Skip to content Skip to navigation Skip to footer
Overview
Security Services
Case Studies & Reviews
Models & Specs
Resources

Overview

FortiAnalyzer underpins the Fortinet Security Fabric, providing centralized logging and analysis, plus end-to-end visibility. As a result, analysts can manage security posture more effectively, automate security processes, and respond to threats quickly.

FortiAnalyzer security events UI

Centralized Management

FortiAnalyzer automatically collects, stores, and analyzes logs from all Fortinet security devices including FortiGate Next-Generation Firewalls, VPNs, and intrusion detection and prevention systems. You can easily manage large volumes of logs and search for specific events using various search criteria. Single-pane visibility and actionable results help detect potential security threats and optimize the network for better performance.

video incident response fortianalyzer

A Unified Approach

FortiAnalyzer uses sophisticated event correlation across different types of log sources with an intuitive rule’s editor mapped to MITRE ATT&CK® use cases. This enables analysts to set if-this-then-that criteria preemptively. FortiGuard integration shares real-time information on emerging threats and vulnerabilities. This, along with providing an accurate picture, helps scope risk across the attack surface, accelerates the detection of threats, and pinpoints where immediate response is required.

Watch Now
FortiAnalyzer monitoring UI

SD-WAN Visibility, Analytics, and Reporting

FortiAnalyzer monitors and analyzes traffic flowing through an SD-WAN deployment. Analysts gain analytics into how much bandwidth, different applications, and links are used the most, and whether there are any bottlenecks. Improve performance by identifying areas where additional bandwidth is needed, which applications are causing network congestion, and which links are utilized. 

Features and Benefits

END-TO-END VISIBILITY

Reduce time to detection by leveraging the FortiGuard IOC service to quickly identify threats

REDUCED MTTI

Identify network anomalies in real time by correlating threat data and sharing threat intelligence

ENTERPRISE-GRADE HIGH AVAILABILITY

Automatically back up the FortiAnalyzer database for disaster recovery

Security Automation

Reduce complexity & cost with automation-enabled REST APIs, scripts, connectors, automation stitches

OPEN PLATFORM APPROACH

Integrates the Fortinet portfolio and third-party solutions via robust APIs

ADVANCED COMPLIANCE REPORTING

Provides hundreds of pre-built regulation-specific reports & templates to make proving compliance easy

FortiAnalyzer Use Cases

Operational Efficiencies
FASTER THREAT DETECTION
FortiGuard’s Indicators of Compromise (IOC) subscription quickly identifies threats across your network, helping reduce time to detection.
icon user definition
CONSOLIDATED VISIBILITY & OPERATIONS
Analytics provide real-time visibility across all the telemetry for the Security Fabric and enable visibility natively with Fortiview.
icon secure internet access
PROTECTION WITH TI & RULES
FortiAnalyzer integrates with FortiGuard Labs to share real-time info on emerging threats and vulnerabilities gathered from multiple sources.
icon secure private access
Security Automation
FortiAnalyzer reduces complexity and cost with automation enabled via REST APIs, scripts, connectors, and automation stitches.
icon enterprise grade management
AUTOMATED COMPLIANCE & REPORTING
Compliance is simplified with hundreds of pre-built reports and regulation-specific templates.
Hybrid Workforce
SOCaaS for Staff Augmentation
Outsourced SOC services will proactively monitor, manage, and strengthen your Security Fabric posture around the clock.

FortiGuard AI-Powered Security Services

FortiGuard Labs - Fortinet’s elite cybersecurity threat intelligence and research organization comprised of experienced threat hunters, researchers, analysts, engineers, and data scientists - develops and enhances FortiGuard AI-powered Security Services as well as provides valuable expert help through FortiGuard Expert-driven Security Services.

Show All Services
Content Security
Web Security
Device Security
Application Security
SOC NOC Security
Indicators of Compromise Service (IOC)
Indicators of Compromise Service

FortiGuard's Indicators of Compromise Service (IOC) service helps security analysts identify risky devices and users based on these artifacts.

