FORTIGATE 100F FORTIGATE 101FHardware Specifications:GE RJ45 Ports : 12GE RJ45 Management/HA/DMZ Ports : 1 / 2 / 1GE SFP Slots : 410 GE SFP+ Slots : 2GE RJ45 WAN Ports : 2GE RJ45 or SFP Shared Ports : 4USB Port : 1Console Port : 1Internal Storage : 1x 480 GB SSDIncluded Transceivers : 0System Performance — Enterprise Traffic Mix:IPS Throughput : 2.6 GbpsNGFW Throughput : 1.6 GbpsThreat Protection Throughput : 1 GbpsSystem Performance:Firewall Throughput(1518 / 512 / 64 byte UDP packets) : 20 / 18 / 10 GbpsFirewall Latency (64 byte UDP packets) : 5 ?sFirewall Throughput (Packets Per Second) : 15 MppsConcurrent Sessions (TCP) : 1.5 MillionNew Sessions/Second (TCP) : 56,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 11.5 GbpsGateway-to-Gateway IPsec VPN Tunnels : 2,500Client-to-Gateway IPsec VPN Tunnels : 16,000SSL-VPN Throughput : 1 GbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) : 500SSL Inspection Throughput (IPS, avg. HTTPS) : 1 GbpsSSL Inspection CPS (IPS, avg. HTTPS) : 1,800SSL Inspection Concurrent Session(IPS, avg. HTTPS) : 135,000Application Control Throughput (HTTP 64K) : 2.2 GbpsCAPWAP Throughput (HTTP 64K) : 15 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 24Maximum Number of FortiAPs(Total / Tunnel Mode) : 128 / 64Maximum Number of FortiTokens : 5,000High Availability Configurations : Active / Active, Active / Passive, ClusteringDimensions:Height x Width x Length (inches) : 1.73 x 17 x 10Height x Width x Length (mm) : 44 x 432 x 254Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RUWeight : 7.25 lbs (3.29 kg) 7.56 lbs (3.43 kg)Environment:Power Required : 100–240V AC, 50-60Maximum Current : 100V / 1A, 240V / 0.5APower Consumption (Average / Maximum) : 35.1 W / 38.7 W 35.3 W / 39.1 WHeat Dissipation : 119.77 BTU/h 121.13 BTU/hRedundant Power Supplies : YesEnvironment:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Operating Altitude Up to : 7,400 ft (2,250 m)Humidity : 10–90% non-condensingNoise Level : 40.4 dBACompliance : FCC Part 15B, Class A, CE, RCM, VCCI, UL/cUL, CB, BSMICertifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN; IPv6
FORTIGATE 200E FORTIGATE 201EHardware Specifications:GE RJ45 WAN Interfaces : 2GE RJ45 Management/HA Ports : 2GE RJ45 Ports : 14GE SFP Slots : 4USB port : 1Console (RJ45): 1Local Storage : 1x 480 GB SSDIncluded Transceivers : 0System Performance — Enterprise Traffic Mix:IPS Throughput : 2.2 GbpsNGFW Throughput : 1.8 GbpsThreat Protection Throughput : 1.2 GbpsSystem Performance:Firewall Throughput(1518 / 512 / 64 byte UDP packets) : 20 / 20 / 9 GbpsFirewall Latency (64 byte UDP packets) : 3 ?sFirewall Throughput (Packets Per Second) : 13.5 MppsConcurrent Sessions (TCP) : 2 MillionNew Sessions/Second (TCP) : 135,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 7.2 GbpsGateway-to-Gateway IPsec VPN Tunnels : 2,000Client-to-Gateway IPsec VPN Tunnels : 10,000SSL-VPN Throughput : 900 MbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) : 500SSL Inspection Throughput (IPS, avg. HTTPS) : 820 MbpsSSL Inspection CPS (IPS, avg. HTTPS) : 1,000SSL Inspection Concurrent Session(IPS, avg. HTTPS) : 240,000Application Control Throughput (HTTP 64K) : 3.5 GbpsCAPWAP Throughput (1444 byte, UDP) : 1.5 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 64Maximum Number of FortiAPs (Total / Tunnel Mode) : 256 / 128Maximum Number of FortiTokens : 5,000High Availability Configurations : Active / Active, Active / Passive, ClusteringDimensions:Height x Width x Length (inches) : 1.75 x 17.0 x 11.9Height x Width x Length (mm) : 44.45 x 432 x 301Weight : 11.9 lbs (5.4 kg) 12.12 lbs (5.5 kg)Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RUEnvironment:Power Input :100–240V AC, 50–60 HzMaximum Current : 110 V / 3 A, 220 V / 0.42 APower Consumption (Average / Maximum) : 70.98 / 109.9 WHeat Dissipation : 374.9 BTU/hOperating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 31.1 dBAOperating Altitude Up to : 7,400 ft (2,250 m)Compliance : FCC Part 15B, Class A, CE, RCM, VCCI, UL/cUL, CB, BSMICertifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN; IPv6
Interfaces and Modules :Hardware Accelerated : 10 GE SFP+ Slots 2Hardware Accelerated GE SFP Slots : 16Hardware Accelerated GE RJ45 Ports : 16GE RJ45 Management / HA Ports : 2USB Ports (Client / Server) : 1 / 2Console Port : 1Onboard Storage : 1x 256 GB SSDIncluded Transceivers : 0System Performance — Enterprise Traffic Mix:IPS Throughput : 4.2 GbpsNGFW Throughput : 4 GbpsThreat Protection Throughput : 3 GbpsSystem Performance and Capacity:IPv4 Firewall Throughput(1518 / 512 / 64 byte, UDP) : 52 / 52 / 33 GbpsIPv6 Firewall Throughput(1518 / 512 / 86 byte, UDP) : 52 / 52 / 33 GbpsFirewall Latency (64 byte, UDP) : 3 ?sFirewall Throughput (Packet per Second) : 49.5 MppsConcurrent Sessions (TCP) : 11 MillionNew Sessions/Second (TCP) : 280,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 25 GbpsGateway-to-Gateway IPsec VPN Tunnels : 2,000Client-to-Gateway IPsec VPN Tunnels : 50,000SSL-VPN Throughput : 3.6 GbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) : 10,000SSL Inspection Throughput (IPS, avg. HTTPS) : 3.9 GbpsSSL Inspection CPS (IPS, avg. HTTPS) : 2,400SSL Inspection Concurrent Session(IPS, avg. HTTPS) : 800,000Application Control Throughput (HTTP 64K) : 10 GbpsCAPWAP Throughput (1444 byte, UDP) : 11 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 64Maximum Number of FortiAPs (Total / Tunnel) : 1024 / 512Maximum Number of FortiTokens : 5,000High Availability Configurations : Active-Active, Active-Passive, ClusteringDimensions and Power:Height x Width x Length (inches): 1.75 x 17.22 x 18.24Height x Width x Length (mm) : 44.45 x 437.5 x 463.2Weight : 20.24 lbs (9.18 kg)Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RUPower Input : 100–240V AC, 50–60 Hz, 300 W RedundantPower Consumption (Average / Maximum): 135 W / 187.2 WCurrent (Maximum): 100V/5A, 240V/3AHeat Dissipation:638.75 BTU/hRedundant Power Supplies: Yes (Hot Swappable)Operating Environment and Certifications:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 49.9 dBAOperating Altitude Up to : 7,400 ft (2,250 m)Compliance : FCC Part 15 Class A, RCM, VCCI, CE, UL/cUL, CBCertifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN; USGv6/IPv6
Performance Overview: Security Processor: 4x 1 GHz Memory (RAM): 1 GB 1 GbE Copper interfaces : 8 Expansion : USB Firewall inspection throughput: 1.4 Gbps Full DPI throughput: 400 Mbps Application inspection throughput:1.0 Gbps IPS throughput : 1.0 Gbps Anti-malware inspection throughput : 400 Mbps IMIX throughput : 700 Mbps SSL Inspection and Decryption (DPI SSL) :150 Mbps VPN throughput : 1.0 Gbps Connections per second : 8,000Maximum connections (SPI) : 125,000Maximum connections (DPI) : 100,000 Single Sign-On (SSO) Users : 500 VLAN interfaces : 50SonicPoints supported (Maximum) : 16 VPN :Site-to-Site VPN Tunnels : 25 IPSec VPN clients (Maximum) : 2 (25) SSL VPN licenses (Maximum) : 2 (150) Virtual assist bundled (Maximum) : 1 (30-day trial) Encryption/Authentication : DES, 3DES, AES (128, 192, 256-bit), MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14Route-based VPN : RIP, OSPFCertificate support : Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEPVPN features : Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPNGlobal VPN client platforms supported : Microsoft® Windows Vista 32/64-bit, Windows 7 32/64-bit, Windows 8.0 32/64-bit, Windows 8.1 32/64-bitNetExtender : Microsoft Windows Vista 32/64-bit, Windows 7, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Mac OS X 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSEMobile Connect : Apple® iOS, Mac OS X, Google® Android™, Kindle Fire, Windows 8.1 (Embedded) Security Services:Deep Packet Inspection services : Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, DPI SSLContent Filtering Service (CFS) : HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid listsEnforced Client Anti-Virus and Anti-Spyware : McAfee®Comprehensive Anti-Spam Service : SupportedApplication Intelligence and Control : Yes Application Visualization : YesNetworking:IP address assignment : Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relayNAT modes : 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent modeRouting protocols : BGP, OSPF, RIPv1/v2, static routes, policy-based routing, multicast QoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM)Authentication : XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services, CitrixLocal user database : 150 VoIP : Full H.323v1-5, SIPStandards : TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : VPNC, IPv6 (Phase 2)Certifications pending : Common Criteria NDPP, FIPS 140-2 (with Suite B) Level 2, ICSA Firewall, ICSA Anti-virus, UC APLCommon Access Card (CAC) : SupportedHigh Availability : Active/Standby with stateful synchronizationHardware:Form factor : Desktop Power Supply (W) : 36W external Maximum power consumption (W) : 13.4 / 17.7Input power : 100 to 240 VAC, 50-60 Hz, 1 ATotal heat dissipation : 45.9 / 60.5 BTU Dimensions : 3.5x15x22.5cm Weight : 0.92 Kg / 2.03 lbs & 1.05 Kg / 2.31 lbs WEEE weight : 1.34 Kg / 2.95 lbs & 1.48 Kg / 3.26 lbs Shipping weight : 1.93 Kg / 4.25 lbs & 2.07 Kg / 4.56 lbs MTBF (Years) : 20 / 12Environment : 40-105° F, 0-40° CHumidity : 5-95% non-condensing
Performance Overview: Security Processor: 4x 800 MHz Memory (RAM): 1 GB 1 GbE Copper interfaces : 7 Expansion : USB Firewall inspection throughput: 1.3 Gbps Full DPI throughput:300Mbps Application inspection throughput:900Mbps IPS throughput : 900Mbps Anti-malware inspection throughput : 300Mbps IMIX throughput : 500Mbps SSL Inspection and Decryption (DPI SSL) : 100Mbps VPN throughput : 900 Mbps Connections per second : 6,000Maximum connections (SPI) : 100,000 Maximum connections (DPI) : 90,000 Single Sign-On (SSO) Users :500 VLAN interfaces : 50 SonicPoints supported (Maximum) : 16 VPN :Site-to-Site VPN Tunnels : 20 IPSec VPN clients (Maximum) : 2 (25) SSL VPN licenses (Maximum) : 2 (100) Virtual assist bundled (Maximum) : 1 (30-day trial) Encryption/Authentication : DES, 3DES, AES (128, 192, 256-bit), MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14Route-based VPN : RIP, OSPFCertificate support : Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEPVPN features : Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPNGlobal VPN client platforms supported : Microsoft® Windows Vista 32/64-bit, Windows 7 32/64-bit, Windows 8.0 32/64-bit, Windows 8.1 32/64-bitNetExtender : Microsoft Windows Vista 32/64-bit, Windows 7, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Mac OS X 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSEMobile Connect : Apple® iOS, Mac OS X, Google® Android™, Kindle Fire, Windows 8.1 (Embedded) Security Services:Deep Packet Inspection services : Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, DPI SSLContent Filtering Service (CFS) : HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid listsEnforced Client Anti-Virus and Anti-Spyware : McAfee®Comprehensive Anti-Spam Service : SupportedApplication Intelligence and Control : Yes Application Visualization : YesNetworking:IP address assignment : Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relayNAT modes : 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent modeRouting protocols : BGP, OSPF, RIPv1/v2, static routes, policy-based routing, multicast QoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM)Authentication : XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services, CitrixLocal user database : 250 VoIP : Full H.323v1-5, SIPStandards : TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : VPNC, IPv6 (Phase 2)Certifications pending : Common Criteria NDPP, FIPS 140-2 (with Suite B) Level 2, ICSA Firewall, ICSA Anti-virus, UC APLCommon Access Card (CAC) : SupportedHigh Availability : Active/StandbyHardware:Form factor : Desktop Power Supply (W) : 24W external Maximum power consumption (W) : 9.2 / 13.8Input power : 100 to 240 VAC, 50-60 Hz, 1 ATotal heat dissipation : 31.3 / 47.1 BTU Dimensions : 3.6x14.1x19cm Weight : 0.73 Kg / 1.61 lbs & 0.84 Kg / 1.85 lbs WEEE weight : 1.15 Kg / 2.53 lbs & 1.26 Kg / 2.78 lbs Shipping weight : 1.37 Kg / 3.02 lbs & 1.48 Kg / 3.26 lbs MTBF (Years) : 27 / 13Environment : 40-105° F, 0-40° CHumidity : 5-95% non-condensing
FORTIGATE 300E FORTIGATE 301EInterfaces and Modules:GE RJ45 Interfaces : 16GE SFP Slots : 16GE RJ45 Management Ports : 2USB Ports : 2RJ45 Console Port : 1Local Storage : 2x 240 GB SSDIncluded Transceivers : 2x SFP (SX 1 GE)System Performance — Enterprise Traffic Mix:IPS Throughput : 5 GbpsNGFW Throughput : 3.5 GbpsThreat Protection Throughput : 3 GbpsSystem Performance and Capacity:IPv4 Firewall Throughput(1518 / 512 / 64 byte, UDP) : 32 / 32 / 20 GbpsIPv6 Firewall Throughput(1518 / 512 / 64 byte, UDP) : 32 / 32 / 20 GbpsFirewall Latency (64 byte, UDP) : 3 ?sFirewall Throughput (Packet per Second) : 30 MppsConcurrent Sessions (TCP) : 4 MillionNew Sessions/Second (TCP) : 300,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 20 GbpsGateway-to-Gateway IPsec VPN Tunnels : 2,000Client-to-Gateway IPsec VPN Tunnels : 50,000SSL-VPN Throughput : 2.5 GbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode):5,000SSL Inspection Throughput (IPS, avg. HTTPS) : 3.9 GbpsSSL Inspection CPS (IPS, avg. HTTPS) : 2,500SSL Inspection Concurrent Session (IPS, avg. HTTPS) : 340,000Application Control Throughput (HTTP 64K) : 7 GbpsCAPWAP Throughput (1444 byte, UDP) : 5 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 72Maximum Number of FortiAPs (Total / Tunnel) : 512 / 256Maximum Number of FortiTokens : 5,000High Availability Configurations : Active-Active, Active-Passive, ClusteringDimensions and Power:Height x Width x Length (inches) : 1.75 x 17.0 x 15.0Height x Width x Length (mm) : 44.45 x 432 x 380Weight : 16.1 lbs (7.3 kg) 16.6 lbs (7.6 kg)Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RUPower Consumption (Average / Maximum) : 90 W / 173 W 95 W / 180 WPower Input : 100V–240V AC, 50–60HzCurrent (Maximum) : 6AHeat Dissipation : 570 BTU/h 614 BTU/hRedundant Power Supplies (Hot Swappable) : optionalOperating Environment and Certifications:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 48 dBAOperating Altitude Up to : 7,400 ft (2,250 m)Compliance : FCC Part 15 Class A, RCM, VCCI, CE, UL/cUL, CBCertifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN; USGv6/IPv6
FORTIGATE 400E FORTIGATE 401EInterfaces and Modules:GE RJ45 Interfaces : 16GE SFP Slots : 16GE RJ45 Management Ports : 2USB Ports : 2RJ45 Console Port : 1Local Storage : 2x 240 GB SSDIncluded Transceivers : 2x SFP (SX 1 GE)System Performance — Enterprise Traffic Mix:IPS Throughput : 7.8 GbpsNGFW Throughput : 6 GbpsThreat Protection Throughput : 5 GbpsSystem Performance and Capacity:IPv4 Firewall Throughput(1518 / 512 / 64 byte, UDP) : 32 / 32 / 24 GbpsIPv6 Firewall Throughput(1518 / 512 / 64 byte, UDP) : 32 / 32 / 24 GbpsFirewall Latency (64 byte, UDP) : 3 ?sFirewall Throughput (Packet per Second) : 36 MppsConcurrent Sessions (TCP) : 4 MillionNew Sessions/Second (TCP) : 450,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 20 GbpsGateway-to-Gateway IPsec VPN Tunnels : 2,000Client-to-Gateway IPsec VPN Tunnels : 50,000SSL-VPN Throughput : 4.5 GbpsConcurrent SSL-VPN Users (Recommended Maximum, Tunnel Mode) : 5,000SSL Inspection Throughput (IPS, avg. HTTPS) : 4.8 GbpsSSL Inspection CPS (IPS, avg. HTTPS) : 4,000SSL Inspection Concurrent Session (IPS, avg. HTTPS) : 300,000Application Control Throughput (HTTP 64K) : 12 GbpsCAPWAP Throughput (1444 byte, UDP) : 14.8 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 72Maximum Number of FortiAPs (Total / Tunnel) : 512 / 256Maximum Number of FortiTokens : 5,000High Availability Configurations : Active-Active, Active-Passive, ClusteringFORTIGATE 400E FORTIGATE 401EDimensions and Power:Height x Width x Length (inches) : 1.75 x 17.0 x 15.0Height x Width x Length (mm) : 44.45 x 432 x 380Weight : 16.4 lbs (7.4 kg) 16.9 lbs (7.9 kg)Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RUPower Consumption (Average / Maximum) : 109 W / 214 W 115 W / 221 WPower Input : 100–240V, 50–60HzCurrent (Maximum) : 6AHeat Dissipation : 730 BTU/h 754 BTU/hRedundant Power Supplies (Hot Swappable) : optionalOperating Environment and Certifications:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 48 dBAOperating Altitude Up to : 7,400 ft (2,250 m)Compliance : FCC Part 15 Class A, RCM, VCCI, CE, UL/cUL, CBCertifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN; USGv6/IPv6
FORTIGATE 500E FORTIGATE 501EInterfaces and Modules:10 GE SFP+ Slots : 2GE RJ45 Interfaces : 8GE SFP Slots : 8GE RJ45 Management Ports : 2USB Ports : 2RJ45 Console Port : 1Local Storage : 2x 240 GB SSDIncluded Transceivers : 2x SFP (SX 1 GE)System Performance — Enterprise Traffic Mix:IPS Throughput : 7.9 GbpsNGFW Throughput : 5 GbpsThreat Protection Throughput : 4.7 GbpsSystem Performance and Capacity:IPv4 Firewall Throughput(1518 / 512 / 64 byte, UDP) : 36 / 36 / 22 GbpsIPv6 Firewall Throughput(1518 / 512 / 64 byte, UDP) : 36 / 36 / 22 GbpsFirewall Latency (64 byte, UDP) : 2 ?sFirewall Throughput (Packet per Second) : 33 MppsConcurrent Sessions (TCP) : 8 MillionNew Sessions/Second (TCP) : 300,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 20 GbpsGateway-to-Gateway IPsec VPN Tunnels : 2,000Client-to-Gateway IPsec VPN Tunnels : 50,000SSL-VPN Throughput : 5 GbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode):10,000SSL Inspection Throughput (IPS, avg. HTTPS) : 5.7 GbpsSSL Inspection CPS (IPS, avg. HTTPS) : 3,500SSL Inspection Concurrent Session(IPS, avg. HTTPS) : 800,000Application Control Throughput (HTTP 64K) : 14 GbpsCAPWAP Throughput (1444 byte, UDP) : 18 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 72Maximum Number of FortiAPs (Total / Tunnel) : 512 / 256Maximum Number of FortiTokens : 5,000Maximum Number of Registered Endpoints : 2,000High Availability Configurations : Active-Active, Active-Passive, ClusteringFORTIGATE 500E FORTIGATE 501EDimensions and Power :Height x Width x Length (inches) : 1.75 x 17.0 x 15.0Height x Width x Length (mm) : 44.45 x 432 x 380Weight : 16.1 lbs (7.3 kg) Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RUPower Consumption (Average / Maximum) : 95 W / 193 W 105 W / 200 WPower Input : 100–240V, 50–60HzCurrent (Maximum) : 6AHeat Dissipation : 613 BTU/hRedundant Power Supplies (Hot Swappable) : optionalOperating Environment and Certifications:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 43 dBAOperating Altitude Up to : 7,400 ft (2,250 m)Compliance : FCC Part 15 Class A, RCM, VCCI, CE, UL/cUL, CBCertifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN; USGv6/IPv6
Interfaces and Modules:10 GE SFP+ Slots : 2GE RJ45 Interfaces : 8GE SFP Slots : 8GE RJ45 Management Ports : 2USB Ports : 2RJ45 Console Port : 1Local Storage : 2x 240 GB SSDIncluded Transceivers : 2x SFP (SX 1 GE)System Performance — Enterprise Traffic Mix:IPS Throughput : 10 GbpsNGFW Throughput : 9.5 GbpsThreat Protection Throughput : 7 GbpsSystem Performance and Capacity:IPv4 Firewall Throughput(1518 / 512 / 64 byte, UDP):36 / 36 / 27 GbpsIPv6 Firewall Throughput(1518 / 512 / 64 byte, UDP):36 / 36 / 27 GbpsFirewall Latency (64 byte, UDP) : 2 ?sFirewall Throughput (Packet per Second) : 40.5 MppsConcurrent Sessions (TCP) : 8 MillionNew Sessions/Second (TCP) : 450,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 20 GbpsGateway-to-Gateway IPsec VPN Tunnels : 2,000Client-to-Gateway IPsec VPN Tunnels : 50,000SSL-VPN Throughput : 7 GbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) :10,000SSL Inspection Throughput (IPS, avg. HTTPS) : 8 GbpsSSL Inspection CPS (IPS, avg. HTTPS) : 5,500SSL Inspection Concurrent Session(IPS, avg. HTTPS) : 800,000Application Control Throughput (HTTP 64K) : 15 GbpsCAPWAP Throughput (HTTP 64K) : 18 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 96Maximum Number of FortiAPs (Total / Tunnel) : 1,024 / 512Maximum Number of FortiTokens : 5,000High Availability Configurations : Active-Active, Active-Passive, ClusteringDimensions and Power :Height x Width x Length (inches) : 1.75 x 17.0 x 15.0Height x Width x Length (mm) : 44.45 x 432 x 380Weight : 16.1 lbs (7.3 kg)Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RUPower Consumption (Average / Maximum) : 129 W / 244 WPower Source : 100–240V 50–60HzCurrent (Maximum) : 6A @ 100VHeat Dissipation : 832 BTU/hRedundant Power Supplies (Hot Swappable) : optionalOperating Environment and Certifications:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 59 dBAOperating Altitude Up to : 9,843 ft (3,000 m)Compliance : FCC Part 15 Class A, RCM, VCCI, CE, UL/cUL, CBCertifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN; USGv6/IPv6
