I'm looking for advice on choosing the right firewall model.
We are currently using 200E and want to upgrade to a higher model + deploy HA at the same time. The current situation looks like this:
- HQ: 300 users, 45 servers - 5 branches (50 users in total) - IPsec + SD-WAN - max 50 SSL VPN connections at the same time - deployed deep inspection, AV, IPS, APP, WEB - mixing flow and proxy mode - approx. 20,000 sessions (IPv4+IPv6) at peak - data bandwith approx. 600 Mbit at peak - CPU usage 30-50% at peak - Memory usage 65-80% (sometimes converse :/)
- FortiOS 7.2.5
I know that many of you will refer me to the matrix but I am mainly concerned with practical experience.
We are considering 2x 200F. Could that be enough? We do not plan any major increase in traffic/users in the future.
Could you please confirm the reasons for considering upgrade? Is it due to the conserve mode observed frequently or any other reasons? Also, do you have any investigations done on reasons for conserve mode, is it due to actual traffic or a bug or anything?
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.