TZ400 Secure Upgrade Plus Advanced Edition with 3 Years AGSS Appliances

TZ400 Secure Upgrade Plus Advanced Edition with 3 Years AGSS

Add to Cart for Price
Manufacturer:SonicWall
Model:01-SSC-1741
Condition:New
Availability:In Stock

Available Options

For small business, retail and branch office locations, the SonicWall TZ400 series delivers enterprise-grade protection. Flexible wireless deployment is available with either external SonicPoint Access points or 802.11ac wireless integrated into the unit.

The SonicWall TZ series enables Small to mid-size organizations and distributed enterprises realize the benefits of an integrated Security solution that checks all the boxes. Combining high-speed threat prevention and software-defined wide area networking (SD-WAN) technology with an extensive range of networking and wireless features plus simplified deployment and centralized management, the TZ series provides a unified Security solution at a low total cost of ownership.

The foundation of the TZ series is SonicOS, SonicWall's feature-rich operating system. SonicOS includes a powerful set of capabilities that provides organizations with the flexibility to tune these Unified Threat Management (UTM) firewalls to their specific network requirements. For example, creating a secure high-speed wireless network is simplified through a built-in wireless Controller and support for the IEEE 802.11ac standard or by adding our SonicWave 802.11ac Wave 2 access points. To reduce the cost and complexity of connecting high-speed wireless access points and other Power over Ethernet (PoE)-enabled devices such as IP cameras, phones and printers, the TZ300P and TZ600P provide PoE/PoE+ power.

Distributed retail businesses and campus environments can take advantage of the many tools in SonicOS to gain even greater benefits. Branch locations are able to exchange information securely with the central office using virtual private networking (VPN). Creating virtual LANs (VLANs) enables segmentation of the network into separate corporate and customer groups with rules that determine the level of communication with devices on other VLANs. SD-WAN offers a secure alternative to costly MPLS circuits while delivering consistent application performance and availability. Deploying TZ firewalls to remote locations is easy using Zero-Touch Deployment which enables provisioning of the firewall remotely through the cloud.

Our vision for securing networks in today's continually-evolving cyber threat landscape is automated, realtime threat detection and prevention. Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that's been validated by independent third-party testing for its extremely high Security effectiveness. Unknown threats are sent to SonicWall's cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our patent-pending Real-Time Deep Memory Inspection (RTDMI) technology. The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware's weaponry is exposed for less than 100 nanoseconds. In combination, our patented single-pass Reassembly-Free Deep Packet Inspection (RFDPI) engine examines every byte of every packet, inspecting both inbound and outbound traffic directly on the firewall. By leveraging Capture ATP with RTDMI technology in the SonicWall Capture Cloud Platform in addition to on-box capabilities including intrusion prevention, anti-malware and web/ URL filtering, TZ series firewalls stop malware, ransomware and other threats at the gateway. For mobile devices used outside the firewall perimeter, SonicWall Capture Client provides an added layer of protection by applying advanced threat protection techniques such as machine learning and system rollback. Capture Client also leverages the deep inspection of encrypted TLS traffic (DPI-SSL) on TZ series firewalls by installing and managing trusted TLS certificates.

The continued growth in the use of encryption to secure web sessions means it is imperative firewalls are able to scan encrypted traffic for threats. TZ series firewalls provide complete protection by performing full decryption and inspection of TLS/SSL and SSH encrypted connections regardless of port or protocol. The firewall searches for protocol non-compliance, threats, zerodays, intrusions, and even defined criteria by looking deep inside every packet. The deep packet inspection engine detects and prevents hidden attacks that leverage cryptography. It also blocks encrypted malware downloads, ceases the spread of infections and thwarts command and control (C&C) communications and data exfiltration. Inclusion and exclusion rules allow total control to customize which traffic is subjected to decryption and inspection based on specific organizational compliance and/or legal requirements.

