Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Ds nsa series_4500
1. The SonicWALL Network Security Appliance Series
FI R E WALL Unified Threat Management Firewall
Organizations of all sizes depend on their networks to access internal and external mission-critical
applications. As advances in networking continue to provide tremendous benefit to organizations,
they are increasingly challenged by sophisticated and financially-motivated attacks designed to
n Unified Threat disrupt communication, degrade performance and compromise data. Malicious attacks penetrate
Management outdated stateful packet inspection firewalls with advanced application layer exploits. Point products
n Scalable multi-core
add layers of security, but are costly, difficult to manage, limited in controlling network misuse and
hardware and ineffective against the latest multipronged attacks.
Reassembly-Free Deep
Packet Inspection The SonicWALL® Network Security Appliance (NSA) Series of Unified Threat Management (UTM)
Firewalls, utilizing a unique multi-core design and patented Reassembly-Free Deep Packet
n Application intelligence,
Inspection™ (RFDPI) technology*, offers complete protection without compromising network
control and visualization
performance. The NSA Series overcomes the limitations of existing security solutions by scanning
n Stateful high availability the entirety of each packet for current internal and external threats in real-time.
and load balancing
The NSA Series applies UTM protection against a comprehensive array of attacks, combining
n High performance and intrusion prevention, anti-virus and, anti-spyware, anti-spam and content filtering with application
lowered TCO
intelligence, control and visualization. With advanced routing, stateful high-availability and
n Advanced routing services high-speed IPSec and SSL VPN technology, the NSA Series adds security, reliability, functionality
and networking features and productivity to branch offices, central sites and distributed mid-enterprise networks, while
n Standards-based Voice over
minimizing cost and complexity.
IP (VoIP)
Comprised of the SonicWALL NSA 240, NSA 2400, NSA 3500 and NSA 4500, the NSA Series offers a
n Secure distributed wireless scalable range of solutions designed to meet the network security needs of any organization.
LAN services
n Onboard Quality of Service Features and Benefits
(QoS) Unified Threat Management integrates intrusion Advanced routing services and networking features
prevention, gateway anti-virus, anti-spyware, application incorporate 802.1q VLANs, Multi-WAN failover, zone and
intelligence and control, content filtering and anti-spam to object-based management, load balancing, advanced NAT
block malware and spam, and offer granular application modes, and more, providing granular configuration
control and prevent data leakage. flexibility and comprehensive protection at the
Scalable multi-core hardware and Reassembly-Free administrator’s discretion.
Deep Packet Inspection scans and eliminates threats of Standards-based Voice over IP (VoIP) capabilities
unlimited file sizes, with near-zero latency across provide the highest levels of security for every element of
thousands of connections at wire speed. the VoIP infrastructure, from communications equipment
Application intelligence, control and visualization to VoIP-ready devices such as SIP Proxies, H.323
provides granular control and real-time visualization of Gatekeepers and Call Servers.
applications to guarantee bandwidth prioritization and Secure distributed wireless LAN services enable the
ensure maximum network security and productivity. appliance to function as a wireless switch and controller
Stateful high availability and load balancing features that automatically detects and configures SonicPoint
maximize total network bandwidth and maintain seamless wireless access points
network uptime, delivering uninterrupted access to Onboard Quality of Service (QoS) features use industry
mission-critical resources, and ensuring that VPN tunnels standard 802.1p and Differentiated Services Code Points
and other network traffic will not be interrupted in the (DSCP) Class of Service (CoS) designators to provide
event of a failover. powerful and flexible bandwidth management that is vital
High performance and lowered TCO are achieved by for VoIP, multimedia content and business-critical
using the processing power of multiple cores in unison to applications.
dramatically increase throughput and provide
simultaneous inspection capabilities, while lowering
power consumption.
* U.S. Patent 7,310,815–A method and apparatus for data stream
analysis and blocking.
2. Dynamic Security Architecture and Management
SonicWALL Deep Packet Inspection Architecture Eliminated Threats &
Non-business Traffic
SonicWALL Real-time Automatic Threat
Application Intelligence
Intrusion Prevention
3 1
Gateway Anti-Virus
Database Updates
Unified Threat
Content Filtering
Anti-Spyware
Clean VPN
Management Clean Traffic
Firewall
Emerging
Blended Threats
Forwarding
Viruses Engine
Network
I/O Engine Routing
Spyware
Traffic Traffic
PROT
Bandwidth
L4
L2
L7
L3
IN Management Bandwidth
OUT
Exploits Management
Defrag
Stateful Classification and Transformation
Normal Flow Order Presentation
2
Update Engine
Best-in-Class Threat Protection
1 SonicWALL deep packet inspection protects against This functionality allows threats to be identified and
network risks such as viruses, worms, Trojans, spyware, eliminated over unlimited file sizes and unrestricted
phishing attacks, emerging threats and Internet misuse. concurrent connections, without interruption.
Application intelligence and control adds highly-
3 The SonicWALL NSA Series provides dynamic
configurable controls to prevent data leakage and
network protection through continuous, automated
manage bandwidth at the application level.
security updates, protecting against emerging and
2 The SonicWALL Reassembly-Free Deep Packet evolving threats, without requiring any administrator
Inspection (RFDPI) technology utilizes SonicWALL’s intervention.
multi-core architecture to scan packets in real-time
without stalling traffic in memory.
Application Intelligence and Control
SonicWALL Application Intelligence and Control provides
granular control and real-time visualization of applications
to guarantee bandwidth prioritization and ensure maximum
network security and productivity. An integrated feature of
SonicWALL Next-Generation Firewalls, it uses SonicWALL
Reassembly-Free Deep Packet Inspection™ technology to
identify and control applications in use with easy-to-use
pre-defined application categories (such as social media or
gaming)—regardless of port or protocol. The SonicWALL
Application Flow Monitor provides real-time graphs of
applications, ingress and egress bandwidth, active Web site
connections and user activity.
