company
Fortinet
Fortinet
Fortinet
cisco
IPS Throughput
۳۰۰Mbps
۱۱.۵Gbps
۲.۸ / ۲ Gbps
NGFW Throughput
۲۰۰Mbps
۹Gbps
۱.۷ Gbps
Threat Protection Throughput
۱۵۰Mbps
۵.۴Gbps
۱.۵ Gbps
Firewall Throughput
۹۵۰Mbps
Firewall Policies
۵,۰۰۰
۱۰۰,۰۰۰
۱۰,۰۰۰
Virtual Domains (Default / Maximum)
۵/۵
۱۰/۵۰۰
High Availability Configurations
Active/Active, Active/Passive, Clustering
Active/Active, Active/Passive, Clustering
GE RJ45 Switch Ports
۴
GE RJ45 WAN Port
۱
USB Port
۱
۱
Console (RJ45)
۱
۱
Firewall Throughput (1518/512/64 byte UDP)
۰.۹۵Gbps
Firewall Latency
۱۳۰μs
Concurrent Sessions
۹۰۰,۰۰۰
New Sessions/Sec
۱۵,۰۰۰
IPsec VPN Throughput (512 byte) 1
۷۵Mbps
Max G/W to G/W IPSEC Tunnels
۲۰۰
Max Client to G/W IPSEC Tunnels
۲۵۰
SSL VPN Throughput
۳۵Mbps
۶Gbps
۳۵۰Mbps
Concurrent SSL VPN Users
۱۰۰
IPS Throughput (Enterprise Mix)
۳۰۰Mbps
SSL Inspection Throughput (IPS, avg. HTTPS)
۱۲۵Mbps
Application Control Throughput (HTTP 64K) 2
۴۰۰Mbps
NGFW Throughput (Enterprise Mix)
۲۰۰Mbps
Threat Protection Throughput (Ent. Mix)
۱۵۰Mbps
۵.۴Gbps
Firewall
۹۰Gbps
Firewall Throughput (1518/512/64 byte UDP packets)
۹۰/۹۰/۶۰ Gbps
Firewall Latency( 64byte UDP packets )
۲μs
Concurrent Sessions ( TCP )
۲۰Million
۶Million
New Sessions/Sec(TCP)
۵۰۰,۰۰۰
IPsec VPN Throughput (512 byte)
۶۵Gbps
۷ Gbps
Concurrent SSL VPN Users (Recommended Maximum, Tunnel Mode)
۳۰,۰۰۰
Application Control Throughput (HTTP 64K)
۲۰Gbps
Firewall Throughput(Packet per Second)
۱۲Mpps
Firewall Latency (64 byte, UDP)
۳μs
Concurrent Sessions (TCP)
۲۰Million
۶Million
SSL-VPN Throughput
۳۵Mbps
۶Gbps
۳۵۰Mbps
SSL Inspection Throughput
۱.۹ Gbps
Power Source
۱۰۰–۲۴۰V AC, 60–۵۰Hz
RJ45 Console Port
۱
Local Storage
۱۲۰ GB SSD
Included Transceivers
۲x SFP (SX 1 GE)
CAPWAP Throughput
۵.۴ Gbps
Application Control Throughput
۲.۵ Gbps
GE RJ45 Interfaces
۴
GE SFP Slots
۴
Throughput: FW + AVC (1024B)
۱۴Gbps
Throughput: FW + AVC + IPS (1024B)
۱۲.۵Gbps
Maximum concurrent sessions, with AVC
۱۰Million
Maximum new connections per second, with AVC
۸۵K
TLS (Hardware Decryption)
۴.۵Gbps
Throughput: NGIPS (1024B)
۱۵Gbps
IPSec VPN Throughput (1024B TCP w/Fastpath)
۶Gbps
Multi-Instance Capable
Yes
Application Visibility and Control (AVC)
Standard, supporting more than 4000 applications, as well as geolocations, users, and websites
AVC: OpenAppID support for custom, open source, application detectors
Standard
Cisco Security Intelligence
Standard, with IP, URL, and DNS threat intelligence
Cisco Firepower NGIPS
Available; can passively detect endpoints and infrastructure for threat correlation and Indicators of Compromise (IoC) intelligence
Cisco AMP for Networks
Available; enables detection, blocking, tracking, analysis, and containment of targeted and persistent malware, addressing the attack continuum both during and after attacks.
Integrated threat correlation with Cisco AMP for Endpoints is also optionally available
Cisco AMP Threat Grid sandboxing
Available
URL Filtering: number of categories
More than 80
URL Filtering: number of URLs categorized
More than 80 Million
Automated threat feed and IPS signature updates
Yes: class-leading Collective Security Intelligence (CSI) from the Cisco Talos Group
Third-party and opensource ecosystem
Open API for integrations with third-party products; Snort® and OpenAppID community resources for new and specific threats
High availability and clustering
Active/standby. Cisco Firepower 4100 Series allows clustering of up to 6 chassis
Cisco Trust Anchor Technologies
Firepower 4100 Series platforms include Trust Anchor Technologies for supply chain and software image assurance
Stateful inspection firewall throughput
۴۰Gbps
Stateful inspection firewall throughput (multiprotocol)
۳۰Gbps
Concurrent firewall connections
۱۰Million
Firewall latency (UDP 64B microseconds)
۳.۵
New connections per second
۴۰۰,۰۰۰
IPsec VPN throughput (450B UDP L2L test)
۹Gbps
Maximum VPN Peers
۱۰,۰۰۰
Security contexts (included; maximum)
۱۰; ۲۵۰
High availability
Active/active and active/standby
Clustering
Up to 16 appliances
Scalability
VPN Load Balancing, Firewall Clustering
Centralized management
Centralized configuration, logging, monitoring, and reporting are performed by Cisco Security Manager or alternatively in the cloud with Cisco Defense Orchestrator
Adaptive Security Device Manager
Web-based, local management for small-scale deployments