PA L O A LT O N E T W O R K S : PA - 5 0 0 S p e c s h e e tPA-500The PA-500 is a next-generation firewallthat delivers unprecedented visibility PA-500and control over applications, users andcontent on enterprise networks. The Palo Alto NetworksTM PA-500 is targeted at high speed Internet gateway deployments for enterprise branch offices and APPLICATION IDENTIFICATION: medium size businesses. The PA-500 manages network traffic • Identifies more than 950 applications flows using dedicated computing resources for networking, irrespective of port, protocol, SSL encryption or evasive tactic employed. security, threat prevention and management. • Enables positive enforcement application usage policies: allow, deny, A high speed backplane smoothes the pathway between processors and the schedule, inspect, apply traffic shaping. separation of data and control plane ensures that management access is • Graphical visibility tools enable simple always available, irrespective of the traffic load. Interface density for the PA- and intuitive view into application traffic. 500 includes (8) 10/100/1000 traffic interfaces and a dedicated out-of-band USER IDENTIFICATION: management interface. • Policy-based visibility and control over The controlling element of the PA-500 Series next-generation firewalls is who is using the applications through seamless integration with Active PAN-OSTM, a security-specific operating system that tightly integrates three Directory, LDAP, and eDirectory. unique identification technologies: App-IDTM, User-ID and Content-ID, with • Identifies Citrix and Microsoft Terminal key firewall, networking and management features. Services users, enabling visibility and control over their respective application KEy PERFORmANCE SPECIFICATIONS PA-500 usage. • Control non-Windows hosts via web- Firewall throughput 250 Mbps Threat prevention throughput 100 Mbps based authentication. IPSec VPN throughput 50 Mbps CONTENT IDENTIFICATION: IPSec VPN tunnels/tunnel interfaces 250 • Block viruses, spyware, and vulnerability SSL VPN concurrent users 100 New sessions per second 7,500 exploits, limit unauthorized transfer of Max sessions 64,000 files and sensitive data such as CC# or SSN, and control non-work related web surfing. For a complete description of the PA-500 next-generation firewall feature set, • Single pass software architecture enables multi-gigabit throughput with please visit www.paloaltonetworks.com/literature. low latency while scanning content.