FORTIGATE 60E Hardware Specifications :GE RJ45 WAN / DMZ Ports : 2 / 1 GE RJ45 Internal Ports : 7 GE RJ45 PoE/+ Ports : 0 Wireless Interface : 0USB Ports : 1Console (RJ45 ) : 1 Internal Storage : 0FORTIGATE 60E-POE Hardware Specifications :GE RJ45 WAN / DMZ Ports : 2 GE RJ45 Internal Ports : 0 GE RJ45 PoE/+ Ports : 8 Wireless Interface : 0USB Ports : 1 Console (RJ45) : 1 Internal Storage : 0 FORTIWIFI 60E Hardware Specifications :GE RJ45 WAN / DMZ Ports :2 / 1 GE RJ45 Internal Ports : 7 GE RJ45 PoE/+ Ports : 0Wireless Interface : 802.11 a/b/g/n/ac USB Ports : 1 Console (RJ45) : 1 Internal Storage : 0 FORTIGATE 61E Hardware Specifications :GE RJ45 WAN / DMZ Ports : 2 / 1GE RJ45 Internal Ports : 7GE RJ45 PoE/+ Ports : 0Wireless Interface : 0USB Ports : 1 Console (RJ45) : 1 Internal Storage : 1x 128 GB SSDFORTIWIFI 61EHardware Specifications :GE RJ45 WAN / DMZ Ports : 2 / 1GE RJ45 Internal Ports : 7GE RJ45 PoE/+ Ports : 0Wireless Interface : 802.11 a/b/g/n/acUSB Ports : 1 Console (RJ45) : 1Internal Storage : 1x 128 GB SSDSystem Performance — Enterprise Traffic Mix :IPS Throughput : 400 MbpsNGFW Throughput : 250 MbpsThreat Protection Throughput : 200 MbpsSystem Performance:Firewall Throughput (1518 / 512 / 64 byte UDP packets) : 3 / 3 / 3 GbpsFirewall Latency (64 byte UDP packets) : 3 ?sFirewall Throughput (Packets Per Second) : 4.5 MppsConcurrent Sessions (TCP) : 1.3 MillionNew Sessions/Second (TCP) : 30,000Firewall Policies : 5,000IPsec VPN Throughput (512 byte) : 2 GbpsGateway-to-Gateway IPsec VPN Tunnels : 200Client-to-Gateway IPsec VPN Tunnels : 500SSL-VPN Throughput : 150 MbpsConcurrent SSL-VPN Users (Recommended Maximum, Tunnel Mode) : 200SSL Inspection Throughput (IPS, avg. HTTPS) : 135 MbpsSSL Inspection CPS (IPS, avg. HTTPS) : 135SSL Inspection Concurrent Session (IPS, avg. HTTPS) : 75,000Application Control Throughput (HTTP 64K) : 650 MbpsCAPWAP Throughput (HTTP 64K) : 890 MbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 16Maximum Number of FortiAPs (Total / Tunnel Mode) : 30 / 10Maximum Number of FortiTokens : 500High Availability Configurations : Active / Active, Active / Passive, ClusteringDimensionsHeight x Width x Length (inches) 1.5 x 8.5 x 6.3Height x Width x Length (mm) 38 x 216 x 160Weight 1.9 lbs (0.9 kg) Form Factor : Desktop
Hardware SpecificationsGE RJ45 Switch Ports : 5GE RJ45 WAN Ports : 2USB Ports : 1Console (RJ45) : 1System Performance — Enterprise Traffic Mix :IPS Throughput : 350 MbpsNGFW Throughput : 220 MbpsThreat Protection Throughput : 160 MbpsSystem Performance :Firewall Throughput : 2.5 GbpsFirewall Latency (64 byte UDP packets) : 180 ?sFirewall Throughput (Packets Per Second): 375 KppsConcurrent Sessions (TCP) : 1.8 MillionNew Sessions/Second (TCP) : 21,000Firewall Policies : 5,000IPsec VPN Throughput (512 byte) : 90 MbpsGateway-to-Gateway IPsec VPN Tunnels : 200Client-to-Gateway IPsec VPN Tunnels : 250SSL-VPN Throughput : 100 MbpsConcurrent SS-VPN Users (Recommended Maximum, Tunnel Mode) : 200SSL Inspection Throughput (IPS, avg. HTTPS) : 150 MbpsSSL Inspection CPS (IPS, avg. HTTPS) : 140SSL Inspection Concurrent Session (IPS, avg. HTTPS) : 75,000Application CoLntrol Throughput (HTTP 64K) : 450 MbpsCAPWAP Throughput (HTTP 64K) : 1.2 GbpsVirtual Domains (Default / Maximum) : 5 / 5Maximum Number of FortiSwitches Supported : 8Maximum Number of FortiAPs (Total / Tunnel Mode) : 10 / 5Maximum Number of FortiTokens : 500High Availability Configurations : Active/Active, Active/Passive, ClusteringDimensions :Height x Width x Length (inches) : 1.44 x 8.52 x 5.5Height x Width x Length (mm) : 36.5 x 216 x 140Weight : 2.015 lbs(0.914 kg)Form Factor : Desktop
FORTIGATE 60F Hardware Specifications :GE RJ45 WAN / DMZ Ports : 2 / 1 GE RJ45 Internal Ports : 7 GE RJ45 FortiLink Ports : 2 Wireless Interface : 0 USB Ports : 1 Console (RJ45) : 1 Internal Storage : 0FORTIGATE 61F Hardware SpecificationsGE RJ45 WAN / DMZ Ports : 2 / 1 GE RJ45 Internal Ports : 7 GE RJ45 FortiLink Ports : 2Wireless Interface : 0USB Ports : 1 Console (RJ45) : 1 Internal Storage : 1 x 128 GB SSD FORTIWIFI 60F Hardware SpecificationsGE RJ45 WAN / DMZ Ports : 2 / 1 GE RJ45 Internal Ports 7 GE RJ45 FortiLink Ports 2 Wireless Interface : 802.11 a/b/g/n/ac-W2 USB Ports : 1 Console (RJ45) : 1 Internal Storage : 0FORTIWIFI 61FHardware SpecificationsGE RJ45 WAN / DMZ Ports : 2 / 1GE RJ45 Internal Ports : 7GE RJ45 FortiLink Ports : 2Wireless Interface : 802.11 a/b/g/n/ac-W2USB Ports : 1Console (RJ45) : 1Internal Storage : 1 x 128 GB SSDSystem Performance — Enterprise Traffic Mix :IPS Throughput : 1.4 GbpsNGFW Throughput : 1 GbpsThreat Protection Throughput : 700 MbpsSystem Performance :Firewall Throughput(1518 / 512 / 64 byte UDP packets) : 10/10/6 GbpsFirewall Latency (64 byte UDP packets) : 4 ?sFirewall Throughput (Packets Per Second) : 9 MppsConcurrent Sessions (TCP) : 700,000New Sessions/Second (TCP) : 35,000Firewall Policies : 5,000IPsec VPN Throughput (512 byte) : 6.5 GbpsGateway-to-Gateway IPsec VPN Tunnels : 200Client-to-Gateway IPsec VPN Tunnels : 500SSL-VPN Thro 9ughput :00 MbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) : 200SSL Inspection Throughput(IPS, avg. HTTPS) : 750 MbpsSSL Inspection CPS (IPS, avg. HTTPS) : 400SSL Inspection Concurrent Session (IPS, avg. HTTPS) : 55,000Application Control Throughput (HTTP 64K) : 1.8 GbpsCAPWAP Throughput (HTTP 64K) : 8 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 16Maximum Number of FortiAPs (Total / Tunnel Mode) : 30 / 10Maximum Number of FortiTokens : 500High Availability Configurations : Active / Active, Active / Passive, ClusteringDimensions :Height x Width x Length (inches) : 1.5 x 8.5 x 6.3Height x Width x Length (mm) : 38.5 x 216 x 160 mmWeight : 2.23 lbs (1.01 kg)Form Factor : Desktop
Firewall general :Operating system : SonicOS 6.5.1Security processing cores : 4Interfaces : 8 x 1-GbE,1 GbE Management,1 ConsoleExpansion:1 Expansion Slot (Rear)*, SD Card*Management : CLI, SSH, Web UI, Capture Security Center, GMS, REST APIsSSO users : 30,000 Maximum access points supported : 32 Logging : Analyzer, Local Log, SyslogFirewall/VPN Performance:Firewall inspection throughput : 1.9 GbpsFull DPI throughput : 300 MbpsApplication inspection throughput : 700 MbpsIPS throughput : 700 MbpsAnti-malware inspection throughput : 400 MbpsIMIX throughput : 600 MbpsTLS/SSL decryption and inspection (DPI SSL) : 200 MbpsVPN throughput : 1.1 GbpsConnections per second : 15,000/secMaximum connections (SPI) : 500,000Maximum connections (DPI) : 250,000Default/Maximum connections (DPI SSL) : 1,000/1,000 VPN :Site-to-site VPN tunnels : 250IPSec VPN clients (max) : 10 (250)SSL VPN NetExtender clients (max) : 2 (250)Encryption/Authentication :DES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14vRoute-based VPN : RIP, OSPF, BGPNetworking :IP address assignment : Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP RelayNAT modes : 1:1, many:1, 1:many, flexible NAT (overlapping IPS), PAT, transparent modeVLAN interfaces : 256Routing protocols : BGP, OSPF, RIPv1/v2, static routes, policy-based routingQoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1pAuthentication : LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)VoIP : Full H323-v1-5, SIPStandards : TCP/IP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : ICSA Firewall, ICSA Anti-Virus, FIPS 140-2, Common Criteria NDPP (Firewall and IPS), UC APLHigh availability : Active/Passive with State SyncHardware :Power supply : Single, Fixed 200WFans : Dual, FixedInput power : 100-240 VAC, 60-50 HzMaximum power consumption (W) : 49.4MTBF @25ºC in hours : 176,540 MTBF @25ºC in years : 20.15 Form factor : 1U Rack MountableDimensions : 1.75 x 10.25 x 17 in(4.5 x 26 x 43 cm)Weight : 10.1 lb (4.6 kg)WEEE weight : 11.0 lb (5.0 kg)Shipping weight : 14.3 lb (6.5 kg)Major regulatory : FCC Class A, CE (EMC, LVD, RoHS), C-Tick, VCCI Class A, MSIP/KCC Class A, UL, cUL, TUV/GS, CB, Mexico CoC by UL, WEEE , REACH, ANATEL, BSMI, CUEnvironment (Operating/Storage) : 32°-105° F (0°-40° C)/-40° to 158° F (-40° to 70° C)Humidity : 10-90% non-condensing
Firewall general :Operating system : SonicOS 6.5.1Security processing cores : 6Interfaces : 2 x 10-GbE SFP+,4 x 1-GbE SFP,12 x 1-GbE,1 GbE Management,1 ConsoleExpansion:1 Expansion Slot (Rear)*, SD Card*Management : CLI, SSH, Web UI, Capture Security Center, GMS, REST APIsSSO users : 40,000 Maximum access points supported : 48 Logging : Analyzer, Local Log, SyslogFirewall/VPN Performance:Firewall inspection throughput : 3.4 GbpsFull DPI throughput : 500 MbpsApplication inspection throughput : 1.1 GbpsIPS throughput : 1.1 GbpsAnti-malware inspection throughput : 600 MbpsIMIX throughput : 900 MbpsTLS/SSL decryption and inspection (DPI SSL) : 300 MbpsVPN throughput : 1.5 Gbps Connections per second : 20,000/secMaximum connections (SPI) : 750,000Maximum connections (DPI) : 375,000Default/Maximum connections (DPI SSL) : 2,000/2,750 VPN :Site-to-site VPN tunnels : 1,000IPSec VPN clients (max) : 50 (1,000)SSL VPN NetExtender clients (max) : 2 (350)Encryption/Authentication :DES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14vRoute-based VPN : RIP, OSPF, BGPNetworking :IP address assignment : Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP RelayNAT modes : 1:1, many:1, 1:many, flexible NAT (overlapping IPS), PAT, transparent modeVLAN interfaces : 256Routing protocols : BGP, OSPF, RIPv1/v2, static routes, policy-based routingQoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1pAuthentication : LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)VoIP : Full H323-v1-5, SIPStandards : TCP/IP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : ICSA Firewall, ICSA Anti-Virus, FIPS 140-2, Common Criteria NDPP (Firewall and IPS), UC APLHigh availability : Active/Passive with State Sync, Active/Active ClusteringHardware :Power supply : Single, Fixed 250WFans : Dual, FixedInput power : 100-240 VAC, 60-50 HzMaximum power consumption (W) : 74.3MTBF @25ºC in hours : 146,789 MTBF @25ºC in years : 16.76 Form factor : 1U Rack MountableDimensions : 1.75 x 19.1 x 17 in (4.5 x 48.5 x 43 cm)Weight : 13.56 lb (6.15 kg)WEEE weight : 14.24 lb (6.46 kg) Shipping weight : 20.79lb (9.43 kg)Major regulatory : FCC Class A, CE (EMC, LVD, RoHS), C-Tick, VCCI Class A, MSIP/KCC Class A, UL, cUL, TUV/GS, CB, Mexico CoC by UL, WEEE , REACH, ANATEL, BSMI, CUEnvironment (Operating/Storage) : 32°-105° F (0°-40° C)/-40° to 158° F (-40° to 70° C)Humidity : 10-90% non-condensing
Firewall general :Operating system : SonicOS 6.5.1Security processing cores : 8Interfaces : 2 x 10-GbE SFP+,4 x 1-GbE SFP,12 x 1-GbE,1 GbE Management,1 ConsoleExpansion:1 Expansion Slot (Rear)*, SD Card*Management : CLI, SSH, Web UI, Capture Security Center, GMS, REST APIsSSO users : 50,000 Maximum access points supported : 64 Logging : Analyzer, Local Log, SyslogFirewall/VPN Performance:Firewall inspection throughput : 6.0 GbpsFull DPI throughput : 800 MbpsApplication inspection throughput : 2.0 GbpsIPS throughput : 2.0 GbpsAnti-malware inspection throughput : 1.1 GbpsIMIX throughput : 1.6 GbpsTLS/SSL decryption and inspection (DPI SSL) : 500 MbpsVPN throughput : 3.0 GbpsConnections per second : 40,000/secMaximum connections (SPI) : 1,000,000Maximum connections (DPI) : 500,000Default/Maximum connections (DPI SSL) : 3,000/4,500 VPN :Site-to-site VPN tunnels : 3,000IPSec VPN clients (max) : 500 (3,000)SSL VPN NetExtender clients (max) : 2 (500)Encryption/Authentication :DES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14vRoute-based VPN : RIP, OSPF, BGPNetworking :IP address assignment : Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP RelayNAT modes : 1:1, many:1, 1:many, flexible NAT (overlapping IPS), PAT, transparent modeVLAN interfaces : 256Routing protocols : BGP, OSPF, RIPv1/v2, static routes, policy-based routingQoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1pAuthentication : LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)VoIP : Full H323-v1-5, SIPStandards : TCP/IP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : ICSA Firewall, ICSA Anti-Virus, FIPS 140-2, Common Criteria NDPP (Firewall and IPS), UC APLHigh availability : Active/Passive with State Sync, Active/Active ClusteringHardware :Power supply : Single, Fixed 250WFans : Dual, FixedInput power : 100-240 VAC, 60-50 HzMaximum power consumption (W) : 86.7MTBF @25ºC in hours : 139,783 MTBF @25ºC in years : 15.96 Form factor : 1U Rack MountableDimensions : 1.75 x 19.1 x 17 in (4.5 x 48.5 x 43 cm)Weight : 13.56 lb (6.15 kg)WEEE weight : 14.24 lb (6.46 kg) Shipping weight : 20.79lb (9.43 kg)Major regulatory : FCC Class A, CE (EMC, LVD, RoHS), C-Tick, VCCI Class A, MSIP/KCC Class A, UL, cUL, TUV/GS, CB, Mexico CoC by UL, WEEE , REACH, ANATEL, BSMI, CUEnvironment (Operating/Storage) : 32°-105° F (0°-40° C)/-40° to 158° F (-40° to 70° C)Humidity : 10-90% non-condensing
Firewall general :Operating system : SonicOS 6.5.1Security processing cores : 10Interfaces : 2 x 10-GbE SFP+,4 x 1-GbE SFP,12 x 1-GbE,1 GbE Management,1 ConsoleExpansion:1 Expansion Slot (Rear)*, SD Card*Management : CLI, SSH, Web UI, Capture Security Center, GMS, REST APIsSSO users : 60,000 Maximum access points supported : 96 Logging : Analyzer, Local Log, SyslogFirewall/VPN Performance:Firewall inspection throughput : 9.0 GbpsFull DPI throughput : 1.6 GbpsApplication inspection throughput : 3.0 GbpsIPS throughput : 3.0 GbpsAnti-malware inspection throughput : 1.7 GbpsIMIX throughput : 2.4 GbpsTLS/SSL decryption and inspection (DPI SSL) : 800 MbpsVPN throughput : 4.5 GbpsConnections per second : 60,000/secMaximum connections (SPI) : 1,500,000Maximum connections (DPI) : 1,000,000Default/Maximum connections (DPI SSL) : 4,000/8,500 VPN :Site-to-site VPN tunnels : 4,000IPSec VPN clients (max) : 2,000 (4,000)SSL VPN NetExtender clients (max) : 2 (1,000)Encryption/Authentication :DES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14vRoute-based VPN : RIP, OSPF, BGPNetworking :IP address assignment : Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP RelayNAT modes : 1:1, many:1, 1:many, flexible NAT (overlapping IPS), PAT, transparent modeVLAN interfaces : 400Routing protocols : BGP, OSPF, RIPv1/v2, static routes, policy-based routingQoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1pAuthentication : LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)VoIP : Full H323-v1-5, SIPStandards : TCP/IP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : ICSA Firewall, ICSA Anti-Virus, FIPS 140-2, Common Criteria NDPP (Firewall and IPS), UC APLHigh availability : Active/Passive with State Sync, Active/Active DPI with State Sync, Active/Active ClusteringHardware :Power supply : Single, Fixed 250WFans : Dual, FixedInput power : 100-240 VAC, 60-50 HzMaximum power consumption (W) : 90.9MTBF @25ºC in hours : 134,900 MTBF @25ºC in years : 15.40 Form factor : 1U Rack MountableDimensions : 1.75 x 19.1 x 17 in (4.5 x 48.5 x 43 cm)Weight : 13.56 lb (6.15 kg)WEEE weight : 14.24 lb (6.46 kg) Shipping weight : 20.79lb (9.43 kg)Major regulatory : FCC Class A, CE (EMC, LVD, RoHS), C-Tick, VCCI Class A, MSIP/KCC Class A, UL, cUL, TUV/GS, CB, Mexico CoC by UL, WEEE , REACH, ANATEL, BSMI, CUEnvironment (Operating/Storage) : 32°-105° F (0°-40° C)/-40° to 158° F (-40° to 70° C)Humidity : 10-90% non-condensing
Firewall general :Operating system : SonicOS 6.5.1Security processing cores : 24Interfaces : 4 x 10-GbE SFP+,8 x 1-GbE SFP,8 x 1-GbE,1 GbE Management,1 ConsoleExpansion:1 Expansion Slot (Rear)*, SD Card*Management :CLI, SSH, Web UI, Capture Security Center, GMS, REST APIsSSO users:70,000 Maximum access points supported : 128Logging : Analyzer, Local Log, SyslogFirewall/VPN Performance:Firewall inspection throughput : 12.0 GbpsFull DPI throughput : 3.0 GbpsApplication inspection throughput : 4.5 GbpsIPS throughput : 4.5 GbpsAnti-malware inspection throughput : 3.0 GbpsIMIX throughput : 3.5 GbpsTLS/SSL decryption and inspection (DPI SSL) : 1.3 GbpsVPN throughput : 5.0 GbpsConnections per second : 90,000/secMaximum connections (SPI) : 1,500,000Maximum connections (DPI) : 1,000,000Default/Maximum connections (DPI SSL) : 6,000/10,500 VPN :Site-to-site VPN tunnels : 6,000IPSec VPN clients (max) : 2,000 (6,000)SSL VPN NetExtender clients (max) : 2 (1,500)Encryption/Authentication :DES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14vRoute-based VPN : RIP, OSPF, BGPNetworking :IP address assignment : Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP RelayNAT modes : 1:1, many:1, 1:many, flexible NAT (overlapping IPS), PAT, transparent modeVLAN interfaces : 256Routing protocols : BGP, OSPF, RIPv1/v2, static routes, policy-based routingQoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1pAuthentication : LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)VoIP : Full H323-v1-5, SIPStandards : TCP/IP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : ICSA Firewall, ICSA Anti-Virus, FIPS 140-2, Common Criteria NDPP (Firewall and IPS), UC APLHigh availability : Active/Passive with State Sync, Active/Active DPI with State Sync, Active/Active ClusteringHardware :Power supply : Single, Fixed 250WFans : Dual, redundant, hot swappableInput power : 100-240 VAC, 60-50 HzMaximum power consumption (W) : 113.1MTBF @25ºC in hours : 116,477MTBF @25ºC in years : 13.30 Form factor : 1U Rack MountableDimensions : 1.75 x 19.1 x 17 in (4.5 x 48.5 x 43 cm)Weight : 14.93 lb (6.77 kg)WEEE weight : 19.78 lb (8.97 kg)Shipping weight : 26.12 lb (11.85 kg)Major regulatory : FCC Class A, CE (EMC, LVD, RoHS), C-Tick, VCCI Class A, MSIP/KCC Class A, UL, cUL, TUV/GS, CB, Mexico CoC by UL, WEEE , REACH, ANATEL, BSMI, CUEnvironment (Operating/Storage) : 32°-105° F (0°-40° C)/-40° to 158° F (-40° to 70° C)Humidity : 10-90% non-condensing
Performance Overview: Operating system : SonicOS 6.2.xSecurity Processor: 2x 800 MHzMemory (RAM): 1 GB 1 GbE Copper interfaces : 5 Expansion : USB Firewall inspection throughput: 750 Mbps Full DPI throughput:100 Mbps Application inspection throughput:300 Mbps IPS throughput : 300 Mbps Anti-malware inspection throughput : 100 Mbps IMIX throughput : 200 Mbps SSL Inspection and Decryption (DPI SSL) :45 Mbps VPN throughput : 300 Mbps Connections per second : 5,000 Maximum connections (SPI) : 50,000 Maximum connections (DPI) : 50,000 Single Sign-On (SSO) Users :500 VLAN interfaces : 25 SonicPoints supported (Maximum) : 8 VPN :Site-to-Site VPN Tunnels : 10 IPSec VPN clients (Maximum) : 1 (10) SSL VPN licenses (Maximum) : 1 (50) Virtual assist bundled (Maximum) : 1 (30-day trial) Encryption/Authentication : DES, 3DES, AES (128, 192, 256-bit), MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14Route-based VPN : RIP, OSPFCertificate support : Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEPVPN features : Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPNGlobal VPN client platforms supported : Microsoft® Windows Vista 32/64-bit, Windows 7 32/64-bit, Windows 8.0 32/64-bit, Windows 8.1 32/64-bitNetExtender : Microsoft Windows Vista 32/64-bit, Windows 7, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Mac OS X 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSEMobile Connect : Apple® iOS, Mac OS X, Google® Android™, Kindle Fire, Windows 8.1 (Embedded) Security Services:Deep Packet Inspection services : Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, DPI SSLContent Filtering Service (CFS) : HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid listsEnforced Client Anti-Virus and Anti-Spyware : McAfee®Comprehensive Anti-Spam Service : SupportedApplication Intelligence and Control : Yes Application Visualization : YesNetworking:IP address assignment : Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relayNAT modes : 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent modeRouting protocols : OSPF, RIPv1/v2, static routes, policy-based routing, multicast QoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM)Authentication : XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services, CitrixLocal user database : 150 VoIP : Full H.323v1-5, SIPStandards : TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : VPNC, IPv6 (Phase 2)Certifications pending : Common Criteria NDPP, FIPS 140-2 (with Suite B) Level 2, ICSA Firewall, ICSA Anti-virus, UC APLCommon Access Card (CAC) : SupportedHigh Availability : Active/StandbyHardware:Form factor : Desktop Power Supply (W) : 24W external Maximum power consumption (W) : 6.9 / 12.0Input power : 100 to 240 VAC, 50-60 Hz, 1 ATotal heat dissipation : 23.5 / 40.9 BTU Dimensions : 3.5x13.4x19cm Weight : 0.73 Kg / 1.61 lbs & 0.84 Kg / 1.85 lbsWEEE weight : 1.15 Kg / 2.53 lbs & 1.26 Kg / 2.78 lbs Shipping weight : 1.37 Kg / 3.02 lbs & 1.48 Kg / 3.26 lbs MTBF (Years) : 28 / 14Environment : 40-105° F, 0-40° CHumidity : 5-95% non-condensing
