Fortinet FortiADC-2200F-DC
Advanced Application Delivery Controller
Click here to jump to more pricing!
Overview:
Application delivery without any limits.
FortiADC is an advanced Application Delivery Controller (ADC) that ensures application availability, application security, and application optimization. FortiADC offers advanced security features (WAF, DDoS, and AV) and application connectors for easy deployment and full visibility to your networks and applications. FortiADC can be deployed as a physical or virtual machine (VM), or as a Cloud solution.
Application Availability
24x7 application availability through automatic failover for business continuity with application automation, global server load balancing, and link load balancing to optimize WAN connectivity.
Application Optimization
Multi-core processor technology combined with hardware-based SSL offloading and server optimization to increase end-user QoE.
Application Protection
Advanced Web Application Firewall protection from the OWASP Top 10 and threat detection with Fortinet FortiGuard Cloud Services.
Highlights and Benefits
- Advanced Application Load Balancing
- Protection from the OWASP Top 10 application attacks
- Multi-Deployment Mode with Hardware, VM, or Cloud Solution (PAYG/ BYOL)
- SSL Security and Visibility with Hardware-based Solution
- Automation and Fabric Connector to Third Party Solutions such as SAP, Cisco ACI, AWS, and K8s
- User Authentication and Authorization via MFA and SSO
- FortiGSLB Cloud Integration Maximizes Service Availability
Highlights:
Application Availability
Applications are the lifeblood of a company’s online presence. Unresponsive applications can result in lost revenue and customers taking their future business elsewhere. Application performance, scalability, and resilience are key but none of this matters unless the end-user has a good experience and completes their transaction.
FortiADC is a dedicated Application Delivery Control solution that provides a multi-tenancy solution (VDOM), high availability, and scalability with hybrid solution deployment (on-premises and cloud offering) to your applications.
SSL Security
FortiADC delivers high capacity decryption and encryption with the latest cryptography standard using hardware-based SSL ASIC. FortiADC provides SSL offloading, SSL inspection and visibility to inspect traffic for threats, speeds up server response, and reduces the load on the backend server. FortiADC also integrates with Gemalto’s SafeNet Enterprise Hardware Security Module (HSM).
Business Continuity
FortiADC’s included Global Server Load Balancing (GSLB) module onprem or in the cloud (FortiGSLB Cloud) makes your network reliable and available by scaling applications across multiple data centers for disaster recovery or to improve application response times. Customers can set up rules based on site availability, data center performance, and network latency
Application Protection
FortiADC offers multiple levels of protection to defend against attacks that target your web applications. FortiADC Web Application Firewall can detect a zero day attack and protect from OWASP Top-10 and many other threats with multi-vector protection. FortiADC also supports our FortiGuard Cloud which provides multi services such as IPS, Antivirus, and IP Reputation service (subscription required) that protects you from sources associated with DoS/DDoS attacks, phishing schemes, spammers, malicious software, and botnets.
Application Optimization
FortiADC provides multiple services that speed the delivery of applications to users. The PageSpeed suite of website performance enhancement tools can automatically optimize HTTP, CSS, Javascript, and image delivery to application users. FortiADC also provides Dynamic Caching and HTTP Compression and Decompression to improve end-user experience and server productivity.
FortiADC Security Fabric
As the threat landscape evolves, many new risks require a multipronged approach for protecting applications. FortiADC’s antivirus and integration with FortiSandbox extend basic security protections to scan file attachments for known and unknown threats.
Automation and Connectors
FortiADC Fabric Connectors provide open API-based integration and orchestration with multiple software-defined networks (SDN), cloud, management, and partner technology platforms. Fortinet Fabric Connectors deliver turnkey, open, and deep integration into third party services such as K8s, AWS, OCI, and SAP, in multi-vendor ecosystems, enabling scalability, security automation, and simplified management.
Unleash the Power of Scripts
FortiADC Scripts provides the flexibility to create custom eventdriven rules using predefined commands, variables, and operators. Using easy-to-create scripts, you get the flexibility you need to extend your FortiADC with specialized business rules that give you almost unlimited possibilities for server load balancing, health checks, application validation, content routing, and content rewriting to meet the needs of your organization.
Application Authentication
FortiADC provides centralized user authentication and authorization services to web applications. FortiADC acts as a gatekeeper to offload HTTP authentication and authorization to customer applications using single sign-on (SSO) services, SAML, LDAP, RADIUS, and MFA (using FortiToken Cloud and Google authenticator).
WAN Optimization
FortiADC provides a built-in link optimization with the Link Load Balancing module. Customers can create two or more WAN links (for inbound and outbound Link LB) to reduce the risk of outages or to add additional bandwidth to relieve traffic congestion.
Analytics and Visibility
FortiADC offers a comprehensive monitoring system for your network and application. With FortiView, customers can get real-time and historical data into a single view on your FortiADC. We also provide a network logical topology of real-servers, user/application dataanalytics, security threats, attack maps, and some other system events and alerts. FortiADC is integrated with third party solutions such as Splunk, FortiAnalyzer, and FortiSIEM for more visibility, correlation, automated response, and remediation.
