託管服務提供商 (MSP) 和託管安全服務提供商 (MSSP) 的營運環境競爭非常激烈。要想吸引新客戶並留住現有客戶,MSP 和 MSSP 必須能夠提供從競爭對手中脫穎而出的產品和服務。在密集型行業中,這一目標可能很難實現。
在嘗試從競爭中脫穎而出時,MSP 和 MSSP 要保證能夠履行自己的承諾。如果每個解決方案必須單獨部署、設定、監控和管理,那麼透過部署一系列單點解決方案,為供應商的產品快速添加新功能的方法很快就會失去可擴展性。
MSP 和 MSSP 可以採用另一種方法:在堅實可靠的整合基礎上構建產品和服務。安全的軟體定義廣域網路 (SD-WAN) 將網路和安全功能整合到單一設備中,從而減少安全蔓延。它還為 MSP 和 MSSP 奠定了基礎,使其能夠以最小的額外開銷提供增值服務。
隨著企業級 SD-WAN 需求的增加,越來越多的組織不再購買和運作自己的 SD-WAN 設備,而是轉向使用託管 SD-WAN 服務。託管 SD-WAN 服務提供商承擔 SD-WAN 設備的資本支出,在客戶場所部署 SD-WAN,或提供雲端託管的 SD-WAN。託管 SD-WAN 服務提供商透過專業知識增加價值,為了留住這些專業知識,企業會持續投資最新的 SD-WAN 技術來造福客戶,並詳細瞭解 SD-WAN 解決方案如何與其他供應商整合,尤其是雲端基礎設施提供商。
對於託管服務提供商 (MSP) 和託管安全服務提供商 (MSSP) 來說,接入新客戶和推廣新客戶網站需要一筆不小的費用。隨著新客戶的增加,以及所支援企業的不斷增長,MSP 和 MSSP 需要能夠輕鬆部署到新客戶環境中、並能與客戶現有基礎設施整合的解決方案。
Fortinet Secure SD-WAN 為將服務部署到新客戶位置的 MSP 或 MSSP 提奠定了基礎。整合式新一代防火牆 (NGFW) 和入侵防護系統 (IPS) 可提供威脅防護和流量檢測功能,即使是 SSL 或 TLS 加密流量也能檢測。與 Fortinet Secure SD-Branch 整合,可將集中可視性和網路管理擴展至交換層。
Fortinet 是業內最大的網路安全生態系統的成員,擁有超過 250 個 Security Fabric 生態系統合作夥伴。透過 Fortinet Security Fabric,Fortinet Secure SD-WAN 和其他 Fortinet 解決方案只需按一下即可立即與所有這些供應商的產品整合。Fortinet 開放安全生態系統包括:
傳統的 WAN 安全解決方案就安全性作為網路的首要考量因素,透過一系列獨立裝置來實現安全性。這種 WAN 安全方法會損害可視性並造成孤島現象,因為組織安全部署中的單點產品之間可能無法通訊。這會降低託管服務提供商 (MSP) 和託管安全服務提供商 (MSSP) 有效管理其客戶網路的能力,並提高他們的運營成本和開銷。最後,使用獨立的單點產品會讓組織受困於其支援的傳輸媒介中。
Fortinet Secure SD-WAN 將網路和安全功能整合到單個設備中,無需部署一系列單點安全產品。這使 MSP 和 MSSP 能夠為客戶的廣域網路 (WAN) 提供一致的企業級安全性,並顯著降低總體擁有成本 (TCO)。
使用 Secure SD-WAN,MSP 和 MSSP 還可以透過安全混合 WAN 為其客戶提供傳輸獨立性。混合 WAN 允許透過多種傳輸模式路由流量,這使得它們能夠減少對昂貴的多協定標籤交換 (MPLS) 頻寬的依賴。
Secure SD-WAN 也可以為雲端應用程式提供直達網際網路的安全連線,因為流量檢測現在是在網路邊緣進行的。隨著客戶逐漸遷移至雲端,從用戶端環境中的任何位置為雲端流量提供直接路由的能力成為了一項重要競爭優勢。
作為 Fortinet Security Fabric 的一部分,Fortinet Secure SD-WAN 能夠與各種 Fortinet 解決方案及第三方供應商的解決方案進行即時整合。MSP 和 MSSP 可以為其客戶提供託管 Secure SD-WAN 服務,作為各種其他網路和安全服務的基礎,例如:
MSSP 和 MSSP 可利用 Fortinet Secure SD-WAN 提供以下功能:
組織的企業 WAN 正在日益擴展,納入了雲端軟體即服務 (SaaS) 和基礎設施即服務 (IaaS) 資源。來自分支機構的流量需要透過總部網路路由傳送,以便進行安全掃描和策略實施,這樣會降低網路效能、增加延遲,並造成企業 WAN 壅塞。以提升雲端連線能力作為賣點的託管服務提供商 (MSP) 和託管安全服務提供商 (MSSP) 有明顯的競爭優勢。
Fortinet Secure SD-WAN 為雲端流量實現直達網際網路的安全連線,這對客戶逐漸過渡到使用 IaaS 和 SaaS 產品至關重要。內建 FortiGate 新一代防火牆 (NGFW) 提供第 3 層至第 7 層保護,並透過業界首款 SD-WAN 應用程式專用積體電路 (ASIC) 晶片提供了高效能保證。作為 Fortinet Security Fabric 的一部分,FortiGate NGFW 可以為 MSP 和 MSSP 提供單一管理介面可視性和管理,從而提高營運效率並簡化客戶 WAN 的管理工作。
服務提供商還可以提供與 Fortinet Security Fabric 整合的雲端原生安全保護。FortiCASB 和 FortiCWP 可在雲端環境中實現自動化安全和合規管理。FortiWeb 以虛擬機器 (VM)、實體設備或 SaaS 產品的形式提供,能夠為客戶的雲端網頁、支付入口網站和應用程式開發介面 (API) 提供保護。FortiGate NGFW 以雲端原生 IaaS(及其他)形式提供,可在任何部署環境中實現雲端原生保護。
隨著客戶遷移到雲端,MSP 和 MSSP 必須能夠提供以雲端為主的安全支援,例如 Fortinet 解決方案提供的安全防護:
導覽:
MSPs and MSSPs require solutions that allow them to operate more efficiently. SD WAN Solutions should provide a rapid time to revenue by requiring minimal configuration and deployment time on provider or customer networks. They should also offer high margins and scale easily to larger customer bases.