Performance Overview: Operating system : SonicOS 5.9.x – Wired / SonicOS 6.2.x – WirelessSecurity Processor: 2x400 MHz (Wired) / 2x800 MHz (Wireless) Memory (RAM): 512 MB (Wired) /1 GB (Wireless) 1 GbE Copper interfaces : 5 Expansion : USB Firewall inspection throughput: 300 Mbps Full DPI throughput:50 Mbps Application inspection throughput:0 IPS throughput : 100 Mbps Anti-malware inspection throughput : 50 Mbps IMIX throughput : 60 Mbps SSL Inspection and Decryption (DPI SSL) :15 Mbps VPN throughput : 100 Mbps Connections per second : 1,800 Maximum connections (SPI) : 10,000 Maximum connections (DPI) : 10,000 Single Sign-On (SSO) Users :250 VLAN interfaces : 25 SonicPoints supported (Maximum) : 2 VPN :Site-to-Site VPN Tunnels : 10 IPSec VPN clients (Maximum) : 1 (5) SSL VPN licenses (Maximum) : 1 (10) Virtual assist bundled (Maximum) : No Encryption/Authentication : DES, 3DES, AES (128, 192, 256-bit), MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14Route-based VPN : RIP, OSPFCertificate support : Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEPVPN features : Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPNGlobal VPN client platforms supported : Microsoft® Windows Vista 32/64-bit, Windows 7 32/64-bit, Windows 8.0 32/64-bit, Windows 8.1 32/64-bitNetExtender : Microsoft Windows Vista 32/64-bit, Windows 7, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Mac OS X 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSEMobile Connect : Apple® iOS, Mac OS X, Google® Android™, Kindle Fire, Windows 8.1 (Embedded) Security Services:Deep Packet Inspection services : Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, DPI SSLContent Filtering Service (CFS) : HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid listsEnforced Client Anti-Virus and Anti-Spyware : McAfee®Comprehensive Anti-Spam Service : SupportedApplication Intelligence and Control : Yes Application Visualization : NoNetworking:IP address assignment : Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relayNAT modes : 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent modeRouting protocols : OSPF, RIPv1/v2, static routes, policy-based routing, multicast QoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM)Authentication : XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services, CitrixLocal user database : 150 VoIP : Full H.323v1-5, SIPStandards : TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : VPNC, IPv6 (Phase 2)Certifications pending : Common Criteria NDPP, FIPS 140-2 (with Suite B) Level 2, ICSA Firewall, ICSA Anti-virus, UC APLCommon Access Card (CAC) : SupportedHigh Availability : NoHardware:Form factor : Desktop Power Supply (W) : 24W external Maximum power consumption (W) : 6.4 / 11.3Input power : 100 to 240 VAC, 50-60 Hz, 1 ATotal heat dissipation : 21.8 / 38.7 BTU Dimensions : 3.6x14.1x19cm Weight : 0.34 Kg / 0.75 lbs & 0.48 Kg / 1.06 lbs WEEE weight : 0.80 Kg / 1.76 lbs & 0.94 Kg / 2.07 lbs Shipping weight : 1.20 Kg / 2.64 lbs & 1.34 Kg / 2.95 lbs MTBF (Years) : 30 / 15 Environment : 40-105° F, 0-40° CHumidity : 5-95% non-condensing
Interfaces and Modules:Hardware Accelerated 10 GE SFP+ Slots : 2Hardware Accelerated GE SFP Slots : 8Hardware Accelerated GE RJ45 Ports : 20Accelerated GE RJ45 Bypass Interfaces : 4GE RJ45 Management / HA Ports : 2USB Ports (Client / Server) : 1 / 2Console Port : 1Onboard Storage : 1x 240 GB SSDIncluded Transceivers : 2x SFP (SX 1 GE)System Performance — Enterprise Traffic Mix:IPS Throughput : 4.2 GbpsNGFW Throughput : 4 GbpsThreat Protection Throughput : 3 GbpsSystem Performance and Capacity:IPv4 Firewall Throughput(1518 / 512 / 64 byte, UDP):36 / 36 / 22 GbpsIPv6 Firewall Throughput(1518 / 512 / 86 byte, UDP):36 / 36 / 22 GbpsFirewall Latency (64 byte, UDP) : 3 ?sFirewall Throughput (Packet per Second) : 33 MppsConcurrent Sessions (TCP) : 5 MillionNew Sessions/Second (TCP) : 280,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 20 GbpsGateway-to-Gateway IPsec VPN Tunnels: 2,000Client-to-Gateway IPsec VPN Tunnels : 50,000SSL-VPN Throughput : 2.2 GbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) : 5,000SSL Inspection Throughput (IPS, avg. HTTPS) : 3.9 GbpsSSL Inspection CPS (IPS, avg. HTTPS) : 2,400SSL Inspection Concurrent Session(IPS, avg. HTTPS) : 380,000Application Control Throughput (HTTP 64K) : 9 GbpsCAPWAP Throughput (1444 byte, UDP) : 5.5 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 64Maximum Number of FortiAPs (Total / Tunnel) : 1024 / 512Maximum Number of FortiTokens : 5,000High Availability Configurations : Active-Active, Active-Passive, ClusteringDimensions and Power:Height x Width x Length (inches) : 1.75 x 17.0 x 16.4Height x Width x Length (mm): 44.45 x 432 x 416Weight : 19.0 lbs (8.6 kg)Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RUWall Mountable : NoPower Input : 100–240V AC, 50–60 HzPower Consumption (Average / Maximum) : 128 W / 187 WCurrent (Maximum) : 110V/7A, 220V/3.5AHeat Dissipation : 636 BTU/hRedundant Power Supplies (Hot Swappable) optionalOperating Environment and Certifications:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 55 dBAOperating Altitude Up to : 7,400 ft (2,250 m)Compliance : FCC Part 15 Class A, RCM, VCCI, CE, UL/cUL, CBCertifications ICSA Labs: Firewall, IPsec, IPS, Antivirus, SSL-VPN; USGv6/IPv6
Brand: FortinetModel: FG-80E-BDLItem Weight: 1.2 KgProduct Dimensions: 17.8 x 21.6 x 4.2 cmItem model number: FG-80E-BDLOperating System: NoneColour Screen: NoWattage: 20 WattsBatteries Included: NoBatteries Required: NoWireless Type: 802.11abg
Brand: FortinetModel: FortiGate-60EItem Weight: 1.74 KgPackage Dimensions: 30.5 x 21.1 x 12.2 cmItem model number: FortiGate 60EBatteries Included: NoBatteries Required: No
FG-6500F/6501FInterfaces and Modules:40/100 GE QSFP28 Slots : 41/10/25 GE SFP28 Slots : 2410 GE SFP+ Slots : 3GE RJ45 Management Ports : 2USB Ports : 1Console Port : 1Internal Storage : 2x 1 TB NVMe (for 6301F and 6501F only)Included Transceivers : 2x SFP+ (SR 10 GE)System Performance — Enterprise Traffic Mix:IPS Throughput : 170 GbpsNGFW Throughput : 150 GbpsThreat Protection Throughput : 100 GbpsSystem Performance and Capacity :Firewall Throughput(1518 / 512 / 64 byte, UDP) : 239 / 238 / 135 GbpsFirewall Latency (64 byte, UDP) : 5 ?sFirewall Throughput (Packet per Second) : 202.5 MppsConcurrent Sessions (TCP) : 200 MillionNew Sessions/Sec (TCP) : 3 MillionFirewall Policies : 200,000IPsec VPN Throughput (512 byte) : 160 GbpsGateway-to-Gateway IPsec VPN Tunnels : 16,000Client-to-Gateway IPsec VPN Tunnels : 90,000SSL-VPN Throughput :9 GbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) : 30,000SSL Inspection Throughput (IPS, avg. HTTPS) : 110 GbpsSSL Inspection CPS (IPS, avg. HTTPS) : 50,000SSL Inspection Concurrent Session(IPS, avg. HTTPS) : 18 MillionApplication Control Throughput (HTTP 64K) : 220 GbpsCAPWAP Throughput (1444 byte, UDP) : N/AVirtual Domains (Default / Maximum) : 10 / 500Maximum Number of FortiSwitches Supported : 256Maximum Number of FortiAPs(Total / Tunnel Mode) : N/AHigh Availability Configurations : SupportedDimensions and Power:Height x Width x Length (inches): 5.20 x 17.20 x 26.18 5.3 x 17.2 x 27.3Height x Width x Length (mm) : 132 x 437 x 665 133 x 437 x 694Weight : 78.26 lbs (35.5 kg) / 79.59 lbs (36.1 kg)Form Factor (supports EIA/non-EIA standards) : Rack Mount, 3 RUAC Power Supply : 100–240V AC, 50–60 HzPower Consumption (Average / Maximum) : (1,308 / 1,548 W) / (1,328 / 1,568 W)Current (Maximum) : 20A@240VACRedundant Power Supplies : 2+1 Redundant, Hot SwappableOperating Environment and Certifications:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 57.43 dBAOperating Altitude Up to : 7,400 ft (2,250 m)Compliance : FCC Part 15 Class A, RCM, VCCI, CE, UL/cUL, CB
FG-6300F/6301F Interfaces and Modules:40/100 GE QSFP28 Slots : 41/10/25 GE SFP28 Slots : 2410 GE SFP+ Slots : 3GE RJ45 Management Ports : 2USB Ports : 1Console Port : 1Internal Storage : 2x 1 TB NVMe (for 6301F and 6501F only)Included Transceivers : 2x SFP+ (SR 10 GE)System Performance — Enterprise Traffic Mix :IPS Throughput : 110 Gbps NGFW Throughput : 90 Gbps Threat Protection Throughput : 60 Gbps System Performance and Capacity:Firewall Throughput (1518 / 512 / 64 byte, UDP) : 239 / 238 / 135 Gbps Firewall Latency (64 byte, UDP) : 5 ?s Firewall Throughput (Packet per Second): 202.5 Mpps Concurrent Sessions (TCP) 120 Million : 200 MillionNew Sessions/Sec (TCP) : 2 Million Firewall Policies : 200,000 IPsec VPN Throughput (512 byte) : 96 Gbps Gateway-to-Gateway IPsec VPN Tunnels : 16,000 Client-to-Gateway IPsec VPN Tunnels : 90,000 SSL-VPN Throughput : 9 Gbps Concurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) : 30,000SSL Inspection Throughput (IPS, avg. HTTPS) : 66 Gbps SSL Inspection CPS (IPS, avg. HTTPS) : 30,000 SSL Inspection Concurrent Session(IPS, avg. HTTPS) : 10 Million Application Control Throughput (HTTP 64K) : 150 Gbps CAPWAP Throughput (1444 byte, UDP) : N/A Virtual Domains (Default / Maximum) : 10 / 500Maximum Number of FortiSwitches Supported : 256Maximum Number of FortiAPs (Total / Tunnel Mode) : N/AHigh Availability Configurations : SupportedDimensions and Power:Height x Width x Length (inches) : 5.20 x 17.20 x 26.185.3 x 17.2 x 27.3Height x Width x Length (mm) : 132 x 437 x 665 Weight : 67.68 lbs (30.7 kg) Form Factor (supports EIA/non-EIA standards) : Rack Mount, 3 RUAC Power Supply : 100–240V AC, 50–60 HzRedundant Power Supplies : 2+1 Redundant, Hot SwappableOperating Environment and Certifications:Operating Temperature : 32–104°F (0–40°C)Storage Temperature : -31–158°F (-35–70°C)Humidity : 10–90% non-condensingNoise Level : 57.43 dBAOperating Altitude Up to : 7,400 ft (2,250 m)Compliance : FCC Part 15 Class A, RCM, VCCI, CE, UL/cUL, CB
SpecificationsFORTIGATE 100E Hardware Specifications:GE RJ45 Ports : 14 GE RJ45 Management/HA/DMZ Ports : 1 / 2 GE SFP Slots : 0 GE RJ45 PoE/+ Ports : 0GE RJ45 WAN Ports : 2 GE RJ45 or SFP Shared Ports : 2 USB Port : 1 Console Port : 1 Internal Storage : 0Included Transceivers : 0 System Performance — Enterprise Traffic Mix:IPS Throughput : 500 MbpsNGFW Throughput : 360 MbpsThreat Protection Throughput : 250 MbpsSystem Performance:Firewall Throughput (1518 / 512 / 64 byte UDP packets) : 7.4 / 7.4 / 4.4 GbpsFirewall Latency (64 byte UDP packets) : 3 ?sFirewall Throughput (Packets Per Second) : 6.6 MppsConcurrent Sessions (TCP) : 2 MillionNew Sessions/Second (TCP) : 30,000Firewall Policies : 10,000IPsec VPN Throughput (512 byte) : 4 GbpsGateway-to-Gateway IPsec VPN Tunnels : 2,000Client-to-Gateway IPsec VPN Tunnels : 10,000SSL-VPN Throughput : 250 MbpsConcurrent SSL-VPN Users(Recommended Maximum, Tunnel Mode) : 500SSL Inspection Throughput (IPS, avg. HTTPS) : 130 MbpsSSL Inspection CPS (IPS, avg. HTTPS) : 130SSL Inspection Concurrent Session (IPS, avg. HTTPS) : 125,000Application Control Throughput (HTTP 64K) : 1 GbpsCAPWAP Throughput (1444 byte, UDP) : 1.5 GbpsVirtual Domains (Default / Maximum) : 10 / 10Maximum Number of FortiSwitches Supported : 24Maximum Number of FortiAPs (Total / Tunnel Mode) : 64 / 32Maximum Number of FortiTokens : 5,000High Availability Configurations : Active / Active, Active / Passive, ClusteringDimensions:Height x Width x Length (inches) : 1.75 x 17 x 10 1.75 x 17 x 10 1.75 x 17 x 10 1.75 x 17 x 15.5Height x Width x Length (mm) : 44.45 x 432 x 254 44.45 x 432 x 254 44.45 x 432 x 254 44.45 x 432 x 394Form Factor (supports EIA / non-EIA standards) : Rack Mount, 1 RU Rack Mount, 1 RU Rack Mount, 1 RU Rack Mount, 1 RUWeight : 7.28 lbs (3.3 kg) 7.28 lbs (3.3 kg) 7.28 lbs (3.3 kg) 12.4 lbs (5.6 kg)Environment:Power Input : 100–240V AC, 50–60 HzMaximum Current : 100V / 0.52A, 240V / 0.22A 100V / 0.59A, 240V / 0.25A 100V / 0.52A, 240V / 0.22A 100V / 5ATotal Available PoE Power Budget* — — — 400 WPower Consumption (Average / Maximum) : 23.0 W / 28.6 W; 51.9 VA 24.8 W / 33.8 W; 59.2 VA 24.4 W / 28.6 W; 51.9 VA 477.1 W / 500.0 WHeat Dissipation : 97.6 BTU/h 115.3 BTU/h 97.6 BTU/h 1706.07 BTU/h
The Fortinet Enterprise Firewall Solution :The FortiGate 100E series delivers next generation firewall capabilities for mid-sized to large enterprises, with the flexibility to be deployed at the campus or enterprise branch. Protect against cyber threats with security processor powered high performance, security efficacy and deep visibility.Security :Protects against known exploits, malware and malicious websites using continuous threat intelligence provided by FortiGuard Labs security servicesIdentify thousands of applications including cloud applications for deep inspection into network trafficDetects unknown attacks using dynamic analysis and provides automated mitigation to stop targeted attacksPerformance :Delivers industry’s best threat protection performance and ultra-low latency using purpose built-security processor (SPU) technologyProvides industry-leading performance and protection for SSL encrypted trafficNetworking :Delivers an extensive routing, switching, wireless controller and high performance IPsec VPN capabilities to consolidate networking and security functionalityEnables flexible deployment such as Next Generation Firewall and Secure SD-WAN
Overview :Protects against known exploits, malware and malicious URLs using continuous threat intelligence provided by FortiGuard Labs security servicesProtects against unknown attacks using dynamic analysis and provides automated mitigation to stop targeted attacksPerformance :Delivers industry’s best threat protection performance and ultra-low latency using purpose-built security processor(SPU) technologyProvides industry-leading performance and protection for SSL encrypted trafficNetworking :Delivers extensive network interface flexibility with multiple high-speed interface modules High performance VPN capabilities to inter-connect on-premise data centers with hosted data center resources in hybrid or public cloudEnables flexible deployment modes that fit into organizations’evolving network infrastructureSecurity Fabric :Enables Fortinet and Fabric-ready partners’ products to collaboratively integrate and provide end-to-end security across the entire attack surface
Overview :The FortiGate 7060E is a 8U 19-inch rackmount 6-slot chassis with a 80Gbps fabric and 1Gbps base backplane designed by Fortinet. The fabric backplane provides network data communication and the base backplane provides management and synch communication among the chassis slots.FortiGate 7060E front panel :The chassis is managed by two redundant management modules. Each module includes an Ethernet connection as well as two switchable console ports that provide console connections to the modules in the chassis slots. The active management module controls chassis cooling and power management and provides an interface for managing the modules installed in the chassis FIM modulesFIM modules are hot swappable interface modules that provide data and management interfaces, basebackplane switching and fabric backplane session-aware load balancing for the chassis. The FIM modulesinclude an integrated switch fabric and DP2 processors to load balance millions of data sessions over the chassisfabric backplane to FPM processor modules. The following FIM modules are available:The FIM-7901E includes thirty-two front panel 10GigE SFP+ fabric channel interfaces (A1 to A32). These interfaces are connected to 10Gbps networks. These interfaces can also be configured to operate as Gigabit Ethernetinterfaces using SFP transceivers.The FIM-7904E includes eight front panel 40GigE QSFP+ fabric channel interfaces (B1 to B8). These interfaces areconnected to 40Gbps networks. Using 40GBASE-SR4 multimode QSFP+ transceivers, each QSFP+ interface canalso be split into four 10GBASE-SR interfaces and connected to 10Gbps networks.The FIM-7910E (shown in FIM modules on page 6) includes four front panel 100GigE CFP2 fabric channelinterfaces (C1 to C4). These interfaces can be connected to 100Gbps networks. Using 100GBASE-SR10 multimodeCFP2 transceivers, each CFP2 interface can also be split into ten 10GBASE-SR interfaces and connected to 10Gbps networks.The FIM-7920E includes four front panel 100GigE QSFP28 fabric channel interfaces (C1 to C4). These interfaces can be connected to 100Gbps networks. Using a 100GBASE-SR4 QSFP28 or 40GBASE-SR4 QSFP+ transceiver, each QSFP28 interface can also be split into four 10GBASE-SR interfaces and connected to 10Gbps networks
FortiGate 7040E Chassis :The FortiGate 7040E is a 6U 19-inch rackmount 4 slot chassis with a 80Gbps fabric and 1Gbps base backplane designed by Fortinet. The fabric backplane provides network data communication and the base backplane provides management and synch communication among the chassis slots. Power is provided to the chassis using three hot swappable 2+1 redundant 100 240 VAC, 50-60 Hz power supply units (PSUs). You can also optionally add a fourth PSU. The FortiGate 7040E can also be equipped with three or four DC PSUs allowing you to connect the chassis to 48V DC power.FPM 7620E FPM modules :The FPM-7620E modules are hot swappable processor modules that provide FortiOS firewalling and security services. The FPM modules function as workers, processing sessions load balanced to them by the FIM modules.FPM modules include multiple NP6 network processors and CP9 content processors to accelerate traffic.FortiGate 7040E back panel :The FortiGate-7040E chassis back panel provides access to three hot swappable cooling fan trays and three hot swappable AC or DC PSUs. A fourth slot is available for including a fourth PSU for additional redundancy. At least two PSUs (PWR1 and PWR2) must be connected to power. PWR4 is a backup power supply. You can add
FortiGate 7030E :The FortiGate 7030E is a 6U 19 inch rackmount 3-slot chassis with a 80Gbps fabric and 1Gbps base backplane designed by Fortinet. The fabric backplane provides network data communication and the base backplane provides management and synch communication among the chassis slots.FortiGate 7030E front panel :The FortiGate 7030E chassis is managed by a single management module that includes an Ethernet connection as well as two switchable console ports that provide console connections to the modules in the chassis slots. The management module controls chassis cooling and power management and provides an interface for managing the modules installed in the chassis. The standard configuration of the FortiGate-7030E includes one FIM (interface) module in chassis slot 1 and two FPM (processing) modules in chassis slots 3 and 4. The front panel also includes a sealed blank panel. Breaking the seal or removing the panel voids your FortiGate 7030E warranty.FortiGate 7030E schematic :The FortiGate 7030E chassis schematic below shows the communication channels between chassis components including the management module (MGMT), the FIM (called FIM1) and the FPMs (FPM3 and FPM4).The management module (MGMT, with Intelligent Platform Management Bus (IPMB) address 0x20) communicates with all modules in the chassis over the base backplane. Each module, including the management module includes a Shelf Management Controller (SMC). These SMCs support IPMB communication between the management module and the FIM and FPMs for storing and sharing sensor data that the management module uses to control chassis cooling and power distribution. The base backplane also supports serial communications to allow console access from the management module to all modules, and 1Gbps Ethernet communication for management and heartbeat communication between modules.FIM1 (IPMB address 0x82) is the FIM in slot 1. The interfaces of this module connect the chassis to data networks and can be used for Ethernet management access to chassis components. The FIM includes DP2 processors that distribute sessions over the Integrated Switch Fabric (ISF) to the NP6 processors in the FPMs. Data sessions are communicated to the FPMs over the 80Gbps chassis fabric backplane.FPM3 and FPM4 (IPMB addresses 0x86 and 0x88) are the FPM processor modules in slots 3 and 4. These worker modules process sessions distributed to them by the FIM. FPMs include NP6 processors to offload sessions from the FPM CPU and CP9 processors that accelerate content processing.
