185 Views
- Sub interface in fortigate Oracle Cloud 126 Views
Labels
-
FortiGate
6,528 -
FortiClient
1,303 -
5.2
801 -
5.4
639 -
FortiManager
563 -
6.0
416 -
FortiAnalyzer
414 -
5.6
362 -
FortiSwitch
333 -
FortiAP
333 -
FortiClient EMS
263 -
6.2
251 -
FortiMail
242 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
150 -
6.4
128 -
FortiNAC
106 -
FortiGuard
102 -
FortiSIEM
88 -
FortiGateCloud
87 -
FortiCloud Products
84 -
IPsec
73 -
FortiToken
69 -
Customer Service
69 -
4.0MR3
64 -
SSL-VPN
59 -
Wireless Controller
58 -
FortiProxy
44 -
FortiADC
42 -
Fortivoice
41 -
FortiEDR
39 -
FortiGate v5.4
34 -
FortiDNS
34 -
FortiExtender
31 -
FortiSandbox
31 -
FortiSwitch v6.4
28 -
SD-WAN
24 -
FortiConnect
23 -
FortiWAN
22 -
Firewall policy
22 -
FortiConverter
21 -
High Availability
20 -
VLAN
19 -
FortiPortal
18 -
ZTNA
16 -
FortiSwitch v6.2
16 -
FortiGate v5.2
16 -
FortiMonitor
14 -
Certificate
14 -
DNS
13 -
FortiDDoS
13 -
SAML
12 -
BGP
12 -
Routing
12 -
FortiAuthenticator
12 -
FortiCASB
12 -
Interface
11 -
Logging
11 -
FortiGate v5.0
10 -
LDAP
10 -
FortiRecorder
10 -
VDOM
10 -
FortiWeb v5.0
9 -
FortiManager v5.0
9 -
Virtual IP
9 -
NAT
9 -
4.0MR2
9 -
RADIUS
8 -
Traffic shaping
8 -
SSID
7 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
fortilink
7 -
FortiAnalyzer v5.0
7 -
FortiGate v4.0 MR3
7 -
Admin
7 -
4.0
7 -
SSL SSH inspection
6 -
Security profile
6 -
Authentication
6 -
Fortigate Cloud
6 -
IP address management - IPAM
6 -
Traffic shaping policy
5 -
FortiBridge
5 -
SNMP
5 -
SSO
5 -
Application control
5 -
FortiManager v4.0
5 -
Static route
5 -
FortiDirector
4 -
WAN optimization
4 -
Web application firewall profile
4 -
DNS Filter
4 -
FortiTester
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
3.6
4 -
FortiScan
4 -
Proxy policy
4 -
IPS signature
3 -
packet capture
3 -
FortiToken Cloud
3 -
FortiAP profile
3 -
Intrusion prevention
3 -
Automation
3 -
DoS policy
3 -
Port policy
3 -
FortiDB
3 -
FortiDeceptor
2 -
FortiInsight
2 -
NAC policy
2 -
VoIP profile
2 -
Antivirus profile
2 -
Web profile
2 -
Traffic shaping profile
2 -
FortiAI
2 -
FortiHypervisor
2 -
Netflow
2 -
Fortinet Engage Partner Program
2 -
trunk
2 -
SDN connector
1 -
4.0MR1
1 -
Users
1 -
Subscription Renewal Policy
1 -
FortiCWP
1 -
FortiNDR
1 -
Web rating
1 -
FortiPAM
1 -
Application signature
1 -
Multicast routing
1 -
Authentication rule and scheme
1 -
Zone
1 -
FortiManager-VM
1 -
Internet Service Database
1 -
System settings
1 -
Explicit proxy
1 -
TACACS
1
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.