FortiADC Centralized Management
FortiADC Manager is a web-based management tool that allows you to centrally manage multiple FortiADC devices remotely. Network administrators can better control their devices by logically grouping devices, efficiently managing jobs and licenses, quickly checking various logs, and monitoring threat statistics in real time.
Features:
Application Availability
- Virtual service definition with inherited persistence, load balancing method, and pool members
- Layer 4/7 application routing policy
- Layer 4/7 server persistence
- Custom scripting for SLB and content rewriting
- Scripting for event-driven rules using predefined commands, variables, and operators for SLB, content rewrite, persistencey, and security
- Advanced L7 application health check with support script for a customized health check
- Clone Traffic Pools
Layer 4-7 Application Load Balancing
- TCP, UDP, IP, DNS, HTTP, HTTPS, HTTP 2.0 GW, FTP, SIP, RDP, RADIUS, MySQL, MSSQL, RTMP, RTSP, and more applications
- L7 Content Switching and Rewriting – HTTP Host, HTTP Request URL, and HTTP Referrer – Source IP Address
- Persistent IP, has IP/port, hash header, persistent cookie, hash cookie, destination IP hash, URI hash, full URI hash, host hash, and host domain hash
- URL Redirect, HTTP request/response rewrite (includes HTTP body)
- Layer 7 DNS load balancing, security, and caching
Link Load Balancing
- Inbound and outbound LLB
- Support for policy route and SNAT
- Multiple health check target support
- Configurable intervals, retries, and timeouts
- Tunnel Routing
Security Fabric Connector
- FortiGLSB Cloud (One-Click-GSLB)
- FortiAuthentication
- FortiSIEM
- FortiAnalyzer
- FortiADC-CM
- FortiSandbox
External Fabric Connectors
- Kubernetes Service
- SAP Application
- AWS / OCI Connector
- Splunk Integration
Global Server Load Balancing (GSLB)
- Global data center DNS-based failover of web applications
- Delivers local and global load balancing between multi-site SSL VPN deployments
- DNSSEC
- DNS Access Control Lists
- GSLB setup wizard
Deployment Modes
- One arm-mode (Proxy with X-forwarded for support)
- Router mode
- Transparent mode (switch)
- High Availability (AA/AP Failover
Web Application Firewall
Application Protection
- OWASP Top-10 Wizard
- Web Attack Signature
- API Protection
- Sensitive Data Protection
- Bot Detection
- Web Vulnerability Scanner
- HTTP RFC compliance
Security Services
- SQLi/XSS Injection Detection
- OpenAPI Validation
- API Gateway
- Web Scraping
- CSRF Protection
- Brute Force Protection
- Web Defacement Protection
- CAPTCHA Support
- Data Leak Prevention
- File Restriction
- Cookie Security
- XML/JSON/SOAP Validation
- HTTP Header Security
Application Acceleration
SSL Offloading and Acceleration
- Offloads HTTPS and TCPS processing while securing sensitive data
- Full certificate management features
- HTTP/S mirroring for traffic analyses and reporting
- Support TLS 1.3
HTTP and TCP Optimization
- 100x acceleration by off-loading TCP processing
- Connection pooling and multiplexing for HTTP and HTTPS
- HTTP Page Speed-UP for Web Server Optimization
- TCP buffering
- HTTP compression and decompression
- HTTP caching (static and dynamic objects)
- Bandwidth allocation with Quality of Service (QoS)
Authentication Offloading
- Local
- LDAP
- RADIUS
- Kerberos
- SAML 2.0 (SP and Idp)
- NTLM
- Two-Factor Authentication — FortiToken/ FortiToken Cloud, and Google Authentication
Networking
- Static NAT, Hide NAT, and Dynamic NAT for flexibility and scalability)
- VLAN and port trunking support
- Support integration with Cisco ACI, Nutanix, OpenStack, and Ansible
- NVGRE and VXLAN Support
- BGP and OSPF with Route Health Inspection (RHI)
- IPv6 Support (SLB, interfaces, routing, and firewall)
Application Security
- FortiGuard Antivirus and FortiSandbox integration
- GEO IP security and logs (subscription required)
- Stateful Firewall
- Web Filtering (subscription required)
- IP Reputation (subscription required)