FortiGate 5001E and FortiGate 5001E1 security system :The FortiGate 5001E security system is a high-performance Advanced Telecommunications Computing Architecture (ATCA) compliant FortiGate security system that can be installed in any ATCA chassis that can provide sufficient power and cooling. The FortiGate-5001E1 security system adds an internal 480 GByte SSD log disk. In all other ways the FortiGate-5001E and the FortiGate-5001E1 are identical.The FortiGate 5001E security system contains two front panel 40GigE QSFP+ fabric channel interfaces, two front panel 10GigE SFP+ fabric channel interfaces, two base backplane 1Gbps base channel interfaces, and two fabric backplane 40Gbps interfaces. The front panel SFP+ interfaces can also operate as Gigabit Ethernet interfaces using SFP transceivers. Use the front panel interfaces for connections to your networks and the backplane interfaces for communication across the ATCA chassis backplane. The FortiGate-5001E also includes two front panel 10/100/1000BASE-T out of band management Ethernet interfaces, one RJ45 front panel serial console port, and one front panel USB port.Front panel components :From the FortiGate-5001E front panel you can view the status of the front panel LEDs to verify that the board is functioning normally. You also connect the FortiGate-5001E to your 40-gigabit network using the front panel QSFP+ connectors and to your 10-gigabit network using the front panel SFP+ or SFP connectors. The front panel also includes two Ethernet management interfaces, an RJ-45 console port for connecting to the FortiOS CLI and a USB port. The USB port can be used with any USB key for backing up and restoring configuration files.
Overview :The FortiGate 3900E series delivers high performance threat protection for mid-sized to large enterprises and service providers, with the flexibility to be deployed at the Internet or cloud edge, in the data center core or internal segments. The multiple high-speed interfaces, high port density, industry-leading security efficacy and high throughput of the 3900E series keeps your network connected and secure.Security :Protects against known exploits, malware and malicious URLs using continuous threat intelligence provided by FortiGuard Labs security servicesProtects against unknown attacks using dynamic analysis and provides automated mitigation to stop targeted attacksPerformance :Delivers industry's best threat protection performance and ultra-low latency using purpose-built security processor (SPU) technologyUnprecedented 1 Terabit/second network firewall throughput in an appliance form factor for FortiGate 3980EProvides industry-leading performance and protection for SSL encrypted trafficCertification :Independently tested and validated best security effectiveness and performanceReceived unparalleled third-party certifications from NSS Labs, ICSA, Virus Bulletin and AV ComparativesNetworking :Delivers extensive routing, high-speed interfaces, and high performance VPN capabilities to address performance and connectivity needs of large-scale data center and cloud applicationsEnables flexible deployment such as Next Generation Firewall and Secure SD-WAN
Overview:Ultra High-Performance Network SecurityDigital enterprises are processing vast amounts of encrypted traffic and content rich data along with an increased emphasis on optimized user experiences. The digital attack surface has spawned new, complex forms of attacks that require advanced protection to be applied at anytime, anywhere the threat is discovered. Today’s next-generation firewalls (NGFWs) must reliably handle large volumes of network and cloud traffic, provide consolidated advanced security in a smaller, more efficient physical footprint, and accommodate new security requirements such as extensive inspection of encrypted traffic for sophisticated malware without impacting performance.The new FortiGate 6000 NGFW appliances feature the latest Fortinet innovation, to deliver leading edge security, performance, and connectivity for the most demanding network needs. The 6000 series combines unprecedented threat protection and SSL inspection performance in an easy to manage, compact appliance.
Overview:Ultra High-Performance Network SecurityDigital enterprises are processing vast amounts of encrypted traffic and content rich data along with an increased emphasis on optimized user experiences. The digital attack surface has spawned new, complex forms of attacks that require advanced protection to be applied at anytime, anywhere the threat is discovered. Today’s next-generation firewalls (NGFWs) must reliably handle large volumes of network and cloud traffic, provide consolidated advanced security in a smaller, more efficient physical footprint, and accommodate new security requirements such as extensive inspection of encrypted traffic for sophisticated malware without impacting performance.The new FortiGate 6000 NGFW appliances feature the latest Fortinet innovation, to deliver leading edge security, performance, and connectivity for the most demanding network needs. The 6000 series combines unprecedented threat protection and SSL inspection performance in an easy to manage, compact appliance.
Security Fabric :The Security Fabric allows security to dynamically expand andadapt as more and more workloads and data are added. Security seamlessly follows and protects data, users, and applications as they move between IoT, devices, and cloud environment throughout the network. FortiGates are the foundation of Security Fabric, expanding security via visibility and control by tightly integrating with other Fortinet security products and Fabric-Ready Partner solutions. FortiOS :Control all the security and networking capabilities across the entire FortiGate platform with one intuitive operating system. Reduce operating expenses and save time with a truly consolidated nextgeneration security platform. Powered by SPUCustom SPU processors deliver the power you need to detect malicious content at multi-Gigabit speedsOther security technologies cannot protect against today’s wide range of content- and connection-basedthreats because they rely on general-purpose CPUs, causing a dangerous performance gap SPU processors provide the performance needed to block emerging threats, meet rigorous third-party certifications, and ensure that your network security solution does not become a network bottleneck
Overview:Fortinet's FortiGate 3800D Series are the only security appliances capable of delivering an unprecedented 300+ Gbps throughput, while also featuring 100 GE interface ports and IPv4 to IPv6 performance parity integral in supporting next generation fabric.Fortinet Enterprise Firewall Solution :The Fortinet Enterprise Firewall Solution delivers end-to-end network security with one platform, one network security operating system and unified policy management with a single pane of glass — for the industry's best protection against the most advanced security threats and targeted attacks.Future-Proofing the Next Generation Data Center :They deliver their breakthrough performance and protection in a compact 3U form factor with six 100 GE interfaces that preserve scarce rack space while maximizing capacity. Powered by the new FortiASIC NP6 processor, the FortiGate 3800D Series allow customers to build 100G data centers without worrying about high speed connectivity or throughput of the core firewall.Flexible DeploymentThe FortiGate 3800D Series give you the flexibility to choose the firewall personality that best fits your requirements at the Edge or Core. You can take advantage of the high port density for physical segmentation of your network, as well as the virtual domains (VDOMs) for virtual segmentation.Industry-leading 10x data center firewall offers exceptional throughput and ultra-low latencyHighly available and Virtual Domain (VDOM) support for multi-tenant data center environmentIntegrated high-speed 10 GE+ port delivers maximum flexibility and scalabilityIntuitive management interface enables broad and deep visibility and controlNSS Labs Recommended consolidated security delivers top-rated protection
Overview:The FortiGate 3700D high performance, high capacity data center firewall provides exceptional performance of 160 Gbps and ultra-low latency, ensuring your data center security solution doesn't become your data center bottleneck.Eliminate Security BottlenecksIt delivers this breakthrough performance and protection in a compact 3U form factor with four 40 GE and 28 10 GE interfaces that preserves scarce rack space while maximizing capacity. Powered by the new FortiASIC NP6 processor, the FortiGate 3700D is the first data center appliance to deliver performance parity for IPv4 and IPv6 traffic and dramatically increases VPN performance, enabling you to keep pace with your evolving network.Flexible DeploymentThe FortiGate 3700D gives you the flexibility to choose the firewall personality that best fits your requirements at the Edge or Core. You can take advantage of the high port density for physical segmentation of your network, as well as the virtual domains (VDOMs) for virtual segmentation.Performance and Reliability for High Bandwidth NetworksBreakthrough IPv4 to IPv6 firewall performance parityFlexible firewall personalities enable deployment at the Edge or CoreCompact 3U footprint conserves rack space and minimizes energy consumptionFreedom to add integrated security technologies (such as IPS, App Control, VPN)Cloud-ready multi-tenant support and APIs for rapid orchestrationFortiOS 5 delivers the most complete, battle-tested set of security functions to protect your network and data
Overview :Today’s data centers require security appliances that deliver exceptional performance, deployment flexibility and extensive security features, to protect the most demanding network environments. The FortiGate 3100D device is ideally suited for network segmentation and internal network threat protection in data centers with its 32 10 GE interfaces.10 Times Data Center Firewall Performance :The FortiGate 3100D appliance provides up to 80 Gbps of firewall throughput through the use of innovative FortiASIC processors and the latest generation of multi-core CPUs. Impressive consolidated security performance and support for a variety of configurations ensure that essential security functions keep up with the rest of your network.Future-proof Security :The system also provides technologies that include robust networking capabilities and extensible security features, all managed from an intuitive management console with deep insight offerings, enabling you to keep pace with your evolving network.Features & Benefits ;Industry-leading 10x data center firewall offers exceptional throughput and ultra-low latencyHighly available and Virtual Domain (VDOM) support for multi-tenant data center environmentIntegrated high-speed 10 GE+ port delivers maximum flexibility and scalabilityIntuitive management interface enables broad and deep visibility and controlNSS Labs Recommended consolidated security delivers top-rated protection
Overview :Today’s data centers require security appliances that deliver exceptional performance, deployment flexibility and extensive security features, to protect the most demanding network environments. The FortiGate 3100D device is ideally suited for network segmentation and internal network threat protection in data centers with its 32 10 GE interfaces.10 Times Data Center Firewall Performance :The FortiGate 3100D appliance provides up to 80 Gbps of firewall throughput through the use of innovative FortiASIC processors and the latest generation of multi-core CPUs. Impressive consolidated security performance and support for a variety of configurations ensure that essential security functions keep up with the rest of your network.Future-proof Security :The system also provides technologies that include robust networking capabilities and extensible security features, all managed from an intuitive management console with deep insight offerings, enabling you to keep pace with your evolving network.Features & Benefits :Industry-leading 10x data center firewall offers exceptional throughput and ultra-low latencyHighly available and Virtual Domain (VDOM) support for multi-tenant data center environmentIntegrated high-speed 10 GE+ port delivers maximum flexibility and scalabilityIntuitive management interface enables broad and deep visibility and controlNSS Labs Recommended consolidated security delivers top-rated protection
Security FabricThe Security Fabric allows security to dynamically expand and adapt as more and more workloads and data are added. Security seamlessly follows and protects data, users, and applications as they move between IoT, devices, and cloud environments throughout the network. FortiGates are the foundation of Security Fabric, expanding security via visibility and control by tightly integrating with other Fortinet security products and Fabric-Ready Partner solutionsFortiOS :Control all the security and networking capabilities across the entire FortiGate platform with one intuitive operating system. Reduce operating expenses and save time with a truly consolidated nextgeneration security platform.
Overview :The FortiGate network appliances represent the enterprise firewall platforms. FortiGate is based on FortiASIC, a purpose-built integrated architecture, that provides extremely high throughput and exceptionally low latency, while delivering excellent security effectiveness and consolidation. Targeted for large enterprises, the FortiGate 2000E delivers high NGFW and SSL inspection performance along with high port density and dual power supply for maximum flexibility.
Overview:Every day you’re on the lookout for sophisticated attacks designed to penetrate your organization and steal valuable information. At the same time, you need to increase network speeds and capacities to accommodate the proliferation of consumergrade applications and devices. To adequately defend against threats across such a broad range of applications and devices- without slowing down your network- you need a high performance next generation/edge firewall (NGFW) appliance for deep inspection, visibility and control.Breakthrough Performance:The FortiGate-1500D high performance next generation/edge firewall delivers best in class performance with an exceptional 80 Gbps of firewall and 11 Gbps of next generation threat protection. Custom hardware, including the latest FortiASIC™ NP6 processors, and the consolidated security features of the FortiOS™ 5 network security platform make the difference in enabling protection of your applications and network without affecting availability or performance.Deeper Visibility:With powerful intrusion prevention, application control and antimalware intelligence, the FortiGate-1500D allows you to look deeper into your content, applications, user and device behavior. Rich console views and reports together with a flexible policy engine provide the visibility and control you need to empower employees yet secure your enterprise.Next Generation Visibility and ControlPowerful application and threat inspectionBreakthrough performance, and superior cost per gigabit protectedUser- and device-based views and policiesFreedom to add more functions like Advanced ThreatProtection and Secure Web GatewayFortiOS 5, the most complete, battletested set of security functions to protect your network and data
Overview:Enterprises require a high-speed, high-capacity firewall to stay ahead of ever-increasing network performance requirements as well as continued evolution of the threat landscape, at data center and campus locations.Eliminate Security BottlenecksWith 52 Gbps of firewall throughput and low latency, the FortiGate 1200D represents an excellent entry model for small data centers and delivers a high-performance, high-capacity data center firewall. IPv6 parity, 10 GE ports and dramatic increases in VPN performance enable you to keep pace with your evolving network.Deeper VisibilityAt the same time, 11 Gbps of next generation threat prevention performance allows you to run top-rated intrusion prevention, application control and antimalware capabilities for deeper inspection of content, applications, user and device activity. Rich console views and reports together with a flexible policy engine provide the visibility and control to empower employees yet secure your enterprise.Breakthrough PerformanceThis breakthrough performance — including 10x data center and 5x next generation performance — is made possible by custom hardware, including the latest FortiASIC™ NP6 and CP8 processors, as well as the consolidated security features of the FortiOS network security platform.High Performance, Reliability and Security10x data center and 5x next generation performanceTop rated security capabilitiesFlexible firewall personalities for core or edge deploymentLow latency and IPv6 parity
NP Direct :By removing the Internal Switch Fabric, the NP Direct architecture provides direct access to the SPU-NP for the lowest latency forwarding. NGFW deployments require some attention to network design to ensure optimal use of this technologyContent Processor :The SPU CP8 content processor works outside of the direct flow of traffic, providing high-spee cryptography and content inspectionservices including:Signature-based content inspection accelerationEncryption and decryption offloadingFortiOS :Control all the security and networking capabilities across the entire FortiGate platform with one intuitive operating system. Reduce operating expenses and save time with a truly consolidated next generation security platform. FortiCare Support Services :Our FortiCare customer support team provides global technical support for all Fortinet products. With support staff in the Americas, Europe, Middle East and Asia, FortiCare offers services to meet the needs of enterprises of all sizes:Enhanced Support — For customers who need support during local business hours only.Comprehensive Support — For customers who need aroundthe-clock mission critical support, including advanced exchange hardware replacement.Advanced Services — For global or regional customers who need an assigned Technical Account Manager, enhanced service level agreements, extended software support, priorityescalation, on-site visits and more.Professional Services — For customers with more complex security implementations that require architecture and design services, implementation and deployment services, operational services and more.
Firewall throughput : 59 GbpsIPS throughput : 26 GbpsAnti-malware throughput : 16 GbpsFull DPI throughput : 17 GbpsIMIX throughput : 14 GbpsMaximum DPI connections : 6,000,000New connections/sec : 430,000/secStorage module : 2 x 480 GB
Stateful inspection firewall throughput :300 MbpsStateful inspection firewall throughput (multiprotocol) :50 GbpsConcurrent firewall connections :55 millionFirewall latency (UDP 64B microseconds):3.5New connections per second : 800,000IPsec VPN throughput (450B UDP L2L test) : 15 GbpsIPsec/Cisco AnyConnect/Apex site-to-site VPN peers :20,000Security contexts (included; maximum) :10; 250High availability: active/standby
Overview:With network bandwidth requirements doubling every 18 months and increases in sophisticated cyber threats, enterprise organizations with large branch offices know they need high-speed network security that also delivers highly effective next generation security.5 Times Next Generation Firewall Performance :The FortiGate 900D appliance delivers superior performance through a combination of purpose-built FortiASIC™ processors, high port density with 10 GE ports and consolidated security features from the FortiOS™ operating system. It delivers 5 times better next generation firewall performance compared to alternate products and provides the best price/performance in the industry.Deeper Visibility and Top-rated Security :This breakthrough threat prevention performance allows organizations to run NSS Labs Recommended intrusion prevention and application control and VB100 certified antimalware capabilities for deeper inspection. Rich console views and reports together with a flexible policy engine provide the visibility and control to empower employees yet secure your enterprise.Finally, these features of the FortiGate FortiOS Network Security Platform are routinely validated by independent real-world tests and are consistently getting superior ratings in security effectiveness. Features & Benefits :5 times faster hardware accelerated next generation firewall offers best-in-class price/performance ratioIntegrated high port density delivers maximum flexibility and scalabilityNSS Labs Recommended NGFW and NGIPS with consolidated security delivers top-rated protectionApplication control plus identity and device-based policy enforcement provides more granular protectionIntuitive management interface enables broad and deep visibility that scales from a single FortiGate to thousands
Overview :With network bandwidth requirements doubling every 18 months and increases in sophisticated cyber threats, enterprise organizations with large branch offices know they need high-speed network security that also delivers highly effective next generation security.Superior Next Generation Firewall Performance :The FortiGate 800D appliance delivers superior performance through a combination of purpose-built FortiASIC processors, high port density with 10 GE ports and consolidated security features from the FortiOS operating system. It delivers better next generation firewall performance compared to alternate products and provides the best price/performance in the industry.Deeper Visibility and Top-rated Security :This breakthrough threat prevention performance allows organizations to run NSS Labs Recommended intrusion prevention and application control and VB100 certified antimalware capabilities for deeper inspection. Rich console views and reports together with a flexible policy engine provide the visibility and control to empower employees yet secure your enterprise.Finally, these features of the FortiGate FortiOS Network Security Platform are routinely validated by independent real-world tests and are consistently getting superior ratings in security effectiveness.
Overview :With network bandwidth requirements doubling every 18 months and increases in sophisticated cyber threats, enterprise organizations with large branch offices know they need high-speed network security that also delivers highly effective next generation security.Superior Next Generation Firewall Performance :The FortiGate 800D appliance delivers superior performance through a combination of purpose-built FortiASIC processors, high port density with 10 GE ports and consolidated security features from the FortiOS operating system. It delivers better next generation firewall performance compared to alternate products and provides the best price/performance in the industry.Deeper Visibility and Top-rated Security :This breakthrough threat prevention performance allows organizations to run NSS Labs Recommended intrusion prevention and application control and VB100 certified antimalware capabilities for deeper inspection. Rich console views and reports together with a flexible policy engine provide the visibility and control to empower employees yet secure your enterprise.Finally, these features of the FortiGate FortiOS Network Security Platform are routinely validated by independent real-world tests and are consistently getting superior ratings in security effectiveness.
