WIXLIB

DATA SHEETFortiADC Available in:ApplianceVirtualMachineHostedCloudAdvanced Application Delivery ControllerHighlights§ Advanced ApplicationLoad Balancing§ Protection fromthe OWASP Top 10application attacks§ Multi-Deployment Modewith Hardware, VM, orCloud Solution (PAYG/ BYOL)Application Delivery Without Any LimitsFortiADC is an advanced Application Delivery Controller (ADC)that ensures application availability, application security, andapplication optimization. FortiADC offers advanced securityfeatures (WAF, DDoS, and AV) and application connectorsfor easy deployment and full visibility to your networks andapplications. FortiADC can be deployed as a physical or virtualmachine (VM), or as a Cloud solution.§ SSL Security and Visibility withHardware-based Solution§ Automation and FabricConnector to Third PartySolutions such as SAP, CiscoACI, AWS, and K8s§ User Authentication andAuthorization via MFA and SSO§ FortiGSLB Cloud IntegrationMaximizes Service AvailabilityApplication Availability24x7 application availability through automatic failover forbusiness continuity with application automation, global server loadbalancing, and link load balancing to optimize WAN connectivity.Application OptimizationMulti-core processor technology combined with hardware-basedSSL offloading and server optimization to increase end-user QoE.FortiADC 100F, 200F, 300F,400F, 1200F, 2200F, 4200F,5000F and VMApplication ProtectionAdvanced Web Application Firewall protection from theOWASP Top 10 and threat detection with Fortinet FortiGuardCloud Services.FortiCare Worldwide24/7 SupportFortiGuard .com1

DATA SHEET FortiADC HIGHLIGHTSApplication AvailabilityApplication OptimizationApplications are the lifeblood of a company’s online presence.Unresponsive applications can result in lost revenue andcustomers taking their future business elsewhere. Applicationperformance, scalability, and resilience are key but none ofthis matters unless the end-user has a good experience andcompletes their transaction.FortiADC provides multiple services that speed the deliveryof applications to users. The PageSpeed suite of websiteperformance enhancement tools can automatically optimizeHTTP, CSS, Javascript, and image delivery to applicationusers. FortiADC also provides Dynamic Caching and HTTPCompression and Decompression to improve end-userexperience and server productivity.FortiADC is a dedicated Application Delivery Controlsolution that provides a multi-tenancy solution (VDOM), highavailability, and scalability with hybrid solution deployment(on-premises and cloud offering) to your applications.SSL SecurityFortiADC delivers high capacity decryption and encryptionwith the latest cryptography standard using hardware-basedSSL ASIC. FortiADC provides SSL offloading, SSL inspectionand visibility to inspect traffic for threats, speeds up serverresponse, and reduces the load on the backend server.FortiADC also integrates with Gemalto’s SafeNet EnterpriseHardware Security Module (HSM).FortiADC Security FabricAs the threat landscape evolves, many new risks requirea multi-pronged approach for protecting applications.FortiADC’s antivirus and integration with FortiSandbox extendbasic security protections to scan file attachments for knownand unknown threats.Business ContinuityFortiADC’s included Global Server Load Balancing (GSLB)module on-prem or in the cloud (FortiGSLB Cloud) makesyour network reliable and available by scaling applicationsacross multiple data centers for disaster recovery or toimprove application response times. Customers can set uprules based on site availability, data center performance, andnetwork latency.Application ProtectionFortiADC offers multiple levels of protection to defend againstattacks that target your web applications. FortiADC WebApplication Firewall can detect a zero day attack and protectfrom OWASP Top 10 and many other threats with multi-vectorprotection. FortiADC also supports our FortiGuard Cloudwhich provides multi services such as IPS, Antivirus, and IPReputation service (subscription required) that protects youfrom sources associated with DoS/DDoS attacks, phishingschemes, spammers, malicious software, and botnets.Automation and ConnectorsFortiADC Fabric Connectors provide open API-basedintegration and orchestration with multiple software-definednetworks (SDN), cloud, management, and partner technologyplatforms. Fortinet Fabric Connectors deliver turnkey, open,and deep integration into third party services such as K8s,AWS, OCI, and SAP, in multi-vendor ecosystems, enablingscalability, security automation, and simplified management.22

DATA SHEET FortiADC HIGHLIGHTSUnleash the Power of ScriptsAnalytics and VisibilityFortiADC Scripts provides the flexibility to create customevent-driven rules using predefined commands, variables,and operators. Using easy-to-create scripts, you get theflexibility you need to extend your FortiADC with specializedbusiness rules that give you almost unlimited possibilities forserver load balancing, health checks, application validation,content routing, and content rewriting to meet the needs ofyour organization.FortiADC offers a comprehensive monitoring system foryour network and application. With FortiView, customerscan get real-time and historical data into a single view onyour FortiADC. We also provide a network logical topologyof real-servers, user/application data-analytics, securitythreats, attack maps, and some other system events andalerts. FortiADC is integrated with third party solutions suchas Splunk, FortiAnalyzer, and FortiSIEM for more visibility,correlation, automated response, and remediation.Application AuthenticationFortiADC provides centralized user authentication andauthorization services to web applications. FortiADC acts as agatekeeper to offload HTTP authentication and authorizationto customer applications using single sign-on (SSO) services,SAML, LDAP, RADIUS, and MFA (using FortiToken Cloud andGoogle authenticator).WAN OptimizationFortiADC Centralized ManagementFortiADC Manager is a web-based management tool thatallows you to centrally manage multiple FortiADC devicesremotely. Network administrators can better control theirdevices by logically grouping devices, efficiently managingjobs and licenses, quickly checking various logs, andmonitoring threat statistics in real time.FortiADC provides a built-in link optimization with the LinkLoad Balancing module. Customers can create two or moreWAN links (for inbound and outbound Link LB) to reducethe risk of outages or to add additional bandwidth to relievetraffic congestion.FortiADC Dashboard3