Eliminated
Threats
Suppliers
Internet
Clean Tra c
Mobile Users
UTM Engine Internal
Network
Telecommuters
SonicWALL Clean VPN
The Network Security Appliance Series includes innovative
SonicWALL Clean VPN™ technology which decontaminates
vulnerabilities and malicious code from remote mobile users Centralized Policy Management
and branch offices traffic before it enters the corporate The Network Security Appliance Series can be managed
network, and without user intervention. using the SonicWALL Global Management System (GMS®),
which provides flexible, powerful and intuitive tools to
centrally manage configurations, view real-time monitoring
metrics and integrate policy and compliance reporting.
3. Flexible, Customizable Deployment Options – NSA Series At-A-Glance
Every SonicWALL Network Security Appliance solution
delivers Unified Threat Management protection, utilizing a
Internet
breakthrough multi-core hardware design and Reassembly-
Free Deep Packet Inspection for internal and external Branch Office
network protection without compromising network
performance. Each NSA Series product combines Reporting
and analysis
high-speed intrusion prevention, file and content
inspection, and powerful application intelligence and
control with an extensive array of advanced networking and
flexible configuration features. The NSA Series offers an
accessible, affordable platform that is easy to deploy and
Fixed
manage in a wide variety of corporate, branch office and NSA Series
Telecommuter
distributed network environments.
n The SonicWALL NSA 4500 is ideal for corporate
central-site and large distributed environments
requiring high throughput capacity and performance
n The SonicWALL NSA 3500 is ideal for corporate,
branch office and distributed environments needing SonicPoint-N
Dual-Band Series
GMS Server VoIP Corporate Desktop Corporate Desktop Corporate Desktop Corporate Desktop Servers
significant throughput capacity and performance Centralized Marketing VLAN Finance VLAN
Management Wireless Laptops
n The SonicWALL NSA 2400 is ideal for small- to Corporate Headquarters/Branch Office
medium-sized corporate and branch office
environments concerned about throughput capacity Server Enforced Client VPN SSL VPN Global Content Filtering Gateway Anti-Virus,
Anti-Virus and Anti-Virus Remote VPN Service Anti-Spyware, Intrusion
and performance Anti-Spyware
Servers Anti-Threat
and Anti-Spyware
Client PCs Anti-
Access
Upgrade
Client Web Site
and Content
Prevention, and Application
Intelligence and Control
Protection Threat Protection Usage Control
n The SonicWALL NSA 240 is ideal for small- to medium-
sized businesses and branch office sites
Security Services and Upgrades
Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention and Dynamic Support Services are available 8x5 or 24x7 depending
Application Intelligence and Control Service delivers on customer needs. Features include world-class technical
intelligent, real-time network security protection against support, crucial firmware updates and upgrades, access to
sophisticated application layer and content-based attacks extensive electronic tools and timely hardware replacement
including viruses, spyware, worms, Trojans and software to help organizations get the greatest return on their
vulnerabilities such as buffer overflows. Application Intelligence and Control SonicWALL investment.
delivers a suite of configurable tools designed to prevent data leakage while Global VPN Client Upgrades utilize a software client that is
providing granular application-level controls along with tools enabling installed on Windows-based computers and increase workforce
visualization of network traffic. productivity by providing secure access to email, files, intranets,
Enforced Client Anti-Virus and Anti-Spyware delivers and applications for remote users. Upgrade licenses are
comprehensive virus and spyware protection for laptops, available in a variety of user counts allowing this solution to
desktops and servers using a single integrated client and offers scale as the organization grows.
automated network-wide enforcement of anti-virus and SSL VPN Remote Access Upgrades provide clientless remote
anti-spyware policies, definitions and software updates. network level access for PC, Mac and Linux-based systems. With
Content Filtering Service enforces protection and productivity integrated SSL VPN technology, SonicWALL UTM appliances
policies by employing an innovative rating architecture, utilizing enable seamless and secure remote access to email, files,
a dynamic database to block up to 56 categories of objectionable intranets, and applications from a variety of client platforms
Web content. via NetExtender, a lightweight client that is pushed onto the user’s machine.
NetExtender is installed and configured automatically, requiring no user
interaction.
ViewPoint Reporting delivers easy-to-use, Web-based capabilities
that provide administrators with instant comprehensive insight Comprehensive Anti-Spam Service (CASS) offers small- to
into network performance and security. Delivered through a medium-sized businesses comprehensive protection from spam
series of historical reports using dashboards and detailed and viruses, with instant deployment over existing SonicWALL
summaries, ViewPoint helps organizations of all sizes track firewalls. CASS speeds deployment, eases administration and
Internet usage, fulfill regulatory compliance requirements and monitor the reduces overhead by consolidating solutions, providing
security status of their network. one-click anti-spam services, with advanced configuration in just ten minutes.
Virtual Assist is a remote support tool that enables a technician Deep Packet Inspection for of SSL-Encrypted Traffic (DPI SSL) transparently
to assume control of a PC or laptop for the purpose of providing decrypts and scans both inbound and outbound HTTPS traffic using
remote technical assistance. With permission, the technician can SonicWALL RFDPI. The traffic is then re-encrypted and sent to its original
gain instant access to a computer using a Web browser, making destination if no threats or vulnerabilities are discovered.
it easy to diagnose and fix a problem remotely without the need
for a pre-installed “fat” client.