Scribd Logo
Unggah

Selamat datang di Scribd!

  • Understanding Virtualization: Providing UTM Security Virtualization

    Diunggah oleh

    0ne
    95 tayangan11 halaman
    Virtualization allows multiple virtual instances of operating systems and applications to run on a single physical server or hardware platform. This improves hardware utilization and reduces costs. Some key benefits include server consolidation, reduced power consumption and cooling needs, lower maintenance costs, and improved flexibility. While virtualization provides many advantages, it also introduces some risks around fault tolerance, increased management complexity, and potential security issues. Virtual domains (VDOMs) allow a virtualized security device to separate traffic and management for different customers or departments, providing stronger isolation than VLANs alone.

    Deskripsi Asli:

    Judul Asli

    Virtualization Fortinet

    Hak Cipta

    © Attribution Non-Commercial (BY-NC)

    Format Tersedia

    PDF, TXT atau baca online dari Scribd

    Apakah menurut Anda dokumen ini bermanfaat?

    Apakah konten ini tidak pantas?

    Laporkan Dokumen Ini
    Virtualization allows multiple virtual instances of operating systems and applications to run on a single physical server or hardware platform. This improves hardware utilization and reduces costs. Some key benefits include server consolidation, reduced power consumption and cooling needs, lower maintenance costs, and improved flexibility. While virtualization provides many advantages, it also introduces some risks around fault tolerance, increased management complexity, and potential security issues. Virtual domains (VDOMs) allow a virtualized security device to separate traffic and management for different customers or departments, providing stronger isolation than VLANs alone.

    Hak Cipta:

    Attribution Non-Commercial (BY-NC)
    Unduh sebagai PDF, TXT atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    95 tayangan11 halaman

    Understanding Virtualization: Providing UTM Security Virtualization

    Diunggah oleh

    0ne
    Virtualization allows multiple virtual instances of operating systems and applications to run on a single physical server or hardware platform. This improves hardware utilization and reduces costs. Some key benefits include server consolidation, reduced power consumption and cooling needs, lower maintenance costs, and improved flexibility. While virtualization provides many advantages, it also introduces some risks around fault tolerance, increased management complexity, and potential security issues. Virtual domains (VDOMs) allow a virtualized security device to separate traffic and management for different customers or departments, providing stronger isolation than VLANs alone.

    Hak Cipta:

    Attribution Non-Commercial (BY-NC)
    Unduh sebagai PDF, TXT atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    dari 11

    Understanding Virtualization

    Providing UTM Security Virtualization

    Paul Chen,
    Chen Business Development Manager
    Saul Rosales, LatAm Channel Account Manager

    Fortinet Confidential
    Issues and Challenges Facing IT
    Cutt P
    C Power
    Consumption

    Better Support Get a Better Return


    the Business on Investments

    Today’s
    IT Dept.
    Address
    Make IT
    Technological
    More Secure
    Complexity

    Reduce
    Operating Costs

    How do I optimally manage and utilize my IT infrastructure?

    Fortinet Confidential
    What is Virtualization?
    Virtualization decouples software from hardware.
    • Virtualization software (or hypervisor) is an
    abstract layer between applications / operating
    systems and physical hardware.
    • Run several operating systems on a single
    machine.
    • Create shared pools of resources to optimize your
    IT infrastructure.
    infrastructure
    Virtualization Benefits
    ƒ Virtualization provides multiple instances of a software
    system on a single hardware platform.
    platform
    ƒ Allows server hardware to be shared by different applications
    ƒ Provides separate management of individual application access
    ƒ Reduces the amount of servers needed in data centers
    ƒ Reduces network hardware and switch ports
    ƒ Improves utilization of under-used hardware resources
    ƒ Data Centers / Enterprise
    p use virtual servers to save
    rack space, electricity, cooling, cabling, and reduce IT
    staffing requirements.
    ƒ Virtual Security
    y Systems
    y
    ƒ Optimize the use of security and networking hardware
    systems in data centers
    ƒ Provide custom levels of security
    y for each virtual server

    Fortinet Confidential
    Customer-Proven
    Customer Proven Virtualization Benefits
    ƒ All Fortune 100 use virtualization solutions
    ƒ A hi
    Achieve positive
    iti ROI in
    i 6 to
    t 9 month th
    ƒ Achieve TCO savings of 35%-75%
    ƒ Increase hardware utilization to 60%-80%
    ƒ Consolidation ratios:
    ƒ 10-15 : 1 in production
    ƒ 15-20 : 1 in development & testing
    ƒ Provisioning time cut from hours to minute
    ƒ Save 40% by powering down underutilized physical servers
    ƒ Desktop management reduces power usage by 35% per year
    ƒ 10:1 consolidation = 80%-90% less energy costs
    ƒ Zero-downtime hardware maintenance
    ƒ Continuous workload management with live migration of
    applications across physical hardware

