<< Назад на страницу выбора модели

IPv4 Firewall Throughput (1518/512/64-byte, UDP)1/1/0.4 Gbit/s
IPv6 Firewall Throughput (1518/512/84-byte, UDP)1/1/0.5 Gbit/s
Firewall Throughput (Packets Per Second)0.6 Mpps
Firewall Latency (64-byte, UDP)40 μs
FW + SA Throughput1 Gbit/s
FW + SA + IPS Throughput500 Mbit/s
FW + SA + Antivirus Throughput500 Mbit/s
FW + SA + IPS + Antivirus + URL Throughput300 Mbit/s
FW+SA+IPS+Antivirus Throughput (Realworld)300 Mbit/s
Concurrent Sessions (HTTP1.1)1,500,000
New Sessions/Second (HTTP1.1)30,000
IPsec VPN Throughput (AES-128+SHA1, 1420-byte)700 Mbit/s
Maximum IPsec VPN Tunnels (GW to GW)4,000
Maximum IPsec VPN Tunnels (Client to GW)4,000
SSL Inspection Throughput40 Mbit/s
SSL VPN Throughput50 Mbit/s
Concurrent SSL VPN Users (Default/Maximum)100/500
Security Policies (Maximum)15,000
Virtual Firewalls (Default/Maximum)10/50
High Availability ConfigurationsActive/Active,
URL Filtering: CategoriesMore than 130
URL Filtering: URLsCan access a database of over 120 million URLs in the cloud
Automated Threat Feed and IPS Signature UpdatesYes, an industry-leading security center from Huawei
Third-Party and Open-Source EcosystemOpen APIs for integration with third-party products through RESTCONF and NETCONF interfaces
Other third-party management software based on SNMP, SSH, and syslog Collaboration with third-party tools, such as FireMon Collaboration with Anti-APT solution
Centralized ManagementCentralized configuration, logging, monitoring, and reporting is performed by Huawei
eSight and LogCenter
VLANs (maximum)4,094
VLANIF Interfaces (Maximum)1,024
Dimensions (H x W x D) mm44.4 x 442 x 421
Form Factor/Height1U
Fixed Interfaces4 x GE (RJ45) + 2 x GE (Combo)
USB 2.0 PortSupported
Expansion I/OWSIC: 2 x 10 GE (SFP+) + 8 x GE (RJ45), 8 x GE (RJ45), 8 x GE ( SFP), 4 x GE (RJ45) BYPASS
MTBF11.58 years
Weight (Full Configuration)7.9 kg
AC Power Supply100V to 240V, 50/60Hz

Integrated ProtectionIntegrates firewall, VPN, intrusion prevention, antivirus, data leak prevention, bandwidth management, and URL filtering functions, and provides a global configuration view and integrated policy management.
Application Identification and ControlIdentifies common applications, supports application-specific access control, and combines application identification with intrusion prevention, antivirus, and data filtering to improve detection performance and accuracy.
Intrusion Prevention and Web ProtectionObtains the latest threat information in a timely manner for accurate detection and prevention of vulnerability exploits and web attacks, such as cross-site scripting and SQL injection attacks.
Data Leak PreventionInspects files to identify the file type, such as WORD, EXCEL, POWERPOINT, and PDF, based on file contents, and filters sensitive content.
Bandwidth ManagementManages per-user and per-IP bandwidth in addition to identifying service applications to prioritize mission-critical services and users through methods such as peak bandwidth and committed bandwidth, policy-based routing (PBR), and application forwarding priority adjustment.
URL FilteringCan access a URL category database of over 120 million URLs to manage access by URL category, such as blocking malicious URLs and accelerating access to specified categories.
Behavior and Content AuditAudits and traces the sources of URL access based on the user IP address and requested content.
Intelligent Uplink SelectionSupports service-specific PBR and intelligent uplink selection based on multiple load balancing algorithms (for example, based on bandwidth ratio and link health status) in multi-homing scenarios.
VPN EncryptionSupports multiple highly reliable VPN features, such as IPsec VPN, SSL VPN, L2TP VPN, and GRE. Supports IPsec intelligent link selection and dynamic IPsec tunnel switchover to improve link availability.
SSL Encrypted Traffic DetectionServes as a proxy to detect and defend against threats in SSL-encrypted traffic using application-layer protection methods such as intrusion prevention, antivirus, data filtering, and URL filtering.
User AuthenticationSupports multiple user authentication methods, including local, RADIUS, HWTACACS, SecurID, AD, CA, LDAP, and Endpoint Security.
Security VirtualizationAllows users to create and manage virtual security services, including firewall, intrusion prevention, and antivirus services, on the same physical device.
Policy ManagementProvides predefined common-scenario defense templates to facilitate security policy deployment. Automatically evaluates risks in security policies and provides tuning suggestions. Detects redundant and conflicting policies to remove unnecessary and incorrect policies. Provides the firewall policy management solution in partnership with FireMon to reduce O&M costs and potential faults.
Diversified ReportsProvides visualized and multi-dimensional reports by user, application, content, time, traffic, threat, and URL. Generates network security analysis reports on the Huawei security center platform to evaluate the current network security status and provide optimization suggestions.
RoutingSupports IPv4 static routes, policy-based routing, routing policies, multicast, RIP, OSPF, BGP, and IS-IS. Supports IPv6 static routes, policy-based routing, routing policies, RIPng, OSPFv3, BGP4+, and IPv6 IS-IS.
Working ModeTransparent, routing, and hybrid working modes.
Device Management CapabilityBuilt-in Web UI: Provides abundant device management and maintenance functions, including log report, configuration, and troubleshooting.
eSight network management: Manages the performance, alarms, resources, configurations, and topology of the entire network.
Agile Controller: Implements application- and user-specific security policy control in the Huawei SDN Agile Network Solution.*
LogCenter security event management system: Provides functions such as security posture awareness, report management, log audit, and centralized alarm management.
API: Supports both NETCONF* and RESTCONF northbound APIs to enable users to centrally configure and maintain firewalls via an upper-level controller to simply the O&M.
Agile Cloud Management Platform*: The Huawei Agile Cloud Network Solution consists of a cloud management platform and a series of cloud-based network devices. Customers can purchase the cloud management license for firewall management and maintenance services instead of buying network management software and hiring network administrators.