The SonicWall SuperMassive 9000 Series features 4 x 10-GbE SFP+, up to 12 x 1-GbE SFP, 8 x 1-GbE copper and 1 GbE management interfaces, with an expansion port for an additional 2 x 10-GbE SFP+ interfaces (future release). The 9000 Series features hot-swappable fan modules and power supplies.
The SonicWall SuperMassive Series is SonicWall's next-GENeration firewall (NGFW) platform designed for large networks to deliver scalability, reliability and deep Security at multi-gigabit speeds with near zero latency.
Built to meet the needs of enterprise, government, education, retail, healthcare and service provider, the SuperMassive Series is ideal for securing distributed enterprise networks, data centers and service providers.
The combination of SonicWall’s SonicOS operating system, patented Reassembly-Free Deep Packet Inspection (RFDPI) technology and massively multi-core, highly scalable hardware architecture, the SuperMassive 9000 Series deliver industry-leading application control, intrusion prevention, malware protection and TLS/SSL decryption and inspection at multigigabit speeds. The SuperMassive Series is thoughtfully designed with power, space and cooling (PSC) in mind, providing the leading Gbps/watt NGFW in the industry for high performance packet and data processing, application control and threat prevention.
The SonicWall RFDPI engine scans every byte of every packet across all ports, delivering full content inspection of the entire stream while providing high performance and low latency. This technology is superior to proxy designs that reassemble content using sockets bolted to anti-malware programs, which are plagued with inefficiencies and the overhead of socket memory thrashing, which leads to high latency, low performance and file size limitations. The RFDPI engine delivers full content inspection to eliminate various forms of malware before they enter the network and provides protection against evolving threats-without file size, performance or latency limitations.
The RFDPI engine also performs full decryption and inspection of TLS/SSL and SSH encrypted traffic as well as non-proxyable applications, enabling complete protection regardless of transport or protocol. It looks deep inside every packets (the header and data part) searching for protocol noncompliance, threats, zero-days, intrusions, and even defined criteria to detect and prevent attacks hidden inside encrypted traffic, cease the spread of infections, and thwart command and control (C&C) communications and data exfiltration. Inclusion and exclusion rules allow total control to customize which traffic is subject to decryption and inspection based on specific organizational compliance and/or legal requirements.
Application traffic analytics enable the identification of productive and unproductive application traffic in real time, and traffic can then be Controled through powerful application-level policies. Application control can be exercised on both a per-USER and pergroup basis, along with schedules and exception lists. All application, intrusion prevention and malware signatures are constantly updated by the SonicWall Capture Labs threats research team. Additionally, SonicOS, an advanced purpose-built operating system, provides integrated tools that allow for custom application identification and control.
- Get complete breach prevention including high performance intrusion prevention, low latency malware protection and cloud-based sandboxing
- Gain full granular application identification, control and visualization
- Find and block hidden threats with decryption and inspection of TLS/ SSL and SSH encrypted traffic, without performance problems
- Scale Security performance for 10/40 Gbps data centers
- Adapt to service-level increases and ensure network services and resources are available and protected
|Expansion||4 expansion slot (rear), SD card|
|Interfaces||4x10GbE SFP+, 12x1GbE SFP, 8x1GbE, 1GbE Management, 1 Console|
|Logging||Analyzer, Local Log, Syslog|
|Management||CLI, SSH, GUI, GMS|
|Maximum SonicPoints Supported||-|
|Memory (RAM)||64 GB|
|Security Processing Cores||64|
|Storage||2x 80GB SSD, Flash|
|Anti-Malware Inspection Throughput||9 Gbps|
|Application Inspection Throughput||20 Gbps|
|Connections Per Second||226,000/sec|
|DPI SSL Connections (Maximum)||48000|
|Firewall Inspection Throughput1||28 Gbps|
|Full DPI Performance2 (GAV/GAS/IPS)||9 Gbps|
|IMIX Performance||6 Gbps|
|IPS Throughput2||18 Gbps|
|Maximum Connections (DPI)||2.5M|
|Maximum Connections (SPI)||3.0M|
|SSL Inspection And Decryption Throughput (DPI SSL)||3 Gbps|
|VPN Throughput||14 Gbps|
|Dimensions||17x24x3.5 in (9x60x43 cm)|
|Display||Front LED display|
|Environment||15-40 deg C|
|Form Factor||2U rack-mountable|
|Input Power||100-240 VAC, 60-50 Hz|
|Major Regulatory||FCC Class A, CE (EMC, LVD, RoHS), C-Tick, VCCI Class A, MSIP/KCC Class A, UL, cUL, TUV/GS, CB, Mexico CoC by UL, WEEE , REACH, ANATEL, BSMI, CU|
|Maximum Power Consumption (W)||350|
|Power Supply||Dual-redundant, hot-swappable, 500 W|
|Shipping Weight||65 lb (29.64 kg)|
|WEEE Weight||49.5 lb (22.4 kg)|
|Weight||40.5 lb (18.38 kg)|
|Authentication||XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services5, Citrix8|
|Certifications||UC APL4, ICSA Enterprise Firewall, IPV6 Phase 2, VPNC, VPAT, FIPS 140-24, Common Criteria NDPP4 , ICSA Anti-Virus7|
|IP Address Assignment||Static, DHCP, PPPoE, L2TP and PPTP client, internal DHCP server, DHCP relay7|
|QoS||Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1p|
|Routing Protocols||BGP, OSPF, RIPv1/v2, static routes, policy-based routing, multicast|
|Standards||TCP/IP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.6|
|VoIP||Full H323-v1-5, SIP|
|Encryption/Authentication||DES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B, Common Access Card (CAC)|
|Key Exchange||Diffie Hellman Groups 1, 2, 5, 14v|
|Route-Based VPN||RIP, OSPF|
|Site-to-Site VPN Tunnels||25000|
|SSL VPN NetExtender Clients (Maximum)||50 (50)|