NSsp 13700
| NSsp 13700 | |
|---|---|
| Operating System | SonicOS 7.0 |
| lnterfaces | 2x100/40-GbE QSFP28, 8x25/10/5/2.5-GbE SFP28, 4x10/5/2.5-GbE SFP+, 4x10/5/2.5/1-GbE Cu, 16x1-GbE 2 USB 3.0, 1 Console, 1 Mgmt. port |
| Built-in storage | 1.5 TB M.2 |
| Management | CLI, SSH, Web u1. REST APls |
| SSO Users | 100,000 |
| Logging | Analyzer, Local Log, Syslog, IPFIX, NetFlow |
| FIREWALL/VPN PERFORMANCE | |
|---|---|
| Firewall Inspection Throughput | 60 Gbps |
| Threat Prevention Throughput | 45.5 Gbps |
| Application Inspection Throughput | 57 Gbps |
| IPS Throughput | 48 Gbps |
| TLS/SSL Inspection and Secryption Throughput (DPI SSL) | 16.5 Gbps |
| VPN Throughput | 29 Gbps |
| Connections Per Second | 170K |
| Maximum Connections (SPI) | 14M |
| Maximum Connections (DPI) | 12M |
| Maximum Connections (DPI SSL) | 1.5M |
| VPN | |
|---|---|
| Site-to-site VPN Tunnels | 12,000 |
| IPSec VPN Clients (maximum) | 2,000 (6,000) |
| SSL VPN Licenses (maximum) | 2 (3,000) |
| Encryption/Authentication | DES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B Cryptography |
| Route-based VPN | RIP, OSPF, BGP |
| Key Exchange | Diffie Hellman Groups 1, 2, 5, 14v |
| VPN Features | Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN |
| Global VPN Client Platforms Supported | Microsoft® Windows Vista 32/64-bit. Windows 7 32/64-bit. Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Windows 10 |
| NetExtender | Microsoft Windows Vista 32/64-bit. Windows 7, Windows 8.0 32/64-bit. Windows 8.1 32/64-bit. Mac OS X 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSE |
| Mobile Connect | Apple® iOS, Mac OS X, Google® Android™, Kindle Fire, Chrome, Windows 8.1 (Embedded) |
| NETWORKING | |
|---|---|
| Multi-lnstance Firewall | N/A |
| IP Address Assignment | Static (DHCP, PPPoE, L2TP and PPTP client), lnternal DHCP server, DHCP Relay |
| NAT Modes | 1:1, many:1, 1:many, flexible NAT (overlapping iP). PAT, transparent mode |
| VLAN Interfaces | 1024 |
| Wire Mode | Yes |
| Routing Protocols | BGP4, OSPF, RIPv1/v2, static routes, policy-based routing |
| QoS | Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM) |
| Authentication | LDAP (multiple domains). XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC) |
| VoIP | Full H323-v1-5, SIP |
| Standards | TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADiUS, IEEE 802.3 |
| Certifications (in progress) | FIPS 140-2 (with Suite B) Level 2, UC APL, VPNC, IPv6 (Phase 2), ICSA Network Firewall, ICSA Anti-virus, Common Criteria NDPP (Firewall and IPS) |
| High Availability | Active/Passive with stateful synchronization |