
Fortinet FortiNDR 3600G
Network Detection and Response with Virtual Security Analyst
Click here to jump to more pricing!
Please Note: All Prices are Inclusive of GST
Overview:
FortiNDR represents the future of artificial-intelligence (AI)-driven, network-based breach protection technology designed for shortstaffed Security Operation Center (SOC) teams to identify, classify, and respond to threats, including those that are well-camouflaged. Supervised and unsupervised machine learning (ML) continuously analyze metadata, especially east-west data in datacentres, to identify threats, especially those which may be already persistent in the network.
FortiNDR significantly reduces the time to identify network anomalies and malicious content on your network and mitigate with Fortinet Security Fabric and third party integration.
Highlights
- On premises deployment where no customer data leaves the network
- Ideally for government, airgapped, military, and operational technology (OT) deployment
- High throughput Neural Networks for file-based scanning and malware classification
- Netflow ingestion support for security analytics
- AD integration support for device enrichment
- NDR Center and Sensor mode available for centralised management
Highlights:
FortiNDR Key Features
- On Premise solution where no data leaves the customer network
- Integrate with Fortinet Security Fabric including FortiGate/FortiNAC/FortiSwitch quarantine, FortiAnalyzer/FortiSIEM log and report
- Supports standalone, center, and sensor modes for distributed deployment
- Patented high throughput malware scanning based on Artificial Neural Networks (ANN) to identify file-based attacks, with over 20+ malware attack scenarios
- Reduce malware detection and investigation time from minutes to seconds
- Detect North/South/East/West intrusions accurately
- Detect botnets and weakciphers on network
- Virtual Security Analyst™ to mimic experienced security analyst for outbreak, anomalies, and root causes for malware infections
- Provide on-premises learning to reduce false positives by analyzing organizational-specific traffic and adapting to newly disguised threats
FortiNDR On Premise SOC Deployment
Features:
Top Reasons for FortiNDR Solution
Shortage of Experienced SOC Analysts
Experience is the hardest thing to acquire in cybersecurity, especially in threat analysis, outbreak investigation, and malware research experience. FortiNDR provides Virtual Security Analyst™.
Breach Prevention
Using both ML and signature-based to identify breaches with high degree of confidence, including data enrichment on attacks.
AI-Powered Detection and Response for Cyber Attacks
Innovative threat actors disrupt cyber security through automated attacks designed to overwhelm or sneak past your SOC defenses.
ML-based Traffic Profiling and Malware Detection
Carefully crafted cyber threats designed to bypass your existing security controls through the camouflage with malware detection.
Features | FortiNDR On Premises |
---|---|
Deployment / Data Location | On Premise |
Suitable Use | OT, Air-gapped, Large SOC |
Centralized Management | Standalone, Center and Sensors mode (up to 20 sensors) |
Sensors, Center, and Standalone Options | Sensor: FortiNDR-1000F, VM16 and VM32 Center Hardware: FortiNDR-3500F, FortiNDR VM for Central Management Standalone: FortiNDR-1000F, VM 16, VM32, and FortiNDR 3500F |
Response Integration | FortiGate, FortiSwitch, FortiNAC quarantine, Third party API calls FortiAnalyzer, FortiSIEM, and FortiSOAR |
Malware Detection | Antivirus engine and patented Artificial Neural Network (ANN) |
Detections and Device Enrichment | Netflow Ingestion and AD Integration |