Security :Protects against known exploits, malware and malicious websites using continuous threat intelligence provided by FortiGuard Labs security servicesIdentify thousands of applications including cloud applications for deep inspection into network trafficProtects against unknown attacks using dynamic analysis and provides automated mitigation to stop targeted attacksPerformance :Delivers industry’s best threat protection performance and ultra-low latency using purpose-built security processor (SPU) technologyProvides industry-leading performance and protection for SSL encrypted trafficNetworking :Delivers extensive routing, switching, wireless controller and high performance IPsec VPN capabilities to consolidate networking and security functionalityEnables flexible deployment such as Next Generation Firewall and Secure SD-WANManagement :Single Pane of Glass with Network Operations Center (NOC) view provides 360° visibility to identify issues quickly and intuitivelyPredefined compliance checklist analyzes the deployment and highlights best practices to improve overall security posture
Security :Protects against known exploits, malware and malicious websites using continuous threat intelligence provided by FortiGuard Labs security servicesIdentify thousands of applications including cloud applications for deep inspection into network trafficProtects against unknown attacks using dynamic analysis and provides automated mitigation to stop targeted attacksPerformance :Delivers industry’s best threat protection performance and ultra-low latency using purpose-built security processor (SPU) technologyProvides industry-leading performance and protection for SSL encrypted traffic Networking :Delivers extensive routing, switching, wireless controller and high performance IPsec VPN capabilities to consolidate networking and security functionalityEnables flexible deployment such as Next Generation Firewall and Secure SD-WANManagement :Single Pane of Glass with Network Operations Center (NOC) view provides 360° visibility to identify issues quickly and intuitivelyPredefined compliance checklist analyzes the deployment and highlights best practices to improve overall security posture
Overview:The Fortinet Enterprise Firewall SolutionThe FortiGate 100E series delivers next generation firewall capabilities for mid-sized to large enterprises, with the flexibility to be deployed at the campus or enterprise branch. Protect against cyber threats with security processor powered high performance, security efficacy and deep visibility.Security :Protects against known exploits, malware and malicious websites using continuous threat intelligence provided by FortiGuard Labs security servicesIdentify thousands of applications including cloud applications for deep inspection into network trafficDetects unknown attacks using dynamic analysis and provides automated mitigation to stop targeted attacksPerformance :Delivers industry’s best threat protection performance and ultra-low latency using purpose built-security processor (SPU) technologyProvides industry-leading performance and protection for SSL encrypted trafficNetworking :Delivers an extensive routing, switching, wireless controller and high performance IPsec VPN capabilities to consolidate networking and security functionalityEnables flexible deployment such as Next Generation Firewall and Secure SD-WAN
Overview:The SonicWall Network Security services platform (NSsp) High-End Firewall series takes an innovative approach to threat detection and prevention by combining appliance-based protection with cloud intelligence in a reliable, high-performance platform. Designed for large distributed enterprises, data centers and service providers, the NSsp High-End series consolidates advanced security technologies that deliver proven, scalable protection for millions of connections from the most advanced threats without slowing performance.SUPERIOR THREAT PREVENTION AND PERFORMANCE :Block more attacks with patent-pending Real-Time Deep Memory Inspection (RTDMITM) & Patented Real-Free Deep Packet Inspection (RFDPI®) technologyCombine cloud-based and on-box threat prevention featuring multi-engine sandboxingindustry-validated high security effectivenessGet high-speed performance with 40-Gigabit Ethernet portsSecurity that scales to protect millions of encrypted connectionsDecrypt and inspect TLS/SSL and SSH traffic in real timeNETWORK CONTROL AND FLEXIBILITY :Leverage powerful SonicOS operating systemGain application intelligence and controlSegment your network into zonesDeploy at the network edge or data center core
Overview:The SonicWall Network Security services platform (NSsp) High-End Firewall series takes an innovative approach to threat detection and prevention by combining appliance-based protection with cloud intelligence in a reliable, high-performance platform. Designed for large distributed enterprises, data centers and service providers, the NSsp High-End series consolidates advanced security technologies that deliver proven, scalable protection for millions of connections from the most advanced threats without slowing performance.SUPERIOR THREAT PREVENTION AND PERFORMANCE :Block more attacks with patent-pending Real-Time Deep Memory Inspection (RTDMITM) & Patented Real-Free Deep Packet Inspection (RFDPI®) technologyCombine cloud-based and on-box threat prevention featuring multi-engine sandboxingIndustry-validated high security effectivenessGet high-speed performance with 40-Gigabit Ethernet portsSecurity that scales to protect millions of encrypted connectionsDecrypt and inspect TLS/SSL and SSH traffic in real timeNETWORK CONTROL AND FLEXIBILITY :Leverage powerful SonicOS operating systemGain application intelligence and controlSegment your network into zonesDeploy at the network edge or data center core
Overview:The SonicWall Network Security appliance (NSa) series provides organizations that range in scale from mid-sized networks to distributed enterprises and data centers with advanced threat prevention in a highperformance security platform. Utilizing innovative deep learning technologies in the SonicWall Capture Cloud Platform, the NSa series delivers the automated real-time breach detection and prevention organizations need. Network control and flexibility :At the core of the NSa series is SonicOS, SonicWall’s feature-rich operating system. SonicOS provides organizations with the network control and flexibility they require through application intelligence and control, real-time visualization, an intrusion prevention system (IPS) featuring sophisticated anti-evasion technology, high-speed virtual private networking (VPN) and other robust security features. Using application intelligence and control, network administrators can identify and categorize productive applications from those that are unproductive or potentially dangerous, and control that traffic through powerful applicationlevel policies on both a per-user and a per-group basis (along with schedules and exception lists). Business-critical applications can be prioritized and allocated more bandwidth while non essential applications are bandwidthlimited. Real-time monitoring and visualization provides a graphical representation of applications, users and bandwidth usage for granular insight into traffic across the network. Secure, High-speed Wireless :Combine an NSa series next-generation firewall with a SonicWall SonicWave 802.11ac Wave 2 wireless access point to create a highspeed wireless network security solution. NSa series firewalls and SonicWave access points both feature 2.5 GbE ports that enable multi-gigabit wireless throughput offered in Wave 2 wireless technology. The firewall scans all wireless traffic coming into and going out of the network using deep packet inspection technology and then removes harmful threats such as malware and intrusions, even over encrypted connections. Additional security and control capabilities such as content filtering, application control and intelligence and Capture Advanced Threat Protection can be run on the wireless network to provide added layers of protection.
Overview:The SonicWall Network Security appliance (NSa) series provides organizations that range in scale from mid-sized networks to distributed enterprises and data centers with advanced threat prevention in a highperformance security platform. Utilizing innovative deep learning technologies in the SonicWall Capture Cloud Platform, the NSa series delivers the automated real-time breach detection and prevention organizations need. Network control and flexibility :At the core of the NSa series is SonicOS, SonicWall’s feature-rich operating system. SonicOS provides organizations with the network control and flexibility they require through application intelligence and control, real-time visualization, an intrusion prevention system (IPS) featuring sophisticated anti-evasion technology, high-speed virtual private networking (VPN) and other robust security features. Using application intelligence and control, network administrators can identify and categorize productive applications from those that are unproductive or potentially dangerous, and control that traffic through powerful applicationlevel policies on both a per-user and a per-group basis (along with schedules and exception lists). Business-critical applications can be prioritized and allocated more bandwidth while non essential applications are bandwidthlimited. Real-time monitoring and visualization provides a graphical representation of applications, users and bandwidth usage for granular insight into traffic across the network. Secure, High-speed Wireless :Combine an NSa series next-generation firewall with a SonicWall SonicWave 802.11ac Wave 2 wireless access point to create a highspeed wireless network security solution. NSa series firewalls and SonicWave access points both feature 2.5 GbE ports that enable multi-gigabit wireless throughput offered in Wave 2 wireless technology. The firewall scans all wireless traffic coming into and going out of the network using deep packet inspection technology and then removes harmful threats such as malware and intrusions, even over encrypted connections. Additional security and control capabilities such as content filtering, application control and intelligence and Capture Advanced Threat Protection can be run on the wireless network to provide added layers of protection.
Overview:The SonicWall Network Security appliance (NSa) series provides organizations that range in scale from mid-sized networks to distributed enterprises and data centers with advanced threat prevention in a highperformance security platform. Utilizing innovative deep learning technologies in the SonicWall Capture Cloud Platform, the NSa series delivers the automated real-time breach detection and prevention organizations need. Network control and flexibility :At the core of the NSa series is SonicOS, SonicWall’s feature-rich operating system. SonicOS provides organizations with the network control and flexibility they require through application intelligence and control, real-time visualization, an intrusion prevention system (IPS) featuring sophisticated anti-evasion technology, high-speed virtual private networking (VPN) and other robust security features. Using application intelligence and control, network administrators can identify and categorize productive applications from those that are unproductive or potentially dangerous, and control that traffic through powerful applicationlevel policies on both a per-user and a per-group basis (along with schedules and exception lists). Business-critical applications can be prioritized and allocated more bandwidth while non essential applications are bandwidthlimited. Real-time monitoring and visualization provides a graphical representation of applications, users and bandwidth usage for granular insight into traffic across the network. Secure, High-speed Wireless :Combine an NSa series next-generation firewall with a SonicWall SonicWave 802.11ac Wave 2 wireless access point to create a highspeed wireless network security solution. NSa series firewalls and SonicWave access points both feature 2.5 GbE ports that enable multi-gigabit wireless throughput offered in Wave 2 wireless technology. The firewall scans all wireless traffic coming into and going out of the network using deep packet inspection technology and then removes harmful threats such as malware and intrusions, even over encrypted connections. Additional security and control capabilities such as content filtering, application control and intelligence and Capture Advanced Threat Protection can be run on the wireless network to provide added layers of protection.
Overview:The SonicWall Network Security appliance (NSa) series provides organizations that range in scale from mid-sized networks to distributed enterprises and data centers with advanced threat prevention in a highperformance security platform. Utilizing innovative deep learning technologies in the SonicWall Capture Cloud Platform, the NSa series delivers the automated real-time breach detection and prevention organizations need. Network control and flexibility :At the core of the NSa series is SonicOS, SonicWall’s feature-rich operating system. SonicOS provides organizations with the network control and flexibility they require through application intelligence and control, real-time visualization, an intrusion prevention system (IPS) featuring sophisticated anti-evasion technology, high-speed virtual private networking (VPN) and other robust security features. Using application intelligence and control, network administrators can identify and categorize productive applications from those that are unproductive or potentially dangerous, and control that traffic through powerful applicationlevel policies on both a per-user and a per-group basis (along with schedules and exception lists). Business-critical applications can be prioritized and allocated more bandwidth while non essential applications are bandwidthlimited. Real-time monitoring and visualization provides a graphical representation of applications, users and bandwidth usage for granular insight into traffic across the network. Secure, High-speed Wireless :Combine an NSa series next-generation firewall with a SonicWall SonicWave 802.11ac Wave 2 wireless access point to create a highspeed wireless network security solution. NSa series firewalls and SonicWave access points both feature 2.5 GbE ports that enable multi-gigabit wireless throughput offered in Wave 2 wireless technology. The firewall scans all wireless traffic coming into and going out of the network using deep packet inspection technology and then removes harmful threats such as malware and intrusions, even over encrypted connections. Additional security and control capabilities such as content filtering, application control and intelligence and Capture Advanced Threat Protection can be run on the wireless network to provide added layers of protection.
Install in Minutes with FortiExplorer :The FortiExplorer wizard enables easy setup and configuration coupled with easy-to-follow instructions. FortiExplorer runs on popular mobile devices like Android and iOS. Using FortiExplorer is as simple as starting the application and connecting to the appropriate USB port on the FortiGate. By using FortiExplorer, you can be up and running and protected in minutes.3G/4G WAN Connectivity :The FortiGate 90E includes USB ports that allow you to plug in a compatible third-party 3G/4G USB modem, providing additional WAN connectivity or a redundant link for maximum reliabilityCompact and Reliable Form Factor :Designed for small environments, you can simply place the FortiGate 90E on a desktop. It is small, lightweight yet highly reliable with superior MTBF (Mean Time Between Failure), minimizing the chance of a network disruption.Security Fabric :The Security Fabric allows security to dynamically expand and adapt as more and more workloads and data are added. Security seamlessly follows and protects data, users, and applications as they move between IoT, devices, and cloud environments throughout the network.
Overview : The Fortinet Enterprise Firewall SolutionThe FortiGate 100E series delivers next generation firewall capabilities for mid-sized to large enterprises, with the flexibility to be deployed at the campus or enterprise branch. Protect against cyber threats with security processor powered high performance, security efficacy and deep visibility.Security :Protects against known exploits, malware and malicious websites using continuous threat intelligence provided by FortiGuard Labs security servicesIdentify thousands of applications including cloud applications for deep inspection into network trafficDetects unknown attacks using dynamic analysis and provides automated mitigation to stop targeted attacksPerformance :Delivers industry’s best threat protection performance and ultra-low latency using purpose built-security processor (SPU) technologyProvides industry-leading performance and protection for SSL encrypted trafficNetworking :Delivers an extensive routing, switching, wireless controller and high performance IPsec VPN capabilities to consolidate networking and security functionalityEnables flexible deployment such as Next Generation Firewall and Secure SD-WAN
Install in Minutes with FortiExplorer :The FortiExplorer wizard enables easy setup and configuration coupled with easy-to-follow instructions. FortiExplorer runs on popular mobile devices like Android and iOS. Using FortiExplorer is as simple as starting the application and connecting to the appropriate USB port on the FortiGate. By using FortiExplorer, you can be up and running and protected in minutes. 3G/4G WAN Connectivity :The FortiGate 90E includes USB ports that allow you to plug in a compatible third-party 3G/4G USB modem, providing additional WAN connectivity or a redundant link for maximum reliabilityCompact and Reliable Form Factor :Designed for small environments, you can simply place the FortiGate 90E on a desktop. It is small, lightweight yet highly reliable with superior MTBF (Mean Time Between Failure), minimizing the chance of a network disruption.Security Fabric :The Security Fabric allows security to dynamically expand and adapt as more and more workloads and data are added. Security seamlessly follows and protects data, users, and applications as they move between IoT, devices, and cloud environments throughout the network.
Overview:The FortiGate/FortiWiFi 30E are compact, cost effective, all-in-one security appliances that deliver Fortinet’s Connected UTM. Ideal for small business, remote, customer premise equipment (CPE) and retail networks, these appliances offer the network security, connectivity and performance you need.High Performance Network Security :Built on the foundation FortiOS 5, the FortiGate/FortiWiFi 30E series provides an integrated set of essential security technologies to protect all of your applications and data. You get advanced threat protection, including firewall, application control, advanced threat protection, IPS, VPN, and web filtering, all from one device that’s easy to deploy and manage. With our FortiGuard® security subscription services you’ll have automated protection against today’s sophisticated threats.Advanced Features :The FortiGate/FortiWiFi 30E offers beyond the industry’s best firewall with the latest in Advanced Threat Protection including Sandboxing and anti-bot protection, Feature Select Options for simplifying configurations and deployments, and Contextual Visibility for enhanced reporting and management.VDOMs on the FortiGate/FortiWiFi 30E let you segment networks to enable guest and employee access, or protect things like cardholder data. You get the flexibility to match your business needs and meet compliance standards like PCI and HIPAA.
Security Fabric :The Security Fabric allows security to dynamically expand and adapt as more and more workloads and data are added. Security seamlessly follows and protects data, users, and applications as they move between IoT, devices, and cloud environments throughout the network. FortiGates are the foundation of Security Fabric, expanding security via visibility and control by tightly integrating with other Fortinet security products and Fabric-Ready Partner solutions.FortiOS :Control all the security and networking capabilities across the entire FortiGate platform with one intuitive operating system. Reduce operating expenses and save time with a truly consolidated nextgeneration security platform.
Overview:Exceptional security and stellar performance at a disruptively low TCOThe SonicWALL TZ series of next generation firewalls (NGFW) is ideally suited for any organization that requires enterprise-grade network protection.SonicWALL TZ series firewalls provide broad protection with advanced security services consisting of onbox and cloud-based anti-malware, anti-spyware, application control, intrusion prevention system (IPS), and URL filtering. To counter the trend of encrypted attacks, the SonicWALL TZ series has the processing power to inspect encrypted SSL connections against the latest threats.Backed by the SonicWALL Global Response Intelligent Defense (GRID) network, the SonicWALL TZ series delivers continuous updates to maintain a strong network defense against cybercriminals. The SonicWALL TZ series is able to scan every byte of every packet on all ports and protocols with almost zero latency and no file size limitations.The SonicWALL TZ series features Gigabit Ethernet ports, optional integrated 802.11ac wireless, IPSec and SSL VPN, failover through integrated 3G/4G support, load balancing and network segmentation. The SonicWALL TZ series UTM firewalls also provide fast, secure mobile access over Apple iOS, Google Android, Amazon Kindle, Windows, MacOS and Linux platforms.The SonicWALL Global Management System (GMS) enables centralized deployment and management of SonicWALL TZ series firewalls from a single system.Managed security for distributed environments :Schools, retail shops, remote sites, branch offices and distributed enterprises need a solution that integrates with their corporate firewall. SonicWALL TZ series firewalls share the same code base—and same protection—as our flagship SuperMassive next-generation firewalls. This simplifies remote site management, as every administrator sees the same user interface (UI). GMS enables network administrators to configure, monitor and manage remote SonicWALL firewalls through a single pane of glass. By adding highspeed, secure wireless, the SonicWALL TZ series extends the protection perimeter to include customers and guests frequenting the retail site or remote
The SOHO offers affordable UTM firewalls for home and small businesses :Protect your organization with highly effective intrusion prevention, anti-malware, content/URL filtering and application control with the business-grade SonicWall TZ Series Unified Threat Management (UTM) firewalls. Eliminate network bottlenecks and increase productivity while also providing secure access to a broad range of mobile devices, including laptops, smartphones and tablets. Confidently deploy this secure, sophisticated small-business firewall appliance in a wide range of organizations, such as retail, branch/remote offices or home offices. With a SonicWall TZ Series firewall, you can be assured your wired and wireless networks are protected by a secure, sophisticated and widely deployed security platform.Features :SonicWall TZ Series Unified Threat Management (UTM) firewalls deliver high performance and proven best-in-class protection to small businesses with integrated intrusion prevention, anti-malware and content/URL filtering capabilities.Full-featured, advanced security :Deliver full-featured security that combines intrusion prevention, gateway anti-virus, anti-spyware, content filtering and anti-spam services, with intuitive, easy-to-use SonicWall TZ Series firewalls. Fast, reliable, enhanced performance :Examine all wired and wireless traffic for threats, without slowing down your network, using the patented1 SonicWall Reassembly-Free Deep Packet Inspection (RFDPI) technology. TZ Series firewalls also ensure bandwidth for critical business applications, while blocking unproductive applications. Broad, flexible, remote access :Provide mobile users with native VPN remote access clients for Apple iOS, Google Android, Windows 8.1, Mac OS® X, Kindle Fire and Linux, via your small-business firewall. This unique client also supports the firewall's capability to decontaminate threats from VPN traffic.
Overview:Exceptional security and stellar performance at a disruptively low TCOThe SonicWALL TZ series of next generation firewalls (NGFW) is ideally suited for any organization that requires enterprise-grade network protection.SonicWALL TZ series firewalls provide broad protection with advanced security services consisting of onbox and cloud-based anti-malware, anti-spyware, application control, intrusion prevention system (IPS), and URL filtering. To counter the trend of encrypted attacks, the SonicWALL TZ series has the processing power to inspect encrypted SSL connections against the latest threats.Backed by the SonicWALL Global Response Intelligent Defense (GRID) network, the SonicWALL TZ series delivers continuous updates to maintain a strong network defense against cybercriminals. The SonicWALL TZ series is able to scan every byte of every packet on all ports and protocols with almost zero latency and no file size limitations.The SonicWALL TZ series features Gigabit Ethernet ports, optional integrated 802.11ac wireless, IPSec and SSL VPN, failover through integrated 3G/4G support, load balancing and network segmentation. The SonicWALL TZ series UTM firewalls also provide fast, secure mobile access over Apple iOS, Google Android, Amazon Kindle, Windows, MacOS and Linux platforms.The SonicWALL Global Management System (GMS) enables centralized deployment and management of SonicWALL TZ series firewalls from a single system.Managed security for distributed environments :Schools, retail shops, remote sites, branch offices and distributed enterprises need a solution that integrates with their corporate firewall. SonicWALL TZ series firewalls share the same code base—and same protection—as our flagship SuperMassive next-generation firewalls. This simplifies remote site management, as every administrator sees the same user interface (UI). GMS enables network administrators to configure, monitor and manage remote SonicWALL firewalls through a single pane of glass. By adding highspeed, secure wireless, the SonicWALL TZ series extends the protection perimeter to include customers and guests frequenting the retail site or remote
Overview:The Dell SonicWALL TZ is an affordable, yet high-performing, line of enterprise-level firewalls designed for small and medium-sized businesses, remote and branch offices, and retail point-of-sale locations. SonicWALL TZ series offer these use cases an abundance of protection features as well as advanced security services that leverage on-box and cloud-based anti-malware, antispyware, intrusion prevention system, and URL filtering. Dell’s new line of firewalls are also specced to handle encrypted attacks as it is equipped with the processing punch needed to inspect encrypted SSL connections against the most recent threats. For this review, we will be looking at the TZ500, which is one of the models Dell targets towards SMB buyers. SonicWALL, which was acquired by Dell back in 2012, has been a market leader in advanced network security, secure remote access, email security for quite some time now, so their newest firewall is a welcomed addition to the StorageReview lab. Compared to the top offering TZ600 model, it features slightly lower throughput, less 1 GbE Copper interfaces (8 vs. 10), and doesn’t have a rear expansion slot. That being said, it certainly offers enough enterprise-grade protection and performance to halt cyberattacks all the while helping to expend to control of your company’s network. The SonicWALL TZ series also features Dell’s Global Management System (GMS), which allows administrators to deploy and manage SonicWALL TZ series firewalls from a single system at the central office.The SonicWALL TZ500 comes equipped with optional integrated 802.11ac wireless, IPSec and SSL VPN, failover through integrated 3G/4G support, load balancing and network segmentation, all of which combine advanced networking features with advanced security to boast a pretty impressive package.
Overview:The Dell SonicWALL TZ is an affordable, yet high-performing, line of enterprise-level firewalls designed for small and medium-sized businesses, remote and branch offices, and retail point-of-sale locations. SonicWALL TZ series offer these use cases an abundance of protection features as well as advanced security services that leverage on-box and cloud-based anti-malware, antispyware, intrusion prevention system, and URL filtering. Dell’s new line of firewalls are also specced to handle encrypted attacks as it is equipped with the processing punch needed to inspect encrypted SSL connections against the most recent threats. For this review, we will be looking at the TZ500, which is one of the models Dell targets towards SMB buyers. SonicWALL, which was acquired by Dell back in 2012, has been a market leader in advanced network security, secure remote access, email security for quite some time now, so their newest firewall is a welcomed addition to the StorageReview lab. Compared to the top offering TZ600 model, it features slightly lower throughput, less 1 GbE Copper interfaces (8 vs. 10), and doesn’t have a rear expansion slot. That being said, it certainly offers enough enterprise-grade protection and performance to halt cyberattacks all the while helping to expend to control of your company’s network. The SonicWALL TZ series also features Dell’s Global Management System (GMS), which allows administrators to deploy and manage SonicWALL TZ series firewalls from a single system at the central office.The SonicWALL TZ500 comes equipped with optional integrated 802.11ac wireless, IPSec and SSL VPN, failover through integrated 3G/4G support, load balancing and network segmentation, all of which combine advanced networking features with advanced security to boast a pretty impressive package.
