Steps to a Secure, Software-Defined WAN

SD-WAN technology is fast growing in popularity. It enables an organization to connect distributed facilities for a much lower cost than traditional technologies like MPLS (multiprotocol label switching). An SD-WAN can be very secure, but only if it’s approached the right way. Expanding a network increases the scope of any existing risks, so securing it becomes more important than ever.

What is SD-WAN?

The term, SD-WAN isn’t precisely defined. It’s a set of enabling technologies based on the SDN (software-defined network) architecture. It lets a network’s architecture use any available transport mechanisms. Paths adjust dynamically to traffic and outages. The network is under a single point of control, usually a GUI control panel. Network-wide end-to-end encryption lets data safely move through the Internet.

Most often the unifying software is cloud-based. This isn’t a requirement, but it’s common enough that people often think of SD-WAN as cloud-based private networking.

Having a fast private network that isn’t restricted by geography offers many advantages. Offices can share servers. Communication by VoIP and video reduces the need to travel for meetings. It’s easy to send documents without resorting to insecure channels.

In the past, MPLS has been the most common way to connect locations in a WAN. It’s expensive, though. It often requires substantial work to set up the “last mile” connection. An SD-WAN can mix MPLS with public Internet connections or go entirely over the Internet.

Security Concerns

Network-wide encryption is a basic requirement of an SD-WAN, but it’s only one piece of security. All the issues that affect a local network increase in scale when a LAN becomes a WAN. If it’s bad when SMB-propagated malware like Wannacry or Petya spreads across one office, it’s worse when it spreads through the whole enterprise.

It’s necessary to build security into the entire network. Every access point is a potential weakness. That includes mobile devices, routers, PoS terminals and IoT devices (Internet of Things). A bigger network has a bigger attack surface and is more complex to manage. The approach to security needs to be as elastic as the network it protects.

Addressing The Challenge

Just as SD-WAN technology brings remote components together into a single network, the security system needs to treat them all as parts of an interconnected whole. The multitude of threats in today’s world requires a layered security strategy. When some of the equipment is far away, keeping track of everything through software becomes even more important.

Controlling access is the first step. Transient devices, such as mobile phones and machines coming through a VPN, need to be identified and authorized. The firewall needs to block inappropriate traffic.

Security software on individual machines should communicate with the rest of the network. An attack on one machine may warn of a threat to the others.

Monitoring needs to cover the whole network and catch any abnormal activity quickly. The faster attacks are discovered, the less damage they can do. The response may be an automated action, a notification to an administrator, or both.

Fortinet’s Security Fabric integrates every aspect of the network into a collaborative whole. It brings together diverse technologies to protect a network that spans multiple data centers, on-premise and remote endpoints and the cloud. It doesn’t just identify known malware but analyzes network behavior to catch previously unknown threats.

Fine Tec is a value-added distributor of Fortinet systems. A properly run SD-WAN can be highly secure. With Fine Tec’s guidance, you can help customers ensure it will be launched with the strongest protection.

Fortinet Expands Technology Alliance with Microsoft to Deliver Cloud Security at Scale for Global Enterprise Customers

Fortinet announces that Microsoft has joined its Fabric-Ready Partner Program and integration of advanced security capabilities into Microsoft Azure workloads

SUNNYVALE, Calif. – Jun 26, 2017

John Maddison, senior vice president of Products & Solutions at Fortinet
“To keep pace with evolving infrastructure requirements for on-demand resources, automated policies, and real-time threat intelligence, security must adapt with the business. Fortinet and Microsoft share a commitment to help enterprises securely move their data to the cloud so their business strategies can benefit from the elasticity, scale and performance of cloud-based services. We welcome Microsoft as a Fabric-Ready Partner and look forward to continued collaboration to deliver automated, adaptive security capabilities at cloud-scale for our global enterprise customers.”

News Summary
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today announced an expanded technology alliance with Microsoftthrough its Fabric-Ready Partner Program and new integrations for cloud security services.

  • Microsoft has joined the Fortinet Fabric-Ready Partner Program, further integrating Fortinet Security Fabric threat information, intrusion prevention, and management capabilities into Microsoft Azure Security Center (ASC) to better protect cloud workloads.
  • In addition to FortiGate Enterprise Firewalls, FortiWeb virtualized Web Application Firewalls (WAF) are now available on Azure Security Center for multi-layered application threat protection.
  • FortiGate Enterprise Firewalls are now available on-demand in the Azure Marketplace.

