SonicWALL TZ Series Firewall

Los firewalls de Gestión unificada de amenazas (UTM) de SonicWall son ideales para cualquier organización que necesite protección de red de clase empresarial.

Los firewalls de la serie SonicWall TZ ofrecen una amplia protección mediante servicios de seguridad avanzada que incluyen funciones integradas y basadas en la nube de antimalware, antispyware, control de aplicaciones, IPS (Sistema de prevención de intrusiones) y filtrado de URL.

Con el fin de contrarrestar la tendencia de los ataques cifrados, la potencia de procesamiento de los firewalls de la serie TZ les permite inspeccionar conexiones SSL/TLS cifradas para hacer frente a las últimas amenazas.

En combinación con los switches de la serie X de Dell, algunos firewalls de la serie TZ pueden gestionar directamente la seguridad de estos puertos adicionales. Con el respaldo de la red Capture Threat Network de SonicWall, la serie SonicWall TZ proporciona actualizaciones continuas a fin de mantener una sólida defensa de la red frente a los ciberdelincuentes.

La serie SonicWall TZ es capaz de analizar cada byte de cada paquete en todos los puertos y protocolos casi sin latencia y sin limitaciones en el tamaño de los archivos.

La serie SonicWall TZ incluye puertos Gigabit Ethernet, conectividad inalámbrica 802.11ac integrada opcional,* IPSec y SSL VPN, reconexión mediante soporte integrado para 3G/4G, equilibrio de carga y segmentación de red.

Los firewalls UTM de la serie SonicWall TZ también proporcionan un acceso móvil rápido y seguro utilizando las plataformas Apple iOS, Google Android, Amazon Kindle, Windows, Mac OS X y Linux.

El Sistema de gestión global (GMS) de SonicWall permite implementar y gestionar los firewalls de la serie SonicWall TZ de forma centralizada desde un único sistema.

Servicios de seguridad administrados para entornos distribuidos

Los centros escolares, los establecimientos minoristas, los sitios remotos, las sucursales y las empresas distribuidas necesitan una solución que se integre con su firewall corporativo.

Los firewalls de la serie SonicWall TZ comparten la misma base de código —y la misma protección— que nuestros firewalls estrella de próxima generación SuperMassive, lo que simplifica la gestión de sitios remotos, ya que todos los administradores ven la misma interfaz de usuario.

Con GMS, los administradores de red pueden configurar, supervisar y gestionar los firewalls SonicWall de forma remota desde una única consola.

Mediante la incorporación de la conectividad inalámbrica segura y de la alta velocidad, los productos de la serie SonicWall TZ amplían el perímetro de protección para abarcar a los clientes y usuarios invitados que frecuentan un determinado establecimiento minorista o una oficina remota.

Tabla comparativa de la Serie TZ

S – Standard, O – Optional, N – Not Available

TotalSecure Firewall Overview

SOHOTZ300TZ400
TZ500
TZ600
Deep Packet Inspection FirewallSSSSS
Stateful Packet Inspection FirewallSSSSS
Unlimited File Size ProtectionSSSSS
Protocols ScannedSSSSS
Security Services Included
Application Intelligence and ControlSSSSS
Intrusion Prevention ServiceSSSSS
Gateway Anti-Virus and Anti-SpywareSSSSS
Content & URL Filtering (CFS)SSSSS
SSL Inspection (DPI SSL)SSSSS
Content Filtering Client (CFC)1OOOOO
Analyzer Reporting1OOOOO
Capture Advance Threat Protection1NOOOO
Enforced Client Anti-Virus and Anti-Spyware1OOOOO
24×7 SupportSSSSS

Firewall General

SOHOTZ300TZ400
TZ500
TZ600
Interfaces5×1-GbE, 1 USB, 1 Console5×1-GbE, 1 USB, 1 Console7×1-GbE, 1 USB, 1 Console8×1-GbE, 2 USB, 1 Console10×1-GbE, 2 USB, 1 Console, 1 Expansion Slot
ManagementCLI, SSH, Web GUI, Capture Security Center, GMS, REST APIsCLI, SSH, Web GUI, Capture Security Center, GMS, REST APIsCLI, SSH, Web GUI, Capture Security Center, GMS, REST APIsCLI, SSH, Web GUI, Capture Security Center, GMS, REST APIsCLI, SSH, Web GUI, Capture Security Center, GMS, REST APIs
Nodes SupportedUnrestrictedUnrestrictedUnrestrictedUnrestrictedUnrestricted
Site-to-Site VPN Tunnels1010202550
IPSec VPN Clients (Maximum)1 (5)1 (10)2 (25)2 (25)2 (25)
SSL VPN Licenses (Maximum)1 (10)1 (50)2 (100)2 (150)2 (200)
VLAN Interfaces2525505050
Wireless ControllerSSSSS
WWAN Failover (4G/LTE)SSSSS
Network Switch ManagementNSSSS

