High End | SonicWall

Network Security services platform (NS_sp) High-End Firewall Series

The SonicWall Network Security services platform (NS_sp) High-End Firewall series takes an innovative approach to threat detection and prevention by combining appliance-based protection with cloud intelligence in a reliable, high-performance platform. Designed for large distributed enterprises, data centers and service providers, the NS_spHigh-End series consolidates advanced security technologies that deliver proven, scalable protection for millions of connections from the most advanced threats without slowing performance.

	_productName	NS_sp 12400	NS_sp 12800
Deep Packet Inspection Firewall	TotalSecure Advanced Firewall Overview	S	S
Stateful Packet Inspection Firewall	TotalSecure Advanced Firewall Overview	S	S
Unlimited File Size Protection	TotalSecure Advanced Firewall Overview	S	S
Protocols Scanned	TotalSecure Advanced Firewall Overview	S	S
Application Intelligence and Control	Threat Prevention Services Available	S	S
Intrusion Prevention Service	Threat Prevention Services Available	S	S
Gateway Anti-Virus and Anti-Spyware	Threat Prevention Services Available	S	S
Content & URL Filtering (CFS)	Threat Prevention Services Available	S	S
SSL Inspection (DPI SSL)	Threat Prevention Services Available	S	S
Capture Advance Threat Protection	Threat Prevention Services Available	S	S
Content Filtering Client (CFC)¹	Threat Prevention Services Available	O	O
Enforced Client Anti-Virus and Anti-Spyware¹	Threat Prevention Services Available	O	O
24x7 Support	Threat Prevention Services Available	S	S
Interfaces	Firewall General	4 x 40-GbE QSFP+, 16 x 10-GbE SFP+, 1 GbE Management, 1 Console	4 x 40-GbE QSFP+, 16 x 10-GbE SFP+, 1 GbE Management, 1 Console
Management	Firewall General	CLI, SSH, Web UI, Capture Security Center, GMS	CLI, SSH, Web UI, Capture Security Center, GMS
Nodes Supported	Firewall General	Unrestricted	Unrestricted
Site-to-Site VPN Tunnels	Firewall General	25,000	25,000
IPSec VPN Clients (Maximum)	Firewall General	2,000 (10,000)	2,000 (10,000)
SSL VPN NetExtender Clients (Maximum)	Firewall General	2 (3,000)	2 (3,000)
VLAN Interfaces	Firewall General	512	512
Wireless Controller	Firewall General	S	S
Firewall Inspection Throughput²	Firewall/VPN Performance	58.4 Gbps	120.3 Gbps
Threat Prevention Throughput³	Firewall/VPN Performance	33.5 Gbps	67.5 Gbps
Application Inspection Throughput³	Firewall/VPN Performance	45.5 Gbps	91.0 Gbps
IPS Throughput³	Firewall/VPN Performance	36.8 Gbps	73.0 Gbps
Anti-Malware Inspection Throughput³	Firewall/VPN Performance	33.5 Gbps	67.5 Gbps
IMIX Throughput	Firewall/VPN Performance	14.8 Gbps	29.0 Gbps
SSL DPI Throughput³	Firewall/VPN Performance	8.1 Gbps	17.6 Gbps
VPN throughput⁴	Firewall/VPN Performance	24.5 Gbps	47.0 Gbps
Maximum Connections (SPI)	Firewall/VPN Performance	40,000,000	80,000,000
Maximum Connections (DPI)	Firewall/VPN Performance	16,000,000	32,000,000
Maximum Connections (DPI SSL)	Firewall/VPN Performance	800,000	1,600,000
New Connections/Sec	Firewall/VPN Performance	430,000/sec	860,000/sec
Logging	Features	Analyzer, Local Log, Syslog	Analyzer, Local Log, Syslog
Network Traffic Visualization	Features	S	S
NetFlow/IPFIX Reporting	Features	S	S
SNMP	Features	S	S
Authentication	Features	LDAP, XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)	LDAP, XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)
Dynamic Routing	Features	BGP, OSPF, RIP	BGP, OSPF, RIP
Single Sign-on (SSO)	Features	S	S
Voice over IP (VoIP) Security	Features	S	S
PortShield Security	Features	S	S
Port Aggregation	Features	S	S
Link Redundancy	Features	S	S
Policy-based Routing	Features	S	S
Route-based VPN	Features	S	S
Dynamic Bandwidth Management	Features	S	S
Stateful High Availability	Features	S	S
Multi-WAN	Features	S	S
Load Balancing	Features	S	S
Object-based Management	Features	S	S
Policy-based NAT	Features	S	S
IKEv2 VPN	Features	S	S
TLS/SSL/SSH Decryption and Inspection	Features	S	S
SSL Control	Features	S	S
Auto-provision VPN	Features	S	S
Biometric Authentication	Features	S	S
DNS Proxy	Features	S	S
Hardware Failover	Features	Active/Standby with State Sync, Active/Active DPI with State Sync, Active/Active Clustering	Active/Standby with State Sync, Active/Active DPI with State Sync, Active/Active Clustering

NS_sp 12400

NS_sp 12800

Deep Packet Inspection Firewall

Stateful Packet Inspection Firewall

Unlimited File Size Protection

Protocols Scanned

Application Intelligence and Control

Intrusion Prevention Service

Gateway Anti-Virus and Anti-Spyware

Content & URL Filtering (CFS)

