Beruflich Dokumente
Kultur Dokumente
Appliance Series
Next-Generation Firewall
2
Reassembly-Free Deep Packet of inspection is designed specifically
Inspection engine for real-time applications and latency
sensitive traffic, delivering control
Dell SonicWALL Reassembly-Free Deep
without having to proxy connections.
Packet Inspection delivers a scalable
Using this engine design, high-speed
application inspection engine that can
network traffic is inspected more
analyze files and content of any size in
efficiently and reliably for an improved
real-time without reassembling packets
end user experience.
or application content. This means
Packet
Proxy Scanning disassembly
Traffic in Traffic out Traffic in Traffic out
Full L2-L7
signature-based
inspection
application
awareness User zone Administrative Servers
3
Remote site
Multi-layer protection protection
layer
Remote site protection
Fixed
The E-Class NSA Series incorporates Data center Branch office Small office telecommuter
Gateway protection
Easily integrated into existing
environments, E-Class NSAs centralize Desktop and server
protection layer
gateway-level protection across all
incoming and outgoing applications,
files and content-based traffic, while
controlling bandwidth and applications,
without significantly impacting Switch
performance or scalability.
Internal protection
The highly-configurable E-Class NSA
Desktop and server protection download the enforced anti-virus and
Series extends protection over the
In addition to network and gateway anti-spyware client without any
internal network by inspecting traffic
based protection, the E-Class NSA Series administrator intervention, automating
over LAN interfaces and VLANs.
provides additional endpoint protection the deployment of endpoint security.
Specifically designed for LAN network
for workstations and servers through an
threats, the E-Class NSA Series monitors
enforced anti-virus and anti-spyware Centralized policy management
and responds to internally spreading
client with advanced heuristics. This The Dell SonicWALL Global Management
malware, denial of service attacks,
enforced client solution delivers network System (GMS) provides organizations,
exploited software vulnerabilities,
access control by restricting Internet distributed enterprises and service
confidential documents, policy
access on endpoints that do not have providers with a flexible, powerful and
violations and network misuse.
the latest signature or engine updates. intuitive solution to centrally manage
When enforcement is enabled on the and report on E-Class NSA Next-
appliance, each endpoint is directed to Generation Firewalls.
4
Subscription services E-Class Support 24x7 is designed
specifically for E-Class customers,
Each E-Class Network
E-Class Support 24x7 delivers
Security Appliance supports
enterprise-class support features and
an expanding array of
quality of service. E-Class Support 24x7
dynamic subscription-based
includes direct access to a team of
services and software designed to
highly-trained senior support engineers
integrate seamlessly into any network.
for telephone and web-based technical
support on a 24x7x365 basis, software
Gateway Anti-Virus, Anti-Spyware and
and firmware updates and upgrades,
Intrusion Prevention Service delivers
Advance Exchange hardware
intelligent, real-time network security
replacement, access to electronic
protection against sophisticated
support tools, moderated discussion
application layer and content-based
groups, and more.
attacks including viruses, spyware,
worms, Trojans and software
Deep Packet Inspection for of
vulnerabilities such as buffer overflows.
SSL-Encrypted Traffic (DPI-SSL)
transparently decrypts and scans both
Application Intelligence and Control
inbound and outbound HTTPS traffic
provides real-time visualization of
using Dell SonicWALL RFDPI. The traffic
network traffic, customizable policies
is then re-encrypted and sent to its
and highly granular control over
original destination if no threats or
applications and users.
vulnerabilities are discovered.
Content Filtering Service enforces
Enforced Client Anti-Virus and Anti-
protection and productivity
Spyware (McAfee) working in
policies by employing an
conjunction with Dell SonicWALL
innovative rating
firewalls, guarantees that all endpoints
architecture, utilizing a
have the latest versions of anti-virus and
dynamic database to block
anti-spyware software installed and
over
active.
56 categories of objectionable web
content.
SonicWALL Mobile Connect,
a single unified client app for Apple iOS
Analyzer is an easy-to-use
and Google Android, provides
web-based application traffic
smartphone and tablet users superior
Mobile
Connect
analytics and reporting tool that
network-level access to corporate and
provides real-time and
academic resources over encrypted SSL
historical insight into the health,
VPN connections.
performance and security of the
network.
5
Specifications
Firewall NSA E5500 NSA E6500 NSA 8500 NSA 8510
SonicOS version SonicOS Enhanced 5.6 (or higher) SonicOS Enhanced 5.8.0.6 (or higher)
Stateful throughput 1 3.9 Gbps 5 Gbps 8.0 Gbps
GAV performance2 1.0 Gbps 1.69 Gbps 2.25 Gbps
IPS performance2 2.0 Gbps 2.3 Gbps 3.7 Gbps
Network Security Appliance E8510
Full Deep Packet Inspection 850 Mbps 1.59 Gbps 2.2 Gbps
01-SSC-9770
(DPI) performance2
IMIX performance2 1.1 Gbps 1.4 Gbps 2.0 Gbps
Maximum connections 3 750,000 1,000,000 1,500,000
Maximum full DPI connections 500,000 600,000 1,250,000
New connections/sec 30,000 60,000 85,000
Nodes supported Unrestricted
Denial of service 22 classes of DoS, DDoS and scanning attacks
Network Security Appliance E8500
attack prevention 01-SSC-8866
SonicPoints supported (maximum) 96 128
VPN
1
Testing methodologies: Maximum performance based on RFC 2544 (for firewall). Actual performance may vary depending on network conditions and activated services.
2
Full DPI/Gateway AV/Anti-Spyware/IPS throughput measured using industry standard Spirent WebAvalanche HTTP performance test and Ixia test tools. Testing done with multiple flows through multiple
port pairs.
3
Actual maximum connection counts are lower when Full DPI services are enabled.
4
VPN throughput measured using UDP traffic at 1280 byte packet size adhering to RFC 2544. *USB 3G card and modem are not included. See http://www.sonicwall.com/us/products/cardsupport.html for
supported USB devices.
5
The Comprehensive Anti-Spam Service supports an unrestricted number of users but is recommended for 250 users or less.
6
With Dell SonicWALL WXA Series Appliances
05/13 DS 0462L