Professional Documents
Culture Documents
Todays cybercriminals are developing and integrates a high- performance, deep Benefits:
new and increasingly sophisticated attacks packet inspection architecture with Highly rated, comprehensive threat
to find a way into your network. They are dynamically updated countermeasures for protection
also creating specialized exploits to take complete protection from application Provides complete and
advantage of new vulnerabilities exploits and other malicious traffic. The continuously updated security
sometimes even before software vendors Dell IPS Service is scalable to support Simplified deployment and
have an opportunity to release a patch so virtually any size organization. It also management of security across a
delays in patching these zero-day provides enforcement between each distributed network
vulnerabilities provides attackers a network zone and the internet, and Customized to fit your security
dangerous window of opportunity. In between internal zones for added security. needs with granular management
order to combat these evolving threats, Scalable to secure any size network
systems administrators need a robust In addition, the Dell IPS Service is powered
network security solution that protects the by an industry-leading threat research
network 24 hours a day, 365 days a year. team with extensive experience in
vulnerability analysis and countermeasure
The Dell SonicWALL Intrusion Prevention creation. The team gathers threat
System (IPS) Service provides network intelligence from over one million
protection around the clock including connected sensors around the world, so
the critical periods between regularly SonicWALL Dell IPS subscribers benefit
scheduled updates. Dells award-winning from a nimble and fast response to new
IPS Service is activated as a license on Dell attacks, regular security updates and
SonicWALL TZ, Network Security Appliance out-of-band updates when necessary.
(NSA) and SuperMassive Series appliances,
[Placeholder image]
Features Smurf, SYN/RST/FIN Flood, WinNuke,
Bi-directional, full stack inspection LAND.c, ICMP Flood, UDP Flood, LOIC,
Provides inbound and outbound Christmas Tree and Backscatter.
inspection of critical application traffic.
Includes protection for a wide variety of Clean VPNInspects all incoming and
attacks, such as SQL injection, cross-site outgoing VPN traffic for attacks and
scripting, remote code execution, shell blocks malicious traffic.
code payloads and remote procedure
calls. Zone-based protectionFlexible,
Dell SonicWALL has a
object-based policy engine enables
partnership Microsoft to
Robust protocols inspectionSpans a quick and easy rule creation for specific
receive advance notification
wide variety of protocols, including TCP, systems, users, groups, hosts or
of new threats through
ICMP, DNS, HTTP, HTTPS, SMTP, IMAP, networks.
MAPP. This enables our threat
POP3, FTP, Telnet, SIP, H.323, RTP, SNMP,
research team to respond
MySQL, MS-SQL, RPC, NetBIOS, SMB Application traffic analyticsOffers
quickly to regular and out-of-
and SMB2. comprehensive logging with filtering
band security advisories.
options, on-box reporting and
Context aware monitoring engine administrator notification capabilities.
System requirements
Features full traffic visibility on end users, Includes customized intrusion
IPS is available with the following
applications, sources, destinations, prevention templates for off-box IPFix
Dell SonicWALL firewalls:
threat types, content and devices. exporting for long-term analytics reporting.
TZ 105 / TZ 105W
TZ 205 / TZ 205W Full network traffic inspectionInspects Application controlProvides the ability
all ports, protocols and IP addresses, to monitor and manage over 4,500
TZ 215 / TZ 215W and includes support for IPv6 traffic and applications including instant messaging
NSA 220 / NSA 220W SSL-encrypted traffic (this requires SSL and peer-to-peer file sharing programs,
Inspection Service). closing a potential back door that can be
NSA 250M / NSA 250MW
used to compromise the network, while
NSA 2600 Robust, sophisticated traffic improving employee productivity and
normalizationProvides advanced conserving bandwidth.
NSA 3600
resistance to evasion, including IP
NSA 4600 packet fragmentation, TCP stream Administrator-defined regular
NSA 5600 segmentation, RPC fragmentation, expression monitoringPrevents data
SMB/NetBIOS, Payload Encoding, leakage by enabling transmission control
NSA 6600 and blocking of sensitive data such as
FTP, TCP Split Handshake and layered
SuperMassive 9200 combinations. credit card and social security numbers,
or specific file attachments to personal
SuperMassive 9400
Compression algorithm inspection web mail services and corporate SMTP
SuperMassive 9600 Supports on-the-fly inspections for or POP3 email.
SuperMassive E10200 numerous algorithms, including Deflate,
Zip, gzip, LZH, gz, tar, tar.gz, tar.Z, tar.bz2
SuperMassive E10400 and Base64 encoding.
SuperMassive E10800
Anomaly-based protectionProvides
numerous forms of security, including
malformed packets, protocol fuzzing,
IP spoofing, MAC spoofing, RFC 793
/ RFC 1122 violations, port scanning,
URL obfuscation, HTML obfuscation,
multicast snooping and DNS tunneling.
In 2013, Dell SonicWALL earned a
Denial of service threshold and heuristic Recommend rating from NSS Labs in
protectionIncludes Ping of Death, Next-Generation Firewall and Intrusion
Teardrop, Bonk, Sub-Seven, Nestea, Prevention System group testing.
2
PDF DOC XLS
1011010101110110101101010110
101011010101100110001001010
DOC 101001010111001011011010101
101101010110110101010
IM
PDF XLS
The Dell SonicWALL Intrusion Prevention Service protects against a wide array of attack types.
The Dell SonicWALL Intrusion Prevention system utilizes a patented reassembly-free deep packet inspection engine
for full stack protection.
3
Gateway
Maximum Comprehensive
Dell SonicWALL Intrusion prevision New connections Anti- Total
inspected Gateway
appliance throughput per second Malware, Secure
connections Security
IPS and Bundle
Suite
AppControl
TZ 105 / TZ 105W 60 Mbps 8,000 1,000
Intrusion Prevention
TZ 205 / TZ 205W 80 Mbps 12,000 1,500
Malware Prevention
TZ 215 / TZ 215W 110 Mbps 32,000 1,800
Application Control*
NSA 220 / NSA 220W 195 Mbps 32,000 2,200 Content Filtering
NSA 250M / NSA 250MW 250 Mbps 64,000 3,000 24x7 Technical
Support
NSA 2600 700 Mbps 125,000 15,000
NGFW Hardware
NSA 3600 1.1 Gbps 175,000 20,000 Appliance
NSA 4600 2.0 Gbps 200,000 40,000 *Application Control is not available on TZ105 or TZ205
Dell Software
5 Polaris Way, Aliso Viejo, CA 92656 | www.dell.com 2014 Dell, Inc. ALL RIGHTS RESERVED. Dell, Dell Software, the Dell Software logo and productsas
If you are located outside North America, you can find local identified in this documentare registered trademarks of Dell, Inc. in the U.S.A. and/or other countries.
office information on our Web site. All other trademarks and registered trademarks are property of their respective owners.
DataSheet-IPS-US-TD595-20140320