SonicWall NSsp 15700
Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.
The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.
As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.
The SonicWall NSsp 15700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 15700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.
Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.
Appliance Layout Diagram
Benefits
High port density
100 GbE ports
Multi-instance firewall
Integrates with on-premise and cloud-based sandboxing
Single-pane-of-glass-management through cloud or firewall
Supports millions of simultaneous TLS connections
Redundant power supply
SonicOS 7.0
TLS 1.3
Low TCO
SonicWall NSsp 15700
Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.
The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.
As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.
The SonicWall NSsp 15700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 15700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.
Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.
Appliance Layout Diagram
Benefits
High port density
100 GbE ports
Multi-instance firewall
Integrates with on-premise and cloud-based sandboxing
Single-pane-of-glass-management through cloud or firewall
Supports millions of simultaneous TLS connections
Redundant power supply
SonicOS 7.0
TLS 1.3
Low TCO
Essential Protection Service Suite
Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support in a single integrated package.
Analyzer presents detailed traffic analysis and granular security reporting to security teams or incident responders, so they can actively monitor and prevent critical network and security events before serious problems occur.
Complete network security solution
All service licences included.
Capture ATP
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.
This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
Gateway anti-virus and anti-spyware protection
DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.
The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.
Cutting-edge IPS technology
Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
Application intelligence and control
Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
Content filtering
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.
SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
Network Topology View
Display hosts, access-points in the network based on device name, mac address and IP Address.
24x7 support with firmware updates and hardware replacement
Including firmware updates and hardware replacement protects your business and your SonicWall investment.
Security Suite Comparison Chart
Feature
Essential
Advanced
Premier
Gateway Anti-Virus, Intrusion Prevention,
Application Control
Content Filtering Service
Anti-Spam
24x7 Support
Network Visibility
Capture ATP (Multi-Engine) Sandboxing
RTDMI Technology
Basic DNS Security
Cloud Management
Cloud based Reporting - 7 Days
Advanced Cloud Analytics - Virtual, 365 Days Reporting
Advanced DNS Security
Firewall System Check Tool
Cloud App Security Starter Pack
Capture Client Starter Pack
Premier Support
- Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle
SonicWall NSsp 15700 TotalSecure - Essential Edition
Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.
The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.
As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.
The SonicWall NSsp 15700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 15700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.
Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.
NSsp 15700 Appliance with 1 year of the EPSS (Capture ATP with RTDMI Technology, Intrusion Prevention, Application Control, Gateway Anti-Virus, Anti-Spam, Network Visibility, Content Filtering, 24X7 Support)
Appliance Layout Diagram
Benefits
High port density
100 GbE ports
Multi-instance firewall
Integrates with on-premise and cloud-based sandboxing
Single-pane-of-glass-management through cloud or firewall
Supports millions of simultaneous TLS connections
Redundant power supply
SonicOS 7.0
TLS 1.3
Low TCO
TotalSecure Features
Complete network security solution
All service licences included.
Capture ATP
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.
This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
Gateway anti-virus and anti-spyware protection
DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.
The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.
Cutting-edge IPS technology
Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
Application intelligence and control
Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
Content filtering
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.
SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
Network Topology View
Display hosts, access-points in the network based on device name, mac address and IP Address.
24x7 support with firmware updates and hardware replacement
Including firmware updates and hardware replacement protects your business and your SonicWall investment.
Management and reporting
Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.
SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.
Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.
Security Suite Comparison Chart
Feature
Essential
Advanced
Premier
Gateway Anti-Virus, Intrusion Prevention,
Application Control
Content Filtering Service
Anti-Spam
24x7 Support
Network Visibility
Capture ATP (Multi-Engine) Sandboxing
RTDMI Technology
Basic DNS Security
Cloud Management
Cloud based Reporting - 7 Days
Advanced Cloud Analytics - Virtual, 365 Days Reporting
Advanced DNS Security
Firewall System Check Tool
Cloud App Security Starter Pack
Capture Client Starter Pack
Premier Support
- Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle
Essential Protection Service Suite Bundle for NSsp 15700
Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support, cloud management and reporting in a single integrated package.