- IPv4 and six firewall rules
- Granular policy-based connection limiting
- Syn cookie protection
- Connection limits
- Intrusion Prevention System (subscription required)
- Application and Network DDoS Protection
- DNS Application Security
Management
- Central management for multiple FortiADC devices
- REST API
- SNMP with private MIBs with threshold-based traps
- Real-time Data Analytics
- Syslog support
- Role-based administration
- Real-time monitoring graphs
- Built-in reporting
- FortiView integration
- Data analytics
- Virtual Domains (VDOMs)
Specifications:
FortiADC 1200F/1200F-DC | FortiADC 2200F/2200F-DC | FortiADC 4200F/4200F-DC | |
---|---|---|---|
System Performance | |||
L4/L7 Throughput | 40 Gbps / 30 Gbps | 60 Gbps / 35 Gbps | 100 Gbps / 80 Gbps |
L4 CPS | 1,000,000 | 1,200,000 | 1,800,000 |
L4 HTTP RPS | 3,000,000 | 4,000,000 | 5,000,000 |
Maximum L4 Concurrent Connection | 36,000,000 | 72,000,000 | 144,000,000 |
L7 CPS (1:1) | 220,000 | 280,000 | 500,000 |
SSL CPS/TPS (1:1) 2K keys | 35,000 | 40,000 | 60,000 |
SSL Bulk Encryption Throughput | 20 Gbps | 25 Gbps | 50 Gbps |
Compression Throughput | 20 Gbps | 22 Gbps | 45 Gbps |
SSL Acceleration Technology | ASIC | ASIC | ASIC |
Virtual Domains | 45 | 60 | 90 |
Hardware Specifications | |||
Memory | 32 GB | 64 GB | 128 GB |
Network Interfaces | 8x RJ45 GE port, 8x SFP GE port, 8x SFP+ 10G Ports | 8x SFP ports, 12x 10GbE SFP+ ports | 4x 40GbE QSFP, 8x 10G SFP+ |
10/100/1000 Management Interface | 2 | 2 | 2 |
Storage | 240 GB SSD | 240 GB SSD | 480 GB SSD |
Management | HTTPS, SSH CLI, Direct Console DB9 CLI, SNMP | HTTPS, SSH CLI, Direct Console DB9 CLI, SNMP | HTTPS, SSH CLI, Direct Console DB9 CLI, SNMP |
Power Supply | Dual | Dual | Dual |
Dimensions | |||
Height x Width x Length (inches) | 1.73 x 21.5 x 17.3 | 1.73 x 21.5 x 17.3 | 3.46 x 21.5 x 17.3 |
Height x Width x Length (mm) | 44 x 548 x 440 | 44 x 548 x 440 | 88 x 548 x 440 |
Weight | 22.5 lbs (10.2 kg) | 22.5 lbs (10.2 kg) | 29.3 lbs (13.3 kg) |
Environment | |||
Form Factor | 1U Appliance | 1U Appliance | 2U Appliance |
Input Voltage | 100–240V AC, 50–60 Hz | 100–240V AC, 50–60 Hz | 100–240V AC, 50–60 Hz |
Power Consumption (Average / Maximum) | 251 W / 320 W | 267 W / 340 W | 269 W / 360 W |
Maximum Current | 120V / 7.1A, 240V / 3.5A | 100V / 7A, 240V / 3.5A | 100V / 7A, 240V / 3.5A |
Heat Dissipation | 856 BTU/h | 911 BTU/h | 917 BTU/h |
Operating Temperature | 32–104°F (0–40°C) | 32–104°F (0–40°C) | 32–104°F (0–40°C) |
Storage Temperature | -4–167°F (-20–75°C) | -4–167°F (-20–75°C) | -4–167°F (-20–75°C) |
Humidity | 10–85% non-condensing | 10–85% non-condensing | 10–85% non-condensing |
Compliance | |||
Regulatory Compliance | FCC/ ICES, CE, RCM, VCCI, BSMI | FCC/ ICES, CE, RCM, VCCI, BSMI | FCC/ ICES, CE, RCM, VCCI, BSMI |
Safety | UL/cUL, CB | UL/ cUL, CB | UL/ cUL, CB |
Documentation:
Download the FortiADC Series Datasheet (.PDF)
Pricing Notes:
- All prices displayed are Ex-VAT. 20% VAT is added during the checkout process.
- FortiADC 24x7 Standard Bundle Contract
Advanced Hardware Replacement (NBD), Firmware and General Upgrades, 24x7 Support, FortiADC WAF Security Service, & IP Reputation Service - FortiADC 24x7 Advanced Bundle Contract
Advanced Hardware Replacement (NBD), Firmware and General Upgrades, 24x7 Support, AV, WAF, IP Reputation, and FortiSandbox Cloud Service - 24x7 FortiCare Contract
24x7 Support, Advanced Hardware Replacement (NBD), Firmware and General Upgrades - FortiDDoS 24x7 FortiCare Contract
24x7 Support, Advanced Hardware Replacement (NBD), Firmware and General Upgrades. This service level includes a FortiDDoS responsiveness SLA of 30 minutes for Priority 1 incidents. - Prices are for one year of Premium RMA support. Usual discounts can be applied.
- Annual contracts only. No multi-year SKUs are available for these services.
- Contact Fortinet Renewals team for upgrade quotations for existing FortiCare contracts.
- Pricing and product availability subject to change without notice.