![Page 1: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/1.jpg)
Lab2: FortiOS 5.4Cyber Intelligence e Performance:un binomio
realizzabile
Heros Deidda,
System Engineer Exclusive-Networks
![Page 3: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/3.jpg)
FortiSandbox 5.4
• Fortisandbox è il motore dell’ ATP Framework di
Fortinet e fa uso di tecnologie di Sandboxing.
All’interno di ambienti virtuali, costruiti ad immagine
della workstation di un end-user vengono eseguiti i file
sospetti a scopo di analisi
• FortiSandbox può lavorare integrata con le principali
soluzioni dell’ecosistema Fortinet, Fortigate, Fortiweb,
Fortimail e Forticlient.
• Altre opzioni di analisi comprendono l’analisi di share
di rete, lo sniffing del traffico e la submission diretta
• A fronte dell’analisi di un artefatto FortiSandbox
costruisce una signature per permettere ai device
integrati di difendersi dal riprensentarsi della minaccia File Submission1
?
Malicious
Analysis output
3
Nuove signature AV4
2 Analisi Centralizzata dei file
![Page 4: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/4.jpg)
Allot Netenforcer è la soluzione di Traffic Management core dell’offerta Allot . Si inserisce in modo trasparente sul layer 2, gestisce uno o più links fisici ethernet in rame o fibra gigabit/10GbE. Ha un Bypass passivo che permette il passaggio del traffico in caso di fault. Gamma prodotti rack o modulari, con tagli di banda gestita da 10Mbps fino ad oltre 60Gbps.
Allot Netenforcer permette di analizzare il traffico sin dai primi minuti dall’installazione. Le risorse di banda sono organizzate gerarchicamente, distribuite e prioritizzate per direzione, uso, utenti e servizi. Una visibilità senza eguali è garantita dalla navigazione in drill-down fra centinaia di grafici di distribuzione della banda in pochi gesti.
Soluzione NetEnforcerMPLS, CDN
InternetOutOfBandManagement NetXplorer
LAN
Allot Traffic Shaper
![Page 5: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/5.jpg)
Windows 2012 srvFTPserver
IP 192.168.170.132
Client IP 192.168.167.122
FortiSandbox
192.168.170/24
Port2 192.168.170.221
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
Management
Port1 192.168.167.211
![Page 6: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/6.jpg)
Windows 2012 srvFTPserver
IP 192.168.170.132
Client IP 192.168.167.122
FortiSandbox
192.168.170/24
Port2 192.168.170.221
FTP Download
Management
Port1 192.168.167.211
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 7: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/7.jpg)
Windows 2012 srvFTPserver
IP 192.168.170.132
Client IP 192.168.167.122
FortiSandbox
192.168.170/24
Port2 192.168.170.221
OFTP uploadStatus blocked quarantenato
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 8: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/8.jpg)
Windows 2012 srvFTPserver
IP 192.168.170.132
Client IP 192.168.167.122
FortiSandbox
192.168.170/24
Port2 192.168.170.221
OFTP uploadStatus medium risk quarantenato
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 9: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/9.jpg)
Lab2: Vista Vittima-forticlient
![Page 10: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/10.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 11: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/11.jpg)
Lab2 Analisi: Vista Fortisandbox
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 12: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/12.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 13: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/13.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 14: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/14.jpg)
Lab2: Vista Allot
![Page 15: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/15.jpg)
Lab2 Analisi: Vista Fortisandbox
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 16: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/16.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 17: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/17.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 18: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/18.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 19: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/19.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 20: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/20.jpg)
Lab2: Vista FortiSandbox
![Page 21: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/21.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 22: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/22.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 23: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/23.jpg)
Lab TechExperience: Integrazione FortiSandbox FortiClient Allot
![Page 24: Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio … · 2016. 7. 14. · Lab2: FortiOS 5.4 Cyber Intelligence e Performance:un binomio realizzabile Heros Deidda, System](https://reader033.vdocuments.mx/reader033/viewer/2022051107/60334c83f61701098c25ec20/html5/thumbnails/24.jpg)
Grazie
Heros Deidda
System Engneer, Exclusive Networks
cell 3492720440