SOC-as-a-Service
SOC-as-a-Service

Fortinet Security Operations Center-as-a-Service (SOCaaS) is a cloud-based security monitoring service for Fortinet customers of FortiGate, FortiEDR, FortiXDR, and/or FortiClient. Fortinet SOCaaS can complement and enhance your Enterprise security operations center (SOC) capabilities through integration, technology automation, and security expertise. The services analyze events generated from your devices, perform alert triage, and escalate threats to empower your teams and focus them on what matters most.

Case Studies

Grand View University
Grand View University
127-Year-Old University Stays Agile in the Face of Cyber Threats with FortiGuard Security Services
Athens Independent School District
Athens Independent School District
Pioneering Texas School District Improves Its Cybersecurity Posture with the Fortinet Security Fabric
Bakers Delight Holdings
Bakers Delight Holdings
For Multinational Bakery Chain, Tight Security Is Baked into the Infrastructure
Manetoni
Manetoni
Brazilian Steel Distributor Achieves High Security and Availability with the Fortinet Security Fabric Platform

Gartner Peer Reviews

Read what customers say about FortiAnalyzer in Gartner Peer Insights Reviews for their SD-WAN, NGFW, and consolidation projects.
★★★★★
“Easy Going To Deployment & Configure, Directly Insight In The Connectivity”

“Easy to configure • Easy to deployment • Easy to centralized manage • Single appliance for: SD-WAN + advance routing + NGFW functions helped us consolidate other point products.”

—  Security Officer, Manufacturing
★★★★★
“FortiAnalyzer The Your Best Friend With FortiGate Devices”

“I am using Fortianalyzer for a long time, If you have Fortigate devices you have to Fortianalyzer, because it gives you more information and security awareness about your network. It has own security dashboard and user friendly web interface which is easy to search traffic logs.”

—  Sr. Network & Security Engineer
★★★★
“Great Utility For Regulatory Compliance And Troubleshooting.”

“We originally purchased FortiAnalyzer solely as a detective control. We now utilize it for troubleshooting client vpn connections as well as traffic metrics.”

—  Compliance Consultant

Models and Specifications

Compare Products

View by:

  • Appliances
  • Subscription
FortiAnalyzer 150G
GB/Day
25
Sustained LPS
500
Collector Mode Sustained LPS
750
No. Days @ Max Sustained LPS
90
Max Devices/VDOMs
50
Max ADOMs
5
FortiAnalyzer 300G
GB/Day
100
Sustained LPS
2,000
Collector Mode Sustained LPS
3,000
No. Days @ Max Sustained LPS
28
Max Devices/VDOMs
180
Max ADOMs
25
FortiAnalyzer 800G
GB/Day
200
Sustained LPS
4,000
Collector Mode Sustained LPS
6,000
No. Days @ Max Sustained LPS
50
Max Devices/VDOMs
800
Max ADOMs
50
FortiAnalyzer 1000F
GB/Day
660
Sustained LPS
20,000
Collector Mode Sustained LPS
30,000
No. Days @ Max Sustained LPS
34
Max Devices/VDOMs
2,000
Max ADOMs
50
FortiAnalyzer 3000G
GB/Day
3,000
Sustained LPS
42,000
Collector Mode Sustained LPS
60,000
No. Days @ Max Sustained LPS
30
Max Devices/VDOMs
4,000
Max ADOMs
500
FortiAnalyzer 3500G
GB/Day
5,000
Sustained LPS
60,000
Collector Mode Sustained LPS
90,000
No. Days @ Max Sustained LPS
38
Max Devices/VDOMs
10,000
Max ADOMs
500
FortiAnalyzer 3700G
GB/Day
8,300
Sustained LPS
100,000
Collector Mode Sustained LPS
150,000
No. Days @ Max Sustained LPS
60
Max Devices/VDOMs
10,000
Max ADOMs
1,200
FortiAnalyzer 4500F
GB/Day
20TB
Sustained LPS
300,000
Collector Mode Sustained LPS
-
No. Days @ Max Sustained LPS
30
Max Devices/VDOMs
10,000+
Max ADOMs
10,000
VM
GB/Day
Stackable
Sustained LPS
Stackable
Collector Mode Sustained LPS
Stackable
No. Days @ Max Sustained LPS
Stackable
Max Devices/VDOMs
10,000
Max ADOMs
1,200
Cloud
GB/Day
Stackable
Sustained LPS
Stackable
Collector Mode Sustained LPS
Stackable
No. Days @ Max Sustained LPS
Stackable
Max Devices/VDOMs
unlimited
Max ADOMs
-

