Call a Specialist Today! 1300 505 257
Free Delivery! Free Delivery!

Fortinet FortiSandbox 1000F
Consolidated Security for Virtual Environments

Fortinet FortiSandbox 1000F

Fortinet FortiSandbox Series
FortiSandbox 1000F
Advanced Threat Protection System - 4 x GE RJ45, 2 x GE SFP slots, 2 VMs with Win7 , Win10 and (1) MS office licenses included. Upgradable to a maximum of 14 licensed VMs, refer to FSA-1000F-UPG-LIC-6 or FC-10-FS1KF-176-02-DD SKU.
#FSA-1000F-AU
List Price: $60,261.00
Our Price: Request a Quote

Click here to jump to more pricing!

Please Note: All Prices are Inclusive of GST

Overview:

Fortinet's top-rated FortiSandbox is at the core of the Advanced Threat Protection (ATP) solution that integrates with Fortinet's Security Fabric to address the rapidly evolving and more targeted threats across a broad digital attack surface. Specifically, it delivers real-time actionable intelligence through the automation of zero-day, advanced malware detection and mitigation.

Broad Coverage of the Attack Surface with Security Fabric

Effective defense against advanced targeted attacks through a cohesive and extensible architecture working to protect networks, emails, web applications and endpoints from campus to the cloud.

Automated Zero-day, Advanced Malware Detection and Mitigation

Native integration and open APIs automate the submission of objects from Fortinet and third-party vendor protection points, and the sharing of threat intelligence in real time for immediate threat response and reduction on the reliance on scarce security resources.

Certified and Top Rated

Constantly undergoes rigorous, real-world independent testing and consistently earns top marks in dealing with known and unknown threats.

Features:

Sandbox Malware Analysis

Complement your established defenses with a two-step sandboxing approach. Suspicious and at-risk files are subjected to the first stage of analysis with Fortinet's awardwinning AV engine, FortiGuard global intelligence query*, and code emulation. Second stage analysis is done in a contained environment to uncover the full attack lifecycle using system activity and callback detection.

In addition to supporting FortiGate, FortiMail, FortiWeb, FortiADC, FortiProxy, FortiClient (ATP agent) and FabricReady Partner submission, third-party security vendor offerings are supported through a well-defined open API set.

Reporting and Investigative Tools

Reports with captured packets, original file, tracer log, and screenshot provide rich threat intelligence and actionable insight after files are examined. This is to speed up remediation.

Threat Mitigation

Fortinet's ability to uniquely integrate various products with FortiSandbox through the Security Fabric offers automatic protection with incredibly simple setup. Once a malicious code is identified, the FortiSandbox will return risk ratings and the local intelligence is shared in real time with Fortinet and third-party vendor-registered devices and clients to remediate and immunize against new advanced threats. The local intelligence can optionally be shared with Fortinet threat research team, FortiGuard Labs, to help protect organizations globally.

Features Summary

Administration

  • Supports WebUI and CLI configurations
  • Multiple administrator account creation
  • Configuration file backup and restore
  • Notification email when malicious file is detected
  • Weekly report to global email list and FortiGate administrators
  • Centralized search page which allows administrators to build customized search conditions
  • Frequent signature auto-updates
  • Automatic check and download new VM images
  • VM status monitoring
  • Radius Authentication for administrators

Networking/Deployment

  • Static Routing Support
  • File Input: Offline/sniffer mode, On-demand file upload, file submission from integrated device(s)
  • Option to create simulated network for scanned file to access in a closed network environment
  • High-Availability Clustering support
  • Port monitoring for fail-over in a cluster

Systems Integration

  • File Submission input: FortiGate, FortiMail, FortiWeb, FortiADC, FortiProxy and FortiClient (ATP agent)
  • File Status Feedback and Report: FortiGate, FortiMail, FortiWeb, FortiADC, FortiProxy and FortiClient (ATP agent)
  • Dynamic Threat DB update: FortiGate, FortiMail, FortiWeb, FortiADC, FortiProxy and FortiClient (ATP agent)
    • Periodically push dynamic DB to registered entities
    • File checksum and malicious URL DB
  • Update Database proxy: FortiManager
  • Remote Logging: FortiAnalyzer, syslog server
  • JSON API to automate the process of uploading samples and downloading actionable malware indicators to remediate
  • Certified third-party integration: CarbonBlack, Ziften, SentinelOne
  • Inter-sharing of IOCs between FortiSandboxes