MSPs and MSSPs seek solutions that allow them to offer value-added services to their customers. Deploying managed SD-WAN services to customer networks allows them to offer additional products such as managed SD-Branch and IoT security services. Secure SD-WAN can also favorably compete with pure SD-WAN solutions since they also offer integrated security and analytics functionality.
MSPs and MSSPs seek offerings that they can quickly deploy to their customers after purchase. This includes both current customers, where new functionality can be added or enabled in an existing deployment, and new customers that require onboarding and solution deployment before services can be provided.
MSPs and MSSPs have customers with widely differing needs. They require the capability to offer pay-as-you-grow models for their products and services, allowing them to scale their offerings and prices to a customer’s unique situation.
The Fortinet Security Fabric, with out-of-the-box integration with over 250 third-party vendor products, enables single-pane-of-glass visibility and configuration management and real-time threat-intelligence sharing across a service provider’s entire network environment. With Secure SD-WAN Solutions, this enables MSPs and MSSPs to manage their customers’ entire network infrastructure from a single pane of glass. This also allows MSPs and MSSPs to improve efficiency, decrease total cost of ownership (TCO), and reduce their clients’ cybersecurity risk. FortiGate next-generation firewalls (NGFWs) also support numerous administrative domains (ADOMs) and virtual domains (VDOMs), providing management flexibility and supporting role-based access control (RBAC).
Secure SD-WAN enables MSPs and MSSPs to centralize visibility and management of their customers’ entire WAN. The Fortinet Security Fabric takes this a step further by enabling out-of-the-box integration with over 250 third-party vendor products through 12 Fabric Connectors, over 135 third-party application programming interfaces (APIs), 9 Fabric DevOps scripts, over 130 Extended Security Fabric Ecosystem partnerships, and an open-API architecture.
This integration enables MSPs and MSSPs to automate threat prevention, detection, and response, minimizing the overhead associated with securing customer environments. Centralized security management also enables MSPs and MSSPs to efficiently establish and enforce policies that comply with security standards. This, in turn, facilitates the automatic generation of reports for customers that demonstrate compliance for regulators and provide important security insights for the C-suite and the board.