Resources

eBooks
Blog
Data Sheets
Solution Briefs
Videos
White Papers
Accelerate Efficiency of Security Operations Across the Security Fabric with Rapid Response
Accelerate Efficiency of Security Operations Across the Security Fabric with Rapid Response »

In 2019 alone, over $124 billion was spent on cybersecurity;1 however, many organizations’ security teams are struggling to keep up. Challenges include too many consoles, alert overload, a reliance on manual processes, and a shortage of cybersecurity personnel.

Strategies That Reduce Complexity and Simplify Security Operations
Strategies That Reduce Complexity and Simplify Security Operations »

Enterprise Security for Changing Times - Protection for Expanding Infrastructures, Increasing Attacks, and Compliance

Fortinet Analytics-Powered Security and Log Management
Fortinet Analytics-Powered Security and Log Management »

FortiAnalyzer for Increased Efficiencies, Faster Response, and Compliance

Fortinet Solutions for Automation-driven Network Operations
Fortinet Solutions for Automation-driven Network Operations »

Read the eBook to understand how FortiManager and FortiAnalyzer support network operations use cases for centralized management, compliance, and automation to provide better detection and protection against breaches.

Secure Remote Access for the Teleworker Accessing the Cloud
Secure Remote Access for the Teleworker Accessing the Cloud »

Discover how organizations can meet the performance and capacity requirements of an increased remote workforce accessing applications hosted in the cloud and SaaS services more than ever before.

Automate Network Management to Accelerate Digital Transformation
Automate Network Management to Accelerate Digital Transformation »

Discover how Fortinet’s Fabric Management Center, which combines FortiManager and FortiAnalyzer for effective network operations, enables agile network management for Fortinet customers.

Fortinet’s Commitment to Healthcare Enables Scalable COVID-19 Testing and Care Solution
Fortinet’s Commitment to Healthcare Enables Scalable COVID-19 Testing and Care Solution »

Learn how this hospital system was able to quickly scale its secure network to multiple temporary testing sites by deploying a “network in a box” from Fortinet.

Key Use Cases for the Fortinet Fabric Management Center
Key Use Cases for the Fortinet Fabric Management Center »

From state agencies to retail businesses, efficiency is a crucial component of the IT security infrastructure. Learn how these three organizations leveraged Fortinet's Fabric Management Center to enable effective and efficient network security.

Leveraging Automation and Analytics to Protect Security Infrastructure in Government
Leveraging Automation and Analytics to Protect Security Infrastructure in Government »

Explore how this government organization effectively and efficiently develops and maintains a security infrastructure by leveraging automation and analytics.

Fortinet Product Matrix
Fortinet Product Matrix »

Fortinet Product Matrix

FortiAnalyzer Ordering Guide
FortiAnalyzer Ordering Guide »

FortiAnalyzer Ordering Guide

FortiAnalyzer Data Sheet
FortiAnalyzer Data Sheet »

FortiAnalyzer Datasheet

FortiAnalyzer Big Data 4500F Data Sheet
FortiAnalyzer Big Data 4500F Data Sheet »

Fortinet Technologies Inc.

Simplifying SD-WAN Operations with Single-Pane Management
Simplifying SD-WAN Operations with Single-Pane Management »

Fortinet simplifies SD-WAN operations with network operations center solutions

Simplifying Security Operations with FortiAnalyzer
Simplifying Security Operations with FortiAnalyzer »

Cybersecurity teams worldwide are struggling with the growing sophistication and volume of cybercriminal attacks. And as their organizations’ networks evolve and expand, their siloed point products add complexity, manual processes, and fragmentation to security operations—which, of course, prevents timely detection of threats and stopping intrusions.