Advanced Threat Protection

  • Inspection of new threats including ransomware and password protected malware mitigation
  • Static Code analysis identifying possible threats within non-running code
  • Heuristic/Pattern/Reputation-based analysis
  • Virtual OS Sandbox:
    • Concurrent instances
    • OS type supported: Windows XP*, Windows 7, Windows 8.1, Windows 10, macOS, and Android
    • Anti-evasion techniques: sleep calls, process, and registry queries
    • Callback Detection: malicious URL visit, botnet C&C communication, and attacker traffic from activated malware
    • Download Capture packets, Original File, Tracer log, and Screenshot
    • Sandbox Interactive Mode
  • File type support: .7z, .ace, .apk, .app, .arj, .bat, .bz2, .cab, .cmd, .dll, .dmg, .doc, .docm, .docx, .dot, .dotm, .dotx, .eml, .exe, .gz, .htm, html, .iqy, .iso, .jar, .js, .kgb, .lnk, .lzh, Mach-O, .msi, .pdf, .pot, .potm, .potx, .ppam, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .ps1, .rar, .rtf, .sldm, .sldx, .swf, .tar, .tgz, .upx, url, .vbs, WEBLink, .wsf, .xlam, .xls, .xlsb, .xlsm, .xlsx, .xlt, .xltm, .xltx, .xz, .z, .zip
  • Protocols/applications supported:
    • Sniffer mode: HTTP, FTP, POP3, IMAP, SMTP, SMB
    • BCC mode: SMTP
    • Integrated mode with FortiGate: HTTP, SMTP, POP3, IMAP, MAPI, FTP, IM and their equivalent SSL-encrypted versions
    • Integrated mode with FortiMail: SMTP, POP3, IMAP
    • Integrated mode with FortiWeb: HTTP
    • Integrated mode with ICAP Client: HTTP
  • Customize VMs for supporting various file types
  • Isolate VM image traffic from system traffic
  • Network threat detection in Sniffer Mode: Identify Botnet activities and network attacks, malicious URL visit
  • Scan SMB/NFS network share and quarantine suspicious files. Scan can be scheduled
  • Scan embedded URLs inside document files
  • Option to integrate with third-party Yara rules
  • Option to auto-submit suspicious files to cloud service for manual analysis and signature creation
  • Option to forward files to a network share for further third-party scanning
  • Files checksum whitelist and blacklist option
  • URLs submission for scan and query from emails and files

Monitoring and Report

  • Real-Time Monitoring Widgets (viewable by source and time period options): Scanning result statistics, scanning activities (over time), top targeted hosts, top malware, top infectious urls, top callback domains
  • Drilldown Event Viewer: Dynamic table with content of actions, malware name, rating, type, source, destination, detection time, and download path
  • Logging - GUI, download RAW log file
  • Report generation for malicious files: Detailed reports on file characteristics and behaviors - file modification, process behaviors, registry behaviors, network behaviors, vm snapshot, behavior chronology chart
  • Further Analysis: Downloadable files - sample file, sandbox tracer logs, PCAP capture and indicators in STIX format

Specifications:


  FSA-500F FSA-1000F FSA-2000E FSA-3000E
Hardware
Form Factor 1 RU 1 RU 2 RU 2 RU
Total Network Interfaces 4x GE RJ45 ports 4x GE RJ45 ports, 4x GE SFP slots 4x GE RJ45 ports, 2x 10 GE SFP+ slots 4x GE RJ45 ports, 2x 10 GE SFP+ slots
Storage 1x 1 TB 2x 1 TB 2x 2 TB 4x 2 TB
Power Supplies 1x PSU 1x PSU, Optional 2x PSU 2x Redundant PSU 2x Redundant PSU
System Performance
Number of VMs 6 14 24 56
Sandbox Pre-Filter Throughput (Files/Hour)1 4,500 7,500 12,000 15,000
VM Sandboxing Throughput (Files/Hour) 120 280 480 1210
Real-world Effective Throughput (Files/Hour) 6002
3603
14002
8403
24002
14403
56002
33603
Sniffer Throughput 500 Mbps 1 Gbps 4 Gbps 8 Gbps
Dimensions
Height x Width x Length (inches) 1.73 x 17.24 x 12.63 1.73 x 17.24 x 22.83 3.46 x 17.24 x 20.87 3.5 x 17.2 x 29
Height x Width x Length (mm) 44 x 438 x 320 44 x 438 x 580 88 x 438 x 530 89 x 437 x 738
Weight 18.72 lbs (8.5 kg) 25 lbs (11.34 kg) 27 lbs (12.25 kg) 43 lbs (19.52 kg)
Environment
Power Consumption (Average / Maximum) 30.1 / 76.3 W 66.93 / 116.58 W 164.7 / 175.9 W 538.6 / 549.6 W
Maximum Current 100/8A, 240V/4A 100V/5A, 240V/3A 100V/8A, 240V/4A 100V/9.8A, 240V/5A
Heat Dissipation 260.34 BTU/h 397.75 BTU/h 600.17 BTU/h 1,943.82 BTU/h
Power Source 100-240V AC, 60-50 Hz 100-240V AC, 60-50 Hz 100-240V AC, 60-50 Hz 100-240V AC, 60-50 Hz
5-90% non-condensing 5-90% non-condensing 5-90% non-condensing 8-90% non-condensing
Operation Temperature Range 32-104°F (0-40°C) 32-104°F (0-40°C) 32-104°F (0-40°C) 50-95°F (10- 35°C)
Storage Temperature Range -4-158°F (-20-70°C) -40-158°F (-40-70°C) -4-158°F (-20-70°C) -40-158°F (-40-70°C)
Compliance
Certifications FCC Part 15 Class A, C-Tick, VCCI, CE, BSMI, KC, UL/cUL, CB, GOST