Fortinet and Microsoft Collaborate to Securely Move Enterprise Customers to the Cloud
According to a recent report by McKinsey & Company, more large enterprises are likely to move workloads away from traditional and virtualized environments toward the cloud, with the number of enterprises hosting at least one workload on an Infrastructure-as-a-Service (IaaS) platform set to increase to 41 percent by 2018. In order to drive this increase in adoption of IaaS, enterprises need to be sure that their data is kept safe as it moves to and through a cloud-computing model.

Through the expansion of the Fortinet and Microsoft technology alliance, enterprise customers benefit from integrated cybersecurity that can share intelligence in real-time and ensure automated protection across on-premises and cloud workloads.

  • Microsoft Becomes Fortinet Fabric-Ready Partner: As a Fabric-Ready Partner, Microsoft Azure customers benefit from the broad and automated capabilities of the Fortinet Security Fabric with pre-integrated, end-to-end cloud security offerings, reducing technical support burden and costs for enterprise customers. Fortinet’s virtualized solutions provide Azure customers with real-time threat intelligence feeds and automated security controls to give a more comprehensive view of the security state of their Azure workloads and enable faster, more intelligent responses to threats.
  • FortiWeb Web Application Firewall Now Available in Azure Security Center: Security automation and recommendation is essential for cloud deployments. With the growing variants in cyberattacks, having automated, analytics-driven policies in place to respond is critical. FortiGate Enterprise Firewalls have been available on ASC and now FortiWeb has been validated for Azure workloads to deliver greater security automation with analytics-based detection and multi-layered application threat protection, giving Azure customers more control over their security posture.
  • Security Fabric Extends to Enterprise Security Group Reference Architecture: The FortiGate Enterprise Firewalls have been validated as a recommended security solution as part of the ECG’s comprehensive enterprise deployment model. The extension of Fortinet’s virtualized firewalls into the ECG reference architecture enables Azure customers to maximize their existing infrastructure investments and securely move to the cloud.
  • Fortinet Security Fabric virtualized solutions, including FortiGate Enterprise Firewalls, FortiAnalyzer for centralized network logging, analytics and reporting, FortiManager for centralized cloud security management, FortiMail for secure mail gateway, and FortiWeb web application firewalls are available now in the Azure Marketplace.

Supporting Quote
“While connected technologies drive immense opportunity for enterprises, to accelerate business innovation and mitigate risks, security needs to be built in everything we do. By integrating Fortinet’s technologies into Microsoft Azure and assuring high security hygiene through Azure Security Center, Microsoft and Fortinet deliver on a shared commitment to protecting modern enterprises with advanced cybersecurity for a mobile-first, cloud-first world.”

– Ann Johnson, vice president, Worldwide Enterprise Product and Cybersecurity Groups, Microsoft Corp.

Additional Resources

About Fortinet

Fortinet (NASDAQ: FTNT) secures the largest enterprise, service provider, and government organizations around the world. Fortinet empowers its customers with intelligent, seamless protection across the expanding attack surface and the power to take on ever-increasing performance requirements of the borderless network – today and into the future. Only the Fortinet Security Fabric architecture can deliver security without compromise to address the most critical security challenges, whether in networked, application, cloud, or mobile environments. Fortinet ranks #1 in the most security appliances shipped worldwide and more than 300,000 customers trust Fortinet to protect their businesses. Learn more at, the Fortinet Blog, or FortiGuard Labs.

Copyright © 2017 Fortinet, Inc. All rights reserved. The symbols ® and ™ denote respectively federally registered trademarks and unregistered trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet’s trademarks include, but are not limited to, the following: Fortinet, FortiGate, FortiGuard, FortiManager, FortiMail, FortiClient, FortiCloud, FortiCare, FortiAnalyzer, FortiReporter, FortiOS, FortiASIC, FortiWiFi, FortiSwitch, FortiVoIP, FortiBIOS, FortiLog, FortiResponse, FortiCarrier, FortiScan, FortiAP, FortiDB, FortiVoice and FortiWeb. Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, binding specification or other binding commitment by Fortinet, and performance and other specification information herein may be unique to certain environments. This news release contains forward-looking statements that involve uncertainties and assumptions, such as statements regarding technology releases. Changes of circumstances, product release delays, or other risks as stated in our filings with the Securities and Exchange Commission, located at, may cause results to differ materially from those expressed or implied in this press release. If the uncertainties materialize or the assumptions prove incorrect, results may differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements. Fortinet assumes no obligation to update any forward-looking statements, and expressly disclaims any obligation to update these forward-looking statements. 

