en-US
English
How To Buy >
Free Trial >
search-icon

Network Security services platform (NSsp) High-End Firewall Series

Get scalable, cutting-edge security that leverages the power of cloud intelligence. The SonicWall Network Security services platform (NSsp) High-End Firewall series takes a modern approach to threat detection and prevention by combining appliance-based protection with cloud intelligence in a reliable, high-performance platform. Designed for large distributed enterprises, data centers and service providers, the NSsp High-End series consolidates innovative security technologies that deliver proven, scalable protection from the most advanced threats without slowing performance.
High End Product Image

Enterprise security that leverages the power of cloud intelligence

Compare Products +
Datasheet
Resources>

Get scalable, cutting-edge security that leverages the power of cloud intelligence. The SonicWall Network Security services platform (NSsp) High-End Firewall series takes a modern approach to threat detection and prevention by combining appliance-based protection with cloud intelligence in a reliable, high-performance platform. Designed for large distributed enterprises, data centers and service providers, the NSsp High-End series consolidates innovative security technologies that deliver proven, scalable protection from the most advanced threats without slowing performance.

Legend: S — Standard,  O — Optional,  N — Not Available

_productName NSsp 12400 NSsp 12800
Deep Packet Inspection Firewall TotalSecure Advanced Firewall Overview S S
Stateful Packet Inspection Firewall TotalSecure Advanced Firewall Overview S S
Unlimited File Size Protection TotalSecure Advanced Firewall Overview S S
Protocols Scanned TotalSecure Advanced Firewall Overview S S
Application Intelligence and Control Threat Prevention Services Available S S
Intrusion Prevention Service Threat Prevention Services Available S S
Gateway Anti-Virus and Anti-Spyware Threat Prevention Services Available S S
Content & URL Filtering (CFS) Threat Prevention Services Available S S
SSL Inspection (DPI SSL) Threat Prevention Services Available S S
Capture Advance Threat Protection Threat Prevention Services Available S S
Content Filtering Client (CFC)1 Threat Prevention Services Available O O
Enforced Client Anti-Virus and Anti-Spyware1 Threat Prevention Services Available O O
24x7 Support Threat Prevention Services Available S S
Interfaces Firewall General 4 x 40-GbE QSFP+, 16 x 10-GbE SFP+, 1 GbE Management, 1 Console 4 x 40-GbE QSFP+, 16 x 10-GbE SFP+, 1 GbE Management, 1 Console
Management Firewall General CLI, SSH, Web UI, Capture Security Center, GMS CLI, SSH, Web UI, Capture Security Center, GMS
Nodes Supported Firewall General Unrestricted Unrestricted
Site-to-Site VPN Tunnels Firewall General 25,000 25,000
IPSec VPN Clients (Maximum) Firewall General 2,000 (10,000) 2,000 (10,000)
SSL VPN NetExtender Clients (Maximum) Firewall General 2 (3,000) 2 (3,000)
VLAN Interfaces Firewall General 512 512
Wireless Controller Firewall General S S
Firewall Inspection Throughput2 Firewall/VPN Performance 58.4 Gbps 120.3 Gbps
Threat Prevention Throughput3 Firewall/VPN Performance 33.5 Gbps 67.5 Gbps
Application Inspection Throughput3 Firewall/VPN Performance 45.5 Gbps 91.0 Gbps
IPS Throughput3 Firewall/VPN Performance 36.8 Gbps 73.0 Gbps
Anti-Malware Inspection Throughput3 Firewall/VPN Performance 33.5 Gbps 67.5 Gbps
IMIX Throughput Firewall/VPN Performance 14.8 Gbps 29.0 Gbps
SSL DPI Throughput3 Firewall/VPN Performance 8.1 Gbps 17.6 Gbps
VPN throughput4 Firewall/VPN Performance 24.5 Gbps 47.0 Gbps
Maximum Connections (SPI) Firewall/VPN Performance 16,000,000 32,000,000
Maximum Connections (DPI) Firewall/VPN Performance 6,000,000 12,000,000
Maximum Connections (DPI SSL) Firewall/VPN Performance 100,000 200,000
New Connections/Sec Firewall/VPN Performance 430,000/sec 860,000/sec
Logging Features Analyzer, Local Log, Syslog Analyzer, Local Log, Syslog
Network Traffic Visualization Features S S
NetFlow/IPFIX Reporting Features S S
SNMP Features S S
Authentication Features LDAP, XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC) LDAP, XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)
Dynamic Routing Features BGP, OSPF, RIP BGP, OSPF, RIP
Single Sign-on (SSO) Features S S
Voice over IP (VoIP) Security Features S S
PortShield Security Features S S
Port Aggregation Features S S
Link Redundancy Features S S
Policy-based Routing Features S S
Route-based VPN Features S S
Dynamic Bandwidth Management Features S S
Stateful High Availability Features S S
Multi-WAN Features S S
Load Balancing Features S S
Object-based Management Features S S
Policy-based NAT Features S S
IKEv2 VPN Features S S
TLS/SSL/SSH Decryption and Inspection Features S S
SSL Control Features S S
Auto-provision VPN Features S S
Biometric Authentication Features S S
DNS Proxy Features S S
Hardware Failover Features Active/Passive with State Sync, Active/Active DPI with State Sync, Active/Active Clustering Active/Passive with State Sync, Active/Active DPI with State Sync, Active/Active Clustering
  1. Services must be purchased separately.
  2. Testing Methodologies: Maximum performance based on RFC 2544 (for firewall). Actual performance may vary depending on network conditions and activated services.
  3. Full DPI/Gateway AV/Anti-Spyware/IPS throughput measured using industry standard Spirent WebAvalanche HTTP performance test and Ixia test tools. Testing done with multiple flows through multiple port pairs. Threat Prevention throughput measured with Gateway AV, Anti-Spyware, IPS and Application Control enabled.
  4. VPN throughput measured using UDP traffic at 1280 byte packet size adhering to RFC 2544.
  5. Performance optimized mode can provide significant increases in performance without major impact to threat prevention efficacy.
Close Overview
TAKE THE FAST TRACK TO ENTERPRISE SECURITY Image

