SONICWALL NSA 3800 Appliance
Rackmount-Hardware-Firewall für mittelgroße und verteilte Organisationen
Wir empfehlen Ihnen ein Lizenzpaket dazu zu buchen (separat erhältlich)
Die neuesten Next-Gen-Firewalls der mittleren Leistungsklasse von SonicWall
Die Network Security Appliance (NSa) Serie, bieten mittelgroßen und großen Unternehmen branchenführende Bedrohungspräventionsleistung zu den niedrigsten Gesamtbetriebskosten in ihrer Klasse.
Die Firewalls sind die Eckpfeiler der Bedrohungsschutzlösung, die eine vereinfachte zentrale Firewall-Verwaltung, Zero-Trust-Fähigkeit, flexible Lizenzierung mit der Option von Managed-Firewall-Diensten sowie eine integrierte Cyber-Garantie zur Risikominderung umfasst.
Die Firewalls der Generation 8 bieten umfassende Sicherheitsfunktionen wie Intrusion Prevention, VPN, Anwendungssteuerung, Malware-Analyse, URL-Filterung, DNS-Sicherheit, GeoIP- und Botnet-Dienste und schützen den Perimeter vor fortschrittlichen Bedrohungen, ohne dabei zum Engpass zu werden.
HIGHLIGHTS
• Formfaktor: 1U Rack-montierbar
• Unterstützung für 10/5/2,5/1G-Ports
• Multi-Gigabit-Durchsatz für Bedrohungs- und Malware-Analyse
• Überlegene TLS-Leistung (Sitzungen und Durchsatz)
• Bestes Preis-Leistungs-Verhältnis in seiner Klasse
• Erweiterbarer Speicher
• Erweiterte DNS-Filterung
• Reputationsbasierter Content Filtering Service (CFS 5.0)
• Vereinfachte zentrale SaaS- und On-Premises-Verwaltung über den Network Security Manager
• Verwaltung von Wi-Fi-6-Firewalls
• Unterstützung für SonicWall Unified Management
• Bereit für Enterprise Internet Edge
• Sichere SD-WAN-Funktionalität
• Unterstützung für TLS 1.3
• Vereinfachte Lizenzierung, einschließlich Hardware Only, Advanced und Managed Protection Security Suites
• Angetrieben vom SonicWall Capture Labs Threat Research Team
• Integration von SonicWall Switch, SonicWave Access Point und Capture Client
• Unterstützung für Cloud Secure Edge Connector
• Eingebettete Garantie bis zu 200.000 USD durch Cysurance, enthalten in den Security Suites
Firewall/VPN Performance
| Gen 8 NSa Series System Specifications | ||||
| Firewall | NSa 2800 | NSa 3800 | NSa 4800 | NSa 5800 |
| Operating system | SonicOS 8 | SonicOS 8 | SonicOS 8 | SonicOS 8 |
| Interfaces | 16x1GbE, 3x10G SFP+, 2 USB 3.0, 1 Console, 1 Mgmt. port | 24x1GbE, 10x10G SFP+, 2 USB 3.0, 1 Console, 1 Mgmt. port | 24 * 1GbE Cu, 8*10G SFP+, 1 console (RJ45 to DB9), 2 USB (USB type-A) | 24 * 1GbE Cu, 8*10G SFP+, 1 console (RJ45 to DB9), 2 USB (USB type-A) |
| Storage/(Expansion) | 128 Gb (Up to 512 GB) | 256 Gb (Up to 512 GB) | 256 GB (Up to 1 TB) | 256 GB (Up to 1 TB) |
| Centralized Management | Network Security Manager (NSM) 3.0 and above, CLI, SSH, Web UI, REST APIs | Network Security Manager (NSM) 3.0 and above, CLI, SSH, Web UI, REST APIs | Network Security Manager (NSM) 3.0 and above, CLI, SSH, Web UI, REST APIs | Network Security Manager (NSM) 3.0 and above, CLI, SSH, Web UI, REST APIs |
| Logical VLAN and tunnel interfaces (maximum) | 256 | 256 | 512 | 512 |
| SAML Single Sign-On Users (1) | 40,000 | 40,000 | 50000 | 50000 |
| Access points supported (maximum) | 512 | 512 | 512 | 512 |
| Firewall/VPN Performance | ||||
| Firewall inspection throughput (2) | 8 Gbps | 12 Gbps | 20 Gbps | 30 Gbps |
| Threat Prevention throughput (3) | 6 Gbps | 8 Gbps | 13 Gbps | 24 Gbps |
| Application inspection throughput (3) | 7 Gbps | 9 Gbps | 13 Gbps | 24 Gbps |
| IPS throughput (2) | 7 Gbps | 8 Gbps | 13 Gbps | 24 Gbps |
| Anti-malware inspection throughput (3) | 6 Gbps | 8 Gbps | 13 Gbps | 24 Gbps |
