Data Sheet: Security Technology

Symantec Network Security 7100 Series

Proactive intrusion prevention device protects against known and unknown attacks to secure critical networks
transition can be accomplished transparent to any network topology and can be tuned to the Ethernet network the appliance is protecting.
*Available only with Symantec Network Security 7160 and 7161 models

Inline deployment option - Ensures threats are accurately blocked or alerted on based upon the

The need for defense in depth Security personnel are tasked with ensuring the availability of critical data in an organization. Organizations may have skilled professionals on staff, but these employees are often overwhelmed by the daily tasks of incident analysis, incident response, applying or testing patches, and attempting to prevent the next intrusion. At the same time, they are also facing increasing threats and regulatory pressure to establish solid security practices and controls. Organizations need to not only maintain and leverage existing investments, but must also proactively employ constant monitoring, intelligence, and analysis. The Symantec Network Security 7100 Series provides a network security solution with simplified deployment, centralized management, and comprehensive support.

organizations security policies and business needs. An inline fail-open network redundancy option guarantees uninterrupted network operation. High-availability/fail-over (passive mode) Enables uninterrupted network monitoring through high-availability deployments, in which a backup Symantec Network Security appliance protects in the case of a primary appliance outage. Support for asymmetric routing environments Interface Grouping enables detection of attacks for networks with asymmetric routing. Ease of appliance maintenance - Allows a choice of configuration options depending upon organization need and deployment scenario. The Compact Flash reader/writer allows for flexible and easy configuration,

Proactive intrusion prevention Symantec Network Security 7100 Series appliances provide real-time, proactive network intrusion prevention to protect enterprise networks and mitigate business disruption caused by known and unknown (or zero-day) attacks and worms. One-Click to Prevention - Transitions from a detection device to a prevention tool with a single mouse click. The

and restore/backup of the configuration.

Key Points Augments existing gateway and server security deployments to stop threats from propagating throughout networks Combines multiple detection technologies, including protocol anomaly detection and vulnerability attack

Page 1 of 7

Data Sheet: Security Technology Symantec Network Security 7100 SERIES

interception, in the IMUNE architecture to accurately identify and block both known and unknown attacks and worms Protocol anomaly detection - detects attacks without Helps organizations establish, measure, and report on organizational best practice and compliance initiatives Integrated expertise from Symantec Security Response against announced vulnerabilities. and Services provides early knowledge of threats to Traffic flow detection (Flow rules) - network behavioral enable proactive security and use policy violation detection used to determine Requires no network reconfiguration for ease of deployment Appliances can support up to eight interfaces*, allowing IPV6 tunneled traffic identification - detects Ipv6 organizations to monitor more network segments traffic that is being tunneled through networks, Three models support aggregate network bandwidth from 50Mbps to 2Gbps to meet deployment needs at branch offices, distribution sites, and the network core AutoProtect automatically by updating protection policies using LiveUpdate technology to help organizations stay ahead of continuously evolving threats One-Click to Prevention transitions the appliance from a detection device to a prevention tool with a single mouse click indicating possible policy violations or intrusions. Enhanced signature language detects attacks and threats more accurately and efficiently. Flexible enterprise deployment The 7100 Series offers three models for flexible intrusion prevention deployment options to best suit organizations deployment needs, whether network security is required at branch offices, distributed sites, or on the network. Highly scalable - Supports aggregate network bandwidth from 50Mbps to 2Gbps across as many Network threat mitigation architecture The Symantec Network Security 7100 Series appliance Interface choices - Organizations have a choice of employs an innovative Intrusion Mitigation Unified copper or fiber interfaces for core network deployments. Network Engine (IMUNE). Deployment options Include support for multiple IMUNE system - Includes a range of detection technologies inline pairs or monitoring both passive and inline to detect both known and unknown threats, including segments on the same appliance. as eight network segments. violations of corporate network use policy. Instant messaging and peer-2-peer traffic - detects the presence of Instant Messaging and P2P traffic. knowledge of a known or disclosed vulnerability. Vulnerability attack interception - protection for known and unknown (or zero-day) worms and exploits worms, scans, probes, DoS attacks, backdoors, buffer overflow attacks, and fragmentation attacks.

