SlideShare uma empresa Scribd logo

Ds nsa series_us_10_april10

Yustinus Malawau
Yustinus Malawau
1 de 4
Baixar para ler offline
The SonicWALL Network Security Appliance Series N E T WO R K SECU R I T Y Next Generation Unified Threat Management Protection Organizations of all sizes depend on their networks to access internal and external mission-critical applications. As advances in networking continue to provide tremendous benefit to organizations, they are increasingly challenged by sophisticated and financially-motivated attacks designed to disrupt communication, degrade performance and compromise data. n SonicWALL’s next Malicious attacks penetrate outdated stateful packet inspection firewalls by exploiting higher network generation security levels. Point products add layers of security, but are costly, difficult to manage, limited in controlling network misuse and ineffective against the latest multipronged attacks. The SonicWALL® Network n Scalable multi-core Security Appliance (NSA) Series revolutionizes network security, utilizing a breakthrough multi-core hardware and design and patented Reassembly-Free Deep Packet Inspection™ (RFDPI) technology* offering Reassembly-Free Deep complete protection without compromising network performance. This platform was first made Packet Inspection available on the SonicWALL E-Class NSA Series, and it is now available for mid-sized organizations. n Stateful High Availability The NSA Series overcomes the limitations of existing security solutions by scanning the entirety of and load balancing each packet for current internal and external threats in real time. Built on a high-speed multi-core features processing platform, the NSA Series enables deep packet inspection without adversely impacting n High performance the performance of mission-critical networks and applications. and lowered TCO The NSA Series applies next-generation Unified Threat Management (UTM) against a n Advanced routing services comprehensive array of attacks, combining intrusion prevention, anti-virus and anti- and networking features spyware with the application-level control of SonicWALL Application Intelligence Service. With advanced routing, stateful high-availability and high-speed IPSec and SSL VPN technology, n Standards-based Voice the NSA Series adds security, reliability, functionality and productivity to branch offices, central over IP (VoIP) sites and distributed mid-enterprise networks, while minimizing cost and complexity. n Secure distributed wireless Comprised of the SonicWALL NSA 240, 2400, NSA 3500 and NSA 4500, the NSA Series offers a LAN services scalable range of solutions designed to meet the network security needs of any organization. n Onboard Quality of Features and Benefits Service (QoS) SonicWALL’s next generation security incorporates Advanced routing services and networking features a new level of UTM that integrates intrusion prevention, incorporate advanced networking and security gateway anti-virus and anti-spyware and features the technology including 802.1q VLANs, Multi-WAN failover, Application Intelligence Service suite of configurable zone and object-based management, load balancing, tools to prevent data leakage and offer granular advanced NAT modes and more, providing granular application control. configuration flexibility and comprehensive protection Scalable multi-core hardware and Reassembly-Free at the administrator’s discretion. Deep Packet Inspection scans and eliminates threats Standards-based Voice over IP (VoIP) capabilities of unlimited file sizes, and provides virtually unrestricted provide the highest levels of security for every element of concurrent connections with uncompromising speed. the VoIP infrastructure, from communications equipment The NSA 240 can be configured using primary or to VoIP-ready devices such as SIP Proxies, H.323 Gatekeepers secondary modem or 3G wireless interfaces for future- and Call Servers. proofed extensibility. Secure distributed wireless LAN services enable the Stateful High Availability and load balancing appliance to function as a secure wireless switch and features in SonicOS 5.5 Enhanced maximize total controller that automatically detects and configures network bandwidth and maintain seamless network SonicPoints, SonicWALL wireless access points, for secure ™ uptime, delivering uninterrupted access to mission-critical remote access in distributed network environments. resources, and ensuring that VPN tunnels and other network Onboard Quality of Service (QoS) features use industry traffic will not be interrupted in the event of a failover. standard 802.1p and Differentiated Services Code Points High performance and lowered TCO are achieved (DSCP) Class of Service (CoS) designators to provide by using the processing power of multiple cores in powerful and flexible bandwidth management that is unison to dramatically increase throughput and provide vital for VoIP, multimedia content and business-critical simultaneous inspection capabilities, while lowering applications. power consumption. *U.S. Patent 7,310,815–A method and apparatus for data stream analysis and blocking.
Dynamic Security Architecture and Management SonicWALL Deep Packet Inspection Architecture Eliminated Threats & Non-business Traffic SonicWALL Real-time Automatic Threat Application Intelligence Intrusion Prevention 3 1 Gateway Anti-Virus Database Updates Unified Threat Content Filtering Anti-Spyware Clean VPN Management Clean Traffic Firewall Emerging Blended Threats Forwarding Viruses Engine Network I/O Engine Routing Spyware Traffic Traffic PROT Bandwidth L4 L2 L7 L3 IN Management Bandwidth OUT Exploits Management Defrag Stateful Classification and Transformation Normal Flow Order Presentation 2 Update Engine Best-in-Class Threat Protection 1 SonicWALL deep packet inspection protects against This functionality allows threats to be identified and network risks such as viruses, worms, Trojans, spyware, eliminated over unlimited file sizes and unrestricted phishing attacks, emerging threats and Internet misuse. concurrent connections, without interruption. Application Application Intelligence adds highly- 3 The Network Security Appliance Series provides configurable controls to prevent data leakage and dynamic network protection through continuous, manage bandwidth at the application level. automated security updates, protecting against 2 The SonicWALL Reaseembly-Free Deep Packet emerging and evolving threats, without requiring Inspection (RFDPI) technology utilizes SonicWALL’s any administrator intervention. multi-core architecture to scan packets in real time without stalling traffic in memory. Unified Threat Management Load Balancing Multi-processor Core with Deep Packet Inspection Deep Packet Inspection Architecture Single processor designs that include multiple Intrusion Prevention Application Control Gateway Anti-Virus Content Filtering Anti-Spyware protection technologies are severely limited Clean VPN Firewall Processor UTM Load Balancing by a single