The SonicOS architecture is at the core of SonicWall physical and virtual firewalls including the TZ, NSa, NSv and NSsp Series. SonicOS leverages our patented, single-pass, lowlatency, Reassembly-Free Deep Packet Inspection® (RFDPI) and patent-pending Real-Time Deep Memory Inspection™ (RTDMI) technologies to deliver industry-validated high security effectiveness, SD-WAN, real-time visualization, high-speed virtual private networking (VPN) and other robust security features.
Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that's been validated by independent third party testing for its extremely high security effectiveness. Unknown threats are sent to SonicWall's cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our RTDMI™ technology.
The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware’s weaponry is exposed for less than 100 nanoseconds.
Essential Protection Service Suite (EPSS) includes - Capture ATP with RTDMI Technology, Intrusion Prevention, Application Control, Gateway Anti-Virus, Network Visibility, Content Filtering, 24X7 Support
Benefits
Complete network security solution
All service licences included.
Capture ATP
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.
This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
Gateway anti-virus and anti-spyware protection
DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.
The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.
Cutting-edge IPS technology
Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
Application intelligence and control
Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
Content filtering
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.
SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
Network Topology View
Display hosts, access-points in the network based on device name, mac address and IP Address.
24x7 support with firmware updates and hardware replacement
Including firmware updates and hardware replacement protects your business and your SonicWall investment.
Management and reporting
Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.
SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.
Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.
Security Suite Comparison Chart
Feature
Essential
Advanced
Premier
Gateway Anti-Virus, Intrusion Prevention,
Application Control
Content Filtering Service
Anti-Spam
24x7 Support
Network Visibility
Capture ATP (Multi-Engine) Sandboxing
RTDMI Technology
Basic DNS Security
Cloud Management
Cloud based Reporting - 7 Days
Advanced Cloud Analytics - Virtual, 365 Days Reporting
Advanced DNS Security
Firewall System Check Tool
Cloud App Security Starter Pack
Capture Client Starter Pack
Premier Support
- Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle
License: |
SonicWall Network Security Manager Essential with Management and 7-Day Reporting for NSsp 15700
Whether you’re protecting a small business, a distributed enterprise, multiple businesses, or a closed network, your network security can get overwhelmed by operational disarrays, unseen risks and regulatory demands. Historically, efficient firewall management practices have mostly relied on dependable systems and operation control measures. However, frequent errors, misconfigurations and perhaps even violations of those controls remain to be constant challenges for wellrun Security Operation Centers (SOCs).
SonicWall Network Security Manager (NSM), a multi-tenant centralized firewall manager, allows you to centrally manage all firewall operations error-free by adhering to auditable workflows. Reporting and Analytics¹,² give single-pane visibility and lets you monitor and uncover threats by unifying and correlating logs across all firewalls.
NSM also helps you stay compliant as it provides full audit trails of every configuration change and granular reporting. The solution scales to any size organization that manages networks with up to thousands of firewall devices deployed across many locations. NSM does it all with less effort and time.
Be in control: Orchestrate firewall operations from one place
NSM offers you everything you need for a unified firewall management system. It empowers you with tenant-level visibility, group-based device control and unlimited scale to centrally manage and provision your SonicWall network security operations. These include deploying and managing all firewall devices, device groups and tenants, synchronizing and enforcing consistent security policies across your environments with flexible local controls and monitoring everything from one dynamic dashboard with detailed reports and analytics. NSM enables you to manage all from a single user-friendly console that can be accessed from any location using any browser-enabled device.
Be more effective: Work smarter and take security actions faster with less effort
NSM is a productivity management tool that enables you to work smarter and take security actions faster with less effort. Its design is guided by business processes and grounded on the principle of simplifying and, in some cases, automating workflows to achieve better security coordination. Also, it helps reduce the complexity, time and overhead of performing every-day security operations and administration tasks.
Be more aware: investigate hidden risks with active monitoring, reporting and analytics
NSM interactive dashboard provides real-time monitoring and reporting and analytics data. The information helps you troubleshoot problems, investigate risks and take smart security policy actions for a more adaptive security posture.
