Sie sind auf Seite 1von 15

New Features in FOS 6.

2
Rahul Dwivedi

© Copyright Fortinet Inc. All rights reserved.


SD-WAN
§ Rule Definition Improvements
§ Represent Multiple IPsec Tunnels as a Single Interface
§ Dual VPN Tunnel Wizard
§ SLA Logging
§ Forward Error Correction
§ Overlay Controller VPN (OCVPN): ADVPN Support
§ Ingress Traffic Shaping

2
Multi-Cloud
§ VM Support for up to 18 Interfaces
§ Physical Function SR-IOV Driver Support
§ FortiMeter Support for Microsoft Hyper-V
§ Paravirtualized Mode Support for OCI
§ Support IAM for FortiGate OCI
§ Support for FortiMeter Instances Directly Connecting to
FortiGuard

3
Fabric Connectors
§ Support Multiple Instances of All SDN Connector Types
§ External Dynamic Block List Authentication Support
§ External Dynamic Block List for Hashes
§ Kubernetes SDN Connector
§ AliCloud SDN Connector
§ Azure Stack SDN Connector
§ AWS Kubernetes SDN Connector
§ GCP Kubernetes SDN Connector
§ Filter Lookup Improvement for SDN Connectors
§ VMware ESXi SDN Connector
§ Azure Kubernetes SDN Connector
§ OpenStack SDN Connector Domain Attribute
4
Automation and Dev-Ops
§ Action — CLI Script
§ Trigger — FortiAnalyzer Event Handler
§ Action — Webhook Extensions
§ Action — Google Cloud Function

5
Advanced Threats
§ Flow-based Inspection
§ IPv6
§ Reputation Filtering

6
SOC Adaption
§ Consolidated Risk — Topology View

7
Compliance
§ Log UUID and Traffic Log Settings
§ Multiple Log Servers Under VDOM
§ FortiSandbox Cloud Region Selection

8
Usability
§ Extend Policy/Route Check to Policy Routing
§ Authentication Policy Extensions
§ Botnet C&C Option Moved into IPS Profile
§ Traffic Shaping GUI Update
§ Address Group with Exclusions
§ Source/Destination Information for IPS Logs
§ Workspace Mode
§ Application Control Profile GUI Improvements

9
WiFi
§ WiFi Maps
§ Enable Uploaded WiFi Certificates in the GUI
§ Monitor and Suppress Phishing SSID
§ Troubleshooting — Extended Logging
§ MAC Filtering on SSIDs
§ WiFi QoS Enhancement

10
Switching
§ Using LLDP-MED to Assign VLAN
§ FortiLink Setup
§ FortiSwitch Persistent MAC Learning (Sticky MAC)
§ Virtual Switch Extensions

11
Others
§ Protocols
§ Web Proxy
§ FortiCarrier License Improvements
§ Fail-Detect on Aggregate and Redundant Interfaces
§ VLAN Inside VXLAN
§ DHCP Relay Agent Information Option
§ Support anti-replay Per Policy
§ Change SSID to VDOM only from Global/VDOM
§ Custom Service Limit Increases Per Model
§ Customize the Default Service Port
§ DNS Domain List
§ Recognize AnyCast IP from IP Geo Database
§ GTP in Asymmetric Routing
§ DNS and FortiGuard Lookup Now Has Latency Data
12
Agenda: Day-1: 18/3/19: Presales session
1st half
§ 1. New Feature in FortiOS 6.0/6.2
§ 2. FortiGate SD-WAN
§ 3. Fortinet Security Fabric
§ 4. FortiCloud, CASB
§ 5. Fortinet Public / Private Cloud Solution
§ 2nd half
§ 6. Web Application Firewall
§ 7. SIEM Solution
§ 8. Application Delivery Solution
§ 9. Switches, Wireless and NAC Solution
§ 10. Authentication Solution

14
Agenda: Day-2: 19/3/19: APT Presales and Post sales session
1 New MSSP service offerings
2. Presales presentation, deployment models
3. Installation and configuration
4. Basic troubleshooting tips
5. Product sizing, TAC support and escalation procedure

15