SSL Inspection (DPI SSL)

Capture Advance Threat Protection

Content Filtering Client (CFC)¹

Enforced Client Anti-Virus and Anti-Spyware¹

24x7 Support

Interfaces

4 x 40-GbE QSFP+, 16 x 10-GbE SFP+, 1 GbE Management, 1 Console

Management

CLI, SSH, Web UI, Capture Security Center, GMS

Nodes Supported

Unrestricted

Site-to-Site VPN Tunnels

25,000

IPSec VPN Clients (Maximum)

2,000 (10,000)

SSL VPN NetExtender Clients (Maximum)

2 (3,000)

VLAN Interfaces

512

Wireless Controller

Firewall Inspection Throughput²

58.4 Gbps

120.3 Gbps

Threat Prevention Throughput³

33.5 Gbps

67.5 Gbps

Application Inspection Throughput³

45.5 Gbps

91.0 Gbps

IPS Throughput³

36.8 Gbps

73.0 Gbps

Anti-Malware Inspection Throughput³

33.5 Gbps

67.5 Gbps

IMIX Throughput

14.8 Gbps

29.0 Gbps

SSL DPI Throughput³

8.1 Gbps

17.6 Gbps

VPN throughput⁴

24.5 Gbps

47.0 Gbps

Maximum Connections (SPI)

40,000,000

80,000,000

Maximum Connections (DPI)

16,000,000

32,000,000

Maximum Connections (DPI SSL)

800,000

1,600,000

New Connections/Sec

430,000/sec

860,000/sec

Logging

Analyzer, Local Log, Syslog

Network Traffic Visualization

NetFlow/IPFIX Reporting

SNMP

Authentication

LDAP, XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix, Common Access Card (CAC)

Dynamic Routing

BGP, OSPF, RIP

Single Sign-on (SSO)

Voice over IP (VoIP) Security

PortShield Security

Port Aggregation

Link Redundancy

Policy-based Routing

Route-based VPN

Dynamic Bandwidth Management

Stateful High Availability

Multi-WAN

Load Balancing

Object-based Management

Policy-based NAT

IKEv2 VPN

TLS/SSL/SSH Decryption and Inspection

SSL Control

Auto-provision VPN

Biometric Authentication

DNS Proxy

Hardware Failover

Active/Standby with State Sync, Active/Active DPI with State Sync, Active/Active Clustering

Superior Threat Prevention and Performance

Block more attacks with patent-pending Real-Time Deep Memory Inspection (RTDMI^TM) & Patented Real-Free Deep Packet Inspection (RFDPI^®) technology
Combine cloud-based and on-box threat prevention featuring multi-engine sandboxing
Industry-validated high security effectiveness
Get high-speed performance with 40-Gigabit Ethernet ports
Security that scales to protect millions of encrypted connections
Decrypt and inspect TLS/SSL and SSH traffic in real time

Watch the Video >

SonicWall NSsp High End Firewalls Series Video Data Sheet

The SonicWall NSsp series uses massively-scalable hardware architecture plus cloud-based and on-box DPI to deliver high-speed threat prevention in real time over thousands of encrypted and unencrypted connections.

Network Control and Flexibility

Leverage powerful SonicOS operating system
Gain application intelligence and control
Segment your network into zones
Deploy at the network edge or data center core

Read Solution Brief >

Performance That's SuperMassive

Ensure outstanding enterprise performance and security
Attain multi-gigabit threat prevention with near zero latency
Combine essential security technologies and multiple 10-GbE interfaces in a 2U rackmount chassis

Read the Datasheet >

Scalability and Reliability

Choose from multiple configuration options
Store logs, reports, firmware backup files and more using the built-in storage module
Achieve business continuity with redundant power supplies and fans

Read Solution Brief >

SonicWall Capture Cloud Platform

Take advantage of threat intelligence consolidated from more than a million SonicWall sensors
Develop and automatically deliver signatures in real-time with the help of SonicWall Capture Lab's research team
Leverage NSsp firewalls which have continuous access to the Capture Cloud Platform for millions of malware signatures
Obtain single pane of glass management, licensing, reporting and analytics with Capture Cloud Platform

Learn More >

SonicWall SonicOS

SonicOS is at the core of every SonicWall firewall. It delivers effective threat prevention, application id...

Get the SonicOS Platform datasheet

Understanding Encrypted Threats

Cyber-criminals have learned to leverage encryption as an effective method to hide malware, ransomware, spe...

Get the White Paper

A Unified Approach to Managing Governance, Risk & Compliance

Stop hidden threats at multi-gigabit speed while ensuring uninterrupted network availability and connectivity.

Get the Solutions Brief

Free Trials

Authorized Distributors

Contact Sales

Solution Briefs

Contact Sales

Free Trials

Technology Partners

MSSP Partner Program

Contact Channel

Contact Support

MySonicWall.com

Renew Support

Blog

2018 SonicWall Cyber Threat Report: Actionable Intelligence for the Cyber Arms Race >

SonicWall and our Channel Partners Team to Deliver New High-Value Security Professional Services to Fight the Bad Guys >

Innovate More, Fear Less at CETPA 2017 with SonicWall for Your School Network >

Network Security services platform (NS_sp) High-End Firewall Series