Fortinet with IPSEC FG/FWF-40F
Converged Next-Generation Firewall (NGFW) and SD-WAN
The FortiGate Next-Generation Firewall 40F series is ideal for building security-driven networks at distributed enterprise sites and transforming WAN architecture at any scale.
With a rich set of AI/ML-based FortiGuard security services and our integrated Security Fabric platform, the FortiGate FortiWiFi 40F series delivers coordinated, automated, end-to-end threat protection across all use cases.
FortiGate has the industry’s first integrated SD-WAN and zero-trust network access (ZTNA)
enforcement within an NGFW solution and is powered by one OS. FortiGate 40F automatically
controls, verifies, and facilitates user access to applications, delivering consistency with a
seamless and optimized user experience.
Highlights
Gartner Magic Quadrant Leader for both Network Firewalls and SD-WAN.
Security-Driven Networking with FortiOS delivers converged networking and security.
Unparalleled Performance with Fortinet’s patented SoC processors.
Enterprise Security with consolidated AI / ML-powered FortiGuard Services.
Simplified Operations
with centralized
management for
networking and security,
automation, deep analytics,
and self-healing.
Interfaces and Modules | FORTIGATE 40F | FORTIWIFI 40F | FORTIGATE 40F-3G4G | FORTIWIFI 40F-3G4G |
Hardware Accelerated GE RJ45 WAN / DMZ Ports | 1 | 1 | 1 | 1 |
Hardware Accelerated GE RJ45 Internal Ports | 3 | 3 | 3 | 3 |
Hardware Accelerated GE RJ45 FortiLink Ports (Default) | 1 | 1 | 1 | 1 |
Hardware Accelerated GE RJ45 PoE/+ Ports | 0 | 0 | 0 | 0 |
Cellular Modem | - | - | 3G4G LTE | 3G4G LTE |
Wireless Interface | 0 | Single Radio (2.4GHz/5GHz) 802.11 /a/b/g/n/ac-W2 |
0 | Single Radio (2.4GHz/5GHz), 802.11 a/b/g/n/ac-W2 |
Antenna Ports (SMA) | 0 | 3 | 3 | 6 |
USB Ports | 1 | 1 | 1 | 1 |
Console Port (RJ45) | 1 | 1 | 1 | 1 |
SIM Slots (Nano SIM) | 0 | 0 | 2 | 2 |
Onboard Storage | 0 | 0 | 0 | 0 |
Included Transceivers | 0 | 0 | 0 | 0 |
Dimensions and Power | ||||
Height x Width x Length (inches) | 1.5 x 8.5 x 6.3 | 1.5 x 8.5 x 6.3 | 1.6 x 8.5 x 6.3 | 1.6 x 8.5 x 6.3 |
Height x Width x Length (mm) | 38.5 x 216 x 160 | 38.5 x 216 x 160 | 40.5 x 216 x 160 | 40.5 x 216 x 160 |
Weight | 2.2 lbs (1 kg) | 2.2 lbs (1 kg) | 2.2 lbs (1 kg) | 2.2 lbs (1 kg) |
Form
Factor (supports EIA/non-EIA standards) |
Desktop | Desktop | Desktop | Desktop |
Input Rating | 12Vdc, 3A | 12Vdc, 3A | 12Vdc, 3A | 12Vdc, 3A |
Power Required | Powered by External DC Power Adapter, 100–240V AC, 50/60 Hz | Powered by External DC Power Adapter, 100–240V AC, 50/60 Hz | Powered by external DC power adapter 100-240V AC, 50/60 Hz | Powered by external DC power adapter 100-240V AC, 50/60 Hz |
Current (Maximum) | 100V AC / 0.2A, 240V AC / 0.1A | 100V AC / 0.2A, 240V AC / 0.1A | 100V AC / 0.3A, 240V AC / 0.2A | 100V AC / 0.3A, 240V AC / 0.2A |
Power Consumption (Average / Maximum) | 7.74 W / 9.46 W | 14.6 W / 16.6 W | 15.8 W / 18.6 W | 18.6 W / 19.8 W |
Heat Dissipation | 52.55 BTU/h | 56.64 BTU/h | 63.5 BTU/h | 67.6 BTU/h |
Operating Environment and Certifications | ||||
Operating Temperature | 32°F to 104°F (0°C to 40°C) | 32°F to 104°F (0°C to 40°C) | 32°F to 104°F (0°C to 40°C) | 32°F to 104°F (0°C to 40°C) |
Storage Temperature | -31°F to 158°F (-35°C to 70°C) | -31°F to 158°F (-35°C to 70°C) | -31°F to 158°F (-35°C to 70°C) | -31°F to 158°F (-35°C to 70°C) |