Feature Comparison
Feature
Essential
Advanced
Management
Reporting
7 Days
365 Days
Analytics
License: |
Capture Advanced Threat Protection for NSsp 15700
For effective zero-day threat protection, organizations need solutions that include malware-analysis technologies and can detect evasive advanced threats and malware — today and tomorrow.
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and can block advanced threats at the gateway until verdict. This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
The solution scans traffic and extracts suspicious code for analysis, but unlike other gateway solutions, analyzes a broad range of file sizes and types (including executable programs, DLL, PDFs, MS Office documents, archives, JAR and APK). Global threat intelligence infrastructure rapidly deploys remediation signatures for newly identified threats to all SonicWall network security appliances, thus preventing further infiltration. Customers benefit from high-security effectiveness, fast response times and reduced total cost of ownership.
The SonicWall Capture reporting page displays daily at a glance results. Colored bars on the report indicate days where malware was discovered. Administrators have the ability to click on individual daily results and apply filters to quickly see malicious files with results.
Benefits
High security effectiveness against unknown threats
Near real-time signature deployment protects from follow on attacks
Reduced total cost of ownership
Block files at the gateway until verdict
Multiple engines process files in parallel for rapid verdicts
SonicWall's RTDMI engine blocks unknown mass-market malware utilizing real-time memory-based inspection techniques
Requires purchase of Gateway Anti-Malware, Intrusion Prevention and Application Control Service. Available in 1, 3 or 5 year licenses.
Multi-engine advanced threat analysis
SonicWall Capture Service extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic, and detects and blocks intrusions and known malware. Suspicious files are sent to the SonicWall Capture cloud service for analysis. The multi-engine sandbox platform, which includes virtualized sandboxing, full system emulation and hypervisorlevel analysis technology, executes suspicious code and analyzes behavior, provides comprehensive visibility to malicious activity while resisting evasion tactics and maximizing zero-day threat detection.
Broad file type analysis
The service supports analysis of a broad range of file sizes and types, including executable programs (PE), DLL, PDFs, MS Office documents, archives, JAR and APK, plus multiple operating systems including Windows and Android. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis by file type, file size, sender, recipient or protocol. In addition, administrators can manually submit files to the cloud service for analysis.
Blocks until verdict
To prevent potentially malicious files from entering the network, files sent to the cloud service for analysis can be held at the gateway until a verdict is determined.
Rapid deployment of remediation signatures
When a file is identified as malicious, a signature is immediately available to firewalls with SonicWall Capture subscriptions to prevent followon attacks. In addition, the malware is submitted to the SonicWall Capture Labs threat research team for further analysis and inclusion with threat information into the Gateway Anti-Virus and IPS signature databases. Additionally, it is sent to URL, IP and domain reputation databases within 48 hours.
Reporting and alerts
The SonicWall Capture Service provides an at-a-glance threat analysis dashboard and reports, which detail the analysis results for files sent to the service. including source, destination and a summary plus details of malware action once detonated. Firewall log alerts provide notification of suspicious files sent to the SonicWall Capture Service, and file analysis verdict.
License: |
Content Filtering Service Premium Business Edition for NSsp 15700
Educational institutions, businesses and government agencies assume substantial risks when they provide students and employees IT-issued computers that can be used to access the Internet, even when the device is behind the firewall perimeter where organizational web use policies are enforced. This is particularly true when those connections are used to access sites containing information or images that are inappropriate, dangerous or even illegal. These sites may also be infected with malware that can be inadvertently downloaded and then used to steal confidential information.
Schools, in particular, have a responsibility to protect students from inappropriate and harmful web content. For businesses and government agencies, providing employees with uncontrolled web access can result in non-productive web surfing, creating tremendous losses in productivity, not to mention the potential for legal liability.