Simplified management and lower costs :Get visibility into and control over activity across your network. Gain insight into users, apps, devices, threats, files, and vulnerabilities.Unified security services and task automation :Our integrated approach to threat defense reduces capital and operating costs as well as administrative complexity by consolidating multiple security services in a single platform. Automate security tasks to increase agility and speed remediation.Wide range of sizes and form factors :We have the platform for you: standalone options for small and midsize businesses, ruggedized appliances for extreme environments, midsize appliances for security at the Internet edge, and high-performance appliances for enterprise data centers.Highly effective in threat protection :Highly effective threat prevention and a full contextual awareness of users, infrastructure, applications, and content help you detect multi vector threats and automate the defense response.Low cost of ownership :Effective breach detection with low total cost of ownership offers protection value. Discover, understand, and stop malware and emerging threats missed by other security layers.
Superior business resiliency and protection :Gain business resiliency through superior security with sustained performance. The Firepower 2100 Series has an innovative dual multicore CPU architecture that optimizes firewall, cryptographic, and threat inspection functions simultaneously. Now, achieving security doesn’t come at the expense of network performance. Optimized performance and port density :Firewall throughput speeds from 2 Gbps to 8.5 Gbps. Support for sixteen (16) 1 GE ports on the low-end models. The high-end models support up to twenty-four (24) 1 GE ports or up to sixteen (16) 10 GE ports. All in a 1RU form factor. Innovative architecture :With its unique dual-CPU, multicore architecture, the 2100 maintains throughput performance when threat inspection is activated by routing different workloads to different chips. And enabling the threat protection features does not affect the firewall throughput.Management to meet your needs :Cisco Firepower NGFW is now even less time-consuming to configure and less costly to manage. You can choose from local, centralized, and cloud-based managers that fit your environment and the way you work.
Better security, faster speeds, smaller footprint :Stop more threats with our fully integrated next-generation firewall (NGFW) platform. The 4100 Series’ 1-rack-unit size is ideal at the Internet edge and in high-performance environments. It shows you what’s happening on your network, detects attacks earlier so you can act faster, and reduces management complexity.Performance and density optimized :Key capabilities include support for 1/10/40 Gigabit Ethernet interfaces, up to 60 Gbps stateful firewall throughput, low latency, and a 1 RU form factor.Unified management :Reduce complexity and simplify operations. Consolidate all security functions in a single management interface. It automatically prioritizes security events, recommends tailored security protections, and tracks and contains malware infections.
Modular security platform for service providers :This carrier-grade platform is ideal for data centers and other high-performance settings that require low latency and high throughput. Deliver scalable, consistent security to workloads and data flows across physical, virtual, and cloud environments. With tightly integrated services, the Firepower 9000 Series lowers costs and supports open, programmable networks. Scalable multiservice security :Eliminate security gaps. Integrate and provision multiple Cisco and Cisco partner security services dynamically across the network fabric. See and correlate policy, traffic, and events across multiple services. Expandable security modules :Flexibly scale your security performance. Meet business agility needs and enable rapid provisioning. Carrier-grade performance :NEBS-compliant configurations available. Elevate threat defense and network performance with low-latency, large flow handling, and orchestration of security services. Protect Evolved Programmable Network, Evolved Services Platform, and Application Centric Infrastructure architectures.
Overview: Meet the industry’s first adaptive, threat-focused next-generation firewall (NGFW) designed for a new era of threat and advanced malware protection. Cisco ASA with FirePOWER Services delivers integrated threat defense for the entire attack continuum - before, during, and after an attack - by combining the proven security capabilities of the Cisco ASA firewall with the industry-leading Sourcefire threat and advanced malware protection features together in a single device. The solution uniquely extends the capabilities of the Cisco ASA 5500-X Series Next-Generation Firewalls beyond what today’s NGFW solutions are capable of.Superior Multilayered Protection :Cisco ASA with FirePOWER Services brings distinctive threat-focused next-generation security services to the Cisco ASA 5500-X Series Next-Generation Firewalls and Cisco ASA 5585-X Adaptive Security Appliance firewall products. It provides comprehensive protection from known and advanced threats, including protection against targeted and persistent malware attacks (Figure 1). Cisco ASA with FirePOWER Services features these comprehensive capabilities:Site-to-site and remote access VPN and advanced clustering provide highly secure, high-performance access and high availability to help ensure business continuity.Granular Application Visibility and Control (AVC) supports more than 3,000 application-layer and risk-based controls that can launch tailored intrusion prevention system (IPS) threat detection policies to optimize security effectiveness.The industry-leading Cisco ASA with FirePOWER next-generation IPS (NGIPS) provides highly effective threat prevention and full contextual awareness of users, infrastructure, applications, and content to detect multivector threats and automate defense response.Reputation- and category-based URL filtering offer comprehensive alerting and control over suspicious web traffic and enforce policies on hundreds of millions of URLs in more than 80 categories.AMP provides industry-leading breach detection effectiveness, a low total cost of ownership, and superior protection value that helps you discover, understand, and stop malware and emerging threats missed by other security layers.
Unprecedented Network VisibilityCisco ASA with FirePOWER Services is centrally managed by the Cisco FireSIGHT Management Center. Management Center provides security teams with comprehensive visibility into and control over activity within the network. Such visibility includes users, devices, communication between virtual machines, vulnerabilities, threats, client-side applications, files, and websites. Holistic, actionable indications of compromise (IoCs) correlate detailed network and endpoint event information and provide further visibility into malware infections.Management Center also provides content awareness with malware file trajectory that aids infection scoping and root cause determination to speed time to remediation.Cisco Security Manager provides scalable and centralized network operations workflow management. It integrates a powerful suite of capabilities; including policy and object management, event management, reporting, and troubleshooting for Cisco ASA firewall functions. For small-scale and simple deployments, the Cisco Adaptive Security Device Manager (ASDM) is available to provide on-device, GUI-based firewall network operations management.Cisco’s enterprise-class management tools help administrators reduce complexity with unmatched visibility and control across NGFW deployments.Reduced Costs and ComplexityCisco ASA with FirePOWER Services incorporates an integrated approach to threat defense, reducing capital and operating costs and administrative complexity. It smoothly integrates with the existing IT environment, work stream, and network fabric. The purpose-built appliance family is highly scalable, performs at up to multigigabit speeds, and provides consistent and robust security across branch, Internet edge, and data centers in both physical and virtual environments.With Cisco FireSIGHT Management Center, administrators can streamline operations to correlate threats, assess their impact, automatically tune security policy, and easily attribute user identities to security events. Management Center continually monitors how the network is changing over time. New threats are automatically assessed to determine which can affect your business. Response efforts are then focused on remediation, and network defenses are adapted to changing threat conditions. Critical security activities such as policy tuning are automated, saving time and effort, while protections and countermeasures are maintained in an optimal state.Cisco FireSIGHT Management Center integrates easily with third-party security solutions through the eStreamer API to streamline operation workflows and fit existing network fabrics.
Overview:Meet the industry’s first adaptive, threat-focused next-generation firewall (NGFW) designed for a new era of threat and advanced malware protection. Cisco ASA with FirePOWER Services delivers integrated threat defense for the entire attack continuum - before, during, and after an attack - by combining the proven security capabilities of the Cisco ASA firewall with the industry-leading Sourcefire threat and advanced malware protection features together in a single device. The solution uniquely extends the capabilities of the Cisco ASA 5500-X Series Next-Generation Firewalls beyond what today’s NGFW solutions are capable of.Superior Multilayered ProtectionCisco ASA with FirePOWER Services brings distinctive threat-focused next-generation security services to the Cisco ASA 5500-X Series Next-Generation Firewalls and Cisco ASA 5585-X Adaptive Security Appliance firewall products. It provides comprehensive protection from known and advanced threats, including protection against targeted and persistent malware attacks (Figure 1). Cisco ASA with FirePOWER Services features these comprehensive capabilities:Site-to-site and remote access VPN and advanced clustering provide highly secure, high-performance access and high availability to help ensure business continuity.Granular Application Visibility and Control (AVC) supports more than 3,000 application-layer and risk-based controls that can launch tailored intrusion prevention system (IPS) threat detection policies to optimize security effectiveness.The industry-leading Cisco ASA with FirePOWER next-generation IPS (NGIPS) provides highly effective threat prevention and full contextual awareness of users, infrastructure, applications, and content to detect multivector threats and automate defense response.Reputation- and category-based URL filtering offer comprehensive alerting and control over suspicious web traffic and enforce policies on hundreds of millions of URLs in more than 80 categories.AMP provides industry-leading breach detection effectiveness, a low total cost of ownership, and superior protection value that helps you discover, understand, and stop malware and emerging threats missed by other security layers.
Superior Multilayered ProtectionCisco ASA with FirePOWER Services brings distinctive threat-focused next-generation security services to the Cisco ASA 5500-X Series Next-Generation Firewalls and Cisco ASA 5585-X Adaptive Security Appliance firewall products. It provides comprehensive protection from known and advanced threats, including protection against targeted and persistent malware attacks (Figure 1). Cisco ASA with FirePOWER Services features these comprehensive capabilities:Site-to-site and remote access VPN and advanced clustering provide highly secure, high-performance access and high availability to help ensure business continuity.Granular Application Visibility and Control (AVC) supports more than 3,000 application-layer and risk-based controls that can launch tailored intrusion prevention system (IPS) threat detection policies to optimize security effectiveness.The industry-leading Cisco ASA with FirePOWER next-generation IPS (NGIPS) provides highly effective threat prevention and full contextual awareness of users, infrastructure, applications, and content to detect multivector threats and automate defense response.Reputation- and category-based URL filtering offer comprehensive alerting and control over suspicious web traffic and enforce policies on hundreds of millions of URLs in more than 80 categories.AMP provides industry-leading breach detection effectiveness, a low total cost of ownership, and superior protection value that helps you discover, understand, and stop malware and emerging threats missed by other security layers.Unprecedented Network VisibilityCisco ASA with FirePOWER Services is centrally managed by the Cisco FireSIGHT Management Center. Management Center provides security teams with comprehensive visibility into and control over activity within the network. Such visibility includes users, devices, communication between virtual machines, vulnerabilities, threats, client-side applications, files, and websites. Holistic, actionable indications of compromise (IoCs) correlate detailed network and endpoint event information and provide further visibility into malware infections.
Overview:Meet the industry’s first adaptive, threat-focused next-generation firewall (NGFW) designed for a new era of threat and advanced malware protection. Cisco ASA with FirePOWER Services delivers integrated threat defense for the entire attack continuum - before, during, and after an attack - by combining the proven security capabilities of the Cisco ASA firewall with the industry-leading Sourcefire threat and advanced malware protection features together in a single device. The solution uniquely extends the capabilities of the Cisco ASA 5500-X Series Next-Generation Firewalls beyond what today’s NGFW solutions are capable ofSuperior Multilayered Protection :Cisco ASA with FirePOWER Services brings distinctive threat-focused next-generation security services to the Cisco ASA 5500-X Series Next-Generation Firewalls and Cisco ASA 5585-X Adaptive Security Appliance firewall products. It provides comprehensive protection from known and advanced threats, including protection against targeted and persistent malware attacks (Figure 1). Cisco ASA with FirePOWER Services features these comprehensive capabilities:Site-to-site and remote access VPN and advanced clustering provide highly secure, high-performance access and high availability to help ensure business continuity.Granular Application Visibility and Control (AVC) supports more than 3,000 application-layer and risk-based controls that can launch tailored intrusion prevention system (IPS) threat detection policies to optimize security effectiveness.The industry-leading Cisco ASA with FirePOWER next-generation IPS (NGIPS) provides highly effective threat prevention and full contextual awareness of users, infrastructure, applications, and content to detect multivector threats and automate defense response.Reputation- and category-based URL filtering offer comprehensive alerting and control over suspicious web traffic and enforce policies on hundreds of millions of URLs in more than 80 categories.AMP provides industry-leading breach detection effectiveness, a low total cost of ownership, and superior protection value that helps you discover, understand, and stop malware and emerging threats missed by other security layers.Reduced Costs and Complexity :Cisco ASA with FirePOWER Services incorporates an integrated approach to threat defense, reducing capital and operating costs and administrative complexity. It smoothly integrates with the existing IT environment, work stream, and network fabric. The purpose-built appliance family is highly scalable, performs at up to multigigabit speeds, and provides consistent and robust security across branch, Internet edge, and data centers in both physical and virtual environments.
Unprecedented Network Visibility :Cisco ASA with FirePOWER Services is centrally managed by the Cisco FireSIGHT Management Center. Management Center provides security teams with comprehensive visibility into and control over activity within the network. Such visibility includes users, devices, communication between virtual machines, vulnerabilities, threats, client-side applications, files, and websites. Holistic, actionable indications of compromise (IoCs) correlate detailed network and endpoint event information and provide further visibility into malware infections.Management Center also provides content awareness with malware file trajectory that aids infection scoping and root cause determination to speed time to remediation.Cisco Security Manager provides scalable and centralized network operations workflow management. It integrates a powerful suite of capabilities; including policy and object management, event management, reporting, and troubleshooting for Cisco ASA firewall functions. For small-scale and simple deployments, the Cisco Adaptive Security Device Manager (ASDM) is available to provide on-device, GUI-based firewall network operations management.Cisco’s enterprise-class management tools help administrators reduce complexity with unmatched visibility and control across NGFW deployments.Reduced Costs and Complexity :Cisco ASA with FirePOWER Services incorporates an integrated approach to threat defense, reducing capital and operating costs and administrative complexity. It smoothly integrates with the existing IT environment, work stream, and network fabric. The purpose-built appliance family is highly scalable, performs at up to multigigabit speeds, and provides consistent and robust security across branch, Internet edge, and data centers in both physical and virtual environments.With Cisco FireSIGHT Management Center, administrators can streamline operations to correlate threats, assess their impact, automatically tune security policy, and easily attribute user identities to security events. Management Center continually monitors how the network is changing over time. New threats are automatically assessed to determine which can affect your business. Response efforts are then focused on remediation, and network defenses are adapted to changing threat conditions. Critical security activities such as policy tuning are automated, saving time and effort, while protections and countermeasures are maintained in an optimal state.Cisco FireSIGHT Management Center integrates easily with third-party security solutions through the eStreamer API to streamline operation workflows and fit existing network fabrics.
Overview:Meet the industry’s first adaptive, threat-focused next-generation firewall (NGFW) designed for a new era of threat and advanced malware protection. Cisco ASA with FirePOWER Services delivers integrated threat defense for the entire attack continuum - before, during, and after an attack - by combining the proven security capabilities of the Cisco ASA firewall with the industry-leading Sourcefire threat and advanced malware protection features together in a single device. The solution uniquely extends the capabilities of the Cisco ASA 5500-X Series Next-Generation Firewalls beyond what today’s NGFW solutions are capable ofSuperior Multilayered Protection :Cisco ASA with FirePOWER Services brings distinctive threat-focused next-generation security services to the Cisco ASA 5500-X Series Next-Generation Firewalls and Cisco ASA 5585-X Adaptive Security Appliance firewall products. It provides comprehensive protection from known and advanced threats, including protection against targeted and persistent malware attacks (Figure 1). Cisco ASA with FirePOWER Services features these comprehensive capabilities:Site-to-site and remote access VPN and advanced clustering provide highly secure, high-performance access and high availability to help ensure business continuity.Granular Application Visibility and Control (AVC) supports more than 3,000 application-layer and risk-based controls that can launch tailored intrusion prevention system (IPS) threat detection policies to optimize security effectiveness.The industry-leading Cisco ASA with FirePOWER next-generation IPS (NGIPS) provides highly effective threat prevention and full contextual awareness of users, infrastructure, applications, and content to detect multivector threats and automate defense response.Reputation- and category-based URL filtering offer comprehensive alerting and control over suspicious web traffic and enforce policies on hundreds of millions of URLs in more than 80 categories.AMP provides industry-leading breach detection effectiveness, a low total cost of ownership, and superior protection value that helps you discover, understand, and stop malware and emerging threats missed by other security layers.Reduced Costs and Complexity :Cisco ASA with FirePOWER Services incorporates an integrated approach to threat defense, reducing capital and operating costs and administrative complexity. It smoothly integrates with the existing IT environment, work stream, and network fabric. The purpose-built appliance family is highly scalable, performs at up to multigigabit speeds, and provides consistent and robust security across branch, Internet edge, and data centers in both physical and virtual environments.
Superior business resiliency and protection :Gain business resiliency through superior security with sustained performance. The Firepower 2100 Series has an innovative dual multicore CPU architecture that optimizes firewall, cryptographic, and threat inspection functions simultaneously. Now, achieving security doesn’t come at the expense of network performance.Optimized performance and port density :Firewall throughput speeds from 2 Gbps to 8.5 Gbps. Support for sixteen (16) 1 GE ports on the low-end models. The high-end models support up to twenty-four (24) 1 GE ports or up to sixteen (16) 10 GE ports. All in a 1RU form factor. Innovative architecture :With its unique dual-CPU, multicore architecture, the 2100 maintains throughput performance when threat inspection is activated by routing different workloads to different chips. And enabling the threat protection features does not affect the firewall throughput. Integration adds value :Further strengthen your defenses. Share intelligence, context, and policy controls by integration with third-party and other Cisco security solutions. Enable automatic device quarantining and rapid threat containment with Cisco ISE.
Features :SonicOS Platform The SonicOS architecture is at the core of every SonicWall physical and virtual firewall including the NSv and NSa Series, SuperMassive Series and TZ Series. Refer to the SonicWall SonicOS Platform datasheet for the complete list of features and capabilities. Automated breach prevention NSv delivers complete advanced threat protection, including high-performance intrusion and malware prevention, and cloud-based sandboxing with SonicWall’s RTDMI technologyZone protection :NSv strengthens internal security by enabling segmentation of the network into multiple security zones, with intrusion prevention service keeping threats from propagating across the zone boundaries. Creating and applying access rules and NAT policies to traffic passing through the various interfaces, it can allow or deny internal or external network access based on various criteria. Secure communication :NSv ensures the data exchange between groups of virtual machines is done securely, including isolation, confidentiality, integrity, and information flow control within these networks via the use of segmentation. Data confidentiality :NSv blocks information theft and illegitimate access to protected data and services.
Overview:Superior user experienceSonicWave APs take advantage of the capabilities in 802.11ac Wave 2 plus features such as band steering and a built-in 2.5 GbE port to deliver highspeed wireless performance. Other features, including 4x4 MU-MIMO and beamforming, improve performance in higher density environments when using bandwidth-intensive applications such as HD multimedia, and cloud and mobile apps.Each SonicWave access point includes three radios. One operates in the less crowded 5 GHz frequency band, reducing interference from other devices while strengthening signal reliability. Another operates in the 2.4 GHz band to support legacy 802.11b/g/n clients. The third radio is dedicated to security and performs rogue AP detection, passive scanning and packet capturing. With four transmitting and four receiving antennas plus support for 4x4 MU-MIMO, SonicWave APs are engineered to optimize signal quality, range and reliability for wireless devices including Wave 2-enabled clients.For organizations with a substantial long-term investment in 802.11n, the SonicWALL SonicPoint N2 features an enterprise wireless chipset, dual radios, high-speed performance and all the advantages that SonicWALL Wireless Network Security solutions offer.Comprehensive threat prevention :SonicWall firewalls scan all wireless traffic coming into and going out of the network using deep packet inspection technology and then remove harmful threats such as malware and intrusions, even over SSL/ TLS encrypted connections. Other security and control capabilities such as content filtering, application control and intelligence and Capture Advanced Threat Protection provide added layers of protection. The Wireless Network Security solution also integrates additional security-related features including wireless intrusion detection and prevention, virtual access point segmentation, wireless guest services, RF monitoring and wireless packet capture.
Overview:Superior user experience :SonicWave APs take advantage of the capabilities in 802.11ac Wave 2 plus features such as band steering and a built-in 2.5 GbE port to deliver highspeed wireless performance. Other features, including 4x4 MU-MIMO and beamforming, improve performance in higher density environments when using bandwidth-intensive applications such as HD multimedia, and cloud and mobile apps.Each SonicWave access point includes three radios. One operates in the less crowded 5 GHz frequency band, reducing interference from other devices while strengthening signal reliability. Another operates in the 2.4 GHz band to support legacy 802.11b/g/n clients. The third radio is dedicated to security and performs rogue AP detection, passive scanning and packet capturing. With four transmitting and four receiving antennas plus support for 4x4 MU-MIMO, SonicWave APs are engineered to optimize signal quality, range and reliability for wireless devices including Wave 2-enabled clients.For organizations with a substantial long-term investment in 802.11n, the SonicWALL SonicPoint N2 features an enterprise wireless chipset, dual radios, high-speed performance and all the advantages that SonicWALL Wireless Network Security solutions offer.Comprehensive threat prevention :SonicWall firewalls scan all wireless traffic coming into and going out of the network using deep packet inspection technology and then remove harmful threats such as malware and intrusions, even over SSL/ TLS encrypted connections. Other security and control capabilities such as content filtering, application control and intelligence and Capture Advanced Threat Protection provide added layers of protection. The Wireless Network Security solution also integrates additional security-related features including wireless intrusion detection and prevention, virtual access point segmentation, wireless guest services, RF monitoring and wireless packet capture.
Overview:Superior user experience :SonicWave APs take advantage of the capabilities in 802.11ac Wave 2 plus features such as band steering and a built-in 2.5 GbE port to deliver highspeed wireless performance. Other features, including 4x4 MU-MIMO and beamforming, improve performance in higher density environments when using bandwidth-intensive applications such as HD multimedia, and cloud and mobile apps.Each SonicWave access point includes three radios. One operates in the less crowded 5 GHz frequency band, reducing interference from other devices while strengthening signal reliability. Another operates in the 2.4 GHz band to support legacy 802.11b/g/n clients. The third radio is dedicated to security and performs rogue AP detection, passive scanning and packet capturing. With four transmitting and four receiving antennas plus support for 4x4 MU-MIMO, SonicWave APs are engineered to optimize signal quality, range and reliability for wireless devices including Wave 2-enabled clients.For organizations with a substantial long-term investment in 802.11n, the SonicWALL SonicPoint N2 features an enterprise wireless chipset, dual radios, high-speed performance and all the advantages that SonicWALL Wireless Network Security solutions offer.Comprehensive threat prevention :SonicWall firewalls scan all wireless traffic coming into and going out of the network using deep packet inspection technology and then remove harmful threats such as malware and intrusions, even over SSL/ TLS encrypted connections. Other security and control capabilities such as content filtering, application control and intelligence and Capture Advanced Threat Protection provide added layers of protection. The Wireless Network Security solution also integrates additional security-related features including wireless intrusion detection and prevention, virtual access point segmentation, wireless guest services, RF monitoring and wireless packet capture.
