Specifications
Performance and Capacity
• SPI Firewall Throughput: 350 Mbps
• IPSec VPN (AES) Throughput: 150 Mbps
• Maximum Concurrent NAT Sessions: 200,000
• Maximum IPSec VPN Tunnels: 1,000
• Maximum SSL VPN Tunnels: 50
• New Session Rate: 13,000 (sessions/sec)
Gateway Anti-Virus
• Stream-Based Gateway Anti-Virus Powered by
Kaspersky
Labs
• Covers Top Active Viruses in the Wild List
• Scans HTTP/FTP/SMTP/POP3/IMAP4
• Automatic Signature Update*
• No File Size Limitation
• Blacklist/Whitelist
*: Requiring valid Anti-Virus subscription
Application Patrol (AppPatrol)
• IM/P2P Granular Access Control
• Integrated with Scheduling/Rate-Limit/
User-Aware
• IM/P2P Up-To-Date Support*
• Real-Time Statistical Reports
*: Requiring valid IDP subscription
Intrusion Detection and Prevention
• In-line Mode (Routing/Bridge)
• Zone-Based IDP Inspection
• Customizable Protection Profile
• Signature-Based Deep Packet Inspection
• Automatic Signature Update*
• Custom Signatures
• Traffic Anomaly: Scanning Detection and
Flood
Protection
• Protocol Anomaly: HTTP/ICMP/TCP/UDP
*: Requiring valid IDP subscription
Content Filter
• URL Blocking, Keyword Blocking
• Exempt List (Blacklist and Whitelist)
• Blocks Java Applet, Cookies and Active X
• Content Filter Category Service* (Dynamic URL
Filtering Database Powered by BlueCoat)
*: Requiring valid Content Filter subscription
VPN
IPSec VPN
• Encryptions (AES/3DES/DES)
• Authentication (SHA-1/MD5)
• Key Management (Manual Key/IKE)
• Perfect Forward Secrecy (DH Group 1/2/5)
• NAT over IPSec
• Dead Peer Detection/Replay Detection
• PKI (X.509)
• Certificate Enrollment (CMP/SCEP)
• Xauth Authentication
• VPN Concentrator (Hub and Spoke VPN)
• L2TP over IPSec Support
SSL VPN
• Clientless Secure Remote Access
(Reverse Proxy Mode)
• SecuExtender (Full Tunnel Mode)
• Unified Policy Enforcement
• Supports Two Factor Authentication
• Customizable User Portal
Networking
• Routing Mode/Bridge Mode/Mixed Mode
• Layer 2 Port Grouping
• Ethernet/PPPoE/PPTP
• Tagged VLAN (802.1Q)
• Virtual Interface (Alias Interface)
• Policy-Based Routing (User-Aware)
• Policy-Based NAT (SNAT/DNAT)
• RIP v1/v2
• OSPF
• IP Multicasting (IGMP v1/v2)
• DHCP Client/Server/Relay
• Built-in DNS Server
• Dynamic DNS
Bandwidth Management
• Bandwidth Priority
• Policy-Based Traffic Shaping
• Maximum/Guaranteed Bandwidth
• Bandwidth Borrowing
SPI Firewall
• Zone-Based Access Control List
• Customizable Security Zone
• Stateful Packet Inspection
• DoS/DDoS Protection
• User-Aware Policy Enforcement
• ALG Supports Custom Ports
Authentication
• Internal User Database
• Microsoft Windows Active Directory
• External LDAP/RADIUS User Database
• ZyWALL OTP (One Time Password)
• Force User Authentication (Transparent
Authentication)
High Availability
• Device HA (Active-Passive Mode)
• Device Failure Detection
• Link Monitoring
• Auto-Sync Configurations
• Multiple WAN Load Balancing
• VPN HA (Redundant Remote VPN Gateways)
System Management
• Role-Based Administration
• Simultaneous Administrative Logins
• Multi-Lingual Web GUI (HTTPS/HTTP)
• Object-Based Configuration
• Command Line Interface (Console/WebConsole/
SSH/TELNET)
• Comprehensive Local Logging
• Syslog (4 Servers)
• E-mail Alert (2 Servers)
• SNMP v2c (MIB-II)
• Real-Time Traffic Monitoring
• System Configuration Rollback
• Text-Based Configuration File
• Firmware upgrade via FTP/FTP-TLS/WebGUI
• Advanced Reporting (Vantage Report 3.1 Patch 1*)
• Centralized Network Management (Vantage
CNM
3.0*)
*: Future release
Certifications
• ICSA Firewall Certified*
• ICSA IPSec VPN Certified*
*: Certificate pending
Hardware Specifications
• Memory: 1GB RMB RAM/256 MB Flash
• Interface: GbE x 5 (RJ-45, with LED)
• Auto-Negotiation and Auto MDI/MDI-X
• Console: RS-232 (DB9F)
• AUX: RS-232 (DB9M)
• LED Indicator: PWR, SYS, AUX, HDD
• Power Switch: Yes
• Reset Pinhole: Yes
• Extension Card Slot: Yes* (1)
• USB: Yes* (2)
• Optional HDD: Yes* (IDE, 2.5”)
*: These hardware accessories will be supported in future
firmware
release
Physical Specifications
• Rack Mountable: Yes (19-inch, rack-mount kit
included)
• Dimensions: 430.7 (W) x 292.0 (D) x 43.5 (H) mm
• Weight: 4,700 g
Power Requirements
• Input Voltage: 100-240 VAC, 50/60 Hz, 1 A Max
• Power Rating: 80 W Max
Environmental Specifications
• Operating Temperature: 0ºC ~ 40ºC
• Storage Temperature: -30ºC ~ 60ºC
• Humidity: 5% ~ 90% (non-condensing)
Standard Compliance
• HSF (Hazardous Substance Free): RoHS and WEEE
• EMC: FCC Part 15 Class A, CE-EMC Class A, C-Tick
Class A, VCCI Class A
• Safety: CSA International (ANS/UL60950-1,
CSA60950-1, EN60950-1, IEC60950-1)