centralized processor. SonicWALL UTM load balancing integrates a high-speed Processor deep packet inspection and traffic classification Tra c In Tra c Out engine onto multiple security cores inspecting Processor applications, files and content-based traffic in real time without significantly impacting Processor Inspection Performance performance or scalability. This enables the scanning and control of threats for networks Processor that carry bandwidth intensive and latency sensitive applications. Eliminated Threats Suppliers Internet Clean Tra c Mobile Users UTM Engine Internal Network Telecommuters SonicWALL Clean VPN The Network Security Appliance Series includes innovative SonicWALL Clean VPN™ technology which decontaminates vulnerabilities and malicious code from remote mobile users Centralized Policy Management and branch offices traffic before it enters the corporate The Network Security Appliance Series can be managed network, and without user intervention. using the SonicWALL Global Management System (GMS), which provides flexible, powerful and intuitive tools to centrally manage configurations, view real-time monitoring metrics and integrate policy and compliance reporting.
Flexible, Customizable Deployment Options – NSA Series At-A-Glance Every SonicWALL Network Security Appliance solution delivers next generation Unified Threat Management Internet protection, utilizing a breakthrough multi-core hardware design and Reassembly-Free Deep Packet Branch Office Inspection for internal and external network protection without compromising network performance. Each Reporting and analysis NSA Series product combines high-speed intrusion prevention, file and content inspection, and powerful Application Intelligence Service controls with an extensive array of advanced networking and flexible configuration features. The NSA Series offers an Fixed accessible, affordable platform that is easy to deploy NSA Series Telecommuter and manage in a wide variety of corporate, branch office and distributed network environments. n The SonicWALL NSA 4500 is ideal for corporate central-site and large distributed environments requiring high throughput capacity and performance n The SonicWALL NSA 3500 is ideal for corporate, SonicPoint-N GMS Server VoIP Corporate Desktop Corporate Desktop Corporate Desktop Corporate Desktop Servers branch office and distributed environments needing Centralized Marketing VLAN Finance VLAN significant throughput capacity and performance Management Wireless Laptops Corporate Headquarters/Branch Office n The SonicWALL NSA 2400 is ideal for small- to medium-sized corporate and branch office Server Enforced Client VPN SSL VPN Global Content Filtering Gateway Anti-Virus, Anti-Virus and Anti-Virus Remote VPN Service Anti-Spyware, Intrusion environments concerned about throughput capacity Anti-Spyware Servers Anti-Threat and Anti-Spyware Client PCs Anti- Access Upgrade Client Web Site Prevention and Application and Content Firewall Protection Threat Protection and performance Usage Control Perimeter and Network Protection n The SonicWALL NSA 240 is ideal for small- to medium- sized businesses and branch office sites Security Services and Upgrades Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention Dynamic Support Services are available 8x5 or 24x7 depending Service and Application Intelligence Service delivers on customer needs. Features include world-class technical intelligent, real-time network security protection against support, crucial firmware updates and upgrades, access to sophisticated application layer and content-based attacks extensive electronic tools and timely hardware replacement including viruses, spyware, worms, Trojans and software to help organizations get the greatest return on their vulnerabilities such as buffer overflows. Application Intelligence Service SonicWALL investment. delivers a suite of configurable tools designed to prevent data leakage while Global VPN Client Upgrades utilize a software client that is providing granular application-level controls. installed on Windows-based computers and increase workforce Enforced Client and Server Anti-Virus and Anti-Spyware productivity by providing secure access to email, files, intranets, delivers comprehensive virus and spyware protection for laptops, and applications for remote users. Upgrade licenses are desktops and servers using a single integrated client and offers available in a variety of user counts allowing this solution to automated network-wide enforcement of anti-virus and scale as the organization grows. anti-spyware policies, definitions and software updates. SSL VPN Remote Access Upgrades provide clientless remote Content Filtering Service enforces protection and productivity network level access for PC, Mac and Linux-based systems. With policies by employing an innovative rating architecture, utilizing integrated SSL VPN technology, SonicWALL UTM appliances a dynamic database to block up to 56 categories of objectionable enable seamless and secure remote access to email, files, Web content. intranets, and applications from a variety of client platforms via NetExtender, a lightweight client that is pushed onto the user’s machine. NetExtender is installed and configured automatically, requiring no user ViewPoint Reporting delivers easy-to-use, Web-based capabilities interaction. that provide administrators with instant comprehensive insight into network performance and security. Delivered through a SonicWALL Comprehensive Anti-Spam Service blocks spam series of historical reports using dashboards and detailed phishing and virus-laden emails at the gateway. There is no need summaries, ViewPoint helps organizations of all sizes track to redirect an MX Record or send email to another vendor, with Internet usage, fulfill regulatory compliance requirements and monitor the one click the service is activated and immediately starts blocking security status of their network. junk email and saving valuable network bandwidth. SonicWALL® Virtual Assist is a remote support tool that enables a technician to assume control of a PC or laptop for the purpose of providing remote technical assistance. With permission, the technician can gain instant access to a computer using a Web browser, making it easy to diagnose and fix a problem remotely without the need for a pre-installed “fat” client.