Fortinet Secure SD-WAN links a customer’s entire security architecture via the Fortinet Security Fabric. The Security Fabric orchestrates threat intelligence across and between each of the organization’s security elements in real time. FortiGuard Labs leverages artificial intelligence (AI) and machine learning (ML) capabilities to pinpoint known and unknown threats and communicate actionable intelligence across the Security Fabric. Threat intelligence is enhanced through partnerships with over 30 threat-sharing organizations and integration with over 100 other vendor products. With the Fortinet Security Fabric, this threat intelligence is communicated to all SD-WAN appliances in a customer’s WAN, ensuring enterprise-wide threat detection and prevention.
FortiGate NGFWs, with corroborated performance testing by NSS Labs, offer the industry’s lowest latency, which is an important feature for MSPs’ and MSSPs’ customers. The highly efficient custom FortiGate application-specific integrated circuit (ASIC), as well as the world’s first SD-WAN ASIC, enables Fortinet to provide high-performance security at the WAN edge and throughout the network. Moreover, turning on advanced features such as secure sockets layer/transport layer security (SSL/TLS) encryption inspection does not impact network performance in speed or throughput, unlike competitive solutions.
This is crucial for MSPs and MSSPs, whose customers expect security to not impact network performance and who require solutions that minimize capital expenditures (CapEx) and operational expenditures (OpEx). Fortinet is named a Leader in the Gartner Magic Quadrant for Network Firewalls and a Leader in the Gartner Magic Quadrant for WAN Edge Infrastructure. Fortinet has won 2019 MEF 3.0 Proof of Concept Awards for Security Assurance in SD-WAN and Cloud Service Implementation, and is the only vendor to have NSS Labs Recommended status for nine different security products.
With FortiManager, Fortinet solutions can be easily deployed and centrally managed, allowing MSPs and MSSPs to easily roll out security infrastructure to new customers. FortiManager and FortiAnalyzer also allow MSPs and MSSPs to integrate and automate their client’s security deployment via the Fortinet Security Fabric, enabling analytics and compliance reporting through FortiAnalyzer. This integration also allows MSPs and MSSPs to break down silos that isolate security operations center (SOC) and network operations center (NOC) operations, enabling improved global visibility and more efficient operations. By deploying Fortinet Secure SD-Branch, centralized visibility and management is expanded to cover everything from the internet to the switching infrastructure in customer locations, simplifying security monitoring and management for MSPs and MSSPs.
Fortinet devices are capable of touchless onboarding and provisioning with the ability to preconfigure deployment settings before sending devices to customer locations. Fortinet devices also allow a single key for supported devices on bulk orders and expose a JavaScript object notation/extensible markup language (JSON/XML) API for device customization. This enables automated or programmatic deployment of Fortinet devices, enabling MSPs and MSSPs to eliminate truck rolls and achieve faster onboarding of new customers.
Multiple pricing and product consumption options offer MSPs and MSSPs and their customers the flexibility needed to optimally secure their data, infrastructure, and applications. This enables MSPs and MSSPs to scope their customers’ SD-WAN deployment, and the value-added services that it supports, to meet their customers’ specific needs.
Fortinet solutions are designed to be multitenant from the ground up, enabling MSPs and MSSPs to isolate but still manage multiple customer networks from a single console. This enables MSPs and MSSPs to take advantage of cost savings by offering customers networking over shared, but isolated, SD-WAN infrastructure—increasing average revenue per user (ARPU) while improving operational efficiencies.
Fortinet offers a range of training opportunities to help MSPs and MSSPs better attract and serve customers and to differentiate their services and grow their business. Opportunities include seller training, technical training, and advanced training. This helps MSPs and MSSPs to learn how to optimize their SD-WAN deployment and efficiently deploy value-added services to their customers.
The Fortinet Joint Solution Marketing Model provides MSPs and MSSPs with numerous opportunities to improve and grow their business. These include a partner-focused marketing team, support for developing messaging, blogs, case studies, and selective support for partner campaigns. This helps MSPs and MSSPS to maximize the impact of their marketing regarding SD-WAN offerings and the additional value-added services that it enables.