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall. SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
For laptops that are used outside the firewall perimeter, the SonicWall Content Filtering Client addresses safety, security and productivity concerns by extending the controls to block harmful and unproductive web content. The client is automatically deployed and provisioned through a SonicWall firewall. In addition to providing IT administrators the tools to control web-based access for roaming devices, the Content Filtering Client can be configured to automatically switch enforcement to the internal policy once the device reconnects to the network firewall. The client is managed and monitored using a powerful policy and reporting engine in the cloud that is accessed seamlessly from the firewall interface. In the event an outdated client attempts to connect to the internal network to access the Internet, the connection is denied and the user receives a message with steps for remediation.
Highlights
Best in-class protection
Granular content filtering controls
Dynamically updated rating architecture
Application traffic analytics
Easy-to-use web-based management
High-performance web caching and rating architecture
IP-based HTTPS content filtering
Scalable, cost-effective solution
Content Filtering Client for roaming devices
License: |
SonicWall NSsp 15700 High Availability
Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.
High Availability (HA) is a redundancy design that allows two identical SonicWall firewalls running the Management Service to be configured to provide a reliable, continuous connection to the public Internet. One SonicWall firewall is configured as the Primary unit, and an identical SonicWall firewall is configured as the Secondary unit. If the Primary firewall fails, the Secondary firewall takes over to secure a reliable connection between the protected network and the Internet. Two firewalls configured in this way are also known as a High Availability Pair (HA Pair).
High Availability provides a way to share SonicWall licenses between two SonicWall firewalls when one is acting as a high-availability system for the other. Both firewalls must be the same SonicWall model.
Must be paired with a regular SonicWall NSsp 15700 Firewall
SonicWall NSSP 13700 - Base Appliance
Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.
The SonicWall Network Security services platform™ (NSsp) 13700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.
As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.
The SonicWall NSsp 13700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 13700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.
Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.
This is the base SonicWall NSSP 13700 Appliance. No licenses or security services are included.
Appliance Layout Diagram
Benefits
High port density
100 GbE ports
Multi-instance firewall
Integrates with on-premise and cloud-based sandboxing
Single-pane-of-glass-management through cloud or firewall
Supports millions of simultaneous TLS connections
Redundant power supply
SonicOS 7.0
TLS 1.3
Low TCO
Essential Protection Service Suite Bundle for NSsp 13700
Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support, cloud management and reporting in a single integrated package.
The SonicOS architecture is at the core of SonicWall physical and virtual firewalls including the TZ, NSa, NSv and NSsp Series. SonicOS leverages our patented, single-pass, lowlatency, Reassembly-Free Deep Packet Inspection® (RFDPI) and patent-pending Real-Time Deep Memory Inspection™ (RTDMI) technologies to deliver industry-validated high security effectiveness, SD-WAN, real-time visualization, high-speed virtual private networking (VPN) and other robust security features.
Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that's been validated by independent third party testing for its extremely high security effectiveness. Unknown threats are sent to SonicWall's cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our RTDMI™ technology.
The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware’s weaponry is exposed for less than 100 nanoseconds.
Essential Protection Service Suite (EPSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam and 24x7 Support with firmware.
Benefits
Complete network security solution
All service licences included.
Capture ATP
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.
This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
Gateway anti-virus and anti-spyware protection
DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.
The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.
Cutting-edge IPS technology
Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
Application intelligence and control
Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
Content filtering
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.
SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
Network Topology View
Display hosts, access-points in the network based on device name, mac address and IP Address.
24x7 support with firmware updates and hardware replacement
Including firmware updates and hardware replacement protects your business and your SonicWall investment.
Management and reporting
Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.
SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.
Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.
Security Suite Comparison Chart
Feature
Essential
Advanced
Premier
Gateway Anti-Virus, Intrusion Prevention,
Application Control
Content Filtering Service
Anti-Spam
24x7 Support
Network Visibility
Capture ATP (Multi-Engine) Sandboxing
RTDMI Technology
Basic DNS Security
Cloud Management
Cloud based Reporting - 7 Days
Advanced Cloud Analytics - Virtual, 365 Days Reporting
Advanced DNS Security
Firewall System Check Tool
Cloud App Security Starter Pack
Capture Client Starter Pack
Premier Support
- Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle
License: |
SonicWall NSSP 13700 Total Secure - Essential Edition
Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.
The SonicWall Network Security services platform™ (NSsp) 13700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.
