SonicWall NSsp Series

SonicWall NSsp 15700

Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.

The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.

As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.

The SonicWall NSsp 15700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 15700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.

Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.

Appliance Layout Diagram

Benefits

High port density

100 GbE ports

Multi-instance firewall

Integrates with on-premise and cloud-based sandboxing

Single-pane-of-glass-management through cloud or firewall

Supports millions of simultaneous TLS connections

Redundant power supply

SonicOS 7.0

TLS 1.3



Low TCO

SonicWall NSsp 15700

Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.

The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.

As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.

The SonicWall NSsp 15700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 15700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.

Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.

Appliance Layout Diagram

Benefits

High port density

100 GbE ports

Multi-instance firewall

Integrates with on-premise and cloud-based sandboxing

Single-pane-of-glass-management through cloud or firewall

Supports millions of simultaneous TLS connections

Redundant power supply

SonicOS 7.0

TLS 1.3



Low TCO



Essential Protection Service Suite

Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support in a single integrated package.

Analyzer presents detailed traffic analysis and granular security reporting to security teams or incident responders, so they can actively monitor and prevent critical network and security events before serious problems occur.

Complete network security solution

All service licences included.





Capture ATP

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.

This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.





Gateway anti-virus and anti-spyware protection

DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.

The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.





Cutting-edge IPS technology

Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.





Application intelligence and control

Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.





Content filtering

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.

SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.





Network Topology View

Display hosts, access-points in the network based on device name, mac address and IP Address.





24x7 support with firmware updates and hardware replacement

Including firmware updates and hardware replacement protects your business and your SonicWall investment.

Security Suite Comparison Chart

Feature Essential Advanced Premier Gateway Anti-Virus, Intrusion Prevention,
Application Control Content Filtering Service Anti-Spam 24x7 Support Network Visibility Capture ATP (Multi-Engine) Sandboxing RTDMI Technology Basic DNS Security Cloud Management Cloud based Reporting - 7 Days Advanced Cloud Analytics - Virtual, 365 Days Reporting Advanced DNS Security Firewall System Check Tool Cloud App Security Starter Pack Capture Client Starter Pack Premier Support - Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle

SonicWall NSsp 15700 TotalSecure - Essential Edition

Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.

The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.

As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.

The SonicWall NSsp 15700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 15700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.

Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.

NSsp 15700 Appliance with 1 year of the EPSS (Capture ATP with RTDMI Technology, Intrusion Prevention, Application Control, Gateway Anti-Virus, Anti-Spam, Network Visibility, Content Filtering, 24X7 Support)

Appliance Layout Diagram

Benefits

High port density

100 GbE ports

Multi-instance firewall

Integrates with on-premise and cloud-based sandboxing

Single-pane-of-glass-management through cloud or firewall

Supports millions of simultaneous TLS connections

Redundant power supply

SonicOS 7.0

TLS 1.3



Low TCO



TotalSecure Features

Complete network security solution

All service licences included.





Capture ATP

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.

This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.





Gateway anti-virus and anti-spyware protection

DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.

The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.





Cutting-edge IPS technology

Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.





Application intelligence and control

Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.





Content filtering

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.

SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.





Network Topology View

Display hosts, access-points in the network based on device name, mac address and IP Address.





24x7 support with firmware updates and hardware replacement

Including firmware updates and hardware replacement protects your business and your SonicWall investment.





Management and reporting

Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.

SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.

Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.

Security Suite Comparison Chart

Feature Essential Advanced Premier Gateway Anti-Virus, Intrusion Prevention,
Application Control Content Filtering Service Anti-Spam 24x7 Support Network Visibility Capture ATP (Multi-Engine) Sandboxing RTDMI Technology Basic DNS Security Cloud Management Cloud based Reporting - 7 Days Advanced Cloud Analytics - Virtual, 365 Days Reporting Advanced DNS Security Firewall System Check Tool Cloud App Security Starter Pack Capture Client Starter Pack Premier Support - Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle

Essential Protection Service Suite Bundle for NSsp 15700

Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support, cloud management and reporting in a single integrated package.

