FortiDeceptor Overview

Fortinet Security Fabric provides unified, end-to-end protection with Fortinet Next Generation Firewalls to tackle advanced persistent threats. Adding FortiDeceptor as part of a Breach Protection strategy helps evolve your defenses from reactive to proactive with intrusion-based detection layered with contextual intelligence. It automates the blocking of attackers targeting IT devices and OT system controls. FortiDeceptor automatically lays out a layer of decoys and lures, helping you conceal your sensitive and critical assets behind a fabricated Deception Surface to confuse and redirect attackers while revealing their presence on your network.

FortiDeceptor is designedto deceive, expose, andeliminate external and internal threats early in the attack kill chain and proactively block these threats before any significant damage occurs.

Advanced Threat Deception With FortiDeceptor

DECEIVE external and internal threats with deceptive VM instances aka decoys, managed from a centralized location. Deploy a Deception Surface of real Windows, Linux, VPN, Medical IoT and SCADA VMs with services that are indistinguishable from real assets, e.g. production servers and lures embedded into devices designed to uncover the attackers.

EXPOSE hacker activity with early and accurate detection and actionable alerts enabled through tracing and correlation of an attacker’s Tactics, Tools, and Procedures (TTPs) and active notification via Web UI, Email, SNMP traps, logs, and events via FortiSIEM and FortiAnalyzer

ELIMINATE threats by automating threat response with FortiGates, FortiNAC, FortiSOAR, and third-party security solutions via Fortinet Security Fabric.

FortiDeceptor Product Matrix

Capacity and Performance

 FORTIDECEPTOR 1000FFORTIDECEPTOR 1000G
Size RAMDDR4-2400 48 GB ECC RDIMM (16 GB*3)DDR4-2400 48 GB ECC RDIMM (16 GB*3)
On Board Flash2 GB USB2 GB USB
 Combination of Windows 7, Windows 10, Windows 10 (customizable BYOL), Windows Server 2016 and 2019 (customizable BYOL), Linux, VPN Server, Medical (PACS, Infusion pump), POS, ERP, IoT (Router, Printer and Camera), and/or SCADA, up to 16 DecoysCombination of Windows 7, Windows 10, Windows 10 (customizable BYOL), Windows Server 2016 and 2019 (customizable BYOL), Linux, VPN Server, Medical (PACS, Infusion pump), POS, ERP, IoT (Router, Printer and Camera), and/or SCADA, up to 16 Deception VMs and 128 VLANs
Decoy ServicesSSL VPN, SSH, SAMBA, SMB, RDP, HTTP/S, SQL, GIT, DICOM, Telnet, FTP, TFTP, SNMP, MODBUS, S7COMM, BACNET, IPMI, TRICONEX, GUARDIAN-AST, IEC104, EtherNet/IP, DNP3, JET-DIRECT, RTSP, UPnP, CDP and TCP port listeneSSL VPN, SSH, SAMBA, SMB, RDP, HTTP/S, SQL, GIT, DICOM, Telnet, FTP, TFTP, SNMP, MODBUS, S7COMM, BACNET, IPMI, TRICONEX, GUARDIAN-AST, IEC104, EtherNet/IP, DNP3, JET-DIRECT, RTSP, UPnP, CDP and TCP port listener
Decoys Shipped2 Win (1 x Win7 and 1 x Win10), and 8 Linux; Upgradable to max.16Deceptor Bundle Contract included license for Deception Decoys, Deception Lure plus FortiGuard Services Subscriptions (AREA, AV, IPS, and Web Filtering).1 VLAN unit price, minimum order of 2 VLANs

Hardware Specifications

Form Factor1 RU Rackmount1 RU Rackmount
Total Interfaces4 x GE (RJ45), 4 x GE (SFP)4 x GE (RJ45), 4 x GE (SFP)
Storage Capacity2 TB (2 x 1 TB HDD)2 TB (2 x 1 TB HDD)
Usable Storage (After RAID)2 TB (2 x 1 TB HDD)1 TB
Removable Hard DrivesNoNo
Default RAID Level11

Optional (SKU: SP-FSA1000G-PS)

Power Supply

  • 650W Redundant PSU (1+0)
  • Additional PSU (SKU: SP-FSA1000G-PS)

Leave a comment

Hey, so you decided to leave a comment! That's great. Just fill in the required fields and hit submit. Note that your comment will need to be reviewed before its published.