DATA SHEET FortiADC USE CASESHigh Scale Performance with FortiADCand FortiGate (FWLB and SSL-VPN /IPSEC LB)§ Improved VPN performance anduser QoE§ User redirection based ongeolocation and round-trip time(RTT)§ Advanced health checks forapplications and NGFW in improvedsite visibility and availability§ Application Load Balancing and WAFProtectionMSSP / SP Advanced Offering§ Fully virtualized environment§ Service tailored per customer(SLB, L7, GSLB, WAF, andApplication Optimization)§ Can be managed via Single pane ofglass (CM, API, and Cisco ACI)§ Fully managed services§ High redundancyHybrid Cloud Solution§ Cloud Connector for visibility andavailability§ Fabric Connector to multipleapplications for automation andservice scaling§ Multi-Service solution (SLB, WAF,Authentication, and GSLB)44

DATA SHEET FortiADC FEATURESApplication AvailabilityExternal Fabric Connectors§ Virtual service definition with inherited persistence, load§ Kubernetes Servicebalancing method, and pool members§ Layer 4/7 application routing policy§ SAP Application§ AWS / OCI Connector§ Layer 4/7 server persistence§ Splunk Integration§ Custom scripting for SLB and content rewritingGlobal Server Load Balancing (GSLB)§ Scripting for event-driven rules using predefinedcommands, variables, and operators for SLB, contentrewrite, persistencey, and security§ Advanced L7 application health check with support scriptfor a customized health check§ Clone Traffic PoolsLayer 4-7 Application Load Balancing§ TCP, UDP, IP, DNS, HTTP, HTTPS, HTTP 2.0 GW, FTP, SIP,RDP, RADIUS, MySQL, MSSQL, RTMP, RTSP, and moreapplications§ L7 Content Switching and Rewriting– HTTP Host, HTTP Request URL, and HTTP Referrer– Source IP Address§ Persistent IP, has IP/port, hash header, persistent cookie, hashcookie, destination IP hash, URI hash, full URI hash, host hash,and host domain hash§ URL Redirect, HTTP request/response rewrite (includes HTTPbody)§ Global data center DNS-based failover of web applications§ Delivers local and global load balancing between multi-siteSSL VPN deployments§ DNSSEC§ DNS Access Control Lists§ GSLB setup wizardDeployment Modes§ One arm-mode (Proxy with X-forwarded for support)§ Router mode§ Transparent mode (switch)§ High Availability (AA/AP Failover)Web Application FirewallApplication Protection§ OWASP Top-10 Wizard§ Web Attack Signature§ Layer 7 DNS load balancing, security, and caching§ API ProtectionLink Load Balancing§ Bot Detection§ Inbound and outbound LLB§ Support for policy route and SNAT§ Multiple health check target support§ Sensitive Data Protection§ Web Vulnerability Scanner§ HTTP RFC compliance§ Configurable intervals, retries, and timeoutsSecurity Services§ Tunnel Routing§ SQLi/XSS Injection DetectionSecurity Fabric Connector§ OpenAPI Validation§ FortiGLSB Cloud (One-Click-GSLB)§ FortiAuthentication§ FortiSIEM§ FortiAnalyzer§ FortiADC-CM§ FortiSandbox§ API Gateway§ Web Scraping§ CSRF Protection§ Brute Force Protection§ Web Defacement Protection§ CAPTCHA Support§ Data Leak Prevention§ File Restriction§ Cookie Security§ XML/JSON/SOAP Validation§ HTTP Header Security5

DATA SHEET FortiADC FEATURESApplication AccelerationSSL Offloading and Acceleration§ Offloads HTTPS and TCPS processing while securingsensitive data§ Full certificate management features§ HTTP/S mirroring for traffic analyses and reporting§ Support TLS 1.3Application Security§ FortiGuard Antivirus and FortiSandbox integration§ GEO IP security and logs (subscription required)§ Stateful Firewall§ Web Filtering (subscription required)§ IP Reputation (subscription required)§ IPv4 and six firewall rules§ Granular policy-based connection limitingHTTP and TCP Optimization§ Syn cookie protection§ 100x acceleration by off-loading TCP processing§ Connection limits§ Connection pooling and multiplexing for HTTP and HTTPS§ Intrusion Prevention System (subscription required)§ HTTP Page Speed-UP for Web Server Optimization§ Application and Network DDoS Protection§ TCP buffering§ DNS Application Security§ HTTP compression and decompression§ HTTP caching (static and dynamic objects)§ Bandwidth allocation with Quality of Service (QoS)Management§ Central management for multiple FortiADC devicesAuthentication Offloading§ REST API§ Local§ SNMP with private MIBs with threshold-based traps§ LDAP§ Real-time Data Analytics§ RADIUS§ Syslog support§ Kerberos§ Role-based administration§ SAML 2.0 (SP and Idp)§ Real-time monitoring graphs§ NTLM§ Built-in reporting§ Two-Factor Authentication — FortiToken/ FortiTokenCloud, and Google Authentication§ FortiView integrationNetworking§ Virtual Domains (VDOMs)§ Data analytics§ Static NAT, Hide NAT, and Dynamic NAT for flexibility andscalability)§ VLAN and port trunking support§ Support integration with Cisco ACI, Nutanix, OpenStack,and Ansible§ NVGRE and VXLAN Support§ BGP and OSPF with Route Health Inspection (RHI)§ IPv6 Support (SLB, interfaces, routing, and firewall)66