The SonicOS architecture is at the core of SonicWall physical and virtual firewalls including the TZ, NSa, NSv and NSsp Series. SonicOS leverages our patented, single-pass, lowlatency, Reassembly-Free Deep Packet Inspection® (RFDPI) and patent-pending Real-Time Deep Memory Inspection™ (RTDMI) technologies to deliver industry-validated high security effectiveness, SD-WAN, real-time visualization, high-speed virtual private networking (VPN) and other robust security features.

Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that's been validated by independent third party testing for its extremely high security effectiveness. Unknown threats are sent to SonicWall's cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our RTDMI™ technology.

The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware’s weaponry is exposed for less than 100 nanoseconds.

Essential Protection Service Suite (EPSS) includes - Capture ATP with RTDMI Technology, Intrusion Prevention, Application Control, Gateway Anti-Virus, Network Visibility, Content Filtering, 24X7 Support





Benefits

Complete network security solution

All service licences included.





Capture ATP

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.

This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.





Gateway anti-virus and anti-spyware protection

DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.

The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.





Cutting-edge IPS technology

Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.





Application intelligence and control

Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.





Content filtering

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.

SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.





Network Topology View

Display hosts, access-points in the network based on device name, mac address and IP Address.





24x7 support with firmware updates and hardware replacement

Including firmware updates and hardware replacement protects your business and your SonicWall investment.





Management and reporting

Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.

SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.

Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.

Security Suite Comparison Chart

Feature Essential Advanced Premier Gateway Anti-Virus, Intrusion Prevention,
Application Control Content Filtering Service Anti-Spam 24x7 Support Network Visibility Capture ATP (Multi-Engine) Sandboxing RTDMI Technology Basic DNS Security Cloud Management Cloud based Reporting - 7 Days Advanced Cloud Analytics - Virtual, 365 Days Reporting Advanced DNS Security Firewall System Check Tool Cloud App Security Starter Pack Capture Client Starter Pack Premier Support - Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle

SonicWall Network Security Manager Essential with Management and 7-Day Reporting for NSsp 15700

Whether you’re protecting a small business, a distributed enterprise, multiple businesses, or a closed network, your network security can get overwhelmed by operational disarrays, unseen risks and regulatory demands. Historically, efficient firewall management practices have mostly relied on dependable systems and operation control measures. However, frequent errors, misconfigurations and perhaps even violations of those controls remain to be constant challenges for wellrun Security Operation Centers (SOCs).

SonicWall Network Security Manager (NSM), a multi-tenant centralized firewall manager, allows you to centrally manage all firewall operations error-free by adhering to auditable workflows. Reporting and Analytics¹,² give single-pane visibility and lets you monitor and uncover threats by unifying and correlating logs across all firewalls.

NSM also helps you stay compliant as it provides full audit trails of every configuration change and granular reporting. The solution scales to any size organization that manages networks with up to thousands of firewall devices deployed across many locations. NSM does it all with less effort and time.

Be in control: Orchestrate firewall operations from one place

NSM offers you everything you need for a unified firewall management system. It empowers you with tenant-level visibility, group-based device control and unlimited scale to centrally manage and provision your SonicWall network security operations. These include deploying and managing all firewall devices, device groups and tenants, synchronizing and enforcing consistent security policies across your environments with flexible local controls and monitoring everything from one dynamic dashboard with detailed reports and analytics. NSM enables you to manage all from a single user-friendly console that can be accessed from any location using any browser-enabled device.

Be more effective: Work smarter and take security actions faster with less effort

NSM is a productivity management tool that enables you to work smarter and take security actions faster with less effort. Its design is guided by business processes and grounded on the principle of simplifying and, in some cases, automating workflows to achieve better security coordination. Also, it helps reduce the complexity, time and overhead of performing every-day security operations and administration tasks.

Be more aware: investigate hidden risks with active monitoring, reporting and analytics

NSM interactive dashboard provides real-time monitoring and reporting and analytics data. The information helps you troubleshoot problems, investigate risks and take smart security policy actions for a more adaptive security posture.