As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.
The SonicWall NSsp 13700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 13700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.
Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.
SonicWall NSSP 13700 Appliance with 1Yr of Essential Protection Service Suite. Essential Protection Service Suite (EPSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam and 24x7 Support with firmware.
Appliance Layout Diagram
Benefits
High port density
100 GbE ports
Multi-instance firewall
Integrates with on-premise and cloud-based sandboxing
Single-pane-of-glass-management through cloud or firewall
Supports millions of simultaneous TLS connections
Redundant power supply
SonicOS 7.0
TLS 1.3
Low TCO
TotalSecure Features
Complete network security solution
All service licences included.
Capture ATP
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.
This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
Gateway anti-virus and anti-spyware protection
DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.
The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.
Cutting-edge IPS technology
Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
Application intelligence and control
Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
Content filtering
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.
SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
Network Topology View
Display hosts, access-points in the network based on device name, mac address and IP Address.
24x7 support with firmware updates and hardware replacement
Including firmware updates and hardware replacement protects your business and your SonicWall investment.
Management and reporting
Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.
SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.
Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.
Security Suite Comparison Chart
Feature
Essential
Advanced
Premier
Gateway Anti-Virus, Intrusion Prevention,
Application Control
Content Filtering Service
Anti-Spam
24x7 Support
Network Visibility
Capture ATP (Multi-Engine) Sandboxing
RTDMI Technology
Basic DNS Security
Cloud Management
Cloud based Reporting - 7 Days
Advanced Cloud Analytics - Virtual, 365 Days Reporting
Advanced DNS Security
Firewall System Check Tool
Cloud App Security Starter Pack
Capture Client Starter Pack
Premier Support
- Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle
SonicWall NSSP 13700 Total Secure - Advanced Edition
Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.
The SonicWall Network Security services platform™ (NSsp) 13700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.
As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.
The SonicWall NSsp 13700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 13700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.
Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.
SonicWall NSSP 13700 Appliance with 1Yr of Advanced Protection Service Suite. Advanced Protection Service Suite (APSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam, NSM Essential with Management & 7-Day Reporting and 24x7 Support with firmware.
Appliance Layout Diagram
Benefits
High port density
100 GbE ports
Multi-instance firewall
Integrates with on-premise and cloud-based sandboxing
Single-pane-of-glass-management through cloud or firewall
Supports millions of simultaneous TLS connections
Redundant power supply
SonicOS 7.0
TLS 1.3
Low TCO
TotalSecure Features
Complete network security solution
All service licences included.
Capture ATP
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.
This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
Gateway anti-virus and anti-spyware protection
DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.
The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.
Cutting-edge IPS technology
Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
Application intelligence and control
Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
Content filtering
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.
SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
Network Topology View
Display hosts, access-points in the network based on device name, mac address and IP Address.
24x7 support with firmware updates and hardware replacement
Including firmware updates and hardware replacement protects your business and your SonicWall investment.
Management and reporting
Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.
SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.
Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.
Security Suite Comparison Chart
Feature
Essential
Advanced
Premier
Gateway Anti-Virus, Intrusion Prevention,
Application Control
Content Filtering Service
Anti-Spam
24x7 Support
Network Visibility
Capture ATP (Multi-Engine) Sandboxing
RTDMI Technology
Basic DNS Security
Cloud Management
Cloud based Reporting - 7 Days
Advanced Cloud Analytics - Virtual, 365 Days Reporting
Advanced DNS Security
Firewall System Check Tool
Cloud App Security Starter Pack
Capture Client Starter Pack
Premier Support
- Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle
Advanced Protection Service Suite for NSSP 13700
Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support, cloud management and reporting in a single integrated package.
The SonicOS architecture is at the core of SonicWall physical and virtual firewalls including the TZ, NSa, NSv and NSsp Series. SonicOS leverages our patented, single-pass, lowlatency, Reassembly-Free Deep Packet Inspection® (RFDPI) and patent-pending Real-Time Deep Memory Inspection™ (RTDMI) technologies to deliver industry-validated high security effectiveness, SD-WAN, real-time visualization, high-speed virtual private networking (VPN) and other robust security features.
Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that's been validated by independent third party testing for its extremely high security effectiveness. Unknown threats are sent to SonicWall's cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our RTDMI™ technology.
The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware’s weaponry is exposed for less than 100 nanoseconds.
Advanced Protection Service Suite (APSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam, NSM Essential with Management & 7-Day Reporting and 24x7 Support with firmware.
Benefits
Complete network security solution
All service licences included.
Capture ATP
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.
This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
Gateway anti-virus and anti-spyware protection
DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.
The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.
Cutting-edge IPS technology
Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
Application intelligence and control
Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
Content filtering
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.
SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
Network Topology View
Display hosts, access-points in the network based on device name, mac address and IP Address.
24x7 support with firmware updates and hardware replacement
Including firmware updates and hardware replacement protects your business and your SonicWall investment.
Management and reporting
Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.
SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.
Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.
Security Suite Comparison Chart
Feature
Essential
Advanced
Premier
Gateway Anti-Virus, Intrusion Prevention,
Application Control
Content Filtering Service
Anti-Spam
24x7 Support
Network Visibility
Capture ATP (Multi-Engine) Sandboxing
RTDMI Technology
Basic DNS Security
Cloud Management
Cloud based Reporting - 7 Days
Advanced Cloud Analytics - Virtual, 365 Days Reporting
Advanced DNS Security
Firewall System Check Tool
Cloud App Security Starter Pack
Capture Client Starter Pack
Premier Support
- Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle
License: |
Capture Advanced Threat Protection for NSsp 13700
For effective zero-day threat protection, organizations need solutions that include malware-analysis technologies and can detect evasive advanced threats and malware — today and tomorrow.
To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and can block advanced threats at the gateway until verdict. This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.
The solution scans traffic and extracts suspicious code for analysis, but unlike other gateway solutions, analyzes a broad range of file sizes and types (including executable programs, DLL, PDFs, MS Office documents, archives, JAR and APK). Global threat intelligence infrastructure rapidly deploys remediation signatures for newly identified threats to all SonicWall network security appliances, thus preventing further infiltration. Customers benefit from high-security effectiveness, fast response times and reduced total cost of ownership.
The SonicWall Capture reporting page displays daily at a glance results. Colored bars on the report indicate days where malware was discovered. Administrators have the ability to click on individual daily results and apply filters to quickly see malicious files with results.
Benefits
High security effectiveness against unknown threats
Near real-time signature deployment protects from follow on attacks
Reduced total cost of ownership
Block files at the gateway until verdict
Multiple engines process files in parallel for rapid verdicts
SonicWall's RTDMI engine blocks unknown mass-market malware utilizing real-time memory-based inspection techniques
Requires purchase of Gateway Anti-Malware, Intrusion Prevention and Application Control Service. Available in 1, 3 or 5 year licenses.
Multi-engine advanced threat analysis
SonicWall Capture Service extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic, and detects and blocks intrusions and known malware. Suspicious files are sent to the SonicWall Capture cloud service for analysis. The multi-engine sandbox platform, which includes virtualized sandboxing, full system emulation and hypervisorlevel analysis technology, executes suspicious code and analyzes behavior, provides comprehensive visibility to malicious activity while resisting evasion tactics and maximizing zero-day threat detection.
Broad file type analysis
The service supports analysis of a broad range of file sizes and types, including executable programs (PE), DLL, PDFs, MS Office documents, archives, JAR and APK, plus multiple operating systems including Windows and Android. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis by file type, file size, sender, recipient or protocol. In addition, administrators can manually submit files to the cloud service for analysis.
Blocks until verdict
To prevent potentially malicious files from entering the network, files sent to the cloud service for analysis can be held at the gateway until a verdict is determined.
Rapid deployment of remediation signatures
When a file is identified as malicious, a signature is immediately available to firewalls with SonicWall Capture subscriptions to prevent followon attacks. In addition, the malware is submitted to the SonicWall Capture Labs threat research team for further analysis and inclusion with threat information into the Gateway Anti-Virus and IPS signature databases. Additionally, it is sent to URL, IP and domain reputation databases within 48 hours.