Specifications Firewall NSA 240 NSA 2400 NSA 3500 NSA 4500 SonicOS Version SonicOS Enhanced 5.6 (or higher) Stateful Throughput1 600 Mbps 775 Mbps 1.5 Gbps 2.75 Gbps GAV Performance 2 115 Mbps 160 Mbps 350 Mbps 690 MBps IPS Performance 2 195 Mbps 275 Mbps 750 Mbps 1.4 Gbps Network Security Appliance 4500 UTM Performance 2 110 Mbps 150 Mbps 240 Mbps 600 Mbps 01-SSC-7012 IMIX Performance 2 195 Mbps 235 Mbps 580 Mbps 700 Mbps NSA 4500 TotalSecure* (1-year) Maximum Connections 3 85,000/110,000 4 225,000 325,000 500,000 01-SC-7032 Maximum UTM Connections 32,000/50,000 4 125,000 175,000 250,000 New Connections/Sec 2,000 4,000 7,000 10,000 Nodes Supported Unrestricted Denial of Service Attack Prevention 22 classes of DoS, DDoS and scanning attacks SonicPoints Supported (Maximum) 16 32 32 64 VPN NSA 240 NSA 2400 NSA 3500 NSA 4500 3DES/AES Throughput 5 150 Mbps 300 Mbps 625 Mbps 1.0 Gbps Site-to-Site VPN Tunnels 25/50 4 75 800 1,500 Bundled Global VPN Client Licenses 2 (25) 10 (250) 50 (1,000) 500 (3,000) Network Security Appliance 3500 (Maximum) 01-SSC-7016 Bundled SSL VPN Licenses (Maximum) 2 (15) 2 (25) 2 (30) 2 (30) NSA 3500 TotalSecure* (1-year) Virtual Assist Bundled (Maximum) 1 30-day trial (5) 1 (5) 2 (10) 2 (10) 01-SC-7033 Encryption/Authentication/DH Group DES, 3DES, AES (128, 192, 256-bit), MD5, SHA-1/DH Groups 1, 2, 5, 14 Key Exchange Key Exchange IKE, IKEv2, Manual Key, PKI (X.509), L2TP over IPSec Route-Based VPN Yes (OSPF, RIP) Certificate Support Verisign, Thawte, Cybertrust, RSA Keon, Entrust, and Microsoft CA for SonicWALL-to-SonicWALL VPN, SCEP Dead Peer Detection Yes DHCP Over VPN Yes IPSec NAT Traversal Yes Redundant VPN Gateway Yes Global VPN Client Platforms Supported Microsoft® Windows 2000, Windows XP, Microsoft® Vista 32-bit/64 bit, Windows 7 Network Security Appliance 2400 SSL VPN Platforms Supported Microsoft® Windows 2000 / XP / Vista 32/64-bit / Windows 7, Mac 10.4+, Linux FC 3+ / Ubuntu 7+ / OpenSUSE 01-SSC-7020 Security Services NSA 240 NSA 2400 NSA 3500 NSA 4500 NSA 2400 TotalSecure* (1-year) Deep Packet Inspection Service Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention and Application Intelligence 01-SC-7035 Content Filtering Service Premium Edition (CFS) HTTP URL,HTTPS IP, keyword and content scanning ActiveX, Java Applet, and cookie blocking Gateway-enforced Client Anti-Virus and Anti-Spyware HTTP/S, SMTP, POP3, IMAP and FTP, Enforced McAfee™ Clients Email attachment blocking Comprehensive Anti-Spam Service Yes Application Intelligence Provides application level enforcement and bandwidth control, regulate Web traffic, email, email attaches and file transfers, scan and restrict documents and files for key words and phrases DPI-SSL 6 Provides the ability to decrypt HTTPS traffic transparently, scan this traffic for threats using SonicWALL’s Deep Packet Inspection technology (GAV/AS/IPS/Application Intelligence/CFS),then re-encrypt the traffic and send it to its destination if no threats or vulnerabilities are found. This feature works for both clients and servers. Network Security Appliance 240 Networking NSA 240 NSA 2400 NSA 3500 NSA 4500 TotalSecure* (1-year) IP Address Assignment Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay 01-SSC-8760 NAT Modes 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent mode VLAN Interfaces (802.1q) 10/25 4 25 50 200 Routing OSPF, RIPv1/v2, static routes, policy-based routing, Multicast QoS Bandwidth priority, maximum bandwidth, guaranteed bandwidth, DSCP marking, 802.1p IPv6 IPv6 Ready Authentication XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services, Citrix Internal Database/Single Sign-on Users 100/100 Users 250/250 Users 300/500 Users 1,000/1,000 Users VoIP Full H.323v1-5, SIP, gatekeeper support, outbound bandwidth management, VoIP over WLAN, deep inspection security, full interoperability with most VoIP gateway and communications devices SonicWALL PC Card to System NSA 240 NSA 2400 NSA 3500 NSA 4500 ExpressCard Adapter Zone Security Yes (for NSA 240) Schedules One Time, Recurring 01-SSC-2887 Object-based/Group-based Management Yes DDNS Yes Management and Monitoring Web GUI (HTTP, HTTPS), Command Line (SSH, Console), SNMP v2: Global management with SonicWALL GMS Logging and Reporting ViewPoint,® Local Log, Syslog, Solera Networks For more information on SonicWALL High Availability Optional Active/Passive with State Sync4 Optional Active/Passive with State Sync Active/Passive with State Sync network security solutions, please Load Balancing Yes, (Outgoing with percent-based, round robin and spill-over); (Incoming with round robin, visit www.sonicwall.com. random distribution, sticky IP, block remap and symmetrical remap) Standards TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3 *Includes one-year of Gateway Anti-Virus, Wireless Standards 802.11 a/b/g/n, WPA2, WPA, TKIP, 802.1x, EAP-PEAP, EAP-TTLS Anti-Spyware, Intrusion Prevention, Hardware NSA 240 NSA 2400 NSA 3500 NSA 4500 Application Intelligence Service, Content Interfaces (3) GE Gigabit Ports+ (6) 10/100, Filtering Service, Dynamic Support 24x7 2 USB, PC Card Slot (6) 10/100/1000 Copper Gigabit Ports, 1 Console Interface, 2 USB and ViewPoint Reporting. (Optional 3G/Analog Modem), 1 Console Interface Memory (RAM) 256 MB 512 MB 512 MB 512 MB Flash Memory 32 MB Compact Flash 512 MB Compact Flash 3G Wireless/Modem7* With 3G USB Adapter Modem Power Supply 36W External Single 180W ATX Power Supply Fans No Fan 2 Fans Power Input 10-240V, 50-60Hz 100-240Vac, 60-50Hz Max Power Consumption 15W 42W 64W 66W Total Heat Dissipation 51.1BTU 144BTU 219BTU 225BTU Certifications VPNC, ICSA Firewall 4.1 EAL4+, FIPS 140-2 Level 2, VPNC, ICSA Firewall 4.1 Certifications Pending EAL-4+, FIPS 140-2 – – Form Factor 7.125 x 1.5 x 10.5 in/ 1U rack-mountable/ 1U rack-mountable/ and Dimensions 18.10 x 3.81 x 26.67 cm 17 x 10.25 x 1.75 in/ 17 x 13.25 x 1.75 in/ 43.18 x 26 x 4.44 cm 43.18 x 33.65 x 4.44 cm Weight 2.55Lb/1.16Kg 8.05 lbs/ 3.65 kg 11.30 lbs/ 5.14 kg WEEE Weight 3.15Lb/1.43Kg 8.05 lbs/ 3.65 kg 11.30 lbs/ 5.14 kg Major Regulatory FCC Class A, CES Class A, CE, C-Tick, VCCI, Compliance MIC, UL, cUL, TUV/GS, CB, NOM, RoHS, WEEE Certifications Environment 32-105° F, 0-40° C 40-105° F, 5-40° C MTBF 9.5 years 16.0 years 14.3 years 14.1 years Humidity 0-95% non-condensing 10-90% non-condensing 1 Testing Methodologies: Maximum performance based on RFC 2544 (for firewall). Actual performance may vary depending on network conditions and activated services. 2 UTM/Gateway AV/Anti-Spyware/IPS throughput measured using industry standard Spirent WebAvalanche HTTP performance test and Ixia test tools. Testing done with multiple flows through multiple port pairs. 3 Actual maximum connection counts are lower when UTM services are enabled. 4 Only with the NSA 240 Stateful HA and Expansion Upgrade. 5 VPN throughput measured using UDP traffic at 1280 byte packet size adhering to RFC 2544. 6 Supported on the NSA 3500 and higher. 7 Not available on NSA 2400. *USB 3G card and modem are not included. See http://www.sonicwall.com/us/products/cardsupport.html for supported USB devices. SonicWALL’s line-up of comprehensive protection SonicWALL, Inc. 2001 Logic Drive, San Jose, CA 95124 T +1 408.745.9600 F +1 408.745.9300 NETWORK SECURE WEB AND E-MAIL BACKUP POLICY AND www.sonicwall.com SECURITY REMOTE ACCESS SECURITY AND RECOVERY MANAGEMENT PROTECTION AT THE SPEED OF BUSINESS™ ©2010 SonicWALL and the SonicWALL logo is registered trademarks of SonicWALL, Inc. Other product names mentioned herein may be trademarks and/or registered trademarks of their respective companies. Specifications and descriptions subject to change without notice. 02/10 SW 883