Feature Comparison

Feature Essential Advanced Management Reporting 7 Days 365 Days Analytics

Capture Advanced Threat Protection for NSsp 15700

For effective zero-day threat protection, organizations need solutions that include malware-analysis technologies and can detect evasive advanced threats and malware — today and tomorrow.

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and can block advanced threats at the gateway until verdict. This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.

The solution scans traffic and extracts suspicious code for analysis, but unlike other gateway solutions, analyzes a broad range of file sizes and types (including executable programs, DLL, PDFs, MS Office documents, archives, JAR and APK). Global threat intelligence infrastructure rapidly deploys remediation signatures for newly identified threats to all SonicWall network security appliances, thus preventing further infiltration. Customers benefit from high-security effectiveness, fast response times and reduced total cost of ownership.

The SonicWall Capture reporting page displays daily at a glance results. Colored bars on the report indicate days where malware was discovered. Administrators have the ability to click on individual daily results and apply filters to quickly see malicious files with results.

Benefits

High security effectiveness against unknown threats

Near real-time signature deployment protects from follow on attacks

Reduced total cost of ownership

Block files at the gateway until verdict

Multiple engines process files in parallel for rapid verdicts

SonicWall's RTDMI engine blocks unknown mass-market malware utilizing real-time memory-based inspection techniques

Requires purchase of Gateway Anti-Malware, Intrusion Prevention and Application Control Service. Available in 1, 3 or 5 year licenses.

Multi-engine advanced threat analysis

SonicWall Capture Service extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic, and detects and blocks intrusions and known malware. Suspicious files are sent to the SonicWall Capture cloud service for analysis. The multi-engine sandbox platform, which includes virtualized sandboxing, full system emulation and hypervisorlevel analysis technology, executes suspicious code and analyzes behavior, provides comprehensive visibility to malicious activity while resisting evasion tactics and maximizing zero-day threat detection.

Broad file type analysis

The service supports analysis of a broad range of file sizes and types, including executable programs (PE), DLL, PDFs, MS Office documents, archives, JAR and APK, plus multiple operating systems including Windows and Android. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis by file type, file size, sender, recipient or protocol. In addition, administrators can manually submit files to the cloud service for analysis.

Blocks until verdict

To prevent potentially malicious files from entering the network, files sent to the cloud service for analysis can be held at the gateway until a verdict is determined.

Rapid deployment of remediation signatures

When a file is identified as malicious, a signature is immediately available to firewalls with SonicWall Capture subscriptions to prevent followon attacks. In addition, the malware is submitted to the SonicWall Capture Labs threat research team for further analysis and inclusion with threat information into the Gateway Anti-Virus and IPS signature databases. Additionally, it is sent to URL, IP and domain reputation databases within 48 hours.

Reporting and alerts

The SonicWall Capture Service provides an at-a-glance threat analysis dashboard and reports, which detail the analysis results for files sent to the service. including source, destination and a summary plus details of malware action once detonated. Firewall log alerts provide notification of suspicious files sent to the SonicWall Capture Service, and file analysis verdict.

Content Filtering Service Premium Business Edition for NSsp 15700

Educational institutions, businesses and government agencies assume substantial risks when they provide students and employees IT-issued computers that can be used to access the Internet, even when the device is behind the firewall perimeter where organizational web use policies are enforced. This is particularly true when those connections are used to access sites containing information or images that are inappropriate, dangerous or even illegal. These sites may also be infected with malware that can be inadvertently downloaded and then used to steal confidential information.

Schools, in particular, have a responsibility to protect students from inappropriate and harmful web content. For businesses and government agencies, providing employees with uncontrolled web access can result in non-productive web surfing, creating tremendous losses in productivity, not to mention the potential for legal liability.

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall. SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.

For laptops that are used outside the firewall perimeter, the SonicWall Content Filtering Client addresses safety, security and productivity concerns by extending the controls to block harmful and unproductive web content. The client is automatically deployed and provisioned through a SonicWall firewall. In addition to providing IT administrators the tools to control web-based access for roaming devices, the Content Filtering Client can be configured to automatically switch enforcement to the internal policy once the device reconnects to the network firewall. The client is managed and monitored using a powerful policy and reporting engine in the cloud that is accessed seamlessly from the firewall interface. In the event an outdated client attempts to connect to the internal network to access the Internet, the connection is denied and the user receives a message with steps for remediation.