Bradford Networks Joins Fortinet Fabric-Ready Partner Program

Formalizes integration of Network Sentry with Fortinet Security Fabric to provide deeper integration and reduce implementation time

Boston, MA, June 15, 2017 – Bradford Networks, an innovator in the enterprise security automation and orchestration market, has joined the Fortinet Fabric-Ready Partner Program and formalized its integration with the Fortinet Security Fabric. This partnership enables both companies to share technology information and roadmaps in order to ensure seamless integration of current and future security programs.

Joining the Fortinet Fabric-Ready Partner Program further expands Bradford Networks’ existing Fortinet integration support that includes FortiGate, FortiSIEM, FortiAP, FortiSSO and FortiSwitch solutions. Bradford Networks’ security automation and orchestration solution, Network Sentry, enables companies to gain complete visibility into all endpoints including IoT devices, control all network access, automate threat response, and seamlessly integrate with third-party security solutions to enhance the fidelity of alerts and view all security events through one integrated dashboard.

“We are pleased to announce this enhancement to our partnership with Fortinet,” stated Frank Andrus, CTO of Bradford Networks. “This will make it even easier for our resellers to provide seamless integration with the Fortinet Security Fabric and deeper integration into our security dashboard.” Andrus continued, “This not only helps us provide secure end-to-end solutions at installation, but also ensures both security products remain seamlessly integrated once installed, even as both solutions continuously evolve to counter security threats.”

“A rapid and coordinated response is critical to defend against today’s threats. The Fortinet Security Fabric has the breadth to scale across the entire enterprise infrastructure and enables tight integration with other security vendors’ solutions through our Fabric-Ready Partner Program. This open approach enables vendors’ security solutions like Bradford Networks’ to share actionable threat intelligence and mitigation information in real-time, further amplifying Fortinet and its partners’ capabilities to protect enterprises,” said John Maddison, vice president of products and solutions at Fortinet. “Working with Bradford Networks helps our joint customers reduce threat containment time by correlating security alerts with detailed contextual information tied to endpoints, users, applications and network connections.”

“As one of the largest resellers of Network Sentry and the Fortinet Security Fabric, we are excited about this new partnership that will help us create a comprehensive solution set with products that validate and complement each other with actionable results,” stated Rob Anderson, partner and chief operating officer at Secure Data Solutions, Inc. “While Network Sentry already has a ‘build your own’ security device integration wizard, by adding standardized support for the Fortinet Security Fabric API, it will make it easier and faster to implement and scale these solutions.”

“The partnership between Bradford Networks and Fortinet allows us to offer a valuable solution to our security-conscious clients,” stated Jennifer Minella, vice president of engineering of Carolina Advanced Digital, Inc. “As a national leader in NAC integrations, and a security-focused integrator, this type of partnership and integration is exactly what we’ve been seeking. Among other scenarios, organizations can now benefit from FortiSIEM for security intelligence, and Network Sentry for a policy engine and for complete network visibility.”

Bradford Networks’ award-winning Network Sentry security automation and orchestration solution is designed to seamlessly integrate with the widest variety of security technologies and streamline the IT workload. The Network Sentry platform serves as a core component of a comprehensive security posture.  Network Sentry provides full visibility into desktop, mobile and IoT devices on the network, offers dynamic network access control to support the mobile workforce, and automates threat response to reduce containment time.

About Bradford Networks

Bradford Networks is leading the transformation of network security by providing visibility, control and response to minimize the risk and impact of cyber threats.  The company’s patented Network Sentry solution continuously assesses the risk of every user and endpoint, and automatically contains compromised devices that act as backdoors for cyber criminals. The company’s award-winning Network Sentry is used by more than 1000 enterprise companies worldwide across many market sectors, including finance, government and defense, healthcare, education, logistics and transportation, media and entertainment, retail and hospitality, technology, utilities and many others. For more information, please visit

About Fortinet

Fortinet secures the largest enterprise, service provider, and government organizations around the world. Fortinet empowers its customers with intelligent, seamless protection across the expanding attack surface and the power to take on ever-increasing performance requirements of the borderless network – today and into the future. Only the Fortinet Security Fabric architecture can deliver security without compromise to address the most critical security challenges, whether in networked, application, cloud, or mobile environments. Fortinet ranks #1 in the most security appliances shipped worldwide and more than 310,000 customers trust Fortinet to protect their businesses. Learn more at, the Fortinet Blog, or FortiGuard Labs.

Fortigate®, FortiSIEM®, FortiAP®, FortiSSO® and FortiSwitch® are trademarks or registered trademarks of Fortinet.