Recomendados

Ds tz series_us_10_april10
Ds tz series_us_10_april10Ds tz series_us_10_april10
Ds tz series_us_10_april10
Yustinus Malawau
 
Sonic wall tz series
Sonic wall tz seriesSonic wall tz series
Sonic wall tz series
Shahaji Kaitke
 
Ds e class-nsa_e8500_us
Ds e class-nsa_e8500_usDs e class-nsa_e8500_us
Ds e class-nsa_e8500_us
Yustinus Malawau
 
Ds nsa series_4500
Ds nsa series_4500Ds nsa series_4500
Ds nsa series_4500
Yustinus Malawau
 
1000281 en 2
1000281 en 21000281 en 2
1000281 en 2
nguyenlam123
 
Juniper Networks SRX Branch Solutions
Juniper Networks SRX Branch SolutionsJuniper Networks SRX Branch Solutions
Juniper Networks SRX Branch Solutions
Altaware, Inc.
 
Nx9500 spec-sheet-1211
Nx9500 spec-sheet-1211Nx9500 spec-sheet-1211
Nx9500 spec-sheet-1211
Advantec Distribution
 
Nx9500 datasheet
Nx9500 datasheetNx9500 datasheet
Nx9500 datasheet
Advantec Distribution
 

Recomendados

Ds tz series_us_10_april10
Ds tz series_us_10_april10Ds tz series_us_10_april10
Ds tz series_us_10_april10
Yustinus Malawau
 
Sonic wall tz series
Sonic wall tz seriesSonic wall tz series
Sonic wall tz series
Shahaji Kaitke
 
Ds e class-nsa_e8500_us
Ds e class-nsa_e8500_usDs e class-nsa_e8500_us
Ds e class-nsa_e8500_us
Yustinus Malawau
 
Ds nsa series_4500
Ds nsa series_4500Ds nsa series_4500
Ds nsa series_4500
Yustinus Malawau
 
1000281 en 2
1000281 en 21000281 en 2
1000281 en 2
nguyenlam123
 
Juniper Networks SRX Branch Solutions
Juniper Networks SRX Branch SolutionsJuniper Networks SRX Branch Solutions
Juniper Networks SRX Branch Solutions
Altaware, Inc.
 
Nx9500 spec-sheet-1211
Nx9500 spec-sheet-1211Nx9500 spec-sheet-1211
Nx9500 spec-sheet-1211
Advantec Distribution
 
Nx9500 datasheet
Nx9500 datasheetNx9500 datasheet
Nx9500 datasheet
Advantec Distribution
 
Nx9000 spec sheet
Nx9000 spec sheetNx9000 spec sheet
Nx9000 spec sheet
Advantec Distribution
 
Ap7161 spec sheet
Ap7161 spec sheetAp7161 spec sheet
Ap7161 spec sheet
Advantec Distribution
 
CIMCO Network
CIMCO NetworkCIMCO Network
CIMCO Network
Sara Webb
 
Datasheet stonegate fw-allinone
Datasheet stonegate fw-allinoneDatasheet stonegate fw-allinone
Datasheet stonegate fw-allinone
Multibyte Consultoria
 
Rfs6000 spec sheet
Rfs6000 spec sheetRfs6000 spec sheet
Rfs6000 spec sheet
Advantec Distribution
 
Datasheet stonegate ips-allinone
Datasheet stonegate ips-allinoneDatasheet stonegate ips-allinone
Datasheet stonegate ips-allinone
Multibyte Consultoria
 
Security model evaluation of 3 g
Security model evaluation of 3 gSecurity model evaluation of 3 g
Security model evaluation of 3 g
Rotract CLUB of BSAU
 
Air defense services_platform_8.0_spec_sheet
Air defense services_platform_8.0_spec_sheetAir defense services_platform_8.0_spec_sheet
Air defense services_platform_8.0_spec_sheet
Advantec Distribution
 
Ds e class-sra_series__us
Ds e class-sra_series__usDs e class-sra_series__us
Ds e class-sra_series__us
Yustinus Malawau
 
Understanding senetas layer 2 encryption
Understanding senetas layer 2 encryptionUnderstanding senetas layer 2 encryption
Understanding senetas layer 2 encryption
Senetas
 
Ap 622 ss 0112_chv4
Ap 622 ss 0112_chv4Ap 622 ss 0112_chv4
Ap 622 ss 0112_chv4
Advantec Distribution
 
Rfs7000 spec sheet
Rfs7000 spec sheetRfs7000 spec sheet
Rfs7000 spec sheet
Advantec Distribution
 
Short sale update current market dynamics & legal changes in california short...
Short sale update current market dynamics & legal changes in california short...Short sale update current market dynamics & legal changes in california short...
Short sale update current market dynamics & legal changes in california short...
Aaron Lewis "Modesto Real Estate"
 
Sonic Wall Partner Sales Update Q4 2009
Sonic Wall Partner Sales Update Q4 2009Sonic Wall Partner Sales Update Q4 2009
Sonic Wall Partner Sales Update Q4 2009
luceec
 
I Pv6 Final 2
I Pv6 Final 2I Pv6 Final 2
I Pv6 Final 2
ptic433
 
Water sales update 3.19.12
Water sales update 3.19.12Water sales update 3.19.12
Water sales update 3.19.12
cityofevanston
 
E4-channel 4 sales update
E4-channel 4 sales updateE4-channel 4 sales update
E4-channel 4 sales update
loiselizajones
 
Managed Next Generation Firewall Service
Managed Next Generation Firewall ServiceManaged Next Generation Firewall Service
Managed Next Generation Firewall Service
SecureData Europe
 
Sonic Wall Product Line Brochure
Sonic Wall Product Line BrochureSonic Wall Product Line Brochure
Sonic Wall Product Line Brochure
Michelle Guerrero Montalvo
 
Rfs6000 spec sheet
Rfs6000 spec sheetRfs6000 spec sheet
Rfs6000 spec sheet
Advantec Distribution
 
Ap7161 spec sheet
Ap7161 spec sheetAp7161 spec sheet
Ap7161 spec sheet
Advantec Distribution
 
Nx9500 spec-sheet-1211
Nx9500 spec-sheet-1211Nx9500 spec-sheet-1211
Nx9500 spec-sheet-1211
Advantec Distribution
 