Highlights

Best in-class protection

Granular content filtering controls

Dynamically updated rating architecture

Application traffic analytics

Easy-to-use web-based management

High-performance web caching and rating architecture

IP-based HTTPS content filtering

Scalable, cost-effective solution

Content Filtering Client for roaming devices

SonicWall NSsp 15700 High Availability

Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.

High Availability (HA) is a redundancy design that allows two identical SonicWall firewalls running the Management Service to be configured to provide a reliable, continuous connection to the public Internet. One SonicWall firewall is configured as the Primary unit, and an identical SonicWall firewall is configured as the Secondary unit. If the Primary firewall fails, the Secondary firewall takes over to secure a reliable connection between the protected network and the Internet. Two firewalls configured in this way are also known as a High Availability Pair (HA Pair).

High Availability provides a way to share SonicWall licenses between two SonicWall firewalls when one is acting as a high-availability system for the other. Both firewalls must be the same SonicWall model.

Must be paired with a regular SonicWall NSsp 15700 Firewall

SonicWall NSSP 13700 - Base Appliance

Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.

The SonicWall Network Security services platform™ (NSsp) 13700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.

As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.

The SonicWall NSsp 13700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 13700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.

Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.

This is the base SonicWall NSSP 13700 Appliance. No licenses or security services are included.

Appliance Layout Diagram





Benefits





High port density





100 GbE ports





Multi-instance firewall











Integrates with on-premise and cloud-based sandboxing





Single-pane-of-glass-management through cloud or firewall





Supports millions of simultaneous TLS connections





Redundant power supply

SonicOS 7.0

TLS 1.3

Low TCO

Essential Protection Service Suite Bundle for NSsp 13700

Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support, cloud management and reporting in a single integrated package.

The SonicOS architecture is at the core of SonicWall physical and virtual firewalls including the TZ, NSa, NSv and NSsp Series. SonicOS leverages our patented, single-pass, lowlatency, Reassembly-Free Deep Packet Inspection® (RFDPI) and patent-pending Real-Time Deep Memory Inspection™ (RTDMI) technologies to deliver industry-validated high security effectiveness, SD-WAN, real-time visualization, high-speed virtual private networking (VPN) and other robust security features.

Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that's been validated by independent third party testing for its extremely high security effectiveness. Unknown threats are sent to SonicWall's cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our RTDMI™ technology.

The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware’s weaponry is exposed for less than 100 nanoseconds.

Essential Protection Service Suite (EPSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam and 24x7 Support with firmware.





Benefits

Complete network security solution

All service licences included.





Capture ATP

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.

This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.





Gateway anti-virus and anti-spyware protection

DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.

The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.





Cutting-edge IPS technology

Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.





Application intelligence and control

Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.





Content filtering

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.

SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.





Network Topology View

Display hosts, access-points in the network based on device name, mac address and IP Address.





24x7 support with firmware updates and hardware replacement

Including firmware updates and hardware replacement protects your business and your SonicWall investment.





Management and reporting

Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.

SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.

Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.

Security Suite Comparison Chart

Feature Essential Advanced Premier Gateway Anti-Virus, Intrusion Prevention,
Application Control Content Filtering Service Anti-Spam 24x7 Support Network Visibility Capture ATP (Multi-Engine) Sandboxing RTDMI Technology Basic DNS Security Cloud Management Cloud based Reporting - 7 Days Advanced Cloud Analytics - Virtual, 365 Days Reporting Advanced DNS Security Firewall System Check Tool Cloud App Security Starter Pack Capture Client Starter Pack Premier Support - Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle

SonicWall NSSP 13700 Total Secure - Essential Edition

Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.

The SonicWall Network Security services platform™ (NSsp) 13700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.

As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.

The SonicWall NSsp 13700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 13700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.

Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.

SonicWall NSSP 13700 Appliance with 1Yr of Essential Protection Service Suite. Essential Protection Service Suite (EPSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam and 24x7 Support with firmware.