TAKE THE FAST TRACK TO ENTERPRISE SECURITY

Designed to meet the demands of enterprise networks, data centers and service providers, the NSsp 12000 series delivers proven threat prevention that moves as fast as you do.

  • Patent-pending Real-Time Deep Memory Inspection (RTDMITM) technology
  • Patented Real-Free Deep Packet Inspection (RFDPI®) technology
  • Cloud-based and on-box threat prevention featuring multi-engine sandboxing
  • 40-Gigabit and 10-Gigabit Ethernet ports
  • Real-Time TLS/SSL decryption and inspection

SonicWall NSsp High End Firewalls Series Video Data Sheet

The SonicWall NSsp series uses massively-scalable hardware architecture plus cloud-based and on-box DPI to deliver high-speed threat prevention in real time over thousands of encrypted and unencrypted connections.

SUPERMASSIVE 9200/9400/9600/9800 Image

SUPERMASSIVE 9200/9400/9600/9800

Designed with leading-edge threat inspection technology and hardware processing power, SonicWall SuperMassive high end firewalls support today’s largest, most complex and demanding security use cases. With comprehensive security services including sandboxing, SSL inspection, intrusion prevention, anti-malware, application identification and content filtering, SuperMassive is the ideal next-generation high end firewall for securing large distributed enterprises and data centers.

READ THE DATASHEET >
SEGMENT YOUR NETWORK TO STOP ADVANCED THREATS Image

SEGMENT YOUR NETWORK TO STOP ADVANCED THREATS

Modern threats take advantage of all areas of your network to succeed. In order to stop advanced attacks, networks need to be divided into security segments to contain and mitigate threat propagation. However, defining logical segments is only part of the solution. Effective segmentation requires an integrated, dynamic network security approach to comprehensively enforce the integrity of each and every segment, and do so manageably and affordably.

Learn more >
SonicWall SonicOS

SonicOS is at the core of every SonicWall firewall. It delivers effective threat prevention, application id...

Get the SonicOS Platform datasheet

>
Understanding Encrypted Threats

Cyber-criminals have learned to leverage encryption as an effective method to hide malware, ransomware, spe...

Get the White Paper

>
A Unified Approach to Managing Governance, Risk & Compliance

Stop hidden threats at multi-gigabit speed while ensuring uninterrupted network availability and connectivity.

Get the Solutions Brief

>