Firewall/VPN Performance

SOHOTZ300TZ400
TZ500
TZ600
Firewall Inspection Throughput2300 Mbps750 Mbps1.3 Gbps1.4 Gbps1.5 Gbps
Threat Prevention Throughput350 Mbps100 Mbps300 Mbps400 Mbps500 Mbps
Application Inspection Throughput3300 Mbps900 Mbps1.0 Gbps1.1 Gbps
IPS Throughput3100 Mbps300 Mbps900 Mbps1.0 Gbps1.1 Gbps
Anti-Malware Inspection Throughput350 Mbps100 Mbps300 Mbps400 Mbps500 Mbps
IMIX Throughput60 Mbps200 Mbps500 Mbps700 Mbps900 Mbps
DPI SSL Throughput15 Mbps45 Mbps100 Mbps150 Mbps200 Mbps
VPN Throughput4100 Mbps300 Mbps900 Mbps1.0 Gbps1.1 Gbps
Maximum Connections (SPI)10,00050,000100,000125,000150,000
Maximum Connections (DPI)10,00050,00090,000100,000125,000
Maximum Connections (DPI SSL)100500500750750
New Connections/Sec1,8005,0006,0008,00012,000

Features

SOHOTZ300TZ400
TZ500
TZ600
LoggingAnalyzer, Local Log, SyslogAnalyzer, Local Log, SyslogAnalyzer, Local Log, SyslogAnalyzer, Local Log, SyslogAnalyzer, Local Log, Syslog
Network Traffic VisualizationSSSSS
Netflow/IPFIX ReportingNSSSS
SNMPSSSSS
AuthenticationLDAP (multiple domains), XAUTH/RADIUS, SSO,Novell, internal user databaseLDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database,Terminal Services, Citrix, Common Access Card (CAC)LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database,Terminal Services, Citrix, Common Access Card (CAC)LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database,Terminal Services, Citrix, Common Access Card (CAC)LDAP (multiple domains), XAUTH/RADIUS, SSO, Novell, internal user database,Terminal Services, Citrix, Common Access Card (CAC)
Dynamic RoutingBGP, OSPF, RIPv1/v2, static routes, policy-based routingBGP, OSPF, RIPv1/v2, static routes, policy-based routingBGP, OSPF, RIPv1/v2, static routes, policy-based routingBGP, OSPF, RIPv1/v2, static routes, policy-based routingBGP, OSPF, RIPv1/v2, static routes, policy-based routing
Secure SD-WANSSSSS
Single Sign-on (SSO)SSSSS
Voice over IP (VoIP) SecuritySSSSS
Interface to Interface ScanningSSSSS
PortShield SecuritySSSSS
Link RedundancySSSSS
Policy-based RoutingSSSSS
Route-based VPNSSSSS
Dynamic Bandwidth ManagementSSSSS
Stateful High AvailabilityNNNOO
Multi-WANSSSSS
Load BalancingSSSSS
Object-based ManagementSSSSS
Policy-based NATSSSSS
Inbound Load BalancingSSSSS
IKEv2 VPNSSSSS
TLS/SSL/SSH Decryption and InspectionSSSSS
SSL ControlSSSSS
Auto-provision VPNSSSSS
Biometric AuthenticationSSSSS
DNS ProxySSSSS
Hardware FailoverNActive/StandbyActive/StandbyActive/Standby with stateful synchronizationActive/Standby with stateful synchronization