| TLS/SSL inspection and decryption throughput (3) | 1.8 Gbps | 3 Gbps | 4.2 Gbps | 8 Gbps |
| IPSec VPN throughput4 | 5.5 Gbps | 8 Gbps | 11 Gbps | 21 Gbps |
| Connections per second | 50,000 | 90,000 | 140,000 | 240,000 |
| Maximum Connections (SPI) | 2,000,000 | 3,000,000 | 6M | 8M |
| Maximum connections (DPI) | 1,000,000 | 1,200,000 | 3M | 5M |
| Maximum connections (TLS) | 150,000 | 300,000 | 600K | 750K |
| VPN and ZTNA | ||||
| Site-to-site VPN tunnels | 2,000 | 3,000 | 4000 | 6000 |
| IPSec VPN clients (max) | 50 (1000) | 50 (1000) | 500(3000) | 2000(4000) |
| SSL VPN licenses (max) | 2 (500) | 2 (500) | 2(1000) | 2(1500) |
| Encryption/Authentication | AES (128, 192, 256-bit)/MD5, SHA-1, Suite B Cryptography | AES (128, 192, 256-bit)/MD5, SHA-1, Suite B Cryptography | AES (128, 192, 256-bit)/MD5, SHA-1, Suite B Cryptography | AES (128, 192, 256-bit)/MD5, SHA-1, Suite B Cryptography |
| Key exchange | Diffie Hellman Groups 1, 2, 5, 14v | Diffie Hellman Groups 1, 2, 5, 14v | Diffie Hellman Groups 1, 2, 5, 14v | Diffie Hellman Groups 1, 2, 5, 14v |
| Route-based VPN | RIP, OSPF, BGP | RIP, OSPF, BGP | RIP, OSPF, BGP | RIP, OSPF, BGP |
| Certificate support | Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEP | Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEP | Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEP | Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to-SonicWall VPN, SCEP |
| VPN features | Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN | Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN | Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN | Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN |
| Global VPN client platforms supported | Microsoft® Windows 10 and Windows 11 | Microsoft® Windows 10 and Windows 11 | Microsoft® Windows 10 and Windows 11 | Microsoft® Windows 10 and Windows 11 |
| NetExtender | Microsoft® Windows 10 and Windows 11, Linux | Microsoft® Windows 10 and Windows 11, Linux | Microsoft® Windows 10 and Windows 11, Linux | Microsoft® Windows 10 and Windows 11, Linux |
| Mobile Connect | Apple® iOS, Mac OS X, Google® Android™ | Apple® iOS, Mac OS X, Google® Android™ | Apple® iOS, Mac OS X, Google® Android™ | Apple® iOS, Mac OS X, Google® Android™ |
| SonicWall Private Access powered by Cloud Secure Edge (5) | Included in 3&Free Loyalty Program | Included in 3&Free Loyalty Program | Included in 3&Free Loyalty Program | Included in 3&Free Loyalty Program |
| Security services | ||||
| Deep Packet Inspection services | Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, TLS Decryption | Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, TLS Decryption | Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, TLS Decryption | Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, TLS Decryption |
| Content Filtering Service (CFS) | Reputation-based URL filtering, HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid lists | Reputation-based URL filtering, HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid lists | Reputation-based URL filtering, HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid lists | Reputation-based URL filtering, HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid lists |
| Gen 8 NSa Series System Specifications | ja | ja | ja | ja |
| Comprehensive Anti-Spam Service | ja | ja | ja | ja |
| Application Visualization | ja | ja | ja | ja |
| Application Control | ja | ja | ja | ja |
| Capture Advanced Threat Protection | ja | ja | ja | ja |