SonicWall makes it easy to configure and manage TZ series firewalls and SonicWave 802.11ac Wave 2 access points no matter where you deploy them. Centralized management, reporting, licensing and analytics are handled through our cloud-based Capture Security Center which offers the ultimate in visibility, agility and capacity to centrally govern the entire SonicWall Security ecosystem from a single pane of glass.

Download PDF datasheet for detailed product information Download PDF datasheet for included services
Details
Manufacturer SonicWall
Wireless No
Years 3
Firewall General
Access Points Supported (maximum) 16
Expansion USB
Interfaces 7x1GbE, 1 USB,1 Console
Management CLI, SSH, Web UI, Capture Security Center, GMS, REST APIs
Operating System SonicOS
Power Over Ethernet (PoE) Support No
Single Sign-On (SSO) Users 500
VLAN Interfaces 50
Firewall/VPN Performance
Anti-Malware Inspection Throughput 600 Mbps
Application Inspection Throughput 1.2 Gbps
Connections Per Second 6000
Firewall Inspection Throughput 1.3 Gbps
IPS Throughput 900 Mbps
IPSec VPN Throughput 900 Mbps
Maximum Connections (DPI SSL) 25000
Maximum Connections (DPI) 125000
Maximum Connections (SPI) 150000
Threat Prevention Throughput 600 Mbps
TLS/SSL Inspection And Decryption Throughput (DPI SSL) 150 Mbps
Hardware
Dimensions 3.5 x 13.4 x 19 cm 1.38 x 5.28 x 7.48 in
Environment (Operating/Storage) 32.Deg-105.Deg F (0.Deg-40.Deg C)/-40.Deg to 158.Deg F (-40.Deg to 70.Deg C)
Form Factor Desktop
Humidity 5-95% non-condensing
Input Power 100-240 VAC, 50-60 Hz, 1 A
Maximum Power Consumption (W) 9.2 / 13.8
MTBF (in Years) 54
Power Supply 24W External
Shipping Weight 1.37 kg / 3.02 lbs 1.48 kg / 3.26 lbs
Total Heat Dissipation 31.3 / 47.1 BTU
WEEE Weight 1.15 kg / 2.53 lbs 1.26 kg / 2.78 lbs
Weight 0.73 kg / 1.61 lbs 0.84 kg / 1.85 lbs
Networking
Authentication LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)
Certifications FIPS 140-2 (with Suite B) Level 2, UC APL, VPNC, IPv6 (Phase 2), ICSA Network Firewall, ICSA Anti-virus
Certifications Pending Common Criteria NDPP (Firewall and IPS)
Common Access Card (CAC) Supported
HA (High Availability) Active/standby
IP Address Assignment Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay
Local User Database 150
QoS Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM)
Routing Protocols BGP4, OSPF, RIPv1/v2, static routes, policy-based routing
Standards TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3
VoIP Full H.323v1-5, SIP
Security Services
Application Control Yes
Application Visualization Yes
Capture Advanced Threat Protection Yes
Comprehensive Anti-Spam Service Supported
Content Filtering Service (CFS) HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid lists
Deep Packet Inspection Services Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, DPI SSL
VPN
Certificate Support Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-to- SonicWall VPN, SCEP
Encryption/Authentication DES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B Cryptography
Global VPN Client Platforms Supported Microsoft Windows Vista 32/64-bit, Windows 7 32/64-bit, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Windows 10
IPSec VPN Clients (Maximum) 2 (25)
Key Exchange Diffie Hellman Groups 1, 2, 5, 14v
Mobile Connect Apple iOS, Mac OS X, Google Android, Kindle Fire, Chrome, Windows 8.1 (Embedded)
NetExtender Microsoft Windows Vista 32/64-bit, Windows 7, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Mac OS X 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSE
Route-Based VPN RIP, OSPF, BGP
Site-to-Site VPN Tunnels 20
SSL VPN Licenses (Maximum) 2 (100)
Virtual Assist Bundled (Maximum) 1 (30-day trial)
VPN Features Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN