Neste post vou falar um pouco sobre os novos produtos que a SonicWALL está lançando para a linha TZ que atende a pequenos e médios clientes.
Vou relacioná-los em uma listagem com links e algumas fotos.
Vale ressaltar que todos os novos produtos da SonicWALL não são compatíveis com o ViewPoint, ou seja, para utilizar os relatórios gerenciais você terá que adquirir o novo software de relatórios da SonicWALL chamado de Analyzer (estou montando um post especifico sobre este assunto).
<!–more–>
Abaixo a listagem dos novos produtos’:
-
TZ 105 e sua versão TZ 105 W (wireless)
-
TZ 205 e sua versão TZ 205 W (wireless)
-
TZ 215 e sua versão TZ 215 W (wireless)
Models: | TZ 105 Series | TZ 205 Series | TZ 215 Series |
---|---|---|---|
Firewall | |||
SonicOS Version | SonicOS 5.8.1 and later | ||
Stateful Throughput1 | 200 Mbps | 500 Mbps | 500 Mbps |
IPS Throughput2 | 60 Mbps | 80 Mbps | 110 Mbps |
GAV Throughput2 | 40 Mbps | 60 Mbps | 70 Mbps |
UTM Throughput2 | 25 Mbps | 40 Mbps | 60 Mbps |
Maximum Connections3 | 8,000 | 12,000 | 48,000 |
Maximum UTM/DPI Connections | 8,000 | 12,000 | 32,000 |
New Connections/Sec | 1,000 | 1,500 | 1,800 |
Nodes Supported | Unrestricted | ||
Denial of Service Attack Protection | 22 classes of DoS, DDoS and scanning attacks | ||
SonicPoints Supported | 1 | 2 | 16 |
VPN | TZ 105 Series | TZ 205 Series | TZ 215 Series |
3DES/AES Throughput4 | 75 Mbps | 100 Mbps | 130 Mbps |
Site-to-Site VPN Tunnels | 5 | 10 | 20 |
Bundled Global VPN Client Licenses (maximum) | 0 (5) | 2 (10) | 2 (25) |
Bundled SSL VPN Licenses (maximum) | 1 (5) | 1 (10) | 2 (10) |
Encryption/Authentication/DH Group | DES, 3DES, AES (128, 142, 256-bit), MD5, SHA-1/DH Group 1, 2, 5, 14 | ||
Virtual Assist Bundled (Maximum) | – | 30-day trial (1) | 30-day trial (2) |
Key Exchange | IKE, Manual Key, Certificates (X.509), L2TP over IPSec | ||
Certificate Support | Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWALL-to-SonicWALL VPN, SCEP | ||
VPN Features | Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN | ||
Global VPN Client Platforms Supported | Microsoft® Windows XP, Vista 32/64-bit, Windows 7 32/64-bit | ||
SSL VPN Platforms Supported | Microsoft Windows XP/Vista 32/64-bit/Windows 7, Mac OSX 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSE | ||
Mobile Connect Platform | Apple® iOS 4.2 or higher, Google® Android™ 4.0 or higher | ||
Security Services | TZ 105 Series | TZ 205 Series | TZ 215 Series |
Deep Packet Inspection Services | Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Intelligence and Control (TZ 215 only) | ||
Content Filtering Service (CFS) | HTTP URL, HTTPS IP, keyword and content scanning, ActiveX, Java Applet, and cookie blocking bandwidth management on filtering categories, allow/forbid lists | ||
Enforced Client Anti-Virus and Anti-Spyware | McAfee® or Kaspersky® | ||
Comprehensive Anti-Spam Service6 | Supported | ||
Application Intelligence and Control | Application Control | Application Control | Application Traffic Visualization and Bandwidth Management |
Networking | TZ 105 Series | TZ 205 Series | TZ 215 Series |
IP Address Assignment | Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay | ||
NAT Modes | 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent mode | ||
VLANs | 5, Portshield | 10, Portshield | 10, Portshield |
DHCP | Internal server, relay | ||
Routing | OSPF, RIP v1/v2, static routes, policy-based routing, multicast | ||
Authentication | XAUTH/RADIUS, Active Directory, SSO, LDAP, Novell, internal user database, Terminal Services, Citrix | ||
Local User Database | 150 users | ||
VoIP | Full H.323v1-5, SIP, gatekeeper support, outbound bandwidth management, VoIP over WLAN, deep inspection security, full interoperability with most VoIP gateway and communications devices | ||
System | TZ 105 Series | TZ 205 Series | TZ 215 Series |
Zone Security | Yes | Yes | Yes |
Schedules | Yes | Yes | Yes |
Object-based/Group-based Management | Yes | Yes | Yes |
DDNS | Dynamic DNS providers include: dyndns.org, yi.org, no-ip.com and changeip.com | ||
Management and Monitoring | Local CLI, Web GUI (HTTP, HTTPS), SNMP v2; Global management with SonicWALL GMS | ||
Logging and Reporting | Analyzer, Scrutinizer, GMS, Local Log, Syslog, Solera Networks, NetFlow v5/v9, IPFIX with Extensions, Real-time Visualization | ||
Hardware Failover | – | Active/Passive | Active/Passive |
Anti-Spam | RBL support, Allowed/Blocked Lists, Optional SonicWALL Comprehensive Anti-Spam Service6 | ||
Load Balancing | Yes, Outgoing and Incoming | ||
Standards | TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3 | ||
WAN Acceleration Support7 | Yes, with SonicWALL WXA Appliances | ||
Build-in Wireless LAN | TZ 105W Series | TZ 205W Series | TZ 215W Series |
Standards | 802.11b/g/n | 802.11a/b/g/n (2×2) | 802.11a/b/g/n (3×3) |
Wireless Security Standards | (WEP, WPA, WPA2, 802.11i, TKIP, PSK,02.1x, EAP-PEAP, EAP-TTLS) | ||
Virtual Access Points (VAPs) | Up to 8 | ||
Antennas | Double, detachable, dual | Double, detachable, dual | Triple, detachable, external |
Radio Power: 802.11b/802.11g/802.11n | 18 dBm max/18 dBm @ 6Mbps, 15 dBm @ 54Mbps | 15.5 dBm max/18 dBm max/17 dBM @ 6 Mbps, 13 dBM @ 54 Mbps | |
Radio Power: 802.11a/802.11b/802.11g/802.11n | – | 15.5 dBm max/18 dBm max/17 dBM @ 6 Mbps, 13 dBM @ 54 Mbps | |
Radio Power: 802.11n (2.4GHz)/802.11n (5.0GHz) | 19 dBm MCS 0, 12 dBm MCS 15 | 19 dBm MCS 0, 11 dBm MCS 15/17 dBm MCS 0, 12 dBm MCS 15 | |
Radio Receive Sensitivity: 802.11a/802.11b/802.11g |
-90 dBm @ 11Mbps/-91 dBm @ 6 Mbps, -74 dBm @54 Mbps | -95 dBm MCS 0, -81 dBm MCS 15/-90 dBm @ 11Mbps/-91 dBm @ 6Mbps, -74 dBm @ 54 Mbps | |
Radio Receive Sensitivity: 802.11n (2.4GHz)/802.11n (5.0GHz) |
-89 dBm MCS 0, -70 dBm MCS 15 | -89 dBm MCS 0, -70 dBm MCS 15/-95 dBm MCS 0, -76 dBm MCS 15 | |
Hardware | TZ 105 Series | TZ 205 Series | TZ 215 Series |
Interfaces | (5) 10/100 Fast Ethernet, 1 USB, 1 Console | (5) 10/100/1000 Copper Gigabit, 1 USB, 1 Console | (7) 10/100/1000 Copper Gigabit, 2 USB, 1 Console |
Processor | Single-Core | Dual-Core | Dual-Core |
