Professional Documents
Culture Documents
sonicwall-gen-7-nsa-series
sonicwall-gen-7-nsa-series
• Best-in-class price-performance
• Redundant power
DATASHEET
Featuring a high port density
including multiple 40 GbE
and 10 GbE ports, the
solution supports network
and hardware redundancy
with high availability, and
dual power supplies.
The Gen 7 NSa Series has been built from the ground up
with the latest hardware components, all designed to deliver
multi-gigabit threat prevention throughput — even for
encrypted traffic. Featuring a high port density including
multiple 40 GbE and 10 GbE ports, the solution supports
network and hardware redundancy with high availability,
and dual power supplies.
• Gain visibility and inspect encrypted traffic, including TLS 1.3, Internet Edge
to block evasive threats coming from the Internet — all without NGFW
DMZ Network
compromising performance
• Protect your enterprise with integrated security, including
Switch
Guest
SD-WAN
SD-WAN
Internal Resource
Access
Branch Enterprise
Office Headquarters
SonicWall Next Generation Firewall SonicWall Next Generation Firewall
NSa 2700
Console 16 x 1-GbE
Port Ports
Optional Redundant
Power Adapter
Power
Adapter
NSa 3700
4 x 5-GbE 24 x 1-GbE
Console
Ports Ports
Port
Optional Redundant
Power Adapter
Dual Power
Fans Adapter
NSa 4700
Console 24 x 1-GbE
Port Ports
128GB Built-in
Storage
128GB Built-in
Storage
256GB Built-in
Storage
www.sonicwall.com/PES
1
esting Methodologies: Maximum performance based on RFC 2544
T 3
PN throughput measured with UDP traffic using 1418 by te packet size
V
(for firewall). Actual performance may var y depending on network AESGMAC16-256 Encr yption adhering to RFC 2544. All specifications,
conditions and activated ser vices. features and availability are subject to change.
2
hreat Prevention/GatewayAV/Anti-Spy ware/IPS throughput measured
T
using industr y standard Keysight HTTP performance test tools. Testing
done with multiple flows through multiple port pairs. Threat Prevention
throughput measured with Gateway AV, Anti-Spy ware, IPS and
Application Control enabled.
• Enhanced device view • Application reporting over NetFlow/IPFIX • A/P high availability with state sync
• Top traffic and user summary • Comprehensive application • Inbound/outbound load balancing
signature database • High availability - Active/Standby with
• Insights to threats
state sync
• Notification center
Traffic visualization and analytics • L2 bridge, wire/virtual wire mode, tap
mode, NAT mode
TLS/SSL/SSH decryption • User activity
• Asymmetric routing
and inspection • Application/bandwidth/threat usage
• Common Access Card (CAC) support
• Cloud-based analytics
• TLS 1.3 with enhanced security1
• Deep packet inspection VoIP
for TLS/SSL/SSH HTTP/HTTPS Web
content filtering2 • Granular QoS control
• Inclusion/exclusion of objects, groups
or hostnames • Bandwidth management
• URL filtering
• SSL control • DPI for VoIP traffic
• Proxy avoidance
• Enhancements for DPI-SSL with CFS • H.323 gatekeeper and
• Keyword blocking
SIP proxy support
• Granular DPI SSL controls per zone or rule • Policy-based filtering
• Capture advanced threat protection2 (exclusion/inclusion)
Management, monitoring
• Real-Time Deep Memory Inspection • HTTP header insertion
and support
• Cloud-based multi-engine analysis2 • Bandwidth manage CFS
rating categories • Capture Security
• Virtualized sandboxing Appliance (CSa) support
• Unified policy model with app control
• Hypervisor level analysis • Capture Threat Assessment (CTA) v2.0
• Content Filtering Client
• Full system emulation • New design or template
• Broad file type examination • Industry and global
• Automated and manual submission
VPN
average comparison
• Real-time threat intelligence updates2 • Secure SD-WAN
• New UI/UX, Intuitive feature layout1
• Block until verdict • Auto-provision VPN
• Dashboard
• Capture Client2 • IPSec VPN for site-to-site connectivity
• Device information, application, threats
• SSL VPN and IPSec
• Topology view
client remote access
Intrusion prevention2 • Simplified policy
• Redundant VPN gateway
• Signature-based scanning creation and management
• Mobile Connect for iOS, Mac OS
• Automatic signature updates • Policy/Objects usage statistics1
X, Windows, Chrome, Android
• Bi-directional inspection and Kindle Fire • Used vs Un-used
• Granular IPS rule capability • Route-based VPN (OSPF, RIP, BGP) • Active vs Inactive
www.sonicwall.com/products/firewalls
About SonicWall
SonicWall delivers Boundless Cybersecurity for the hyper-distributed era and a work reality where everyone is remote, mobile
and unsecure. By knowing the unknown, providing real-time visibility and enabling breakthrough economics, SonicWall
closes the cybersecurity business gap for enterprises, governments and SMBs worldwide. For more information, visit
www.sonicwall.com.
SonicWall, Inc.
1033 McCarthy Boulevard | Milpitas, CA 95035
Refer to our website for additional information.
www.sonicwall.com
Datasheet-Gen7-NSa-JK-US-6012