Five things you should know about Fortinet

Five things you should know about Fortinet

Renewal Order Process Improvements

In the efforts to provide partners with a framework to operate efficiently, effective June 1st, Fortinet is implementing improvements for the renewal order process. This new process is designed to improve the partner experience as well as improve your customer relationships. More information can be found on the portal.

New Lower Pricing for FortiGate 3800 Series – Effective Immediately!

The FG-3800’s are next generation firewall appliances suitable for mid-sized and large enterprises. Partners can join the monthly Partner Acceleration Webinar to learn more about the substantial discounts and how you can take advantage.

Magic Quadrant Season is Upon Fortinet

Over the next two months, Gartner is expected to release their Enterprise Firewall, UTM, and WAF Magic Quadrants. Fortinet have placed well in the past, and looking forward to repeating that performance. As the MQs are released, Fortinet will be simultaneously releasing assets for the partners to leverage.

Now Available for Partners – NSE Insider Webinars

NSE Insiders is a new series of webinars that provides detailed product information to help understand the technology behind Fortinet’s solutions and how to better position them with your customers. Partners will now receive a monthly email detailing upcoming webinars they can register for. Additionally, understanding partners are busy, the NSE Insiders will be available on demand via the Partner Portal.

PAN Take Out Campaign – New Assets Available!

Don’t forget – Fortinet is offering partners a special pricing discount on hardware and software bundles, as well as a discount on professional services when you displace PAN on your customer networks. See the Partner Portal for more details. New assets have recently been added, including a battlecard and cost calculator.

News to Share:

InfoTECH Feature: Security Platform vs. Security Fabric

John Maddison takes a closer look at the two different approaches, and what they really mean for customers.

CIO Outlook: Fortinet: Directing the Future of Cybersecurity

The cover story of CIO Outlook highlights CEO and Founder Ken Xie and Fortinet’s unique approach to addressing trends within an evolving IT infrastructure while simultaneously driving business value.

SearchIT Channel: Fortinet Security Fabric: Channel Partners Find a Role

Change is evident in the IT industry, especially in terms of security. The threat landscape represents an area in constant flux. Recently, customer interest shifted from traditional point products to integrated solutions. Fortinet Inc. responded to the change with the Fortinet Security Fabric, with partners playing a key role in its evolution.

Edward Jones Selects Fortinet to Deliver High-Performance Network Access at Scale to its Data Center and Branch Office Networks Across North America

Leading financial services firm chooses Fortinet to protect more than 13,000 locations through single pane of glass cybersecurity management.

Upcoming Events

Visit the Upcoming Events section on the Portal homepage for a full list.

NSE Solution Insider: How to Win & Grow FortiGate Deals with FortiAuthenticator

Thursday, June 1

11:00 AM Eastern


vmLIVE Webinar: Extend Your Security Fabric to the Private Cloud with Fortinet and NSX

Fortinet and VMware are teaming up for a June 1st webinar. The session will discuss how Fortinet’s Security Fabric can provide broad, powerful, and automated protection from IoT to the cloud through tight integration with VMware NSX. This is a great opportunity to expand your knowledge of the interoperability and value the Fortinet Security Fabric brings to your portfolio. Register (NOTE: partners must be part of the VMware partner program to register)

NSE Solution Insider: Protecting Industrial Control System (ICS/SCADA)

Learn about the comprehensive security solution using FortiGate, segmentation, Industrial Security Service, authentication, and Fortinet’s integration with Fabric Ready Partner Nozomi Networks.

Tuesday, June 6, 2017

11:00AM Eastern


NSE Solution Insider: Fortinet Security Fabric Ready Partner Program

Discover more about the technology partners who are part of the Fabric Ready Program.

Thursday, June 8, 2017

11:00 AM Eastern


*** Please note that this message and any attachments may contain confidential and proprietary material and information and are intended only for the use of the intended recipient(s). If you are not the intended recipient, you are hereby notified that any review, use, disclosure, dissemination, distribution or copying of this message and any attachments is strictly prohibited. If you have received this email in error, please immediately notify the sender and destroy this e-mail and any attachments and all copies, whether electronic or printed. Please also note that any views, opinions, conclusions or commitments expressed in this message are those of the individual sender and do not necessarily reflect the views of Fortinet, Inc., its affiliates, and emails are not binding on Fortinet and only a writing manually signed by Fortinet’s General Counsel can be a binding commitment of Fortinet to Fortinet’s customers or partners. Thank you. ***