Flash Memory/RAM | 32 MB/256 MB | 32 MB/256 MB | 32 MB/512 MB |
3G Wireless/Modem5 | Supported with approved adaptors | ||
USB Ports | 1 | 1 | 2 |
Power Input | 100 to 240 VAC, 50-60 Hz, 1 A | ||
Max Power Consumption | 5.2W/7.0W | 6.4W/10.5W | 9.0W/12.0W |
Total Heat Dissipation | 17.8 BTU/23.7 BTU | 21.9 BTU/35.8 BTU | 30.6 BTU/41.4 BTU |
Certifications | VPNC, ICSA Firewall 4.1 | ||
Certifications Pending | EAL4+, FIPS 140-2 Level 2, IPv6 Phase 1, IPv6 Phase 2 | ||
Dimensions | 5.555 x 1.42 x 7.48 in (14.1 x 3.6 x 19 cm) |
5.555 x 1.42 x 7.48 in (14.1 x 3.6 x 19 cm) |
7.125 x 1.5 x 10.5 in (18.1 x 3.81 x 26.67 cm) |
Weight | 0.75 lbs/0.34 kg 0.84 lbs/0.38 kg |
0.75 lbs/0.34 kg 0.84 lbs/0.38 kg |
1.95 lbs/0.97 kg 2.15 lbs/0.97 kg |
Major Regulatory Compliance | FCC Class A, CES Class A, CE, C-Tick, VCCI, Compliance MIC, NOM, UL, cUL, TUV/GS, CB, NOM, WEEE, RoHS | ||
Environment/Humidity | 40-105° F, 0-40° C/ 5-95% non-condensing | ||
MTB | 28 years/15 years |
Uma pena ter que adquirir um novo software para gerenciamento de relatórios. Se pelo menos o Analyzer trabalhar com os Hardwares antigos… menos mal, pois isso evitaria um gerenciamento descentralizado.
Ola Bruno, obrigado pelo seu comentário, sim o Analyzer é compativel com os demais appliances da SonicWALL, porém a grande ressalva é que os novos produtos não são compativeis com o ViewPoint, ou seja, caso sua estrutura tenha um ViewPoint instalado e você adquira um novo appliance, o correto é migrar para o Analyzer (sempre lembrando que existe uma licença especifica para ele).
Abraços
Igor Casalecchi
Igor, o modelo TZ215 W há possibilidade de controlar utilização de banda por grupo de usuários? E outra duvida, quem já possui ViewPoint não perde correto. Continuo com todas as funcionalidades?
Valeu, recem certificado na turma da semana passada …
A utilizacao de banda (traffic shaping) é feito na regra de firewall, ou seja, voce pode restringir por IP, range ip, rede, ou por servico (HTTP, IMAP, SMTP).
O ViewPoint não é compativo com os novos modelos de appliance da SonicWALL, caso compre um novo appliance voce deve comprar uma licença do Analyzer.
Parabens pela certificação!
Att
Igor Casalecchi
Instrutor SonicWALL
Igor.
Estou tentado configura o Tz 215 com analyzer, porem esta dando erro na hora de gerar os dados.
aparece este erro
Report could not be generated
Possible reason(s):
Syslog Servers May not Have been enabled on the appliance
Caro Daniel
Verifique se as configurações estão habilitadas no Appliance
Vá em Log > Syslog > Verifique se o IP do Analyzer esta cadastrado no campo Syslog Server
Espero que ajude!
Igor Casalecchi
Instrutor SonicWALL
E ai tudo bem? Ouvi rumores que a sonicwall vai tirar alguns sonicwall de linha, seria algum da linha TZ ou NSA? Você está sabendo de algo?
Abraço.
Caro Erick
Entraram os novos appliances no mercado e consequentemente os outros appliances serão descontinuados.
A linha TZ já está com appliances novos, sendo eles: TZ 105, 205, 215 (todos com versão Wireless -W)
Espero que ajude!
Igor Casalecchi
Instrutor SonicWALL