Paul Chen,
Chen Business Development Manager
Saul Rosales, LatAm Channel Account Manager
Fortinet Confidential
Issues and Challenges Facing IT
Cutt P
C Power
Consumption
Today’s
IT Dept.
Address
Make IT
Technological
More Secure
Complexity
Reduce
Operating Costs
Fortinet Confidential
What is Virtualization?
Virtualization decouples software from hardware.
• Virtualization software (or hypervisor) is an
abstract layer between applications / operating
systems and physical hardware.
• Run several operating systems on a single
machine.
• Create shared pools of resources to optimize your
IT infrastructure.
infrastructure
Virtualization Benefits
Virtualization provides multiple instances of a software
system on a single hardware platform.
platform
Allows server hardware to be shared by different applications
Provides separate management of individual application access
Reduces the amount of servers needed in data centers
Reduces network hardware and switch ports
Improves utilization of under-used hardware resources
Data Centers / Enterprise
p use virtual servers to save
rack space, electricity, cooling, cabling, and reduce IT
staffing requirements.
Virtual Security
y Systems
y
Optimize the use of security and networking hardware
systems in data centers
Provide custom levels of security
y for each virtual server
Fortinet Confidential
Customer-Proven
Customer Proven Virtualization Benefits
All Fortune 100 use virtualization solutions
A hi
Achieve positive
iti ROI in
i 6 to
t 9 month th
Achieve TCO savings of 35%-75%
Increase hardware utilization to 60%-80%
Consolidation ratios:
10-15 : 1 in production
15-20 : 1 in development & testing
Provisioning time cut from hours to minute
Save 40% by powering down underutilized physical servers
Desktop management reduces power usage by 35% per year
10:1 consolidation = 80%-90% less energy costs
Zero-downtime hardware maintenance
Continuous workload management with live migration of
applications across physical hardware
Fortinet Confidential
IT Infrastructure Consolidation
Driving the benefits of virtualization across IT
3000 Desktops
% of x86 Infrastructure
1650 Desktops
Virtualized
3100 Desktops
67%
Data
Desktop and
50% Center
Remote PCs
50%
75%
Dev &
Test
Fortinet Confidential
Security Virtualization (Virtual Domains)
• Virtual Domains (VDOMs) are containers for virtualized
security devices
Allows physical security hardware to be shared by different
departments or customers
Provides separate
p management
g of individual VDOMs
Customer A has their own management interface
Customer B has their own management interface
Allows a g global admin to control p
privileges
g of VDOM administrators
Ability to log and report on a per-VDOM basis
Provides separate security zones, FW objects, routing tables, user
groups, VPN configurations, logging to local disk, etc.
• Benefits
• MSSP/Service providers use VDOMs to separate customers traffic
p
• Enterprises use VDOMs to separate
p business units or departments
p
• VDOMs reduce the overall cost of security infrastructure
Benefits of Deploying VDOMs vs.
vs VLANs
Complete
C l t network
t k segregation
ti att both
b th L2 & L3 layer
l
Ability to assign high-granular administrative privileges (vs.
role-based administration)
Ability to manage and enable overlapping subnets
Ability to mix transparent and NAT/route virtual security
systems to protect VMs
Ability to prevent vulnerabilities associated with shared
routing/MAC tables
Ability
b ty to centrally
ce t a y report
epo t o
on a pe
per-VDOM
O basis
bas s
Ability to offer truly ‘100%’ virtualized security systems
Ability to separate into isolated administrative domains
Fortinet Confidential
Enterprise Deployment (Partner Solutions)
RIVERBED STEELHEAD MOBILE
RIVERBED
Phase 2 Deployment STEELHEAD
MOBILE CLIENT
RIVERBED
STEELHEAD
S l
Sales E i
Engineering
i
Generic
Firewall/VPN CORPORATE
BRANCH OFFICE
Finance OFFICE Secure VoIP
RIVERBED Virtual Domain 1
STEELHEAD DATA Applications
CENTER FortiClient Application-1…X
WinOS
Virtual Domain 2
Application-1…X
Application-1 X
IEEE 802.1Q VLAN VMware Applications
Phase 1 ESX FortiClient Virtual Domain 3
Deployment Transparent, NAT, WinOS Application-1…X
Server
Route Modes Virtual Domain 4
Applications Application-1…X
pp
F tiM
FortiManager /F
FortiAnalyzer
tiA l FortiClient
Administrative WinOS Virtual Domain 5
Domains Application-1…X
(ADOMs)
Fortinet Confidential