Mais conteúdo relacionado

Mais procurados

CIMCO Network
CIMCO NetworkCIMCO Network
CIMCO Network
Sara Webb
 
Air defense services_platform_8.0_spec_sheet
Air defense services_platform_8.0_spec_sheetAir defense services_platform_8.0_spec_sheet
Air defense services_platform_8.0_spec_sheet
Advantec Distribution
 

Mais procurados (12)

Nx9000 spec sheet
Nx9000 spec sheetNx9000 spec sheet
Nx9000 spec sheet
 
Ap7161 spec sheet
Ap7161 spec sheetAp7161 spec sheet
Ap7161 spec sheet
 
CIMCO Network
CIMCO NetworkCIMCO Network
CIMCO Network
 
Datasheet stonegate fw-allinone
Datasheet stonegate fw-allinoneDatasheet stonegate fw-allinone
Datasheet stonegate fw-allinone
 
Rfs6000 spec sheet
Rfs6000 spec sheetRfs6000 spec sheet
Rfs6000 spec sheet
 
Datasheet stonegate ips-allinone
Datasheet stonegate ips-allinoneDatasheet stonegate ips-allinone
Datasheet stonegate ips-allinone
 
Security model evaluation of 3 g
Security model evaluation of 3 gSecurity model evaluation of 3 g
Security model evaluation of 3 g
 
Air defense services_platform_8.0_spec_sheet
Air defense services_platform_8.0_spec_sheetAir defense services_platform_8.0_spec_sheet
Air defense services_platform_8.0_spec_sheet
 
Ds e class-sra_series__us
Ds e class-sra_series__usDs e class-sra_series__us
Ds e class-sra_series__us
 
Understanding senetas layer 2 encryption
Understanding senetas layer 2 encryptionUnderstanding senetas layer 2 encryption
Understanding senetas layer 2 encryption
 
Ap 622 ss 0112_chv4
Ap 622 ss 0112_chv4Ap 622 ss 0112_chv4
Ap 622 ss 0112_chv4
 
Rfs7000 spec sheet
Rfs7000 spec sheetRfs7000 spec sheet
Rfs7000 spec sheet
 

Destaque

I Pv6 Final 2
I Pv6 Final 2I Pv6 Final 2
I Pv6 Final 2
ptic433
 

Destaque (6)

Short sale update current market dynamics & legal changes in california short...
Short sale update current market dynamics & legal changes in california short...Short sale update current market dynamics & legal changes in california short...
Short sale update current market dynamics & legal changes in california short...
 
Sonic Wall Partner Sales Update Q4 2009
Sonic Wall Partner Sales Update Q4 2009Sonic Wall Partner Sales Update Q4 2009
Sonic Wall Partner Sales Update Q4 2009
 
I Pv6 Final 2
I Pv6 Final 2I Pv6 Final 2
I Pv6 Final 2
 
Water sales update 3.19.12
Water sales update 3.19.12Water sales update 3.19.12
Water sales update 3.19.12
 
E4-channel 4 sales update
E4-channel 4 sales updateE4-channel 4 sales update
E4-channel 4 sales update
 
Managed Next Generation Firewall Service
Managed Next Generation Firewall ServiceManaged Next Generation Firewall Service
Managed Next Generation Firewall Service
 

Semelhante a Ds nsa series_us_10_april10

Ap rus kus zoneflex-overview
Ap rus kus zoneflex-overviewAp rus kus zoneflex-overview
Ap rus kus zoneflex-overview
Huu Hieu
 
D S A P 4000 U S
D S A P 4000 U SD S A P 4000 U S
D S A P 4000 U S
Ari Zoldan
 

Semelhante a Ds nsa series_us_10_april10 (20)

Sonic Wall Product Line Brochure
Sonic Wall Product Line BrochureSonic Wall Product Line Brochure
Sonic Wall Product Line Brochure
 
Rfs6000 spec sheet
Rfs6000 spec sheetRfs6000 spec sheet
Rfs6000 spec sheet
 
Ap7161 spec sheet
Ap7161 spec sheetAp7161 spec sheet
Ap7161 spec sheet
 
Nx9500 spec-sheet-1211
Nx9500 spec-sheet-1211Nx9500 spec-sheet-1211
Nx9500 spec-sheet-1211
 
Motorola Wing 5.6 specification sheet
Motorola Wing 5.6 specification sheetMotorola Wing 5.6 specification sheet
Motorola Wing 5.6 specification sheet
 
Vx9000 datasheet
Vx9000 datasheetVx9000 datasheet
Vx9000 datasheet
 
Nx9500 datasheet
Nx9500 datasheetNx9500 datasheet
Nx9500 datasheet
 
Ap 622 ss 0112_chv4
Ap 622 ss 0112_chv4Ap 622 ss 0112_chv4
Ap 622 ss 0112_chv4
 
Ap rus kus zoneflex-overview
Ap rus kus zoneflex-overviewAp rus kus zoneflex-overview
Ap rus kus zoneflex-overview
 
Top 10 Reasons Enterprises Prefer Juniper Wireless
Top 10 Reasons Enterprises Prefer Juniper WirelessTop 10 Reasons Enterprises Prefer Juniper Wireless
Top 10 Reasons Enterprises Prefer Juniper Wireless
 
fortigate-600f-series pdf manual routeur
fortigate-600f-series pdf manual routeurfortigate-600f-series pdf manual routeur
fortigate-600f-series pdf manual routeur
 
FortiGate_600E(2).pdf
FortiGate_600E(2).pdfFortiGate_600E(2).pdf
FortiGate_600E(2).pdf
 
Cisco
CiscoCisco
Cisco
 
Rfs7000 spec sheet
Rfs7000 spec sheetRfs7000 spec sheet
Rfs7000 spec sheet
 
Rfs6000 ss
Rfs6000 ssRfs6000 ss
Rfs6000 ss
 
Rfs6000 ss
Rfs6000 ssRfs6000 ss
Rfs6000 ss
 
Cisco 2900 series router, more benefits, high performance
Cisco 2900 series router, more benefits, high performanceCisco 2900 series router, more benefits, high performance
Cisco 2900 series router, more benefits, high performance
 
D S A P 4000 U S
D S A P 4000 U SD S A P 4000 U S
D S A P 4000 U S
 
Outdoor Mesh Wireless Networks
Outdoor Mesh Wireless NetworksOutdoor Mesh Wireless Networks
Outdoor Mesh Wireless Networks
 