Page 2 of 7

Data Sheet: Security Technology Symantec Network Security 7100 SERIES

Extend intrusion prevention To reach the perimeter gateway by sending gating policies to Symantec Enterprise Firewall and the Symantec Gateway Security 5400 Appliance. Intelligent security content and updates Integrated expertise from Symantec Security Response and Symantec DeepSight Early Warning services and easy-to-understand security guidelines enable even faster response to security incidents. LiveUpdate of security content - LiveUpdate automatically updates protection policies to help organizations stay ahead of continuously evolving threats. Security updates from Symantec Security Response As the threat landscape changes, organizations can be assured they are protected by the 24x7x365 coverage of Symantec Security Response. Granular role-based access - Scalable administration to define administrative users and grant them varying levels of access. Enterprise reporting - Allows multi-level reports from Comprehensive management Comprehensive management helps organizations establish, measure, and report on organizational best practices. Powerful and granular policy management - Allows security personnel to tailor protection based on their security policies and business need and set common or individualized detection and prevention policies per appliance. Control logging, blocking and auto-response behavior - To either ignore, alert and auto-respond to a network security event in passive monitoring mode, or block a network security event in inline prevention mode. Customizable event correlation views - Helps administrators work more efficiently by dramatically reducing the effort required by security personnel to Real-time threat analysis The Symantec Network Security 7100 Series appliance gathers threat intelligence from multiple sensors across the enterprise to quickly and automatically spot trends and identify related events as they occur. executive summaries to detailed event drill-down, enabling security personnel to measure and report the overall effectiveness of their network infrastructure security. Auto-update security policies during a new threat outbreak - Automatically blocks new and emerging threats without human intervention. Symantec Network Security Management Console Provides centralized management via secure communications between the appliance and the management console which scales to support large, distributed enterprise deployments. Out-of-the-box protection - Policies based on threat category, severity, intent, reliability and profile of protected resources can be tuned to suit the profile of the network or pre-defined policies that coordinate with the organizations network security profile.

Page 3 of 7

Data Sheet: Security Technology Symantec Network Security 7100 SERIES

identify threats, giving them time for more sophisticated intrusion investigation and remediation. Packet and Session capture and playback feature - To integrated, self-contained security devices, and as such analyze correlated events in-depth. do not have software and hardware system requirements. Multi-product intrusion management The Symantec Network Security Smart Agents provide enterprise-wide, multi-source intrusion management by collecting, aggregating and responding to events from multiple Symantec and third-party host and network security products. Rapid identification of threats from multiple event sources across the enterprise allows organizations to mitigate potential damage to mission-critical assets. Symantec Network Security Management Console 4.0 Processor Intel Pentium or compatible 1.6GHz or higher Operating System Microsoft Windows 2000 or XP, Red Hat Enterprise Linux 3.0 ES Memory Minimum 256 MB (512 MB recommended) Disk Space 50 MB for installation, 100 MB post installation Screen Resolution 1024 x 768 or higher Java Sun Java 2 Runtime Environment (J2RE) version 1.4.2 System requirements Symantec Network Security 7100 Series Symantec Network Security 7100 Series appliances are

