{{ $t('index.defaultHeader.logo') }}

Athena NGFW (Next-Generation Firewall)

Athena NGFW (previously known as Network Secure) provides comprehensive protection for every network perimeter, ensuring the safety of your valuable assets, data, and users from emerging threats.

{{ $t('productSubHeader.tabs.document') }}

{{ $t('productSubHeader.tabs.bestPractice') }}

{{ $t('productSubHeader.tabs.case') }}

{{ $t('productSubHeader.tabs.software') }}

{{ $t('productSubHeader.tabs.bbs') }}

{{ $t('productSubHeader.searchLabel') }}

{{ $t('productDocDetail.guideClickSwitch') }}

{{ $t('productDocDetail.know') }}

{{ $t('productDocDetail.dontRemind') }}

8.0.95

{{item.code}}

Release Notes

Network Secure V8.0.95 Version Release Notes

Overview

Enhancements

New Features

Upgrade Impacts

Upgrade Guide

Preparations for Upgrade

Pre-Upgrade Check

Upgrade Procedures

Post-Upgrade Check

Upgrade Methods

Upgrading Network Secure from the GUI

Upgrading Network Secure via Central Manager

Network Secure V8.0.95 SP03 Release Notes

SP Information

Upgrade Impacts

Customer Upgrade Preparations

Upgrade Guide

Preparations for Upgrade

Upgrade Procedure

Network Secure V8.0.95 SP01 Release Notes

Service Package(SP) Information

Upgrade Impacts

Customer Upgrade Preparations

Upgrade Guide

Preparations for Upgrade

Upgrade Procedure

Product Overview

Deployment

Installation Preparations

Deployment Mode

Deploying vNGFW on HCI and VMware

Deploy vNGFW in HCI

Preparation

Other

About the validity period of authorization

Replacing Fortigate with NGFW

Overview and Migration Process Overview

Pre-Migration Preparation (Critical)

Key Functional Differences Between Fortigate and Sangfor NGFW

VODM

NAT

IPSEC

SD-WAN and Policy-Based Routing

Firewall Policy

Automated Configuration Conversion Based on Tools – For ACL, NAT, Address Objects, and Service Objects

Manual Migration Configuration

Modify the Interface Configuration

Policy Template Migration

Security Protection Policy Migration

SSL Decryption

Logs and Alert

AD / LDAP

HA

Fortigate IPSec Migration

SD-WAN Migration

Testing and Validation

Cutover and Rollback Plan

Cutover Procedure

Post-Cutover Optimization and Best Practices

Policy Optimization

Log and Reporting Configuration

Security Policy Audit Recommendations

Appendices and Support Information

User Manual

Home

SOC

Security Operations

IoT Security

Business Asset Security

Summary of Business Asset Risks

Configuration Case

Summary of Attack Events

Passive Vulnerability Scan

User Security

Specialized Protection

Blacklist and Whitelist

Blacklist

Whitelist

Next-Gen Security

Endpoint Protection

Security Capabilities

Monitor

Logs

Security Logs

Access Logs

System Logs

TOP N

Configuration Procedures

Sessions

Bandwidth Management

Statistics

Application

Application Statistics Query Case

Traffic

Case of Viewing Traffic Statistics

Report

Diagnosis

Packet Tracing

Settings

Logging Options

Log Database

Policies

Network Address Translation

IPv4 NAT

IPv6 NAT

NAT64

DNS-Mapping

Configuration Example

Access Control

Application Control

GeoLocation Blocking

Configuration Steps

Local ACL

Configuration Steps

Connection Control

Configuration Example

Network Security

Security Protection Policy

Anti DoS/DDoS

Unauthorized Outbound Access

Spoofed Access

Configuration Case

Decryption

Decrypt Data to Internal Server

Configuration Steps

Bandwidth Management

Channel Configuration

VPN Bandwidth Channels

Sangfor VPN Bandwidth Policy Case Study

Link Settings

Authentication

User Authentication

Custom Webpage

Objects

Threat Signature Database

Security Database

Custom Database

Content Identification Database

Application Signatures Database

URL Category Database

File Types

Email Attachment Filter

Schedule

Network

Interfaces

Physical Interfaces

Edit Physical Interface

RIP

BGP

DHCP

DHCP Servers

Configuration Case

ARP

Advanced Networking

Configuration Case

SSL VPN

Resources

Roles

Sangfor/IPSec VPN

SD-WAN Configuration

Sangfor VPN Configuration

Logs

System

General Settings

Email

Configuration Steps

License Activation Method

Troubleshooting

Tools

High Availability

Virtual Systems

Overview

Device Management

Central Management

O&M Management

Routine Inspection

Check the Security of the Device

Shortcut Functions

Restoration of the Device Configuration and Password

Restore the Password by Rebooting with a USB Flash Drive

Restore the Factory Settings

Patch Update Guidance

Precautions

Use of Auxiliary Tools

Troubleshooting

Emergency Event Handling

Product Upgrade Guide

Offline Upgrade

Product Post-Upgrade Inspection

Acronym

SDKs, APIs

CLI Document

Athena NGFW (Next-Generation Firewall)

{{ breadTitle }}

Replacing Fortigate with NGFW

Testing and Validation

Functional Validation Checklist

{{sendMatomoQuery("Athena NGFW (Next-Generation Firewall)","Functional Validation Checklist")}}

Functional Validation Checklist

{{ $t('productDocDetail.updateTime') }}: 2026-01-04

Module	Test Item	Verification Content	Expected Result
Network Layer Validation	Interface Connectivity	All interfaces are UP and operational	Links are normal
	Gateway Connectivity	Upstream/downstream devices can ping each other	ICMP successful
	Routing Table Accuracy	Default and static routes are correct	Outbound paths match the design
Business Function Validation	Internal Network to Internet Access	Typical internal subnets can access the Internet	Communication normal, NAT effective
	Access to Key Business Systems	ERP, OA, CRM, etc.	Login and operations function properly
	External Access to Internal Servers	Public > DMZ service access	Access successful, correct policy hit
	Port Mapping Verification	Check NAT mapping (ports/public IPs)	Translation correct
VPN Connectivity	IPsec VPN Tunnel Status	Tunnel established successfully, SA status UP	Connection stable
	SSL VPN Login	Client login successful	Connection established, internal subnets accessible
	VPN Traffic Flow	Ping and resource access both directions	Connectivity normal
Security Policy & Log Validation	Policy Hit Verification	Key policies show increasing hit count	Correct policies logged
	Log Record Check	Access and security logs generated	Complete and searchable
	IPS/Anti-Virus	Download test files or simulate attacks	Alerts triggered correctly
	URL Filtering / Application Control	Test specific blocked sites/apps	Policy enforced correctly
User Authentication Validation	Local User Authentication	Portal login	Login successful, logs recorded
	AD/Radius Authentication	Domain user login	Authentication successful
	User Display and Policy Match	Policy identifies username	Username matched correctly
High Availability & Link Redundancy	HA Failover	Simulate primary device failure	Backup device takes over, no service interruption
	Link Detection and Switching	Failover to backup link when primary fails	Normal outbound switching
Performance & Resource Monitoring	CPU/Memory Usage	CPU and memory below 70%	Within normal range
	Session Count & Concurrency	Stable under normal business load	No abnormal spikes or packet loss
	Traffic Statistics & Log Delay	Real-time monitoring reflects traffic accurately	Display normal