|reply to mikkopel |
Re: Optimum Lightpath Installation
Take some pictures of the fortigate .. Always wondered what other people thought of them. We use them at this new job, but have not been given access to them
I have access to a FortiWiFi-20C... I am not impressed. In fact, I'm disgusted by their ultra-lame practice of bandwidth limiting the device. (20Mbps WAN-LAN, software limited. The hardware is capable of well over 100Mbps depending on the complexity of your security configuration. A complex setup might not even get the 20 it says on the tin.)
Don't believe most of their marketing drivel; until you get into the much more expensive, higher end systems, they do NOT have ASICs. The -20C has an atheros 8300 series gigabit switch, atheros wifi radio (mini-PCIe), and a FortiNet branded "FortiSoC" processor -- likely an atheros SoC (given the other atheros parts), or a broadcom SoC. Other than flash and ram, that's all that's in there. Also, the sticker claims it's an "a/b/g/n" device when it isn't -- 2.4Ghz only. And it does NOT follow WiFi Alliance requirements for, well, most things. [I found nowhere to set the radio channel, mode, or channel width; all required to put the wifi symbol on the thing.]
Otherwise, it does what it claims. Having atheros radio parts, it has exceptional wifi coverage. (24dbm at the lowest power (assuming that slider does anything) vs. a WRT600N (ddwrt) at max power... 48dbm.) It takes very little power, and generates almost no heat. [there are no heatsinks in it.] (esp. compared to the 600N)
arobertiSarcastic? Me? NeverPremium
Lots of bad information here -- it does have a 5GHz radio, and you can configure everything you spoke of (and more) if you create a custom profile (WiFi Controller > Managed Access Points > Custom AP Profile and select Create New on 4.0 MR3).
I've never seen a FortiNet device that artificially limits bandwidth, although I think the lowest I've gone is a 40-series device. CPU-limited, absolutely. As soon as anything passes through the firewall you'll take a hit, and a much larger one with IPS/AV/etc. But there's a processor utilization meter right on the dashboard that gives you an idea of how hard you're pushing the device.
I think the devices themselves are pretty nice. I love their subscription model where pretty much everything's included. Their support, on the other hand, leaves quite a bit to be desired.
Current Running Firmware: FWF20C-4.00-build511
That's "v4.0,build0511,120110 (MR3 Patch 4)" on a FortiWiFi-20C. (the free one they give you at training.) There are no such options on this thing. (No "WiFi Controller" in any place through the web interface or command line.) And I know [censored] well it does not have a 5GHz radio in it, despite the stickers on it. (Do they sell them with a/b radios? I don't know, but they certainly can as it's a simple card swap.) I've looked through every line of it's full config and see NOTHING about radio controls. Also, there's nothing in it's documentation about setting the radio channel/mode. This thing DOES limit it's WAN/LAN throughput... no firewall/NAT/nothing, all it has to do is move the packet from WAN to LAN (both GIGABIT interfaces), cpu load is zero, and it's doing almost exactly 20Mbps... an artificial software barrier.
said by cramer:Sort of like Cisco's barrier on the ASA5510/20.
an artificial software barrier.
arobertiSarcastic? Me? NeverPremium
|reply to cramer |
Fascinating. Just so you don't think I'm crazy, attached is what I believe you should be seeing. Again, I've never worked on a 20, so I suppose it could be different.
According to their spec sheet here: »www.fortinet.com/sites/default/f···-20C.pdf yours should have 5G.
This -20C does not -- it was a freebie result of a certification class. (I've taken it apart... it does not have a dual band radio.) In the screenshot, you can see there's no "WiFi Controller" menu, and the WiFi interface (a "vap") has no radio options either.
No WiFi Controller