Reporting and alerts
The SonicWall Capture Service provides an at-a-glance threat analysis dashboard and reports, which detail the analysis results for files sent to the service. including source, destination and a summary plus details of malware action once detonated. Firewall log alerts provide notification of suspicious files sent to the SonicWall Capture Service, and file analysis verdict.
License: |
Comprehensive Anti-Spam Service for NSSP 13700
With nearly 80% of email classified as junk (spam, phishing and virus-laden messages), allowing such distracting and dangerous traffic into your network can grind your business communications and organizational productivity to a halt. Removing this junk email at the gateway optimizes network efficiency, and enhances email and employee productivity.
SonicWall Comprehensive Anti-Spam Service (CASS) offers small- to mediumsized businesses comprehensive protection from spam and viruses, with instant deployment over existing SonicWall firewalls. CASS speeds deployment, eases administration and reduces overhead by consolidating solutions, providing one-click anti-spam services, with advanced configuration in just 10 minutes.
CASS offers complete inbound anti-spam, antiphishing, anti-malware protection and features, SonicWall Capture Threat Network IP Reputation, Advanced Content Management, Denial of Service prevention, full quarantine and customizable per-user junk summaries. Outperforming RBL filtering, CASS offers >99% effectiveness against spam, dropping >80% of spam at the gateway, while utilizing advanced anti-spam techniques like Adversarial Bayesian™ filtering using advanced detection techniques like Adversarial Bayesian and machine-learning filtering.
Stop spam, phishing and virus attacks using multiple proven, patented techniques
including reputation checks that check not only a message’s sender IP reputation, but also the reputation of its content, structure, links, images, attachments. Advanced techniques are also used to analyze email content, such as adversarial Bayesian filtering, image analysis and gibberish detection to uncover hidden known threats, and new threats. The cloud-based design utilizes these advanced anti-spam techniques without impacting firewall processing and overall network throughput.
Real-time threat information via the SonicWall Capture Threat Network
collects and analyzes information from industry threat lists and also performs rigorous testing and evaluation of millions of emails every day, establishing reputation scores for senders and content and identifying new threats in real-time to deliver the most accurate and upto-date protection against new spam attacks while also ensuring delivery of good email.
SonicWall Capture Cloud
leverages SonicWall Capture Threat Network technology to deliver cloud-based antivirus and anti-spyware protection.
Flexible junk email routing
categorises junk messages as spam, likely spam, phishing, likely phishing, virus and likely virus. Messages in each category can be rejected, tagged and delivered, sent to the user’s Junk Box, or deleted, for complete control and compliance with corporate and regulatory requirements.
License: |
Content Filtering Service Premium Business Edition for NSsp 13700
Educational institutions, businesses and government agencies assume substantial risks when they provide students and employees IT-issued computers that can be used to access the Internet, even when the device is behind the firewall perimeter where organizational web use policies are enforced. This is particularly true when those connections are used to access sites containing information or images that are inappropriate, dangerous or even illegal. These sites may also be infected with malware that can be inadvertently downloaded and then used to steal confidential information.
Schools, in particular, have a responsibility to protect students from inappropriate and harmful web content. For businesses and government agencies, providing employees with uncontrolled web access can result in non-productive web surfing, creating tremendous losses in productivity, not to mention the potential for legal liability.
CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall. SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.
For laptops that are used outside the firewall perimeter, the SonicWall Content Filtering Client addresses safety, security and productivity concerns by extending the controls to block harmful and unproductive web content. The client is automatically deployed and provisioned through a SonicWall firewall. In addition to providing IT administrators the tools to control web-based access for roaming devices, the Content Filtering Client can be configured to automatically switch enforcement to the internal policy once the device reconnects to the network firewall. The client is managed and monitored using a powerful policy and reporting engine in the cloud that is accessed seamlessly from the firewall interface. In the event an outdated client attempts to connect to the internal network to access the Internet, the connection is denied and the user receives a message with steps for remediation.