SonicWall wireless firewalling :When a wireless device uses a SonicWall SonicPoint ACe wireless access point to communicate with a wireless device on anothersubnet or on a completely different network, traffic between the devices is forced to traverse the SonicWall network security appliance. This traversal enables security services to be enforced by SonicOS. Standard practice for wireless firewalling (where one wireless client is communicating with another) bypasses many of the critical security services. The following illustration shows the standard practice for wireless firewalling.Deployment requirements :SonicOS firmware• SonicWall SonicPoint ACe access points are centrally managed by SonicWall network security appliances running the following versions of SonicOS:• SonicOS 5.9.1.6 or a higher 5.9 release• SonicOS 6.2.5.1 or higherPower source :• Use the supplied power adaptor or an 802.3at compliant PoE injector or a PoE switch capable of providing 25 watts of power to each SonicPoint ACe.Internet connectivity• An active Internet connection is required for your firewall to download the latest SonicPoint firmware.Gigabit Ethernet connectivity• 802.11ac wireless hardware requires more bandwidth than a single (or even dual) 10/100 Ethernet connection can handle. Gigabit Ethernet connectivity between the WLAN and the LAN is required to take full advantage of 802.11ac speed.
FIREWALLS :SonicWall next-generation firewalls ensure that every byte of every packet coming into and going out of your network is inspected while maintaining high performance and low latency. By leveraging the SonicWall Capture Threat Network, we deliver superior protection for today and tomorrow.Wireless Network Security :Build a high-speed wireless network security solution that safeguards your wireless traffic from threats and delivers wired-like network security and performance.Security Subscriptions :Protect your organization from advanced security threats, gain greater security control, enhance productivity and lower costs with SonicWall network security services and add-ons to our firewall hardware.WAN Acceleration :Eliminate performance bottlenecks from data and file sharing applications and give users LAN-like application performance over your WAN by optimizing the bandwidth you already have.Cloud App Security :SonicWall Cloud App Security is a cloud service that provides CASB-like functionality, delivering real-time discovery, visibility and control of cloud application usage on the network.
Overview:Build a secure wireless network that safeguards your wireless traffic from threats and optimizes performance, with the SonicPoint Wireless Security Access Point Series. Combine SonicPoint Series 802.11ac wireless access points with industry-leading SonicWall firewalls to create a wireless network security solution that delivers wired-like network security and performance.GET FAST PERFORMANCESonicPoint Series wireless access points give you fast wireless access with enhanced signal quality and reliability. Take advantage of the capabilities in 802.11ac to achieve gigabit wireless performance. With support for IEEE 802.11a/b/g/n/ac standards, the SonicPoint Series enables your organization to use apps such as video and voice in higher density environments.SIMPLIFY DEPLOYMENT AND MANAGEMENTSonicPoints are simple to deploy into your new or existing network. SonicWall firewalls have a built-in wireless controller that automatically detects and configures SonicPoints across your network, easing setup. SonicPoints integrate tightly with SonicWall firewalls to offer a single pane of glass for wireless management and monitoring.
Overview:The mobilization of workforce has led to demand for anytime-anywhere access to network resources. This, along with increasing number of users like customers and partners connecting to an enterprise network from outside, and trends like rise in number of network users and devices, application explosion, virtualization, and more are leading to loss of security controls for enterprises over their networks. Cyberoam Next-Generation Firewalls (NGFW) with Layer 8 Identity-based technology offer actionable intelligence and controls to enterprises that allow complete security controls over L2-L8 for their future-ready security. Cyberoam’s Human Layer 8 acts like a standard abstract layer that binds with real Layers 2-7, enabling organizations to regain lost security controls.Cyberoam CR500iNG-XP offers inline application inspection and control, website filtering, HTTPS inspection, Intrusion Prevention System, VPN (IPSec and SSL) and granular bandwidth controls. Additional security features like WAF, Gateway Anti- Virus, Anti-Spam are also available. The FleXi Ports (XP) available in CR500iNG-XP appliances offer flexible network connectivity with I/O slots that allow additional Copper/Fiber 1G/10G ports on the same security appliance.Cyberoam security appliances offer high performance, assured Security, Connectivity and Productivity and an Extensible Security Architecture (ESA) for future-ready security in enterprises.
Overview:The mobilization of workforce has led to demand for anytime-anywhere access to network resources. This, along with increasing number of users like customers and partners connecting to an enterprise network from outside, and trends like rise in number of network users and devices, application explosion, virtualization, and more are leading to loss of security controls for enterprises over their networks. Cyberoam Next-Generation Firewalls (NGFW) with Layer 8 Identity-based technology offer actionable intelligence and controls to enterprises that allow complete security controls over L2- L8 for their future-ready security. Cyberoam’s Human Layer 8 acts like a standard abstract layer that binds with real Layers 2-7, enabling organizations to regain lost security controls.Cyberoam CR750iNG-XP offers inline application inspection and control, website filtering, HTTPS inspection, Intrusion Prevention System, VPN (IPSec and SSL) and granular bandwidth controls. Additional security features like WAF, Gateway AntiVirus, Anti-Spam are also available. The FleXi Ports (XP) available in CR750iNG-XP appliances offer flexible network connectivity with I/O slots that allow additional Copper/Fiber 1G/10G ports on the same security appliance.
Overview:The mobilization of workforce has led to demand for anytime-anywhere access to network resources. This, along with increasing number of users like customers and partners connecting to an enterprise network from outside, and trends like rise in number of network users and devices, application explosion, virtualization, and more are leading to loss of security controls for enterprises over their networks. Cyberoam Next-Generation Firewalls (NGFW) with Layer 8 Identity-based technology offer actionable intelligence and controls to enterprises that allow complete security controls over L2-L8 for their future-ready security. Cyberoam’s Human Layer 8 acts like a standard abstract layer that binds with real Layers 2-7, enabling organizations to regain lost security controls.Cyberoam CR1000iNG-XP offers inline application inspection and control, website filtering, HTTPS inspection, Intrusion Prevention System, VPN (IPSec and SSL) and granular bandwidth controls. Additional security features like WAF, Gateway Anti- Virus, Anti-Spam are also available. The FleXi Ports (XP) available in CR1000iNG-XP appliances offer flexible network connectivity with I/O slots that allow additional Copper 1G, Fiber 1G/10G ports on the same security appliance.Cyberoam security appliances offer high performance, assured Security, Connectivity and Productivity and an Extensible Security Architecture (ESA) for future-ready security in enterprises.
Overview:The mobilization of workforce has led to demand for anytime-anywhere access to network resources. This, along with increasing number of users like customers and partners connecting to an enterprise network from outside, and trends like rise in number of network users and devices, application explosion, virtualization, and more are leading to loss of security controls for enterprises over their networks. Cyberoam Next-Generation Firewalls (NGFW) with Layer 8 Identity-based technology offer actionable intelligence and controls to enterprises that allow complete security controls over L2- L8 for their future-ready security. Cyberoam’s Human Layer 8 acts like a standard abstract layer that binds with real Layers 2-7, enabling organizations to regain lost security controls.Cyberoam CR1500iNG-XP offers inline application inspection and control, website filtering, HTTPS inspection, Intrusion Prevention System, VPN (IPSec and SSL) and granular bandwidth controls. Additional security features like WAF, Gateway Anti- Virus, Anti-Spam are also available. The FleXi Ports (XP) available in CR1500iNG-XP appliances offer flexible network connectivity with I/O slots that allow additional Copper 1G, Fiber 1G/10G ports on the same security appliance.Cyberoam security appliances offer high performance, assured Security, Connectivity and Productivity and an Extensible Security Architecture (ESA) for future-ready security in enterprises.
Overview:The mobilization of workforce has led to demand for anytime-anywhere access to network resources. This, along with increasing number of users like customers and partners connecting to an enterprise network from outside, and trends like rise in number of network users and devices, application explosion, virtualization, and more are leading to loss of security controls for enterprises over their networks. Cyberoam Next-Generation Firewalls (NGFW) with Layer 8 Identity-based technology offer actionable intelligence and controls to enterprises that allow complete security controls over L2- L8 for their future-ready security. Cyberoam’s Human Layer 8 acts like a standard abstract layer that binds with real Layers 2-7, enabling organizations to regain lost security controls.Cyberoam CR1500iNG-XP offers inline application inspection and control, website filtering, HTTPS inspection, Intrusion Prevention System, VPN (IPSec and SSL) and granular bandwidth controls. Additional security features like WAF, Gateway Anti- Virus, Anti-Spam are also available. The FleXi Ports (XP) available in CR1500iNG-XP appliances offer flexible network connectivity with I/O slots that allow additional Copper 1G, Fiber 1G/10G ports on the same security appliance.Cyberoam security appliances offer high performance, assured Security, Connectivity and Productivity and an Extensible Security Architecture (ESA) for future-ready security in enterprises.
Overview:Cyberoam FleXi Ports (XP) are available in Cyberoam’s NG series FleXi Port security appliances (UTM, Next Generation Firewalls) starting CR200iNG-XP appliance model. As new technologies enter organizational networks, the limited I/O interfaces in security appliances result in connectivity options becoming a bottleneck in network upgrades. Organizations are either forced to design their networks around their existing security appliance or spend huge amount as security cost to adopt new connectivity options. Cyberoam’s FleXi Ports offer flexible network connectivity with I/O slots that allow additional Copper/Fiber 1G/10G ports on the same security appliance, allowing organizations to upgrade to new technologies easily and cost-effectively, making them future-ready.The FleXi Ports consolidate number of devices in a network, offering benefits of power efficiency, reduced network complexity and reduced operational costs and ensure investment protection in future for organizations.Business BenefitsFlexible network connectivity with I/O slots and Flexi PortsSupports Copper, Fiber 1GbE/10GbE connectivity optionsEasy, cost-effective upgrade to new technologiesConsolidates number of network devices, offering reduced complexity, power efficiency, less operational costsFlexibility to choose network connectivity options ensures lower costs today and investment protection in future
Overview:Cyberoam FleXi Ports (XP) are available in Cyberoam’s NG series FleXi Port security appliances (UTM, Next Generation Firewalls) starting CR200iNG-XP appliance model. As new technologies enter organizational networks, the limited I/O interfaces in security appliances result in connectivity options becoming a bottleneck in network upgrades. Organizations are either forced to design their networks around their existing security appliance or spend huge amount as security cost to adopt new connectivity options. Cyberoam’s FleXi Ports offer flexible network connectivity with I/O slots that allow additional Copper/Fiber 1G/10G ports on the same security appliance, allowing organizations to upgrade to new technologies easily and cost-effectively, making them future-ready.The FleXi Ports consolidate number of devices in a network, offering benefits of power efficiency, reduced network complexity and reduced operational costs and ensure investment protection in future for organizations.Business BenefitsFlexible network connectivity with I/O slots and Flexi PortsSupports Copper, Fiber 1GbE/10GbE connectivity optionsEasy, cost-effective upgrade to new technologiesConsolidates number of network devices, offering reduced complexity, power efficiency, less operational costsFlexibility to choose network connectivity options ensures lower costs today and investment protection in future
Overview:Cyberoam FleXi Ports (XP) are available in Cyberoam’s NG series FleXi Port security appliances (UTM, Next Generation Firewalls) starting CR200iNG-XP appliance model. As new technologies enter organizational networks, the limited I/O interfaces in security appliances result in connectivity options becoming a bottleneck in network upgrades. Organizations are either forced to design their networks around their existing security appliance or spend huge amount as security cost to adopt new connectivity options. Cyberoam’s FleXi Ports offer flexible network connectivity with I/O slots that allow additional Copper/Fiber 1G/10G ports on the same security appliance, allowing organizations to upgrade to new technologies easily and cost-effectively, making them future-ready.The FleXi Ports consolidate number of devices in a network, offering benefits of power efficiency, reduced network complexity and reduced operational costs and ensure investment protection in future for organizations.Business BenefitsFlexible network connectivity with I/O slots and Flexi PortsSupports Copper, Fiber 1GbE/10GbE connectivity optionsEasy, cost-effective upgrade to new technologiesConsolidates number of network devices, offering reduced complexity, power efficiency, less operational costsFlexibility to choose network connectivity options ensures lower costs today and investment protection in future
Overview:The Cyberoam CR2500iNG UTM Firewall offers Next-Generation Firewall (NGFW) capabilities with high performance. The Cyberoam CR2500iNG UTM Firewall offers inline application inspection and control, HTTPS inspection, Intrusion Prevention System, malware protection, secure remote access via VPN (IPSec and SSL) and granular bandwidth controls. The inline Layer 8 Identity-based controls with on-appliance reporting offer complete control & real-time visibility over user and network activities.Features14x10/100/1000 Ethernet ports4x1GbE SFP(Mini GBIC) Ports2 x 10GbE SFP(Mini GBIC) Ports36000 Mbps Firewall Throughput4000 Mbps UTM ThroughputBased on best-in-class hardware along with software to match, the NG series enables unprecedented throughput speeds for future-ready security in large enterprise networks. The Cyberoam NG series for large enterprises offer assured Security, Connectivity and Productivity. Its Extensible Security Architecture(ESA) supports feature enhancements that can be developed rapidly and deployed with minimum efforts, offering future-ready security to organisations.
Overview:Cyberoam FleXi Ports (XP) are available in Cyberoam’s NG series FleXi Port security appliances (UTM, Next Generation Firewalls) starting CR200iNG-XP appliance model. As new technologies enter organizational networks, the limited I/O interfaces in security appliances result in connectivity options becoming a bottleneck in network upgrades. Organizations are either forced to design their networks around their existing security appliance or spend huge amount as security cost to adopt new connectivity options. Cyberoam’s FleXi Ports offer flexible network connectivity with I/O slots that allow additional Copper/Fiber 1G/10G ports on the same security appliance, allowing organizations to upgrade to new technologies easily and cost-effectively, making them future-ready.The FleXi Ports consolidate number of devices in a network, offering benefits of power efficiency, reduced network complexity and reduced operational costs and ensure investment protection in future for organizations.Business BenefitsFlexible network connectivity with I/O slots and Flexi PortsSupports Copper, Fiber 1GbE/10GbE connectivity optionsEasy, cost-effective upgrade to new technologiesConsolidates number of network devices, offering reduced complexity, power efficiency, less operational costsFlexibility to choose network connectivity options ensures lower costs today and investment protection in future
Powerful HardwareThe NG series appliances come with a powerful hardware consisting of Gigahertz processors for nano second security processing along with Gigabit Ethernet ports and high port density. A complete overhaul of the appliance design has resulted into an unmatched performance gain with next-generation memory and more storage capacity.The all new Firmware CyberoamOSThe NG series appliances are based on CyberoamOS– the most intelligent and powerful Cyberoam firmware till date. The new firmware tightly integrates with the hardware for network and crypto acceleration to deliver high performance. The CyberoamOS also extracts the highest level of performance from a multi-core platform, along with offering minimum latency and improved processing speed with use of optimized Interrupt Rates and Fast Path technology. Its next-generation security features offer protection against newly evolving threats.Cyberoam NG series of Unified Threat Management appliances are the Next-Generation network security appliances that include UTM security features and performance required for future networks. The NG series for SOHO offer “the fastest UTMs made for SMBs” to small offices. The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.
Powerful HardwareThe NG series appliances come with a powerful hardware consisting of Gigahertz processors for nano second security processing along with Gigabit Ethernet ports and high port density. A complete overhaul of the appliance design has resulted into an unmatched performance gain with next-generation memory and more storage capacity.The all new Firmware CyberoamOSThe NG series appliances are based on CyberoamOS– the most intelligent and powerful Cyberoam firmware till date. The new firmware tightly integrates with the hardware for network and crypto acceleration to deliver high performance. The CyberoamOS also extracts the highest level of performance from a multi-core platform, along with offering minimum latency and improved processing speed with use of optimized Interrupt Rates and Fast Path technology. Its next-generation security features offer protection against newly evolving threats.Cyberoam NG series of Unified Threat Management appliances are the Next-Generation network security appliances that include UTM security features and performance required for future networks. The NG series for SOHO offer “the fastest UTMs made for SMBs” to small offices. The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.
Overview:CR15wiNG is the Next-Generation Unified Threat Management appliance with Wi-Fi access points that offer “the fastest UTMs made for SMBs” to small offices with high performance security over WLAN. CR15wiNG appliances come with 3x3 MIMO technology that greatly enhances wireless range and performance . It supports 802.11n/b/g wireless standards. Combined with security over wired networks offered by its range of UTM appliances, Cyberoam enables organizations to overcome the physical limitations of securely accessing network resources and offers more user flexibility, user productivity and lower network ownership costs.The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.Cyberoam's Layer 8 technology that treats user-identity as the 8th Layer or the HUMAN layer in the protocol stack, works even in WLAN environments, to allow Identity-based security policies in dynamic IP environment.
Overview:CR25iNG is the Next-Generation Unified Threat Management appliance with Wi-Fi access points that offer “the fastest UTMs made for SMBs” to small offices with high performance security over WLAN. CR25iNG appliances come with 3x3 MIMO technology that greatly enhances wireless range and performance . It supports 802.11n/b/g wireless standards. Combined with security over wired networks offered by its range of UTM appliances, Cyberoam enables organizations to overcome the physical limitations of securely accessing network resources and offers more user flexibility, user productivity and lower network ownership costs.The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.Cyberoam's Layer 8 technology that treats user-identity as the 8th Layer or the HUMAN layer in the protocol stack, works even in WLAN environments, to allow Identity-based security policies in dynamic IP environment.
Overview:CR25wiNG is the Next-Generation Unified Threat Management appliance with Wi-Fi access points that offer “the fastest UTMs made for SMBs” to small offices, with high performance security over WLAN. CR25wiNG appliances come with 3x3 MIMO technology that greatly enhances wireless range and performance. It supports 802.11n/b/g wireless standards. Combined with security over wired networks offered by its range of UTM appliances, Cyberoam enables organizations to overcome the physical limitations of securely accessing network resources and offers more user flexibility, user productivity and lower network ownership costs.The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.
Overview:Cyberoam NG series of Unified Threat Management appliances are the Next-Generation network security appliances that include UTM security features and performance required for future networks. The NG series for SOHO offer “the fastest UTMs made for SMBs” to small offices. The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.With Cyberoam NG series, businesses get assured Security, Connectivity and Productivity. The Layer 8 Technology treats User-Identity as the 8th Layer or the HUMAN layer in the protocol stack. It attaches User-Identity to security, which adds speed to an organization’s security by offering instant visibility into the source of attacks by username rather than only IP address. Cyberoam’s Extensible Security Architecture (ESA) supports feature enhancements that can be developed rapidly and deployed with minimum efforts, offering future-ready security to organizations.
Overview:CR35wiNG is the Next-Generation Unified Threat Management appliance with Wi-Fi access points that offer “the fastest UTMs made for SMBs” to small offices, with high performance security over WLAN. CR35wiNG appliances come with 3x3 MIMO technology that greatly enhances wireless range and performance. It supports 802.11n/b/g wireless standards. Combined with security over wired networks offered by its range of UTM appliances, Cyberoam enables organizations to overcome the physical limitations of securely accessing network resources and offers more user flexibility, user productivity and lower network ownership costs.The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.
Overview:CR50iNG is the Next-Generation Unified Threat Management appliance with Wi-Fi access points that offer “the fastest UTMs made for SMBs” to small offices, with high performance security over WLAN. CR50iNG appliances come with 3x3 MIMO technology that greatly enhances wireless range and performance. It supports 802.11n/b/g wireless standards. Combined with security over wired networks offered by its range of UTM appliances, Cyberoam enables organizations to overcome the physical limitations of securely accessing network resources and offers more user flexibility, user productivity and lower network ownership costs.The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.
Overview:CR100iNG is the Next-Generation Unified Threat Management appliance with Wi-Fi access points that offer “the fastest UTMs made for SMBs” to small offices, with high performance security over WLAN. CR100iNG appliances come with 3x3 MIMO technology that greatly enhances wireless range and performance. It supports 802.11n/b/g wireless standards. Combined with security over wired networks offered by its range of UTM appliances, Cyberoam enables organizations to overcome the physical limitations of securely accessing network resources and offers more user flexibility, user productivity and lower network ownership costs.The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.
Overview:Cyberoam NG series of Unified Threat Management appliances are the Next-Generation network security appliances that include UTM security features along with performance required for future networks. The NG series for SMEs are the “fastest UTMs” made for this segment. The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security to SMEs. With Cyberoam NG series, businesses get assured Security, Connectivity and Productivity. The Layer 8 Technology treats User-Identity as the 8th Layer or the HUMAN layer in the protocol stack. It attaches User-Identity to security, which adds speed to an organization’s security by offering instant visibility into the source of attacks by username rather than only IP address. Cyberoam’s Extensible Security Architecture (ESA) supports feature enhancements that can be developed rapidly and deployed with minimum efforts, offering future-ready security to organizations.
Overview:CR300iNG is the Next-Generation Unified Threat Management appliance with Wi-Fi access points that offer “the fastest UTMs made for SMBs” to small offices, with high performance security over WLAN. CR300iNG appliances come with 3x3 MIMO technology that greatly enhances wireless range and performance. It supports 802.11n/b/g wireless standards. Combined with security over wired networks offered by its range of UTM appliances, Cyberoam enables organizations to overcome the physical limitations of securely accessing network resources and offers more user flexibility, user productivity and lower network ownership costs.The best-in-class hardware along with software to match, enables the NG series to offer unmatched throughput speeds, compared to any other UTM appliance in this market segment. This assures support for future IT trends in organizations like high-speed Internet and rising number of devices in organizations – offering future-ready security for small office networks.