    Fortinet Confidential
    IT Infrastructure Consolidation
    Driving the benefits of virtualization across IT
    3000 Desktops

    % of x86 Infrastructure
    1650 Desktops
    Virtualized

    3100 Desktops
    67%
    Data
    Desktop and
    50% Center
    Remote PCs
    50%

    75%
    Dev &
    Test

    • Consolidate and contain servers U


    Users Sit
    Sites
    Hundreds 4
    • Optimize network infrastructure IT Infrastructure
    Hundreds 4
    • Manage and secure desktops Dozens 15

    • Maximize continuity and uptime


    • Optimize and automate lab infrastructure
    Virtualization Risks & Concerns
    ƒ Potential decrease in fault tolerance
    ƒ Single
    Si l point
    i t off ffailure
    il
    ƒ Server management challenges
    ƒ Patching/rebooting physical host servers
    ƒ Increased backup data and complexity
    ƒ Virtual server provisioning automation in heterogeneous
    environments (multiple virtualization platforms)
    ƒ New security risks: VM cross-infection, single point of attack
    ƒ Monitor both physical and virtual servers
    ƒ Increased hardware requirements
    q for physical
    p y
    servers (memory / multi-port network adapters)
    ƒ Increased power consumption and cooling needs
    per physical servers due to higher usage

    Fortinet Confidential
    Security Virtualization (Virtual Domains)
    • Virtual Domains (VDOMs) are containers for virtualized
    security devices
    ƒ Allows physical security hardware to be shared by different
    departments or customers
    ƒ Provides separate
    p management
    g of individual VDOMs
    ƒ Customer A has their own management interface
    ƒ Customer B has their own management interface
    ƒ Allows a g global admin to control p
    privileges
    g of VDOM administrators
    ƒ Ability to log and report on a per-VDOM basis
    ƒ Provides separate security zones, FW objects, routing tables, user
    groups, VPN configurations, logging to local disk, etc.
    • Benefits
    • MSSP/Service providers use VDOMs to separate customers traffic
    p
    • Enterprises use VDOMs to separate
    p business units or departments
    p
    • VDOMs reduce the overall cost of security infrastructure
    Benefits of Deploying VDOMs vs.
    vs VLANs
    ƒ Complete
    C l t network
    t k segregation
    ti att both
    b th L2 & L3 layer
    l
    ƒ Ability to assign high-granular administrative privileges (vs.
    role-based administration)
    ƒ Ability to manage and enable overlapping subnets
    ƒ Ability to mix transparent and NAT/route virtual security
    systems to protect VMs
    ƒ Ability to prevent vulnerabilities associated with shared
    routing/MAC tables
    ƒ Ability
    b ty to centrally
    ce t a y report
    epo t o
    on a pe
    per-VDOM
    O basis
    bas s
    ƒ Ability to offer truly ‘100%’ virtualized security systems
    ƒ Ability to separate into isolated administrative domains

    Fortinet Confidential
    Enterprise Deployment (Partner Solutions)
    RIVERBED STEELHEAD MOBILE

    RIVERBED
    Phase 2 Deployment STEELHEAD
    MOBILE CLIENT

    RIVERBED
    STEELHEAD

    S l
    Sales E i
    Engineering
    i

    Generic
    Firewall/VPN CORPORATE
    BRANCH OFFICE
    Finance OFFICE Secure VoIP
    RIVERBED Virtual Domain 1
    STEELHEAD DATA Applications
    CENTER FortiClient Application-1…X
    WinOS
    Virtual Domain 2
    Application-1…X
    Application-1 X
    IEEE 802.1Q VLAN VMware Applications
    Phase 1 ESX FortiClient Virtual Domain 3
    Deployment Transparent, NAT, WinOS Application-1…X
    Server
    Route Modes Virtual Domain 4
    Applications Application-1…X
    pp
    F tiM
    FortiManager /F
    FortiAnalyzer
    tiA l FortiClient
    Administrative WinOS Virtual Domain 5
    Domains Application-1…X
    (ADOMs)
    Fortinet Confidential

    Anda mungkin juga menyukai