Secure Remote Access for Your Workforce at Scale
Secure Remote Access for Your Workforce at Scale »

Organizations face a number of different potential emergency situations, such as illness, flood, hurricanes, and power outages. Implementing a business continuity plan is essential to ensuring that the organization is capable of maintaining operations in the face of adversity and preparing for potential disasters.

Fortinet Supports Compassionate Caregivers With a Secure and Reliable Network
Fortinet Supports Compassionate Caregivers With a Secure and Reliable Network »

Catholic Health Services (CHS) provides healthcare services to thousands of people through its 38 locations across Broward and Miami-Dade counties in Florida. Its role and location place CHS at risk, not only of internet outages due to hurricanes and other hazards but also of cyberattacks due to the personal health information it collects. For this budget-strapped non-profit, Fortinet’s centrally managed SecurityFabric with Secure SDWAN affords both resilient connectivity and efficient IT operations. Learn how Catholic Health Services secured the modernization of its network with the Fortinet Security Fabric and Fortinet Secure SD-WAN.

The Paper Store Protects its Expanding Store Footprint with Secure SD-WAN and SD-Branch
The Paper Store Protects its Expanding Store Footprint with Secure SD-WAN and SD-Branch »

The largest family owned and operated specialty gift business in the northeastern U.S., The Paper Store employs more than 4,000 people at nearly 90 stores across six states, and in the company’s 500,000-square-foot distribution center. With frequent new store launches, technology management grew more complex, and wide area networking costs soared.

What's new in FortiAnalyzer 7.2
What's new in FortiAnalyzer 7.2 »

Learn more about what's new in FortiAnalyzer in this video including some of the ways organizations can use FortiAnalyzer to gain more IoT visibility and anomaly detection, automate incident response, and collaborate with teams to reduce incident response time.

FortiAnalyzer Cloud Overview
FortiAnalyzer Cloud Overview »

When shifting from an on-prem environment to a cloud environment, organizations are not just experiencing digital transformation - they’re benefiting from a financial change, as well. In this video, learn the advantages of #Fortinet’s #FortiAnalyzer Cloud such as centralized reporting, event, incident management, and more.

Incident Response with FortiAnalyzer
Incident Response with FortiAnalyzer »

Watch an overview of how #Fortinet’s #FortiAnalyzer can aggregate logs, receive analytics, and easily implement automation to simplify complex operations.

Security Complexity Spirals Out of Control
Security Complexity Spirals Out of Control »

Analytical Fragmentation Creates Challenges for Security Architects

VPAT Fortinet FortiAnalyzer
VPAT Fortinet FortiAnalyzer »

This Voluntary Product Accessibility Template reviews Fortinet’s FortiAnalyzer centralized reporting platform for 508 compliance.

Ecosystem

FortiAnalyzer provide integration with many leading vendors as part of the Fortinet Security Fabric. Below is a list of current Product Alliance Partners:

Amazon Web Services
Amazon Web Services

AWS services are trusted by more than a million active customers around the world – including the fastest growing startups, largest enterprises, and leading government agencies – to power their infrastructures, make them more agile, and lower costs.

Learn more on the Fortinet-AWS alliance

Resources
Functionalities
Cloud
Fortinet Fabric Ready Fabric Connector DevOps
Criterion Networks, Inc.
Criterion Networks, Inc.

Criterion Networks is a SaaS and professional services company specializing in network transformation and modernization. Customers greatly benefit from on-demand and custom design, deployment, training, demo and PoC capabilities of Fortinet SD-WAN and security solutions, accelerating network transformation initiatives, shortening sales cycles and deployment times, while lowering cost structures.

Resources
Functionalities
Networking, SDN-NFV & Virtualization
Fortinet Fabric Ready
CyberArk
CyberArk

CyberArk is the global leader in privileged account security, a critical layer of IT security to protect data, infrastructure and assets across the enterprise, in the cloud and throughout the DevOps pipeline. CyberArk delivers the industry’s most complete solution to reduce risk created by privileged credentials and secrets.