Overview:Cyberoam NG series of Unified Threat Management appliances are the Next-Generation network security appliances that include UTM security features along with performance required for future networks. The NG series for SMEs are the “fastest UTMs” made for this segment, offering unmatched throughput speeds compared to any other UTM appliance in this market. The FleXi Ports (XP) available in CR200iNG-XP UTM appliances offer flexible network connectivity with I/O slot that allows additional Copper/Fiber 1G/10G ports on the same security appliance. To SMEs who want to shift to Fiber 1GbE/10GbE connectivity, FleXi Ports give freedom from forced purchase of higher end security appliances to get desired I/O interfaces. FleXi Ports consolidate the number of devices in a network, offering benefits of power efficiency, reduced network complexity and reduced OPEX.With Cyberoam NG series, businesses get assured Security, Connectivity and Productivity. The Layer 8 Technology treats User-Identity as the 8th Layer or the HUMAN layer in the protocol stack. It attaches UserIdentity to security, which adds speed to an organization’s security by offering instant visibility into the source of attacks by username rather than only IP address. Cyberoam’s Extensible Security Architecture ( ESA) suppor t s f eat ur e enhancements that can be developed rapidly and deployed with minimum efforts, offering future-ready security to organizations.
Overview:Cyberoam NG series of Unified Threat Management appliances are the Next-Generation network security appliances that include UTM security features along with performance required for future networks. The NG series for SMEs are the “fastest UTMs” made for this segment, offering unmatched throughput speeds compared to any other UTM appliance in this market. The FleXi Ports (XP) available in CR300iNG-XP UTM appliances offer flexible network connectivity with I/O slot that allows additional Copper/Fiber 1G/10G ports on the same security appliance. To SMEs who want to shift to Fiber 1GbE/10GbE connectivity, FleXi Ports give freedom from forced purchase of higher end security appliances to get desired I/O interfaces. FleXi Ports consolidate the number of devices in a network, offering benefits of power efficiency, reduced network complexity and reduced OPEX.With Cyberoam NG series, businesses get assured Security, Connectivity and Productivity. The Layer 8 Technology treats User-Identity as the 8th Layer or the HUMAN layer in the protocol stack. It attaches UserIdentity to security, which adds speed to an organization’s security by offering instant visibility into the source of attacks by username rather than only IP address. Cyberoam’s Extensible Security Architecture ( ESA) suppor t s f eat ur e enhancements that can be developed rapidly and deployed with minimum efforts, offering future-ready security to organizations
Overview:Cyberoam FleXi Ports (XP) are available in Cyberoam’s NG series FleXi Port security appliances (UTM, Next Generation Firewalls) starting CR200iNG-XP appliance model. As new technologies enter organizational networks, the limited I/O interfaces in security appliances result in connectivity options becoming a bottleneck in network upgrades. Organizations are either forced to design their networks around their existing security appliance or spend huge amount as security cost to adopt new connectivity options. Cyberoam’s FleXi Ports offer flexible network connectivity with I/O slots that allow additional Copper/Fiber 1G/10G ports on the same security appliance, allowing organizations to upgrade to new technologies easily and cost-effectively, making them future-ready.The FleXi Ports consolidate number of devices in a network, offering benefits of power efficiency, reduced network complexity and reduced operational costs and ensure investment protection in future for organizations.Business BenefitsFlexible network connectivity with I/O slots and Flexi PortsSupports Copper, Fiber 1GbE/10GbE connectivity optionsEasy, cost-effective upgrade to new technologiesConsolidates number of network devices, offering reduced complexity, power efficiency, less operational costsFlexibility to choose network connectivity options ensures lower costs today and investment protection in future
Cyberoam virtual network security appliance range includes :CRiV-2C (Support upto 2 vCPU)CRiV-4C (Support upto 4 vCPU)CRiV-8C (Support upto 8 vCPU)CRiV-12C (Support upto 12 vCPU)The virtual platforms supported by Cyberoam virtual network security appliances:VMware ESX/ESXiVMware WorkstationVMware PlayerHyper-VKVMCitrix XenServer
Cyberoam virtual network security appliance range includes :CRiV-2C (Support upto 2 vCPU)CRiV-4C (Support upto 4 vCPU)CRiV-8C (Support upto 8 vCPU)CRiV-12C (Support upto 12 vCPU)The virtual platforms supported by Cyberoam virtual network security appliances:VMware ESX/ESXiVMware WorkstationVMware PlayerHyper-VKVMCitrix XenServer
OverviewWatchGuard Firebox T15 delivers complete enterprise-level network security for small office/home office and retail environments. Offering optional web filtering, intrusion prevention, antivirus and more. It can be used as a stand-alone solution or centrally managed from corporate headquarters. Flexible management tools and WatchGuard’s RapidDeploy technology enable administrators to quickly set up the Firebox T15 at remote locations so businesses can ensure that they protect where they connect. Firebox T15 provides 400 Mbps firewall throughput and three 1-Gigabit Ethernet ports. WatchGuard Dimension provides visibility into network activity and security events at no additional cost. Wireless models are available.DetailsThe WatchGuard Firebox T Series appliances bring enterprise-level network security to the small office/branch office and small retail environments that matches the reality of today's distributed work style. They can be used as a stand-alone solution or centrally managed from corporate headquarters. Flexible management tools and WatchGuard's RapidDeploy technology enable administrators to quickly set up a T Series device at remote locations so businesses can ensure that they protect everywhere they connect. T Series appliances sustain up to 1.2 Gbps firewall throughput and come in wired and wireless versions. WatchGuard Dimension, which provides real-time visibility into network activity and security events, is included at no additional cost.Ideal for Small office/home office and small retail environmentsRecommended User Count: 5Firewall Throughput: 400 MbpsVPN Throughput: 150 MbpsUTM Throughput: 90 MbpsConcurrent Sessions: 100,0001 Year Standard Support
TOTAL NETWORK PROTECTIONSmall businesses and remote locations have long been thought of as soft targets for attackers. WatchGuard Firebox T35 and T55 tabletop appliances bring enterprise-level network security to those small office/branch office and small retail environments that matches the reality of today’s distributed work style. Our unique product architecture enables smaller businesses to leverage best-in-class security services – from URL filtering and intrusion prevention to application control and data loss prevention – minus the cost and complexity of managing multiple single-point solutions.QUICK AND SIMPLE DEPLOYMENTCloud-based RapidDeploy technology, a configuration and deployment tool that comes standard with WatchGuard Firebox appliances, enables IT staff to create and store configuration data in the cloud – public or private – and have a new appliance directly shipped to its destination. Once the device arrives, it can connect to the cloud for a secure download of its configuration settings, saving staff travel time and money. This technology is particularly advantageous for large distributed enterprises where managing a multitude of devices efficiently across multiple locations and geographies is critical.EASY TO MANAGE AND UNDERSTANDFirebox T Series appliances are not only easy to initially configure and deploy, they are also designed with an emphasis on centralized management, making ongoing policy and network management simple and straightforward. WatchGuard Dimension, which is included with purchase, provides a suite of big data visibility and reporting tools that instantly identify and distill key network security threats, issues and trends so you can take immediate preventive or corrective action. Security is complex, running it doesn’t have to be.FEATURES & BENEFITSWireless versions of the T35 and T55 use 802.11ac operating in the 2.4 GHz and 5GHz bands for high performance and superior reliability.All logging and reporting functions included with purchase, with over 100 dashboards and reports including PCI and HIPAA.5 Gigabit Ethernet ports support high-speed LAN backbone infrastructures & gigabit WAN connections.PoE port to power a peripheral device such as a WatchGuard Secure Wi-Fi Access Point, allowing administrators to extend the reach of their networks without having to run costly AC power to the remote device.
TOTAL NETWORK PROTECTIONSmall businesses and remote locations have long been thought of as soft targets for attackers. WatchGuard Firebox T35 and T55 tabletop appliances bring enterprise-level network security to those small office/branch office and small retail environments that matches the reality of today’s distributed work style. Our unique product architecture enables smaller businesses to leverage best-in-class security services – from URL filtering and intrusion prevention to application control and data loss prevention – minus the cost and complexity of managing multiple single-point solutions.QUICK AND SIMPLE DEPLOYMENTCloud-based RapidDeploy technology, a configuration and deployment tool that comes standard with WatchGuard Firebox appliances, enables IT staff to create and store configuration data in the cloud – public or private – and have a new appliance directly shipped to its destination. Once the device arrives, it can connect to the cloud for a secure download of its configuration settings, saving staff travel time and money. This technology is particularly advantageous for large distributed enterprises where managing a multitude of devices efficiently across multiple locations and geographies is critical.EASY TO MANAGE AND UNDERSTANDFirebox T Series appliances are not only easy to initially configure and deploy, they are also designed with an emphasis on centralized management, making ongoing policy and network management simple and straightforward. WatchGuard Dimension, which is included with purchase, provides a suite of big data visibility and reporting tools that instantly identify and distill key network security threats, issues and trends so you can take immediate preventive or corrective action. Security is complex, running it doesn’t have to be.FEATURES & BENEFITSWireless versions of the T35 and T55 use 802.11ac operating in the 2.4 GHz and 5GHz bands for high performance and superior reliability.All logging and reporting functions included with purchase, with over 100 dashboards and reports including PCI and HIPAA.5 Gigabit Ethernet ports support high-speed LAN backbone infrastructures & gigabit WAN connections.PoE port to power a peripheral device such as a WatchGuard Secure Wi-Fi Access Point, allowing administrators to extend the reach of their networks without having to run costly AC power to the remote device.
TOTAL NETWORK PROTECTIONSmall businesses and remote locations have long been thought of as soft targets for attackers. WatchGuard Firebox T35 and T55 tabletop appliances bring enterprise-level network security to those small office/branch office and small retail environments that matches the reality of today’s distributed work style. Our unique product architecture enables smaller businesses to leverage best-in-class security services – from URL filtering and intrusion prevention to application control and data loss prevention – minus the cost and complexity of managing multiple single-point solutions.QUICK AND SIMPLE DEPLOYMENTCloud-based RapidDeploy technology, a configuration and deployment tool that comes standard with WatchGuard Firebox appliances, enables IT staff to create and store configuration data in the cloud – public or private – and have a new appliance directly shipped to its destination. Once the device arrives, it can connect to the cloud for a secure download of its configuration settings, saving staff travel time and money. This technology is particularly advantageous for large distributed enterprises where managing a multitude of devices efficiently across multiple locations and geographies is critical.EASY TO MANAGE AND UNDERSTANDFirebox T Series appliances are not only easy to initially configure and deploy, they are also designed with an emphasis on centralized management, making ongoing policy and network management simple and straightforward. WatchGuard Dimension, which is included with purchase, provides a suite of big data visibility and reporting tools that instantly identify and distill key network security threats, issues and trends so you can take immediate preventive or corrective action. Security is complex, running it doesn’t have to be.FEATURES & BENEFITSWireless versions of the T35 and T55 use 802.11ac operating in the 2.4 GHz and 5GHz bands for high performance and superior reliability.All logging and reporting functions included with purchase, with over 100 dashboards and reports including PCI and HIPAA.5 Gigabit Ethernet ports support high-speed LAN backbone infrastructures & gigabit WAN connections.PoE port to power a peripheral device such as a WatchGuard Secure Wi-Fi Access Point, allowing administrators to extend the reach of their networks without having to run costly AC power to the remote device.
OverviewSmall businesses and remote locations have long been thought of as soft targets for attackers. The WatchGuard T55 Firebox Firewall tabletop appliance bring enterprise-level network security to those small office/branch office and small retail environments that matches the reality of today's distributed work style.Perfect as stand-alone solutions for a small office, The WatchGuard T55 Firebox Firewall are ideal for larger organizations that want to extend easy-to-use, full UTM protection for remote workers and smaller sites. With WatchGuard Total Security Services, this appliance are small-footprint, cost-effective security powerhouses that deliver nearly every feature present in WatchGuard’s higher end UTM appliances, including all security capabilities such as ransomware protection and data loss prevention.Key FeaturesIncludes a one (1) year standard support licence subscription.Boosts five (5) Gigabit Ethernet RJ45 LAN interfaces.No need to compromise protection for strong performance or vice versa.Support high-speed LAN backbone infrastructures and Gigabit WAN connections.Best-of-breed security components into one platform for stronger security at big cost savings.Firewall throughput up to 1Gbps and VPN throughput upto 360Mbps to keep traffic moving.Brings enterprise-level network security to small offices and retail environments.Cloud-based RapidDeploy technology taking the delay out of the firewall deployment process.Allows small businesses to have access to enterprise-grade security.
Overview:Get Industry-leading Performance with the Firebox T70Many organizations today are dependent on fast, reliable and secure Internet connectivity, but are struggling to find network security solutions that can keep up with their ever growing needs. While many rack-mount solutions can keep up with today’s fastest fiber-to-the-premises speeds, there are not currently any tabletop security appliances available that have this capability, especially when running with additional security services enabled. This makes it difficult for SMBs and distributed enterprises to harness these powerful Internet speeds with the complete UTM protection they require.The Fastest Tabletop AvailableThe WatchGuard Firebox T70 is the fastest performing tabletop appliance available on the market today. The T70 is the only tabletop appliance that is capable of running full UTM services at over 1 gigabit per second, enabling you to keep up with lightning-fast fiber broadband speeds.The WatchGuard Firebox T70 will make network slowdown concerns a thing of the past, with blazing-fast performance capable of delivering full UTM protection at over 1 gigabit per second. With the release of the WatchGuard Firebox T70 tabletop network security appliance, customers can now enjoy the fast throughput that they want, with the industry-leading security that they need. The WatchGuard T70 is also one of the only tabletop appliances available today that provides users two Power-over-Ethernet (PoE) ports enabling power to peripheral devices, such as wireless access points and security cameras.
Overview:Up to 8 Gbps firewall throughput, 2.6 Gbps UTM throughputBecause smaller companies are generally less protected and easier to break into, small business has become the new big target for cyber attacks. The Firebox® M270 and M370 firewalls are specifically engineered to defend all types of small businesses against attacks that are no less fierce than those targeting larger organizations. Our unique product architecture enables SMBs to leverage best-in-class security services – from URL filtering and intrusion prevention to application control and data loss prevention - without the cost and complexity of running multiple single-point solutions. The M270 and M370 are part of WatchGuard’s award-winning Firebox security platform. The platform not only provides the most complete suite of unified security controls on the market today, it has consistently been the first to offer solutions for addressing new and evolving network threats including advanced malware and ransomware.Blazing Fast PerformanceFirebox M270 and M370 Unified Threat Management (UTM) solutions are up to 3 times faster than competing products with all security layers turned on, and up to 94 percent faster performing HTTPS inspection, according to the independent test lab Miercom. This ensures you never have to compromise network security for performance.Quick And Simple DeploymentSMBs usually have smaller, less technical staff, which can make network expansion challenging. RapidDeploy – a powerful, cloud-based deployment and configuration tool – comes standard with WatchGuard Firebox appliances. With it, IT staff can create and store configuration data in the cloud – public or private – and have the appliance directly shipped to its destination. Once the device arrives, it can connect to the cloud for a secure download of its configuration settings, saving your staff travel time and money.Easy To Manage And UnderstandThe M270 and M370 are not only easy to initially configure and deploy, they are also designed with an emphasis on centralized management, making ongoing policy and network management simple and straightforward. WatchGuard Dimension, included with purchase, provides a suite of big data visibility and reporting tools that instantly identify and distill key network security threats, issues and trends so you can take immediate preventive or corrective action. Security is complex, running it doesn’t have to be.
Performance Overview: Security Processor: 4x 1.4 GHzMemory (RAM): 1 GB 1 GbE Copper interfaces : 10 Expansion : Expansion Slot (Rear), 2 USB Firewall inspection throughput: 1.5 Gbps Full DPI throughput: 500 Mbps Application inspection throughput:1.1 Gbps IPS throughput : 1.1 Gbps Anti-malware inspection throughput : 500 Mbps IMIX throughput : 900 Mbps SSL Inspection and Decryption (DPI SSL) :200 Mbps VPN throughput : 1.1 Gbps Connections per second : 12,000Maximum connections (SPI) : 150,000Maximum connections (DPI) : 125,000 Single Sign-On (SSO) Users : 500 VLAN interfaces : 50SonicPoints supported (Maximum) : 24 VPN :Site-to-Site VPN Tunnels : 50 IPSec VPN clients (Maximum) : 2 (25) SSL VPN licenses (Maximum) : 2 (200) Virtual assist bundled (Maximum) : 1 (30-day trial) Encryption/Authentication : DES, 3DES, AES (128, 192, 256-bit), MD5, SHA-1, Suite B CryptographyKey exchange : Diffie Hellman Groups 1, 2, 5, 14Route-based VPN : RIP, OSPFCertificate support : Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEPVPN features : Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPNGlobal VPN client platforms supported : Microsoft® Windows Vista 32/64-bit, Windows 7 32/64-bit, Windows 8.0 32/64-bit, Windows 8.1 32/64-bitNetExtender : Microsoft Windows Vista 32/64-bit, Windows 7, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Mac OS X 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSEMobile Connect : Apple® iOS, Mac OS X, Google® Android™, Kindle Fire, Windows 8.1 (Embedded) Security Services:Deep Packet Inspection services : Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, DPI SSLContent Filtering Service (CFS) : HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid listsEnforced Client Anti-Virus and Anti-Spyware : McAfee®Comprehensive Anti-Spam Service : SupportedApplication Intelligence and Control : Yes Application Visualization : YesNetworking:IP address assignment : Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relayNAT modes : 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent modeRouting protocols : BGP, OSPF, RIPv1/v2, static routes, policy-based routing, multicast QoS : Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM)Authentication : XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services, CitrixLocal user database : 150 VoIP : Full H.323v1-5, SIPStandards : TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3Certifications : VPNC, IPv6 (Phase 2)Certifications pending : Common Criteria NDPP, FIPS 140-2 (with Suite B) Level 2, ICSA Firewall, ICSA Anti-virus, UC APLCommon Access Card (CAC) : SupportedHigh Availability : Active/Standby with stateful synchronizationHardware:Form factor : Desktop Power Supply (W) : 36W external Maximum power consumption (W) : 13.4 / 17.7Input power : 100 to 240 VAC, 50-60 Hz, 1 ATotal heat dissipation : 45.9 / 60.5 BTU Dimensions : 3.5x15x22.5cm Weight : 0.92 Kg / 2.03 lbs & 1.05 Kg / 2.31 lbs WEEE weight : 1.34 Kg / 2.95 lbs & 1.48 Kg / 3.26 lbs Shipping weight : 1.93 Kg / 4.25 lbs & 2.07 Kg / 4.56 lbs MTBF (Years) : 20 / 12Environment : 40-105° F, 0-40° CHumidity : 5-95% non-condensing
Firewall Throughput (1518/512/64 byte UDP): 5 / 5 / 5 GbpsIPsec VPN Throughput (512 byte) 1: 4.4 GbpsIPS Throughput (Enterprise Mix) 2: 1 GbpsNGFW Throughput (Enterprise Mix) 2, 4: 800 MbpsThreat Protection Throughput (Ent. Mix) 2, 5: 600 MbpsFirewall Latency: 4 µsConcurrent Sessions: 700,000New Sessions/Sec: 35,000 Firewall Policies :5,000Max G/W to G/W IPSEC Tunnels: 200Max Client to G/W IPSEC Tunnels: 250SSL VPN Throughput: 490 MbpsConcurrent SSL VPN Users (Recommended Maximum, Tunnel Mode): 200SSL Inspection Throughput (IPS, avg. HTTPS) 3: 310 MbpsApplication Control Throughput (HTTP 64K) 2: 990 MbpsMax FortiAPs (Total / Tunnel): 10 / 5Max FortiSwitches: 8Max FortiTokens: 500Virtual Domains ( Default/Max): 10 / 10Interfaces: 5x GE RJ45Power Supplies: Single AC PSForm Factor: Desktop
Firewall Throughput (1518/512/64 byte UDP): 0.95 GbpsIPsec VPN Throughput (512 byte) 1: 75 MbpsIPS Throughput (Enterprise Mix) 2: 300 MbpsNGFW Throughput (Enterprise Mix) 2, 4: 200 MbpsThreat Protection Throughput (Ent. Mix) 2, 5: 150 MbpsFirewall Latency: 130 µsConcurrent Sessions: 900,000New Sessions/Sec: 15000Firewall Policies: 5000Max G/W to G/W IPSEC Tunnels: 200Max Client to G/W IPSEC Tunnels: 250SSL VPN Throughput: 35 MbpsConcurrent SSL VPN Users (Recommended Maximum, Tunnel Mode): 100SSL Inspection Throughput (IPS, avg. HTTPS) 3: 125 MbpsApplication Control Throughput (HTTP 64K) 2: 400 MbpsMax FortiAPs (Total / Tunnel): 2 / 2Max FortiSwitches: 8Max FortiTokens: 500Virtual Domains ( Default/Max): 5 / 5Interfaces: 5x GE RJ45Power Supplies: Single AC PSForm Factor: DesktopVariants: WiFi, 3G4G, LENC
Firewall Throughput : 2.5GbpsUTM Throughput : 550MbpsIPS Throughput : 1.25GbpsAV Throughput : 550MbpsIMIX Throughput : 850MbpsVPN Throughput : 550MbpsConcurrent SPI Connections : 50,000Concurrent DPI Connections : 50,000New Connections per Second : 5,000SSL Inspection / Decryption : 750Mbps
Interfaces: 4 x 2.5-GbE SFP, 4 x 2.5-GbE, 12 x 1-GbE, 1 GbE Management ConsoleManagement : CLI, SSH, GUI, GMSNodes Supported : UnrestrictedRAM : 2 GBSite-to-Site VPN Tunnels : 1,000Global VPN Clients (Maximum) : 50 (1,000)SSL VPN NetExtender Clients (Maximum) : 2 (350)VLAN Interfaces : 256SonicPoints Wireless Controller : StandardWWAN Failover (4G/LTE) : StandardNetwork Switch Management : StandardFirewall Inspection Throughput : 3.0 GbpsFull DPI Throughput (GAV/GAS/IPS) : 600 MbpsApplication Inspection Throughput : 1.4 GbpsIPS Throughput : 1.4 GbpsAnti-Malware Inspection Throughput : 600 MbpsIMIX Throughput : 700 MbpsSSL DPI Throughput : 300 MbpsVPN Throughput : 1.5 GbpsLatency : 38 ?sMaximum SPI Connections : 1MMaximum DPI Connections : 500KDefault/Maximum Connections (DPI SSL) : 12,000/13,500New Connections/Sec : 15,000Logging and Reporting : Analyzer, Local Log, SyslogNetwork Traffic Visualization : StandardNetflow/IPFIX Reporting : StandardSNMP : StandardAuthentication : LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, Terminal Services, CitrixDynamic Routing : BGP, OSPF, RIP