Humidity | 10% to 90% non-condensing | 10% to 90% non-condensing | 10% to 90% non-condensing | 10% to 90% non-condensing |
Noise Level | Fanless 0 dBA | Fanless 0 dBA | Fanless 0 dBA | Fanless 0 dBA |
Operating Altitude | Up to 7400 ft (2250 m) | Up to 7400 ft (2250 m) | Up to 7400 ft (2250 m) | Up to 7400 ft (2250 m) |
Compliance | FCC, ICES, CE, RCM, VCCI, BSMI, UL/cUL, CB | FCC, ICES, CE, RCM, VCCI, BSMI, UL/cUL, CB | FCC, ICES, CE, RCM, VCCI, BSMI, UL/cUL, CB | FCC, ICES, CE, RCM, VCCI, BSMI, UL/cUL, CB |
Certifications | USGv6/IPv6 | USGv6/IPv6 | USGv6/IPv6 | USGv6/IPv6 |
Radio Specifications | ||||
Multiple (MU) MIMO | N/A | 3 x 3 | N/A | 3 x 3 |
Maximum Wi-Fi Speeds | N/A | 1300 Mbps @ 5 GHz, 450 Mbps @ 2.4 GHz | N/A | 1300 Mbps @ 5 GHz, 450 Mbps @ 2.4 GHz |
Maximum Tx Power | N/A | 20 dBm | N/A | 20 dBm |
Antenna Gain | N/A | 3.5 dBi @ 5GHz, 5 dBi @ 2.4 GHz | N/A | 3.5 dBi @ 5GHz, 5 dBi @ 2.4 GHz |
System Performance — Enterprise Traffic Mix | |
IPS Throughput | 1 Gbps |
NGFW Throughput | 800 Mbps |
Threat Protection Throughput | 600 Mbps |
System Performance and Capacity | |
IPv4 Firewall Throughput (1518 / 512 / 64 byte, UDP) | 5 / 5 / 5 Gbps |
Firewall Latency (64 byte, UDP) | 2.97 μs |
Firewall Throughput (Packet per Second) | 7.5 Mpps |
Concurrent Sessions (TCP) | 700 000 |
New Sessions/Second (TCP) | 35 000 |
Firewall Policies | 5000 |
IPsec VPN Throughput (512 byte) | 4.4 Gbps |
Gateway-to-Gateway IPsec VPN Tunnels | 200 |
Client-to-Gateway IPsec VPN Tunnels | 250 |
SSL-VPN Throughput | 490 Mbps |
Concurrent
SSL-VPN Users (Recommended Maximum, Tunnel Mode) |
200 |
SSL Inspection Throughput (IPS, avg. HTTPS) | 310 Mbps |
SSL Inspection CPS (IPS, avg. HTTPS) | 320 |
SSL
Inspection Concurrent Session (IPS, avg. HTTPS) |
55 000 |
Application Control Throughput (HTTP 64K) | 990 Mbps |
CAPWAP Throughput (HTTP 64K) | 3.5 Gbps |
Virtual Domains (Default / Maximum) | 10-oct |
Maximum Number of FortiSwitches Supported | 8 |
Maximum Number of FortiAPs (Total / Tunnel) | 16 / 8 |
Maximum Number of FortiTokens | 500 |
High Availability Configurations | Active-Active, Active-Passive, Clustering |
Use Cases
Next Generation Firewall (NGFW)
• FortiGuard Labs’ suite of AI-powered Security Services—natively integrated with your NGFW—secures web, content, and devices and protects networks from ransomware and sophisticated cyberattacks
• Real-time SSL inspection (including TLS 1.3) provides full visibility into users, devices, and applications across the attack surface
• Fortinet’s patented SPU (Security Processing Unit) technology provides industry-leading high-performance protection
Secure SD-WAN
• FortiGate WAN Edge powered by one OS and unified security and management framework and systems transforms and secures WANs
• Delivers superior quality of experience and effective security posture for work-from-any where models, SD-Branch, and cloud-first WAN use cases
• Achieve operational efficiencies at any scale through automation, deep analytics, and self-healing
Universal ZTNA
• Control access to applications no matter where the user is and no matter where the application is hosted for universal application of access policies
• Provide extensive authentications, checks, and enforce policy prior to granting application access - every time
• Agent-based access with FortiClient or agentless access via proxy portal for guest or BYOD