Retention | Throughput and Disk Dependent |
FortiNDR Advanced Malware Detection by ANN

Specifications:
Category | FortiNDR 1000F | FortiNDR 2500G | FortiNDR 3600G |
---|---|---|---|
Deployment | |||
Sniffer / SPAN / 802.1q support | — | ||
Deployment Mode | Standalone, Sensor | Standalone, Sensor | Center only |
Sensors Managed * | — | — | up to 50 |
Fortinet Security Fabric Integration | — | ||
Hypervisor Support | — | — | — |
Netflow Support | — | ||
Hardware Specifications | |||
Form Factor | 2 RU Rackmount | 2 RU Rackmount | 2 RU Rackmount |
Total Interfaces | 2x 10/100/1000 RJ45 ports, 4x 10G SFP+, 1x RJ45 console | 1x GbE RJ45, 2x 10GbE SFP+, 4x 25GbE SFP28 | 1x 1GbE RJ-45 ports, 4x 10GbE SFP+ ports |
Sniffer/Capture Interfaces | 2 (2 x Fiber 10G SFP+) | 4x 25GbE SFP28 (can operate in 10Gbps) | — |
Transceivers Included | Purchase separately | Purchase separately | Purchase separately |
Storage Capacity | 2x 7.68 TB (RAID 1) total | 7.68 TB (RAID 1) | 61.44TB (4x 15.36TB SSDs), 12x hot-swappable HDD (176TB) |
Default RAID level | 1 | 10 | 5 |
Removable Hard Drives | |||
Redundant Hot Swappable Power Supplies | |||
Custom GPUs for ANN Acceleration | — | — | |
System Performance | |||
NDR Sniffer Throughput (HTTP) | single 10/ dual ports 20 Gbps | 34 Gbps (4 ports) | — |
Enterprise Mix | single 10/ dual ports 20 Gbps | 34 Gbps (4 ports) | — |
Netflows (flows/second) | 100k | 200k | — |
Malware Analysis Throughput (files/hour) | 170k | 252k | — |
Malware Classification | 26 | 26 | 26 |
Dimensions (mm) | 88.9 x 444.5 x 574.04 | 88 x 438 x 695.8 (w/o handle), 88 x 483 x 740.8 (w/ handle) | 88 x 438 x 750 |
Weight | 34.6 lbs (16 kg) | 40 lbs (18.14 kg) | 75.12 lbs (34 kg) |
Environment | |||
AC Power Supply | 100-240 VAC, 60-50 Hz | 100-240 VAC, 60-50 Hz | 200-240 VAC, 60-50 Hz |
Power Consumption (Avg/Max) | 163 W / 345 W | 524.8 W / 682.2 W | 1046 W / 1359 W |
Heat Dissipation | 1207.5 BTU/h | 2327.8 BTU/h | 4637 BTU/h |
Operating Temperature | 0°C to 40°C | 0°C to 40°C | 0°C to 40°C |
Storage Temperature | –20°C to 70°C | –20°C to 70°C | –20°C to 70°C |
Humidity | 5% to 90% non-condensing | 5% to 90% | 5% to 90% non-condensing |
Operating Altitude | Up to 16,404 ft (5000 m) | 10,000 ft (3048 m) | 10,000 ft (3048 m) |
Compliance | |||
Certifications | FCC Part 15 Class A, ICES, CE, RCM, VCCI, BSMI, UL/cUL, CB | FCC, ISED, CE, RCM, VCCI, BSMI (Class A), UL/cUL, CB | FCC, ISED, RCM, VCCI, CE, BSMI, UL/cUL, CB |
Documentation:
Download the FortiNDR Data Sheet (PDF).
Pricing Notes:
- All Prices are Inclusive of GST
- Sandbox Threat Intelligence (Antivirus, IPS, Web Filtering, File Query, Industrial Security, SandBox Engine) plus FortiCare Premium
FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, Antivirus, IPS, Web Filtering, File Query, Industrial Security, SandBox Engine. Does not include Windows or MS Office licenses i.e. BYOL - Hardware plus FortiCare Premium, with NDR and ANN engine updates & baseline
Hardware Unit, FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, NDR & ANN Updates, Advanced Malware Protection, IPS, AV, Botnet IP/Domain, and Web filtering, IOT & IOC detection - FortiCare Premium with NDR and ANN engine updates & baseline
FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, NDR & ANN Updates, Advanced Malware Protection, IPS, AV, Botnet IP/Domain, and Web filtering, IOT & IOC detection - Prices are for one year of Premium RMA support. Usual discounts can be applied.
- Annual contracts only. No multi-year SKUs are available for these services.
- Contact Fortinet Renewals team for upgrade quotations for existing FortiCare contracts.
- Pricing and product availability subject to change without notice.