Bi cloud saa_s
Bi cloud saa_sBi cloud saa_s
Bi cloud saa_s
 

Ds nsa series_us_10_april10

  • 1. The SonicWALL Network Security Appliance Series N E T WO R K SECU R I T Y Next Generation Unified Threat Management Protection Organizations of all sizes depend on their networks to access internal and external mission-critical applications. As advances in networking continue to provide tremendous benefit to organizations, they are increasingly challenged by sophisticated and financially-motivated attacks designed to disrupt communication, degrade performance and compromise data. n SonicWALL’s next Malicious attacks penetrate outdated stateful packet inspection firewalls by exploiting higher network generation security levels. Point products add layers of security, but are costly, difficult to manage, limited in controlling network misuse and ineffective against the latest multipronged attacks. The SonicWALL® Network n Scalable multi-core Security Appliance (NSA) Series revolutionizes network security, utilizing a breakthrough multi-core hardware and design and patented Reassembly-Free Deep Packet Inspection™ (RFDPI) technology* offering Reassembly-Free Deep complete protection without compromising network performance. This platform was first made Packet Inspection available on the SonicWALL E-Class NSA Series, and it is now available for mid-sized organizations. n Stateful High Availability The NSA Series overcomes the limitations of existing security solutions by scanning the entirety of and load balancing each packet for current internal and external threats in real time. Built on a high-speed multi-core features processing platform, the NSA Series enables deep packet inspection without adversely impacting n High performance the performance of mission-critical networks and applications. and lowered TCO The NSA Series applies next-generation Unified Threat Management (UTM) against a n Advanced routing services comprehensive array of attacks, combining intrusion prevention, anti-virus and anti- and networking features spyware with the application-level control of SonicWALL Application Intelligence Service. With advanced routing, stateful high-availability and high-speed IPSec and SSL VPN technology, n Standards-based Voice the NSA Series adds security, reliability, functionality and productivity to branch offices, central over IP (VoIP) sites and distributed mid-enterprise networks, while minimizing cost and complexity. n Secure distributed wireless Comprised of the SonicWALL NSA 240, 2400, NSA 3500 and NSA 4500, the NSA Series offers a LAN services scalable range of solutions designed to meet the network security needs of any organization. n Onboard Quality of Features and Benefits Service (QoS) SonicWALL’s next generation security incorporates Advanced routing services and networking features a new level of UTM that integrates intrusion prevention, incorporate advanced networking and security gateway anti-virus and anti-spyware and features the technology including 802.1q VLANs, Multi-WAN failover, Application Intelligence Service suite of configurable zone and object-based management, load balancing, tools to prevent data leakage and offer granular advanced NAT modes and more, providing granular application control. configuration flexibility and comprehensive protection Scalable multi-core hardware and Reassembly-Free at the administrator’s discretion. Deep Packet Inspection scans and eliminates threats Standards-based Voice over IP (VoIP) capabilities of unlimited file sizes, and provides virtually unrestricted provide the highest levels of security for every element of concurrent connections with uncompromising speed. the VoIP infrastructure, from communications equipment The NSA 240 can be configured using primary or to VoIP-ready devices such as SIP Proxies, H.323 Gatekeepers secondary modem or 3G wireless interfaces for future- and Call Servers. proofed extensibility. Secure distributed wireless LAN services enable the Stateful High Availability and load balancing appliance to function as a secure wireless switch and features in SonicOS 5.5 Enhanced maximize total controller that automatically detects and configures network bandwidth and maintain seamless network SonicPoints, SonicWALL wireless access points, for secure ™ uptime, delivering uninterrupted access to mission-critical remote access in distributed network environments. resources, and ensuring that VPN tunnels and other network Onboard Quality of Service (QoS) features use industry traffic will not be interrupted in the event of a failover. standard 802.1p and Differentiated Services Code Points High performance and lowered TCO are achieved (DSCP) Class of Service (CoS) designators to provide by using the processing power of multiple cores in powerful and flexible bandwidth management that is unison to dramatically increase throughput and provide vital for VoIP, multimedia content and business-critical simultaneous inspection capabilities, while lowering applications. power consumption. *U.S. Patent 7,310,815–A method and apparatus for data stream analysis and blocking.
  • 2. Dynamic Security Architecture and Management SonicWALL Deep Packet Inspection Architecture Eliminated Threats & Non-business Traffic SonicWALL Real-time Automatic Threat Application Intelligence Intrusion Prevention 3 1 Gateway Anti-Virus Database Updates Unified Threat Content Filtering Anti-Spyware Clean VPN Management Clean Traffic Firewall Emerging Blended Threats Forwarding Viruses Engine Network I/O Engine Routing Spyware Traffic Traffic PROT Bandwidth L4 L2 L7 L3 IN Management Bandwidth OUT Exploits Management Defrag Stateful Classification and Transformation Normal Flow Order Presentation 2 Update Engine Best-in-Class Threat Protection 1 SonicWALL deep packet inspection protects against This functionality allows threats to be identified and network risks such as viruses, worms, Trojans, spyware, eliminated over unlimited file sizes and unrestricted phishing attacks, emerging threats and Internet misuse. concurrent connections, without interruption. Application Application Intelligence adds highly- 3 The Network Security Appliance Series provides configurable controls to prevent data leakage and dynamic network protection through continuous, manage bandwidth at the application level. automated security updates, protecting against 2 The SonicWALL Reaseembly-Free Deep Packet emerging and evolving threats, without requiring Inspection (RFDPI) technology utilizes SonicWALL’s any administrator intervention. multi-core architecture to scan packets in real time without stalling traffic in memory. Unified Threat Management Load Balancing Multi-processor Core with Deep Packet Inspection Deep Packet Inspection Architecture Single processor designs that include multiple Intrusion Prevention Application Control Gateway Anti-Virus Content Filtering Anti-Spyware protection technologies are severely limited Clean VPN Firewall Processor UTM Load Balancing by a single centralized