Integrated Wireless

SOHOTZ300TZ400
TZ500
TZ600
Standards802.11a/b/g/n (WEP, WPA, WPA2, 802.11i, TKIP, PSK,02.1x, EAP-PEAP, EAP-TTLS802.11a/b/g/n/ac (WEP, WPA, WPA2, 802.11i, TKIP, PSK,02.1x, EAP-PEAP, EAP-TTLS802.11a/b/g/n/ac (WEP, WPA, WPA2, 802.11i, TKIP, PSK,02.1x, EAP-PEAP, EAP-TTLS802.11a/b/g/n/ac (WEP, WPA, WPA2, 802.11i, TKIP, PSK,02.1x, EAP-PEAP, EAP-TTLS
Frequency bands5802.11a: 5.180-5.825 GHz802.11a: 5.180-5.825 GHz802.11a: 5.180-5.825 GHz802.11a: 5.180-5.825 GHz
«802.11b/g: 2.412-2.472 GHz802.11b/g: 2.412-2.472 GHz802.11b/g: 2.412-2.472 GHz802.11b/g: 2.412-2.472 GHz
«802.11n: 2.412-2.472 GHz, 5.180-5.825 GHz802.11n: 2.412-2.472 GHz, 5.180-5.825 GHz802.11n: 2.412-2.472 GHz, 5.180-5.825 GHz802.11n: 2.412-2.472 GHz, 5.180-5.825 GHz
«802.11ac: 2.412-2.472 GHz, 5.180-5.825 GHz802.11ac: 2.412-2.472 GHz, 5.180-5.825 GHz802.11ac: 2.412-2.472 GHz, 5.180-5.825 GHz
Operating Channels802.11a: US and Canada 12, Europe 11, Japan 4, Singapore 4, Taiwan 4802.11a: US and Canada 12, Europe 11, Japan 4, Singapore 4, Taiwan 4802.11a: US and Canada 12, Europe 11, Japan 4, Singapore 4, Taiwan 4802.11a: US and Canada 12, Europe 11, Japan 4, Singapore 4, Taiwan 4
«802.11b/g: US and Canada 1-11, Europe 1-13, Japan 1-14 (14-802.11b only)802.11b/g: US and Canada 1-11, Europe 1-13, Japan 1-14 (14-802.11b only)802.11b/g: US and Canada 1-11, Europe 1-13, Japan 1-14 (14-802.11b only)802.11b/g: US and Canada 1-11, Europe 1-13, Japan 1-14 (14-802.11b only)
«802.11n (2.4 GHz): US and Canada 1-11, Europe 1-13, Japan 1-13802.11n (2.4 GHz): US and Canada 1-11, Europe 1-13, Japan 1-13802.11n (2.4 GHz): US and Canada 1-11, Europe 1-13, Japan 1-13802.11n (2.4 GHz): US and Canada 1-11, Europe 1-13, Japan 1-13
«802.11n (5 GHz): US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64802.11n (5 GHz): US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64802.11n (5 GHz): US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64802.11n (5 GHz): US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64
«802.11ac: US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64802.11ac: US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64802.11ac: US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64
Transmit output powerBased on the regulatory domain specified by the system administratorBased on the regulatory domain specified by the system administratorBased on the regulatory domain specified by the system administratorBased on the regulatory domain specified by the system administrator
Transmit power controlSupportedSupportedSupportedSupported
Data rates supported802.11a: 6,9,12,18,24,36,48,54 Mbps per channel802.11a: 6,9,12,18,24,36,48,54 Mbps per channel802.11a: 6,9,12,18,24,36,48,54 Mbps per channel802.11a: 6,9,12,18,24,36,48,54 Mbps per channel
«802.11b: 1,2,5.5,11 Mbps per channel802.11b: 1,2,5.5,11 Mbps per channel802.11b: 1,2,5.5,11 Mbps per channel802.11b: 1,2,5.5,11 Mbps per channel
«802.11g: 6,9,12,18,24,36,48,54 Mbps per channel802.11g: 6,9,12,18,24,36,48,54 Mbps per channel802.11g: 6,9,12,18,24,36,48,54 Mbps per channel802.11g: 6,9,12,18,24,36,48,54 Mbps per channel