Appliance Layout Diagram

Benefits

High port density

100 GbE ports

Multi-instance firewall

Integrates with on-premise and cloud-based sandboxing

Single-pane-of-glass-management through cloud or firewall

Supports millions of simultaneous TLS connections

Redundant power supply

SonicOS 7.0

TLS 1.3



Low TCO



TotalSecure Features

Complete network security solution

All service licences included.





Capture ATP

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.

This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.





Gateway anti-virus and anti-spyware protection

DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.

The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.





Cutting-edge IPS technology

Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.





Application intelligence and control

Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.





Content filtering

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.

SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.





Network Topology View

Display hosts, access-points in the network based on device name, mac address and IP Address.





24x7 support with firmware updates and hardware replacement

Including firmware updates and hardware replacement protects your business and your SonicWall investment.





Management and reporting

Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.

SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.

Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.

Security Suite Comparison Chart

Feature Essential Advanced Premier Gateway Anti-Virus, Intrusion Prevention,
Application Control Content Filtering Service Anti-Spam 24x7 Support Network Visibility Capture ATP (Multi-Engine) Sandboxing RTDMI Technology Basic DNS Security Cloud Management Cloud based Reporting - 7 Days Advanced Cloud Analytics - Virtual, 365 Days Reporting Advanced DNS Security Firewall System Check Tool Cloud App Security Starter Pack Capture Client Starter Pack Premier Support - Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle

SonicWall NSSP 13700 Total Secure - Advanced Edition

Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.

The SonicWall Network Security services platform™ (NSsp) 13700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.

As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.

The SonicWall NSsp 13700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 13700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.

Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.

SonicWall NSSP 13700 Appliance with 1Yr of Advanced Protection Service Suite. Advanced Protection Service Suite (APSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam, NSM Essential with Management & 7-Day Reporting and 24x7 Support with firmware.

Appliance Layout Diagram

Benefits

High port density

100 GbE ports

Multi-instance firewall

Integrates with on-premise and cloud-based sandboxing

Single-pane-of-glass-management through cloud or firewall

Supports millions of simultaneous TLS connections

Redundant power supply

SonicOS 7.0

TLS 1.3



Low TCO



TotalSecure Features

Complete network security solution

All service licences included.





Capture ATP

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.

This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.





Gateway anti-virus and anti-spyware protection

DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.

The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.





Cutting-edge IPS technology

Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.





Application intelligence and control

Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.





Content filtering

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.

SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.





Network Topology View

Display hosts, access-points in the network based on device name, mac address and IP Address.





24x7 support with firmware updates and hardware replacement

Including firmware updates and hardware replacement protects your business and your SonicWall investment.





Management and reporting

Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.

SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.

Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.

Security Suite Comparison Chart

Feature Essential Advanced Premier Gateway Anti-Virus, Intrusion Prevention,
Application Control Content Filtering Service Anti-Spam 24x7 Support Network Visibility Capture ATP (Multi-Engine) Sandboxing RTDMI Technology Basic DNS Security Cloud Management Cloud based Reporting - 7 Days Advanced Cloud Analytics - Virtual, 365 Days Reporting Advanced DNS Security Firewall System Check Tool Cloud App Security Starter Pack Capture Client Starter Pack Premier Support - Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle

Advanced Protection Service Suite for NSSP 13700

Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support, cloud management and reporting in a single integrated package.

The SonicOS architecture is at the core of SonicWall physical and virtual firewalls including the TZ, NSa, NSv and NSsp Series. SonicOS leverages our patented, single-pass, lowlatency, Reassembly-Free Deep Packet Inspection® (RFDPI) and patent-pending Real-Time Deep Memory Inspection™ (RTDMI) technologies to deliver industry-validated high security effectiveness, SD-WAN, real-time visualization, high-speed virtual private networking (VPN) and other robust security features.

Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that's been validated by independent third party testing for its extremely high security effectiveness. Unknown threats are sent to SonicWall's cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our RTDMI™ technology.

The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware’s weaponry is exposed for less than 100 nanoseconds.