Highlights
Best in-class protection
Granular content filtering controls
Dynamically updated rating architecture
Application traffic analytics
Easy-to-use web-based management
High-performance web caching and rating architecture
IP-based HTTPS content filtering
Scalable, cost-effective solution
Content Filtering Client for roaming devices
License: |
SonicWall Network Security Manager Essential with Management and 7-Day Reporting for NSsp 13700
Whether you’re protecting a small business, a distributed enterprise, multiple businesses, or a closed network, your network security can get overwhelmed by operational disarrays, unseen risks and regulatory demands. Historically, efficient firewall management practices have mostly relied on dependable systems and operation control measures. However, frequent errors, misconfigurations and perhaps even violations of those controls remain to be constant challenges for wellrun Security Operation Centers (SOCs).
SonicWall Network Security Manager (NSM), a multi-tenant centralized firewall manager, allows you to centrally manage all firewall operations error-free by adhering to auditable workflows. Reporting and Analytics¹,² give single-pane visibility and lets you monitor and uncover threats by unifying and correlating logs across all firewalls.
NSM also helps you stay compliant as it provides full audit trails of every configuration change and granular reporting. The solution scales to any size organization that manages networks with up to thousands of firewall devices deployed across many locations. NSM does it all with less effort and time.
Be in control: Orchestrate firewall operations from one place
NSM offers you everything you need for a unified firewall management system. It empowers you with tenant-level visibility, group-based device control and unlimited scale to centrally manage and provision your SonicWall network security operations. These include deploying and managing all firewall devices, device groups and tenants, synchronizing and enforcing consistent security policies across your environments with flexible local controls and monitoring everything from one dynamic dashboard with detailed reports and analytics. NSM enables you to manage all from a single user-friendly console that can be accessed from any location using any browser-enabled device.
Be more effective: Work smarter and take security actions faster with less effort
NSM is a productivity management tool that enables you to work smarter and take security actions faster with less effort. Its design is guided by business processes and grounded on the principle of simplifying and, in some cases, automating workflows to achieve better security coordination. Also, it helps reduce the complexity, time and overhead of performing every-day security operations and administration tasks.
Be more aware: investigate hidden risks with active monitoring, reporting and analytics
NSM interactive dashboard provides real-time monitoring and reporting and analytics data. The information helps you troubleshoot problems, investigate risks and take smart security policy actions for a more adaptive security posture.
Feature Comparison
Feature
Essential
Advanced
Management
Reporting
7 Days
365 Days
Analytics
License: |
SonicWall NSSP 13700 High Availability
The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.
High Availability (HA) is a redundancy design that allows two identical SonicWall firewalls running the Management Service to be configured to provide a reliable, continuous connection to the public Internet. One SonicWall firewall is configured as the Primary unit, and an identical SonicWall firewall is configured as the Secondary unit. If the Primary firewall fails, the Secondary firewall takes over to secure a reliable connection between the protected network and the Internet. Two firewalls configured in this way are also known as a High Availability Pair (HA Pair).
High Availability provides a way to share SonicWall licenses between two SonicWall firewalls when one is acting
as a high-availability system for the other. Both firewalls must be the same SonicWall model.
Must be paired with a regular SonicWall NSSP 13700 firewall
Highlights
1 RU – Form Factor
24 x 1 GbE interfaces
6 x 10 GbE interfaces
Multi-gigabit Threat and Malware Analysis Throughput
Latest Generation 7 SonicOS support
Secure SD-WAN capability
Intuitive single pane of glass management
TLS 1.3 support
Redundant power
Fast DPI performance
Low TCO in its class
High port density for easy networking
- Review: The 10 Best Wireless Access Points
- Review: The Top 10 Best Ethernet Cables
- What Is An Ethernet Cable And What Does It Do?
- 10 Best CCTV Security IP Cameras For Home & Business
- Review: Best Powerline Adapters In The UK
- Celebrating 20 Years Of Comms Express!
- The Top 10 DrayTek Wireless Access Points
- Best Selling APC Products At Comms Express
- Review: Top 5 Best Performing APC Uninterruptible Power Supply Units (UPS)
- Review: Top 10 Best PDU’s