number of policies 5,000 2,500 1 Performance and capacities are measured under ideal testing conditions using PAN-OS 5.0.
PERFORMANCE AND CAPACITIES 1 PA-3050 PA-3020 Firewall throughput (App-ID enabled) 4 Gbps 2 Gbps Threat prevention throughput 2 Gbps 1 Gbps IPSec VPN throughput 500 Mbps 500 Mbps New sessions per second 50,000 50,000 Max sessions 500,000 250,000 IPSec VPN tunnels/tunnel interfaces 2,000 1,000 GlobalProtect (SSL VPN) concurrent users 2,000 1,000 SSL decrypt sessions 15,360 7,936 SSL inbound certificates 25 25 Virtual routers 10 10 Virtual systems (base/max2) 1/6 1/6 Security zones 40 40 Max. The controlling element of the PA-3000 Series is PAN-OS, a security-specific operating system that allows organizations to safely enable applications using App-ID, User-ID, Content-ID, GlobalProtect, and WildFire. The high speed backplane is divided into separate data and control planes, thereby ensuring that management access is always available, irrespective of the traffic load. The PA-3000 Series manages network traffic flows using dedicated processing and memory for networking, security, threat prevention and management. PA-3050 PA-3020 The Palo Alto Networks PA-3000 Series is comprised of two high performance platforms, the PA-3050 and the PA-3020, both of which are targeted at high speed Internet gateway deployments.
Identify unknown malware, analyze for more than 100 malicious behaviors, automatically create and deliver a signature in the next available update. Limit unauthorized transfer of files and sensitive data, and control non-workrelated web surfing. Block a range of known threats including exploits, malware and spyware, across all ports, regardless of common threat evasion tactics employed. PROTECT AGAINST ALL THREATS- BOTH KNOWN AND UNKNOWN-WITH CONTENT-ID AND WILDFIRE. Deploy consistent policies to local and remote users running Microsoft Windows, Mac OS X, Linux, Android or iOS platforms. Integrate with NAC, 802.1X wireless and other non-standard user repositories with an XML API. Agentless integration with Active Directory, LDAP, eDirectory Citrix and Microsoft Terminal Services. EXTEND SAFE APPLICATION ENABLEMENT POLICIES TO ANY USER, AT ANY LOCATION, WITH USER-ID AND GLOBALPROTECT. 
Categorize unidentified applications for policy control, threat forensics, custom App-ID creation, or packet capture for App-ID development. Use the application, not the port, as the basis for all safe enablement policy decisions: allow, deny, schedule, inspect, apply traffic shaping. Identify the application, regardless of port, encryption (SSL or SSH) or evasive technique employed. PALO ALTO NETWORKS: PA-3000 Series Specsheet PA-3000 Series Key PA-3000 Series next-generation firewall features: CLASSIFY ALL APPLICATIONS, ON ALL PORTS, ALL THE TIME WITH APP-ID.
0 kommentar(er)
