Fortinet black logo

Hardware Acceleration

Home FortiGate / FortiOS 7.0.15 Hardware Acceleration
7.0.15
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.6
6.4.5
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.9
6.2.7
6.0.18
6.0.17
6.0.16
6.0.15
6.0.14
5.6.0

NP7Lite processors

NP7Lite processors

The NP7Lite processor is a lower capacity version of the NP7 processor that supports all NP7 processor features except hyperscale firewall (hardware sessions). The NP7Lite also does not include support for defrag/reassembly (DFR) to re-assemble fragmented packets. The NP7Lite max throughput is 40 Gbps, using one 40GigE interface.

NP7Lite processors can offload IPsec SHA3-256/384/512 encryption/decryption.

See FortiGate NP7Lite architectures for FortiGate models that include the NP7Lite processor.

The NP7Lite processor can support the following features, but these features are not available for entry level (branch) FortiGates such as the FortiGate 90G and 91G.

The NP7Lite processor is a component of the Fortinet SOC5 (also called the SP5). The SOC5 includes a CPU, the NP7Lite network processor, and a CP10 content processor.

The SOC5 also includes an integrated switch fabric (ISF) that connects all of the front panel network interfaces to the NP7Lite processor. The SOC5 ISF allows sessions passing between any FortiGate front panel interface pair to be offloaded by the NP7Lite processor. The SOC5 ISF also allows you to use the command config system virtual-switch to create a virtual hardware switch that can include any front panel interface connected to the SOC5.

Note

To add an interface to a hardware switch, its mode must be set to static and the interface can't be used in any other configuration. For example, you can't have a firewall policy that references the interface.
SOC5 architecture

Previous
Next

NP7Lite processors

The NP7Lite processor is a lower capacity version of the NP7 processor that supports all NP7 processor features except hyperscale firewall (hardware sessions). The NP7Lite also does not include support for defrag/reassembly (DFR) to re-assemble fragmented packets. The NP7Lite max throughput is 40 Gbps, using one 40GigE interface.

NP7Lite processors can offload IPsec SHA3-256/384/512 encryption/decryption.

See FortiGate NP7Lite architectures for FortiGate models that include the NP7Lite processor.

The NP7Lite processor can support the following features, but these features are not available for entry level (branch) FortiGates such as the FortiGate 90G and 91G.

The NP7Lite processor is a component of the Fortinet SOC5 (also called the SP5). The SOC5 includes a CPU, the NP7Lite network processor, and a CP10 content processor.

The SOC5 also includes an integrated switch fabric (ISF) that connects all of the front panel network interfaces to the NP7Lite processor. The SOC5 ISF allows sessions passing between any FortiGate front panel interface pair to be offloaded by the NP7Lite processor. The SOC5 ISF also allows you to use the command config system virtual-switch to create a virtual hardware switch that can include any front panel interface connected to the SOC5.

Note

To add an interface to a hardware switch, its mode must be set to static and the interface can't be used in any other configuration. For example, you can't have a firewall policy that references the interface.
SOC5 architecture

Previous
Next