Advanced Protection Service Suite (APSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam, NSM Essential with Management & 7-Day Reporting and 24x7 Support with firmware.





Benefits

Complete network security solution

All service licences included.





Capture ATP

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict.

This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.





Gateway anti-virus and anti-spyware protection

DPI-SSL extends SonicWall's patented Reassembly-Free Deep Packet Inspection® (RFDPI) technology to allow inspection of encrypted HTTPS traffic and other SSL-based traffic. It provides additional security, application control, and data leakage prevention for analysing encrypted traffic.

The RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan (unlike other scanning engines). By working at the application layer, RFDPI protects against hidden application vulnerabilities that may be inadvertently letting attackers in through an unknown back door.





Cutting-edge IPS technology

Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.





Application intelligence and control

Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.





Content filtering

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.

SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.





Network Topology View

Display hosts, access-points in the network based on device name, mac address and IP Address.





24x7 support with firmware updates and hardware replacement

Including firmware updates and hardware replacement protects your business and your SonicWall investment.





Management and reporting

Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center.

SonicWall Capture Security Centre is easy with true Single-Sign-On (SSO) and Single-Pane-of-Glass (SPOG) architecture. Watch over your entire security ecosystem with a scalable management solution. Included as part of all AGSS subscriptions.

Capture Security Center (CSC) gives you everything you need for comprehensive management, accessible from a single function packed interface. It touches everything, including analytics and reporting for networks, endpoint and cloud security, risk meters and asset management.

Security Suite Comparison Chart

Feature Essential Advanced Premier Gateway Anti-Virus, Intrusion Prevention,
Application Control Content Filtering Service Anti-Spam 24x7 Support Network Visibility Capture ATP (Multi-Engine) Sandboxing RTDMI Technology Basic DNS Security Cloud Management Cloud based Reporting - 7 Days Advanced Cloud Analytics - Virtual, 365 Days Reporting Advanced DNS Security Firewall System Check Tool Cloud App Security Starter Pack Capture Client Starter Pack Premier Support - Part of bundle
- Not available with the bundle, but can be purchased separately
- Not supported with the bundle

Capture Advanced Threat Protection for NSsp 13700

For effective zero-day threat protection, organizations need solutions that include malware-analysis technologies and can detect evasive advanced threats and malware — today and tomorrow.

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and can block advanced threats at the gateway until verdict. This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.

The solution scans traffic and extracts suspicious code for analysis, but unlike other gateway solutions, analyzes a broad range of file sizes and types (including executable programs, DLL, PDFs, MS Office documents, archives, JAR and APK). Global threat intelligence infrastructure rapidly deploys remediation signatures for newly identified threats to all SonicWall network security appliances, thus preventing further infiltration. Customers benefit from high-security effectiveness, fast response times and reduced total cost of ownership.

The SonicWall Capture reporting page displays daily at a glance results. Colored bars on the report indicate days where malware was discovered. Administrators have the ability to click on individual daily results and apply filters to quickly see malicious files with results.

Benefits

High security effectiveness against unknown threats

Near real-time signature deployment protects from follow on attacks

Reduced total cost of ownership

Block files at the gateway until verdict

Multiple engines process files in parallel for rapid verdicts

SonicWall's RTDMI engine blocks unknown mass-market malware utilizing real-time memory-based inspection techniques

Requires purchase of Gateway Anti-Malware, Intrusion Prevention and Application Control Service. Available in 1, 3 or 5 year licenses.

Multi-engine advanced threat analysis

SonicWall Capture Service extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic, and detects and blocks intrusions and known malware. Suspicious files are sent to the SonicWall Capture cloud service for analysis. The multi-engine sandbox platform, which includes virtualized sandboxing, full system emulation and hypervisorlevel analysis technology, executes suspicious code and analyzes behavior, provides comprehensive visibility to malicious activity while resisting evasion tactics and maximizing zero-day threat detection.

Broad file type analysis

The service supports analysis of a broad range of file sizes and types, including executable programs (PE), DLL, PDFs, MS Office documents, archives, JAR and APK, plus multiple operating systems including Windows and Android. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis by file type, file size, sender, recipient or protocol. In addition, administrators can manually submit files to the cloud service for analysis.