«802.11n: 7.2, 14.4, 21.7, 28.9, 43.3, 57.8, 65, 72.2, 15,30, 45, 60, 90, 120, 135, 150 Mbps per channel802.11n: 7.2, 14.4, 21.7, 28.9, 43.3, 57.8, 65, 72.2, 15,30, 45, 60, 90, 120, 135, 150 Mbps per channel802.11n: 7.2, 14.4, 21.7, 28.9, 43.3, 57.8, 65, 72.2, 15,30, 45, 60, 90, 120, 135, 150 Mbps per channel802.11n: 7.2, 14.4, 21.7, 28.9, 43.3, 57.8, 65, 72.2, 15,30, 45, 60, 90, 120, 135, 150 Mbps per channel
«802.11ac: 7.2, 14.4, 21.7, 28.9, 43.3, 57.8, 65, 72.2, 86.7, 96.3, 15, 30, 45, 60, 90, 120, 135, 150, 180,802.11ac: 7.2, 14.4, 21.7, 28.9, 43.3, 57.8, 65, 72.2, 86.7, 96.3, 15, 30, 45, 60, 90, 120, 135, 150, 180,802.11ac: 7.2, 14.4, 21.7, 28.9, 43.3, 57.8, 65, 72.2, 86.7, 96.3, 15, 30, 45, 60, 90, 120, 135, 150, 180,
«200, 32.5, 65, 97.5, 130, 195, 260, 292.5, 325, 390, 433.3, 65, 130, 195, 260, 390, 520, 585, 650, 780, 866.7 Mbps per channel200, 32.5, 65, 97.5, 130, 195, 260, 292.5, 325, 390, 433.3, 65, 130, 195, 260, 390, 520, 585, 650, 780, 866.7 Mbps per channel200, 32.5, 65, 97.5, 130, 195, 260, 292.5, 325, 390, 433.3, 65, 130, 195, 260, 390, 520, 585, 650, 780, 866.7 Mbps per channel
Modulation technology spectrum802.11a: Orthogonal Frequency Division Multiplexing (OFDM)802.11a: Orthogonal Frequency Division Multiplexing (OFDM)802.11a: Orthogonal Frequency Division Multiplexing (OFDM)802.11a: Orthogonal Frequency Division Multiplexing (OFDM)
«802.11b: Direct Sequence Spread Spectrum (DSSS)802.11b: Direct Sequence Spread Spectrum (DSSS)802.11b: Direct Sequence Spread Spectrum (DSSS)802.11b: Direct Sequence Spread Spectrum (DSSS)
«802.11g: Orthogonal Frequency Division Multiplexing (OFDM)/Direct Sequence Spread Spectrum (DSSS)802.11g: Orthogonal Frequency Division Multiplexing (OFDM)/Direct Sequence Spread Spectrum (DSSS)802.11g: Orthogonal Frequency Division Multiplexing (OFDM)/Direct Sequence Spread Spectrum (DSSS)802.11g: Orthogonal Frequency Division Multiplexing (OFDM)/Direct Sequence Spread Spectrum (DSSS)
«802.11n: Orthogonal Frequency Division Multiplexing (OFDM)802.11n: Orthogonal Frequency Division Multiplexing (OFDM)802.11n: Orthogonal Frequency Division Multiplexing (OFDM)802.11n: Orthogonal Frequency Division Multiplexing (OFDM)
«802.11ac: Orthogonal Frequency Division Multiplexing (OFDM)802.11ac: Orthogonal Frequency Division Multiplexing (OFDM)802.11ac: Orthogonal Frequency Division Multiplexing (OFDM)
  1. Services must be purchased separately.
  2. Threat Prevention/GatewayAV/Anti-Spyware/IPS throughput measured using industry standard Spirent WebAvalanche HTTP performance test and Ixia test tools. Testing done with multiple flows through multiple port pairs. Threat Prevention throughput measured with Gateway AV, Anti-Spyware, IPS and Application Control enabled.
  3. Full DPI/Gateway AV/Anti-Spyware/IPS throughput measured using industry standard Spirent WebAvalanche HTTP performance test and Ixia test tools. Testing done with multiple flows through multiple port pairs. Threat Prevention throughput measured with Gateway AV, Anti-Spyware, IPS and Application Control enabled.
  4. VPN throughput measured using UDP traffic at 1280 byte packet size adhering to RFC 2544.
  5. All TZ integrated wireless models can support either 2.4GHz or 5GHz band. For dual-band support, please use SonicWall’s wireless access point products.
    *Future use. All specifications, features and availability are subject to change.
4.7
04