Fortinet License Question

mmss_20691 · May 4, 2024, 2:08pm

Good morning all,

I am interested in getting a Fortinet firewall for a SOHO setup. I would like to do some testing with the TLS 1.3 Deep Packet Inspection, which Fortinet advertises their devices as capable of. Unfortunately their licensing model isn’t very clear to me and I am not sure whether or not their Unified Threat Protection bundle includes the DPI capability.

The image below comes from their “ordering guides” but the information I am looking for is still provided.
FortiGuard Bundles:

Does anyone happen to know whether the UTP bundles does in fact include DPI that will work with TLS 1.3?

mmss_20691 · May 4, 2024, 2:11pm

Also here is an image for their FortiGuard Services:

FredFerrell · May 4, 2024, 4:37pm

I think the decryption is based on the OS version and not the licensing. You should be fine as long as you are running FortiOS version 6.2 or later.

xMAXIMUSx · May 4, 2024, 7:16pm

I’d be interested what you decide to implement.