Blocks until verdict

To prevent potentially malicious files from entering the network, files sent to the cloud service for analysis can be held at the gateway until a verdict is determined.

Rapid deployment of remediation signatures

When a file is identified as malicious, a signature is immediately available to firewalls with SonicWall Capture subscriptions to prevent followon attacks. In addition, the malware is submitted to the SonicWall Capture Labs threat research team for further analysis and inclusion with threat information into the Gateway Anti-Virus and IPS signature databases. Additionally, it is sent to URL, IP and domain reputation databases within 48 hours.

Reporting and alerts

The SonicWall Capture Service provides an at-a-glance threat analysis dashboard and reports, which detail the analysis results for files sent to the service. including source, destination and a summary plus details of malware action once detonated. Firewall log alerts provide notification of suspicious files sent to the SonicWall Capture Service, and file analysis verdict.

Comprehensive Anti-Spam Service for NSSP 13700

With nearly 80% of email classified as junk (spam, phishing and virus-laden messages), allowing such distracting and dangerous traffic into your network can grind your business communications and organizational productivity to a halt. Removing this junk email at the gateway optimizes network efficiency, and enhances email and employee productivity.

SonicWall Comprehensive Anti-Spam Service (CASS) offers small- to mediumsized businesses comprehensive protection from spam and viruses, with instant deployment over existing SonicWall firewalls. CASS speeds deployment, eases administration and reduces overhead by consolidating solutions, providing one-click anti-spam services, with advanced configuration in just 10 minutes.

CASS offers complete inbound anti-spam, antiphishing, anti-malware protection and features, SonicWall Capture Threat Network IP Reputation, Advanced Content Management, Denial of Service prevention, full quarantine and customizable per-user junk summaries. Outperforming RBL filtering, CASS offers >99% effectiveness against spam, dropping >80% of spam at the gateway, while utilizing advanced anti-spam techniques like Adversarial Bayesian™ filtering using advanced detection techniques like Adversarial Bayesian and machine-learning filtering.

Stop spam, phishing and virus attacks using multiple proven, patented techniques

including reputation checks that check not only a message’s sender IP reputation, but also the reputation of its content, structure, links, images, attachments. Advanced techniques are also used to analyze email content, such as adversarial Bayesian filtering, image analysis and gibberish detection to uncover hidden known threats, and new threats. The cloud-based design utilizes these advanced anti-spam techniques without impacting firewall processing and overall network throughput.

Real-time threat information via the SonicWall Capture Threat Network

collects and analyzes information from industry threat lists and also performs rigorous testing and evaluation of millions of emails every day, establishing reputation scores for senders and content and identifying new threats in real-time to deliver the most accurate and upto-date protection against new spam attacks while also ensuring delivery of good email.

SonicWall Capture Cloud

leverages SonicWall Capture Threat Network technology to deliver cloud-based antivirus and anti-spyware protection.

Flexible junk email routing

categorises junk messages as spam, likely spam, phishing, likely phishing, virus and likely virus. Messages in each category can be rejected, tagged and delivered, sent to the user’s Junk Box, or deleted, for complete control and compliance with corporate and regulatory requirements.

Content Filtering Service Premium Business Edition for NSsp 13700

Educational institutions, businesses and government agencies assume substantial risks when they provide students and employees IT-issued computers that can be used to access the Internet, even when the device is behind the firewall perimeter where organizational web use policies are enforced. This is particularly true when those connections are used to access sites containing information or images that are inappropriate, dangerous or even illegal. These sites may also be infected with malware that can be inadvertently downloaded and then used to steal confidential information.

Schools, in particular, have a responsibility to protect students from inappropriate and harmful web content. For businesses and government agencies, providing employees with uncontrolled web access can result in non-productive web surfing, creating tremendous losses in productivity, not to mention the potential for legal liability.

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall. SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.