Page 4 of 7

Data Sheet: Security Technology Symantec Network Security 7100 SERIES

COMPARISON MODEL OF THE APPLIANCES
Specifications Performance Aggregate IDS throughput Aggregate Inline throughput Maximum concurrent sessions Connections per second Scalability Network interfaces Inline segments Management interface TCP reset interfaces (for passive monitoring only) Interface grouping (for passive monitoring only) High Availability Power supply Device failure detection Link loss detection Disk drive Passive mode failover Inline bypass (fail-open) MANAGEMENT Compact flash configuration Centralized management (console) Live Update enabled One click to prevention PHYSICAL AND OPERATIONAL Form factor Height Width Depth Weight Power Operating environment 1u rack-mountable (fits 19-inch rack) 5.08 cm (2 in) 43.18 cm (17 in) 43.18 cm (17 in) 8.62 kg (19 lb) 100-240 Volts, 50/60Hz 430 W Max, 190 W Draw 5 C to 35 C (41 F to 95 F) 5% to 95% relative humidity, non-condensing Non-operating environment -10C to 70C (14F to 158F) 5% to 95% relative humidity, non-condensing 2u rack-mountable (fits 19-inch rack) 8.89 cm (3.5 in) 43.18 cm (17 in) 61 cm (24.0 in) 16.33 kg (36 lb) 100-240 Volts, 50/60Hz 800 W Max, 240 W Draw 5 C to 40 C (41 F to 104 F) 5% to 95% relative humidity, non-condensing -20C to 60C (-4F to 140F) 5% to 95% relative humidity, non-condensing 2u rack-mountable (fits 19-inch rack) 8.89 cm (3.5 in) 43.18 cm (17 in) 61 cm (24.0 in) 16.33 kg (36 lb) 100-240 Volts, 50/60Hz 800 W Max, 240 W Draw 5 C to 40 C (41 F to 104 F) 5% to 95% relative humidity, non-condensing -20C to 60C (-4F to 140F) 5% to 95% relative humidity, non-condensing Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Single Yes Yes Fixed Yes Yes1 Dual-redundant Yes Yes Removable Yes Yes1 Dual-redundant Yes Yes Removable Yes 2 Yes (up to 4 interfaces) Yes (up to 4 interfaces) Yes (up to 4 interfaces) 4 10/100 Copper 2 1 10/100 Copper 1 10/100 Copper 8 10/100/1000 Copper 4 1 10/100/1000 3 10/100/1000 Copper 4 10/100/1000 Copper 4 1000 Base-SX Fiber 4 Copper 1 10/100/1000 Copper 3 10/100/1000 Copper Up to 200 Mbps Up to 100 Mbps 100,000 1,500 Up to 2 Gbps Up to 1 Gbps 1,000,000 12,500 Up to 2 Gbps Up to 1 Gbps 1,000,000 12,500 7120 7160 7161

Page 5 of 7

Data Sheet: Security Technology Symantec Network Security 7100 SERIES

Specifications Operating altitude Safety

7120 Up to 3000M (10,000 ft) UL and CSA - UL 60950 VCCI, CE / FCC part 15B, Class A EN60950 (2000) EN609825-1 (1994+A11)

7160 Up to 3000M (10,000 ft) UL and CSA - UL 60950 VCCI, CE / FCC part 15B, Class A EN60950 (2000) EN609825-1 (1994+A11) EMC Directive 89/336/EEC Low Voltage Directive 73/23/EEC , both as amended by 93/68/EEC

7161 Up to 3000M (10,000 ft) UL and CSA - UL 60950 VCCI, CE / FCC part 15B, Class A EN60950 (2000) EN609825-1 (1994+A11) EMC Directive 89/336/EEC Low Voltage Directive 73/23/EEC , both as amended by 93/68/EEC

Emissions

EMC Directive 89/336/EEC Low Voltage Directive 73/23/EEC , both as amended by 93/68/EEC

1 2

Separate external bypass unit available External Fiber bypass unit available in calendar year 2005

Page 6 of 7

Data Sheet: Security Technology Symantec Network Security 7100 SERIES

More information Visit our Web site http://enterprisesecurity.symantec.com To speak with a Product Specialist in the US Call toll-free 800 745 6054 To speak with a Product Specialist outside the US Symantec has operations in 35 countries. For specific country offices and contact numbers, visit our Web site. About Symantec Symantec is the global leader in information security providing a broad range of software, appliances and services designed to help individuals, small and mid-sized businesses, and large enterprises secure and manage their IT infrastructure. Symantecs Norton brand of products is the worldwide leader in consumer security and problemsolving solutions. Headquartered in Cupertino, Calif., Symantec has operations in more than 35 countries. More information is available at www.symantec.com. Symantec World Headquarters 20330 Stevens Creek Blvd. Cupertino, CA 95014 USA 408 517 8000 800 721 3934 www.symantec.com

Symantec and the Symantec logo are U.S. registered trademarks of Symantec Corporation. Other brands and products are trademarks of their respective holder/s. Copyright 2005 Symantec Corporation. All rights reserved. Printed in the U.S.A. All product information is subject to change without notice. 01/05 10356781

Page 7 of 7