Note: All performance values are "up to" and vary depending on the environment and system configuration

  1. FortiSandbox pre-filtering is powered by FortiGuard Intelligence.
  2. Measured based on real-world web and email traffic when both pre-filter and dynamic analysis are working consecutively
  3. Measured based on real-world email traffic when both pre-filter and dynamic analysis are working consecutively.

Documentation:

Download the Fortinet FortiSandbox Series Datasheet (.PDF)

Pricing Notes:

Fortinet FortiSandbox Series
FortiSandbox 1000F
Advanced Threat Protection System - 4 x GE RJ45, 2 x GE SFP slots, 2 VMs with Win7 , Win10 and (1) MS office licenses included. Upgradable to a maximum of 14 licensed VMs, refer to FSA-1000F-UPG-LIC-6 or FC-10-FS1KF-176-02-DD SKU.
#FSA-1000F-AU
List Price: $60,261.00
Our Price: Request a Quote
Expands FSA-1000F licensed VM capacity by 6
Expands FSA-1000F licensed VM capacity by 6. Includes Win7, Win8 , Win10 and (1) MS Office licenses
#FSA-1000F-UPG-LIC-6-AU
Our Price: Request a Quote
FortiSandbox 1000F custom VM subscription for up to 12 VMs
FortiSandbox-1000F 1 Year FSA-1000F custom VM subscription for up to 12 VMs. Does not include Windows or MS Office licenses i.e. BYOL
#FC-10-FS1KF-176-02-12
List Price: $14,648.00
Our Price: Request a Quote
FortiSandbox-1000F 3 Year FSA-1000F custom VM subscription for up to 12 VMs. Does not include Windows or MS Office licenses i.e. BYOL
#FC-10-FS1KF-176-02-36
List Price: $43,941.00
Our Price: Request a Quote
FortiSandbox-1000F 5 Year FSA-1000F custom VM subscription for up to 12 VMs. Does not include Windows or MS Office licenses i.e. BYOL
#FC-10-FS1KF-176-02-60
List Price: $73,235.00
Our Price: Request a Quote
FortiSandbox 1000F 8x5 FortiCare plus FortiGuard Sandbox Services
FortiSandbox-1000F 1 Year 8x5 FortiCare plus FortiGuard Sandbox Services (AV, IPS, Web Filtering, File Query and SandBox Engine Updates)
#FC-10-FS1KF-969-02-12
List Price: $19,920.00
Our Price: Request a Quote
FortiSandbox-1000F 3 Year 8x5 FortiCare plus FortiGuard Sandbox Services (AV, IPS, Web Filtering, File Query and SandBox Engine Updates)
#FC-10-FS1KF-969-02-36
List Price: $59,760.00
Our Price: Request a Quote
FortiSandbox-1000F 5 Year 8x5 FortiCare plus FortiGuard Sandbox Services (AV, IPS, Web Filtering, File Query and SandBox Engine Updates)
#FC-10-FS1KF-969-02-60
List Price: $99,598.00
Our Price: Request a Quote
FortiSandbox 1000F 24x7 FortiCare plus FortiGuard Threat Intelligence
FortiSandbox-1000F 1 Year 24x7 FortiCare plus FortiGuard Threat Intelligence (AV, IPS, Web Filtering, File Query and SandBox Engine Updates)
#FC-10-FS1KF-970-02-12
List Price: $22,849.00
Our Price: Request a Quote
FortiSandbox-1000F 3 Year 24x7 FortiCare plus FortiGuard Threat Intelligence (AV, IPS, Web Filtering, File Query and SandBox Engine Updates)
#FC-10-FS1KF-970-02-36
List Price: $68,548.00
Our Price: Request a Quote
FortiSandbox-1000F 5 Year 24x7 FortiCare plus FortiGuard Threat Intelligence (AV, IPS, Web Filtering, File Query and SandBox Engine Updates)
#FC-10-FS1KF-970-02-60
List Price: $114,245.00
Our Price: Request a Quote