processor. SonicWALL UTM load balancing integrates a high-speed Processor deep packet inspection and traffic classification Tra c In Tra c Out engine onto multiple security cores inspecting Processor applications, files and content-based traffic in real time without significantly impacting Processor Inspection Performance performance or scalability. This enables the scanning and control of threats for networks Processor that carry bandwidth intensive and latency sensitive applications. Eliminated Threats Suppliers Internet Clean Tra c Mobile Users UTM Engine Internal Network Telecommuters SonicWALL Clean VPN The Network Security Appliance Series includes innovative SonicWALL Clean VPN™ technology which decontaminates vulnerabilities and malicious code from remote mobile users Centralized Policy Management and branch offices traffic before it enters the corporate The Network Security Appliance Series can be managed network, and without user intervention. using the SonicWALL Global Management System (GMS), which provides flexible, powerful and intuitive tools to centrally manage configurations, view real-time monitoring metrics and integrate policy and compliance reporting.
  • 3. Flexible, Customizable Deployment Options – NSA Series At-A-Glance Every SonicWALL Network Security Appliance solution delivers next generation Unified Threat Management Internet protection, utilizing a breakthrough multi-core hardware design and Reassembly-Free Deep Packet Branch Office Inspection for internal and external network protection without compromising network performance. Each Reporting and analysis NSA Series product combines high-speed intrusion prevention, file and content inspection, and powerful Application Intelligence Service controls with an extensive array of advanced networking and flexible configuration features. The NSA Series offers an Fixed accessible, affordable platform that is easy to deploy NSA Series Telecommuter and manage in a wide variety of corporate, branch office and distributed network environments. n The SonicWALL NSA 4500 is ideal for corporate central-site and large distributed environments requiring high throughput capacity and performance n The SonicWALL NSA 3500 is ideal for corporate, SonicPoint-N GMS Server VoIP Corporate Desktop Corporate Desktop Corporate Desktop Corporate Desktop Servers branch office and distributed environments needing Centralized Marketing VLAN Finance VLAN significant throughput capacity and performance Management Wireless Laptops Corporate Headquarters/Branch Office n The SonicWALL NSA 2400 is ideal for small- to medium-sized corporate and branch office Server Enforced Client VPN SSL VPN Global Content Filtering Gateway Anti-Virus, Anti-Virus and Anti-Virus Remote VPN Service Anti-Spyware, Intrusion environments concerned about throughput capacity Anti-Spyware Servers Anti-Threat and Anti-Spyware Client PCs Anti- Access Upgrade Client Web Site Prevention and Application and Content Firewall Protection Threat Protection and performance Usage Control Perimeter and Network Protection n The SonicWALL NSA 240 is ideal for small- to medium- sized businesses and branch office sites Security Services and Upgrades Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention Dynamic Support Services are available 8x5 or 24x7 depending Service and Application Intelligence Service delivers on customer needs. Features include world-class technical intelligent, real-time network security protection against support, crucial firmware updates and upgrades, access to sophisticated application layer and content-based attacks extensive electronic tools and timely hardware replacement including viruses, spyware, worms, Trojans and software to help organizations get the greatest return on their vulnerabilities such as buffer overflows. Application Intelligence Service SonicWALL investment. delivers a suite of configurable tools designed to prevent data leakage while Global VPN Client Upgrades utilize a software client that is providing granular application-level controls. installed on Windows-based computers and increase workforce Enforced Client and Server Anti-Virus and Anti-Spyware productivity by providing secure access to email, files, intranets, delivers comprehensive virus and spyware protection for laptops, and applications for remote users. Upgrade licenses are desktops and servers using a single integrated client and offers available in a variety of user counts allowing this solution to automated network-wide enforcement of anti-virus and scale as the organization grows. anti-spyware policies, definitions and software updates. SSL VPN Remote Access Upgrades provide clientless remote Content Filtering Service enforces protection and productivity network level access for PC, Mac and Linux-based systems. With policies by employing an innovative rating architecture, utilizing integrated SSL VPN technology, SonicWALL UTM appliances a dynamic database to block up to 56 categories of objectionable enable seamless and secure remote access to email, files, Web content. intranets, and applications from a variety of client platforms via NetExtender, a lightweight client that is pushed onto the user’s machine. NetExtender is installed and configured automatically, requiring no user ViewPoint Reporting delivers easy-to-use, Web-based capabilities interaction. that provide administrators with instant comprehensive insight into network performance and security. Delivered through a SonicWALL Comprehensive Anti-Spam Service blocks spam series of historical reports using dashboards and detailed phishing and virus-laden emails at the gateway. There is no need summaries, ViewPoint helps organizations of all sizes track to redirect an MX Record or send email to another vendor, with Internet usage, fulfill regulatory compliance requirements and monitor the one click the service is activated and immediately starts blocking security status of their network. junk email and saving valuable network bandwidth. SonicWALL® Virtual Assist is a remote support tool that enables a technician to assume control of a PC or laptop for the purpose of providing remote technical assistance. With permission, the technician can gain instant access to a computer using a Web browser, making it easy to diagnose and fix a problem remotely without the need for a pre-installed “fat” client.