| DNS Filtering | ja | ja | ja | ja |
| Networking | ||||
| IP address assignment | Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay | Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay | Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay | Static (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay |
| NAT modes | 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent mode | 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent mode | 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent mode | 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent mode |
| Routing protocols | BGP, OSPF, RIPv1/v2, static routes, policy-based routing | BGP, OSPF, RIPv1/v2, static routes, policy-based routing | BGP, OSPF, RIPv1/v2, static routes, policy-based routing | BGP, OSPF, RIPv1/v2, static routes, policy-based routing |
| QoS | Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM) | Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM) | Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM) | Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM) |
| Authentication | LDAP (multiple domains), XAUTH/RADIUS, TACACS+, SAML SSO1, Radius accounting NTLM, internal user database, 2FA, Terminal Services, Citrix, Common Access Card (CAC) | LDAP (multiple domains), XAUTH/RADIUS, TACACS+, SAML SSO1, Radius accounting NTLM, internal user database, 2FA, Terminal Services, Citrix, Common Access Card (CAC) | LDAP (multiple domains), XAUTH/RADIUS, TACACS+, SAML SSO1, Radius accounting NTLM, internal user database, 2FA, Terminal Services, Citrix, Common Access Card (CAC) | LDAP (multiple domains), XAUTH/RADIUS, TACACS+, SAML SSO1, Radius accounting NTLM, internal user database, 2FA, Terminal Services, Citrix, Common Access Card (CAC) |
| Local user database | 1000 | 1000 | 1000 | 1000 |
| VoIP | Full H323-v1-5, SIP | Full H323-v1-5, SIP | Full H323-v1-5, SIP | Full H323-v1-5, SIP |
| Standards | TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3 | TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3 | TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3 | TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3 |
| Certifications | IPv6/USGv6 | IPv6/USGv6 | IPv6/USGv6 | IPv6/USGv6 |
| High availability | Active/Passive with stateful synchronization | Active/Passive with stateful synchronization | Active/Passive with stateful synchronization | Active/Passive with stateful synchronization |
| Hardware | ||||
| Power supply | 90W | 150W | 450W | 450W |
| Maximum power consumption (W) | 52.8 | 102.3W | 110.4 | 119.4 |
| Input power (AC) | 100-240 VAC, 50-60 Hz | 100-240 VAC, 50-60 Hz | 100-240 VAC, 50-60Hz | 100-240 VAC, 50-60Hz |
| Total heat dissipation (BTU) | 180.01 | 341 | 377.4 | 407.5 |
| Dimensions (Unit: cm) | 43 x 32.5 x 4.5 Shipping: 57.5 x 47.5 x 18.5 | 43 x 32.5 x 4.5 57.5 x 47.5 x 18.5 | 43 x 46 x 4.5 Shipping: 69.5 x 59.5 x 21 | 43 x 46 x 4.5 Shipping: 69.5 x 59.5 x 21 |
| Weight | 4.6 | 4.6 | 7.4 Kg | 7.4 Kg |
| WEEE weight | 4.8 | 4.8 | 9.3 Kg | 9.3 Kg |
| Shipping weight | 7.2 | 7.2 | 13.2 Kg | 13.2 Kg |
| Environment (Operating/Storage) | 0oC to +40o C / -40oC to +70o C | 0oC to +40o C / -40oC to +70o C | 0°C to +40°C / -40°C to +70°C | 0°C to +40°C / -40°C to +70°C |
| Humidity | 5-95% non-condensing | 5-95% non-condensing | 5-95% non-condensing | 5-95% non-condensing |
Warenkorb
Dieses Formular ist durch reCAPTCHA geschützt – es gelten die Datenschutzbestimmungen und Nutzungsbedingungen von Google.