<< Назад на страницу выбора модели

IPv4 Firewall Throughput (1518/512/64-byte, UDP) 1/1/0.4 Gbit/s
IPv6 Firewall Throughput (1518/512/84-byte, UDP) 1/1/0.5 Gbit/s
Firewall Throughput (Packets Per Second) 0.6 Mpps
Firewall Latency (64-byte, UDP) 40 μs
FW + SA Throughput 1 Gbit/s
FW + SA + IPS Throughput 500 Mbit/s
FW + SA + Antivirus Throughput 500 Mbit/s
FW + SA + IPS + Antivirus + URL Throughput 300 Mbit/s
FW+SA+IPS+Antivirus Throughput (Realworld) 300 Mbit/s
Concurrent Sessions (HTTP1.1) 1,500,000
New Sessions/Second (HTTP1.1) 30,000
IPsec VPN Throughput (AES-128+SHA1, 1420-byte) 700 Mbit/s
Maximum IPsec VPN Tunnels (GW to GW) 4,000
Maximum IPsec VPN Tunnels (Client to GW) 4,000
SSL Inspection Throughput 40 Mbit/s
SSL VPN Throughput 50 Mbit/s
Concurrent SSL VPN Users (Default/Maximum) 100/500
Security Policies (Maximum) 15,000
Virtual Firewalls (Default/Maximum) 10/50
High Availability Configurations Active/Active,
URL Filtering: Categories More than 130
URL Filtering: URLs Can access a database of over 120 million URLs in the cloud
Automated Threat Feed and IPS Signature Updates Yes, an industry-leading security center from Huawei
Third-Party and Open-Source Ecosystem Open APIs for integration with third-party products through RESTCONF and NETCONF interfaces
Other third-party management software based on SNMP, SSH, and syslog Collaboration with third-party tools, such as FireMon Collaboration with Anti-APT solution
Centralized Management Centralized configuration, logging, monitoring, and reporting is performed by Huawei
eSight and LogCenter
VLANs (maximum) 4,094
VLANIF Interfaces (Maximum) 1,024
Dimensions (H x W x D) mm 44.4 x 442 x 421
Form Factor/Height 1U
Fixed Interfaces 4 x GE (RJ45) + 2 x GE (Combo)
USB 2.0 Port Supported
Expansion I/O WSIC: 2 x 10 GE (SFP+) + 8 x GE (RJ45), 8 x GE (RJ45), 8 x GE ( SFP), 4 x GE (RJ45) BYPASS
MTBF 11.58 years
Weight (Full Configuration) 7.9 kg
AC Power Supply 100V to 240V, 50/60Hz

Function Description
Integrated Protection Integrates firewall, VPN, intrusion prevention, antivirus, data leak prevention, bandwidth management, and URL filtering functions, and provides a global configuration view and integrated policy management.
Application Identification and Control Identifies common applications, supports application-specific access control, and combines application identification with intrusion prevention, antivirus, and data filtering to improve detection performance and accuracy.
Intrusion Prevention and Web Protection Obtains the latest threat information in a timely manner for accurate detection and prevention of vulnerability exploits and web attacks, such as cross-site scripting and SQL injection attacks.
Data Leak Prevention Inspects files to identify the file type, such as WORD, EXCEL, POWERPOINT, and PDF, based on file contents, and filters sensitive content.
Bandwidth Management Manages per-user and per-IP bandwidth in addition to identifying service applications to prioritize mission-critical services and users through methods such as peak bandwidth and committed bandwidth, policy-based routing (PBR), and application forwarding priority adjustment.
URL Filtering Can access a URL category database of over 120 million URLs to manage access by URL category, such as blocking malicious URLs and accelerating access to specified categories.
Behavior and Content Audit Audits and traces the sources of URL access based on the user IP address and requested content.
Intelligent Uplink Selection Supports service-specific PBR and intelligent uplink selection based on multiple load balancing algorithms (for example, based on bandwidth ratio and link health status) in multi-homing scenarios.
VPN Encryption Supports multiple highly reliable VPN features, such as IPsec VPN, SSL VPN, L2TP VPN, and GRE. Supports IPsec intelligent link selection and dynamic IPsec tunnel switchover to improve link availability.
SSL Encrypted Traffic Detection Serves as a proxy to detect and defend against threats in SSL-encrypted traffic using application-layer protection methods such as intrusion prevention, antivirus, data filtering, and URL filtering.
User Authentication Supports multiple user authentication methods, including local, RADIUS, HWTACACS, SecurID, AD, CA, LDAP, and Endpoint Security.
Security Virtualization Allows users to create and manage virtual security services, including firewall, intrusion prevention, and antivirus services, on the same physical device.
Policy Management Provides predefined common-scenario defense templates to facilitate security policy deployment. Automatically evaluates risks in security policies and provides tuning suggestions. Detects redundant and conflicting policies to remove unnecessary and incorrect policies. Provides the firewall policy management solution in partnership with FireMon to reduce O&M costs and potential faults.
Diversified Reports Provides visualized and multi-dimensional reports by user, application, content, time, traffic, threat, and URL. Generates network security analysis reports on the Huawei security center platform to evaluate the current network security status and provide optimization suggestions.
Routing Supports IPv4 static routes, policy-based routing, routing policies, multicast, RIP, OSPF, BGP, and IS-IS. Supports IPv6 static routes, policy-based routing, routing policies, RIPng, OSPFv3, BGP4+, and IPv6 IS-IS.
Working Mode Transparent, routing, and hybrid working modes.
Device Management Capability Built-in Web UI: Provides abundant device management and maintenance functions, including log report, configuration, and troubleshooting.
eSight network management: Manages the performance, alarms, resources, configurations, and topology of the entire network.
Agile Controller: Implements application- and user-specific security policy control in the Huawei SDN Agile Network Solution.*
LogCenter security event management system: Provides functions such as security posture awareness, report management, log audit, and centralized alarm management.
API: Supports both NETCONF* and RESTCONF northbound APIs to enable users to centrally configure and maintain firewalls via an upper-level controller to simply the O&M.
Agile Cloud Management Platform*: The Huawei Agile Cloud Network Solution consists of a cloud management platform and a series of cloud-based network devices. Customers can purchase the cloud management license for firewall management and maintenance services instead of buying network management software and hiring network administrators.