Resources
Functionalities
Identity Management
Fortinet Fabric Ready
D3 Security
D3 Security

D3 Security's award-winning SOAR platform seamlessly combines security orchestration, automation and response with enterprise-grade investigation/case management, trend reporting and analytics. With D3's adaptable playbooks and scalable architecture, security teams can automate SOC use-cases to reduce MTTR by over 95%, and manage the full lifecycle of any incident or investigation. 

Resources
Functionalities
Automation, Security Operations
Fortinet Fabric Ready
DFLabs
DFLabs

DFLabs IncMan SOAR leverages existing security products to dramatically reduce the response and remediation gap caused by limited resources and the increasing volume of incidents. Together with Fortinet, IncMan allows joint customers to respond to security incidents in a faster, more informed and efficient manner. 

Resources
Functionalities
Automation, Security Operations
Fortinet Fabric Ready
Google Cloud Platform
Google Cloud Platform

Google Cloud Platform is a secure, dedicated public cloud computing service operated by Google which provides a range of infrastructure and application services that enable deployments in the cloud. Fortinet provides critical firewalling, advanced security and scalable BYOL protection for elastic compute, container, and machine-learning workloads in Google’s innovative public cloud.

Resources
Functionalities
Cloud
Fortinet Fabric Ready Fabric Connector DevOps
Guardicore
Guardicore

Guardicore solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. Together with Fortinet Guardicore provides visibility and control for hybrid clouds and data centers.

Resources
Functionalities
Cloud
Fortinet Fabric Ready Fabric Connector
IBM
IBM

IBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The portfolio enables organizations to effectively manage risk and defend against emerging threats.

Resources
Functionalities
Security Operations, Cloud, Vulnerability Management
Learn More
Microsoft Azure
Microsoft Azure

Microsoft is the leading platform and productivity company for the mobile-first, cloud-first world, and its mission is to empower every person and every organization on the planet to achieve more.

Resources
Functionalities
Identity Management, Cloud, Unified Communications
Learn More
Nutanix
Nutanix

Nutanix makes infrastructure invisible, elevating IT to focus on the applications and services that power their business. The Nutanix enterprise cloud platform leverages web-scale engineering and consumer-grade design to natively converge compute, virtualization and storage into a resilient, software-defined solution that delivers any application at any scale.

Resources
Functionalities
SDN-NFV & Virtualization
Fortinet Fabric Ready

Training & Certifications

NSE 5
FortiAnalyzer
In this course, you will learn the fundamentals of using FortiAnalyzer for centralized logging and reporting. You will learn how to configure and deploy FortiAnalyzer, and identify threats and attack patterns through logging, analysis, and reporting.
Learn More
NSE 7
OT Security
Learn how to design, deploy, administrate, and monitor FortiGate, FortiNAC, FortiAnalyzer, and FortiSIEM devices to secure OT infrastructures. These skills will provide you with a solid understanding of how to design, implement, and operate an OT security solution based on Fortinet products.
Learn More

Free Product Demo

FortiAnalyzer offers centralized network security logging and reporting for the Fortinet Security Fabric. FortiAnalyzer accepts inbound logs from multiple downstream Fortinet devices such as FortiGate, FortiMail, and FortiWeb devices etc. Functions such as viewing/filtering individual event logs, generating security reports, alerting based on behaviors, and investigating activity via drill-downs are all key features of FortiAnalyzer. In this demo, see how it presents the visibility of your networks such as an aggregate view of applications, web usage, and potentially malicious behavior affect your network. 

FortiAnalyzer News

Gartner Peer Insights reviews constitute the subjective opinions of individual end users based on their own experiences, and do not represent the views of Gartner or its affiliates.

Quick Links

links image 1 139x100

Free Product Demo

Explore key features and capabilities, and experience user interfaces.
resource center icon 139X159

Resource Center

Download from a wide range of educational material and documents.
links image 2 139x121

Free Trials

Test our products and solutions.
contact sales icon 139x85

Contact Sales

Have a question? We're here to help.