For laptops that are used outside the firewall perimeter, the SonicWall Content Filtering Client addresses safety, security and productivity concerns by extending the controls to block harmful and unproductive web content. The client is automatically deployed and provisioned through a SonicWall firewall. In addition to providing IT administrators the tools to control web-based access for roaming devices, the Content Filtering Client can be configured to automatically switch enforcement to the internal policy once the device reconnects to the network firewall. The client is managed and monitored using a powerful policy and reporting engine in the cloud that is accessed seamlessly from the firewall interface. In the event an outdated client attempts to connect to the internal network to access the Internet, the connection is denied and the user receives a message with steps for remediation.

Highlights

Best in-class protection

Granular content filtering controls

Dynamically updated rating architecture

Application traffic analytics

Easy-to-use web-based management

High-performance web caching and rating architecture

IP-based HTTPS content filtering

Scalable, cost-effective solution

Content Filtering Client for roaming devices

SonicWall Network Security Manager Essential with Management and 7-Day Reporting for NSsp 13700

Whether you’re protecting a small business, a distributed enterprise, multiple businesses, or a closed network, your network security can get overwhelmed by operational disarrays, unseen risks and regulatory demands. Historically, efficient firewall management practices have mostly relied on dependable systems and operation control measures. However, frequent errors, misconfigurations and perhaps even violations of those controls remain to be constant challenges for wellrun Security Operation Centers (SOCs).

SonicWall Network Security Manager (NSM), a multi-tenant centralized firewall manager, allows you to centrally manage all firewall operations error-free by adhering to auditable workflows. Reporting and Analytics¹,² give single-pane visibility and lets you monitor and uncover threats by unifying and correlating logs across all firewalls.

NSM also helps you stay compliant as it provides full audit trails of every configuration change and granular reporting. The solution scales to any size organization that manages networks with up to thousands of firewall devices deployed across many locations. NSM does it all with less effort and time.









Be in control: Orchestrate firewall operations from one place

NSM offers you everything you need for a unified firewall management system. It empowers you with tenant-level visibility, group-based device control and unlimited scale to centrally manage and provision your SonicWall network security operations. These include deploying and managing all firewall devices, device groups and tenants, synchronizing and enforcing consistent security policies across your environments with flexible local controls and monitoring everything from one dynamic dashboard with detailed reports and analytics. NSM enables you to manage all from a single user-friendly console that can be accessed from any location using any browser-enabled device.





Be more effective: Work smarter and take security actions faster with less effort

NSM is a productivity management tool that enables you to work smarter and take security actions faster with less effort. Its design is guided by business processes and grounded on the principle of simplifying and, in some cases, automating workflows to achieve better security coordination. Also, it helps reduce the complexity, time and overhead of performing every-day security operations and administration tasks.





Be more aware: investigate hidden risks with active monitoring, reporting and analytics

NSM interactive dashboard provides real-time monitoring and reporting and analytics data. The information helps you troubleshoot problems, investigate risks and take smart security policy actions for a more adaptive security posture.











Feature Comparison

Feature Essential Advanced Management Reporting 7 Days 365 Days Analytics

SonicWall NSSP 13700 High Availability

The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.

High Availability (HA) is a redundancy design that allows two identical SonicWall firewalls running the Management Service to be configured to provide a reliable, continuous connection to the public Internet. One SonicWall firewall is configured as the Primary unit, and an identical SonicWall firewall is configured as the Secondary unit. If the Primary firewall fails, the Secondary firewall takes over to secure a reliable connection between the protected network and the Internet. Two firewalls configured in this way are also known as a High Availability Pair (HA Pair).

High Availability provides a way to share SonicWall licenses between two SonicWall firewalls when one is acting as a high-availability system for the other. Both firewalls must be the same SonicWall model.

Must be paired with a regular SonicWall NSSP 13700 firewall





Highlights

1 RU – Form Factor

24 x 1 GbE interfaces

6 x 10 GbE interfaces

Multi-gigabit Threat and Malware Analysis Throughput

Latest Generation 7 SonicOS support

Secure SD-WAN capability

Intuitive single pane of glass management

TLS 1.3 support

Redundant power

Fast DPI performance

Low TCO in its class

High port density for easy networking