  • 4. Specifications Firewall NSA 240 NSA 2400 NSA 3500 NSA 4500 SonicOS Version SonicOS Enhanced 5.6 (or higher) Stateful Throughput1 600 Mbps 775 Mbps 1.5 Gbps 2.75 Gbps GAV Performance 2 115 Mbps 160 Mbps 350 Mbps 690 MBps IPS Performance 2 195 Mbps 275 Mbps 750 Mbps 1.4 Gbps Network Security Appliance 4500 UTM Performance 2 110 Mbps 150 Mbps 240 Mbps 600 Mbps 01-SSC-7012 IMIX Performance 2 195 Mbps 235 Mbps 580 Mbps 700 Mbps NSA 4500 TotalSecure* (1-year) Maximum Connections 3 85,000/110,000 4 225,000 325,000 500,000 01-SC-7032 Maximum UTM Connections 32,000/50,000 4 125,000 175,000 250,000 New Connections/Sec 2,000 4,000 7,000 10,000 Nodes Supported Unrestricted Denial of Service Attack Prevention 22 classes of DoS, DDoS and scanning attacks SonicPoints Supported (Maximum) 16 32 32 64 VPN NSA 240 NSA 2400 NSA 3500 NSA 4500 3DES/AES Throughput 5 150 Mbps 300 Mbps 625 Mbps 1.0 Gbps Site-to-Site VPN Tunnels 25/50 4 75 800 1,500 Bundled Global VPN Client Licenses 2 (25) 10 (250) 50 (1,000) 500 (3,000) Network Security Appliance 3500 (Maximum) 01-SSC-7016 Bundled SSL VPN Licenses (Maximum) 2 (15) 2 (25) 2 (30) 2 (30) NSA 3500 TotalSecure* (1-year) Virtual Assist Bundled (Maximum) 1 30-day trial (5) 1 (5) 2 (10) 2 (10) 01-SC-7033 Encryption/Authentication/DH Group DES, 3DES, AES (128, 192, 256-bit), MD5, SHA-1/DH Groups 1, 2, 5, 14 Key Exchange Key Exchange IKE, IKEv2, Manual Key, PKI (X.509), L2TP over IPSec Route-Based VPN Yes (OSPF, RIP) Certificate Support Verisign, Thawte, Cybertrust, RSA Keon, Entrust, and Microsoft CA for SonicWALL-to-SonicWALL VPN, SCEP Dead Peer Detection Yes DHCP Over VPN Yes IPSec NAT Traversal Yes Redundant VPN Gateway Yes Global VPN Client Platforms Supported Microsoft® Windows 2000, Windows XP, Microsoft® Vista 32-bit/64 bit, Windows 7 Network Security Appliance 2400 SSL VPN Platforms Supported Microsoft® Windows 2000 / XP / Vista 32/64-bit / Windows 7, Mac 10.4+, Linux FC 3+ / Ubuntu 7+ / OpenSUSE 01-SSC-7020 Security Services NSA 240 NSA 2400 NSA 3500 NSA 4500 NSA 2400 TotalSecure* (1-year) Deep Packet Inspection Service Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention and Application Intelligence 01-SC-7035 Content Filtering Service Premium Edition (CFS) HTTP URL,HTTPS IP, keyword and content scanning ActiveX, Java Applet, and cookie blocking Gateway-enforced Client Anti-Virus and Anti-Spyware HTTP/S, SMTP, POP3, IMAP and FTP, Enforced McAfee™ Clients Email attachment blocking Comprehensive Anti-Spam Service Yes Application Intelligence Provides application level enforcement and bandwidth control, regulate Web traffic, email, email attaches and file transfers, scan and restrict documents and files for key words and phrases DPI-SSL 6 Provides the ability to decrypt HTTPS traffic transparently, scan this traffic for threats using SonicWALL’s Deep Packet Inspection technology (GAV/AS/IPS/Application Intelligence/CFS),then re-encrypt the traffic and send it to its destination if no threats or vulnerabilities are found. This feature works for both clients and servers. Network Security Appliance 240 Networking NSA 240 NSA 2400 NSA 3500 NSA 4500 TotalSecure* (1-year) IP Address Assignment Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay 01-SSC-8760 NAT Modes 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent mode VLAN Interfaces (802.1q) 10/25 4 25 50 200 Routing OSPF, RIPv1/v2, static routes, policy-based routing, Multicast QoS Bandwidth priority, maximum bandwidth, guaranteed bandwidth, DSCP marking, 802.1p IPv6 IPv6 Ready Authentication XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services, Citrix Internal Database/Single Sign-on Users 100/100 Users 250/250 Users 300/500 Users 1,000/1,000 Users VoIP Full H.323v1-5, SIP, gatekeeper support, outbound bandwidth management, VoIP over WLAN, deep inspection security, full interoperability with most VoIP gateway and communications devices SonicWALL PC Card to System NSA 240 NSA 2400 NSA 3500 NSA 4500 ExpressCard Adapter Zone Security Yes (for NSA 240) Schedules One Time, Recurring 01-SSC-2887 Object-based/Group-based Management Yes DDNS Yes Management and Monitoring Web GUI (HTTP, HTTPS), Command Line (SSH, Console), SNMP v2: Global management with SonicWALL GMS Logging and Reporting ViewPoint,® Local Log, Syslog, Solera Networks For more information on SonicWALL High Availability Optional Active/Passive with State Sync4 Optional Active/Passive with State Sync Active/Passive with State Sync network security solutions, please Load Balancing Yes, (Outgoing with percent-based, round robin and spill-over); (Incoming with round robin, visit www.sonicwall.com. random distribution, sticky IP, block remap and symmetrical remap) Standards TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3 *Includes one-year of Gateway Anti-Virus, Wireless Standards 802.11 a/b/g/n, WPA2, WPA, TKIP, 802.1x, EAP-PEAP, EAP-TTLS Anti-Spyware, Intrusion Prevention, Hardware NSA 240 NSA 2400 NSA 3500 NSA 4500 Application Intelligence Service, Content Interfaces (3) GE Gigabit Ports+ (6) 10/100, Filtering Service, Dynamic Support 24x7 2 USB, PC Card Slot (6) 10/100/1000 Copper Gigabit Ports, 1 Console Interface, 2 USB and ViewPoint Reporting. (Optional 3G/Analog Modem), 1 Console Interface Memory (RAM) 256 MB 512 MB 512 MB 512 MB Flash Memory 32 MB Compact Flash 512 MB Compact Flash 3G Wireless/Modem7* With 3G USB Adapter Modem Power Supply 36W External Single 180W ATX Power Supply Fans No Fan 2 Fans Power Input 10-240V, 50-60Hz 100-240Vac, 60-50Hz Max Power Consumption 15W 42W 64W 66W Total Heat Dissipation 51.1BTU 144BTU 219BTU 225BTU Certifications VPNC, ICSA Firewall 4.1 EAL4+, FIPS 140-2 Level 2, VPNC, ICSA Firewall 4.1 Certifications Pending EAL-4+, FIPS 140-2 – – Form Factor 7.125 x 1.5 x 10.5 in/ 1U rack-mountable/ 1U rack-mountable/ and Dimensions 18.10 x 3.81 x 26.67 cm 17 x 10.25 x 1.75 in/ 17 x 13.25 x 1.75 in/ 43.18 x 26 x 4.44 cm 43.18 x 33.65 x 4.44 cm Weight 2.55Lb/1.16Kg 8.05 lbs/ 3.65 kg 11.30 lbs/ 5.14 kg WEEE Weight 3.15Lb/1.43Kg 8.05 lbs/ 3.65 kg 11.30 lbs/ 5.14 kg Major Regulatory FCC Class A, CES Class A, CE, C-Tick, VCCI, Compliance MIC, UL, cUL, TUV/GS, CB, NOM, RoHS, WEEE Certifications Environment 32-105° F, 0-40° C 40-105° F, 5-40° C MTBF 9.5 years 16.0 years 14.3 years 14.1 years Humidity 0-95% non-condensing 10-90% non-condensing 1 Testing Methodologies: Maximum performance based on RFC 2544 (for firewall). Actual performance may vary depending on network conditions and activated services. 2 UTM/Gateway AV/Anti-Spyware/IPS throughput measured using industry standard Spirent WebAvalanche HTTP performance test and Ixia test tools. Testing done with multiple flows through multiple port pairs. 3 Actual maximum connection counts are lower when UTM services are enabled. 4 Only with the NSA 240 Stateful HA and Expansion Upgrade. 5 VPN throughput measured using UDP traffic at 1280 byte packet size adhering to RFC 2544. 6 Supported on the NSA 3500 and higher. 7 Not available on NSA 2400. *USB 3G card and modem are not included. See http://www.sonicwall.com/us/products/cardsupport.html for supported USB devices. SonicWALL’s line-up of comprehensive protection SonicWALL, Inc. 2001 Logic Drive, San Jose, CA 95124 T +1 408.745.9600 F +1 408.745.9300 NETWORK SECURE WEB AND E-MAIL BACKUP POLICY AND www.sonicwall.com SECURITY REMOTE ACCESS SECURITY AND RECOVERY MANAGEMENT PROTECTION AT THE SPEED OF BUSINESS™ ©2010 SonicWALL and the SonicWALL logo is registered trademarks of SonicWALL, Inc. Other product names mentioned herein may be trademarks and/or registered trademarks of their respective companies. Specifications and descriptions subject to change without notice. 02/10 SW 883