Cisco SA 500 Series Security Appliances

Similar documents
Advantage Now! Connect Live Session

Cisco ASA 5500 Series IPS Edition for the Enterprise

Cisco SR 520-T1 Secure Router

Cisco RV110W Wireless-N VPN Firewall

Cisco WAP121 Wireless-N Access Point with Single Point Setup

Cisco RV180 VPN Router

Cisco CVR100W Wireless-N VPN Router with Highly Secure Business-Class Connectivity for Small Offices/Home Offices (SOHO)

Future-ready security for small and mid-size enterprises

VPN Routers DSR-150/250/500/1000AC. Product Highlights. Features. Overview. Comprehensive Management Capabilities. Web Authentication Capabilities

Unified Services Routers

Security Quick Sales Guide

SteelGate Overview. Manage perimeter security and network traffic to ensure operational efficiency, and optimal Quality of Service (QoS)

AC 3150 Wireless MU-MIMO Gigabit Router

Cisco RV 120W Wireless-N VPN Firewall

SECURITY FOR SMALL BUSINESSES

Cisco WAP371 Wireless-AC/N Dual Radio Access Point with Single Point Setup

Cisco ASA 5500 Series IPS Solution

Meraki Z-Series Cloud Managed Teleworker Gateway

The SonicWALL PRO Series

Cisco Small Business 550/560 Wireless Access Points

Wireless 450N Dual-Band Gigabit Router 450 Mbps Wireless a/b/g/n, GHz, 3T3R MIMO, QoS, 4-Port Gigabit LAN Switch Part No.

Unified Services VPN Routers

Securing the Empowered Branch with Cisco Network Admission Control. September 2007

BRT-AC828 Dual-WAN VPN Wireless Router

Cisco WAP351 Wireless-N Dual Radio Access Point with 5-Port Switch

Cisco WAP321 Wireless-N Selectable-Band Access Point with Power over Ethernet

Cisco WAP131 Wireless-N Dual Radio Access Point with PoE

ETR9350 HOUSING LOOK b/g/n Pocket-Size AP/Router. 2.4GHz 300Mbps PRODUCT DESCRIPTION

Cisco WAP321 Wireless-N Selectable-Band Access Point with Power over Ethernet

Total Threat Protection. Whitepaper

AC2300 Wireless MU-MIMO Gigabit Router

AC750GW 750Mbps. Dual band Gigabit Wireless Router. Overview DATA SHEET. Highlights

802.11b/g/n SOHO Router 2.4GHz 300Mbps 11N AP/Router

Cisco Self Defending Network

WNRT-627. Data Sheet. Europe/ ETSI: 2.412~2.472GHz (13 Channels) Japan/ TELEC: 2.412~2.484GHz (14 Channels) RF Power.

Quick Sales Guide. Security

Easy Activation Effortless web-based administration that can be activated in as little as one business day - no integration or migration necessary.

Security SSID Selection: Broadcast SSID:

NSG100 Nebula Cloud Managed Security Gateway

SonicWALL TZ 170 Series Prepared by SonicWALL, Inc. 7/6/2004

AC 5400 Wireless Tri-Band MU-MIMO Gigabit Router

USG310/210/110. Benefits. Always online. Protection and optimization. Next Generation Firewall (NGFW) for small and medium-sized businesses

KX/3G ADSL2+ ROUTER MAIN FEATURES

QuickSpecs. Models HP V110 Cable/DSL Wireless-N Router HP V110 ADSL-B Wireless-N Router

AC1200 Wireless Dual Band Gigabit VoIP VDSL/ADSL Modem Router

USG 50/20/20W Sales Kits

Security Assessment Checklist

3Com X5 and X506 Unified Security Platforms

Shaw Business SmartSecurity Technical User Guide

Vendor: Cisco. Exam Code: Exam Name: Cisco Sales Expert. Version: Demo

Security with Passion. Endian UTM Virtual Appliance

Simple and Powerful Security for PCI DSS

Preconfigured Audio/Video Bridging System

CITADEL Series - Security and VPN Appliances

Wireless AC1750 Wave 2 Dual-Band PoE Access Point

Expected Outcomes Able to design the network security for the entire network Able to develop and suggest the security plan and policy

Basic Wireless Settings on the CVR100W VPN Router

QuickSpecs. Models HP 110 ADSL-B Wireless-N Router

AC Wireless Tri-Band Gigabit Router. Highlights

ESR b/g/n SOHO Router PRODUCT OVERVIEW. 2.4 GHz 150Mbps 11N Router/AP

Exam : Title : Security Solutions for Systems Engineers. Version : Demo

HP V110 Wireless-N Router Series

Covr your Whole Home in High-Power Wi-Fi

HikCentral V.1.1.x for Windows Hardening Guide

Cisco AP 541N Wireless Access Point Part of the Cisco Small Business Pro Series

MX Cloud Managed Security Appliance Series

NSG50/100/200 Nebula Cloud Managed Security Gateway

Chapter 10: Security. 2. What are the two types of general threats to computer security? Give examples of each.

SMARTER, SIMPLER NETWORKING

Cisco ASA 5500 Series Adaptive Security Appliances

Training UNIFIED SECURITY. Signature based packet analysis

NSG50/100/200 Nebula Cloud Managed Security Gateway

Gigabit SSL VPN Security Router

AC1600 Wireless Dual Band Gigabit VoIP VDSL/ADSL Modem Router

HikCentral V1.3 for Windows Hardening Guide

for businesses with more than 25 seats

Multi-Layered Security Framework for Metro-Scale Wi-Fi Networks

Seqrite TERMINATOR (UTM) Unified Threat Management Solution.

AC2200 Gigabit Ethernet MoCA Gateway EMG6765

KERIO TECHNOLOGIES KERIO WINROUTE FIREWALL 6.3 REVIEWER S GUIDE

Motorola Netopia 2200 Series

for businesses with more than 25 seats

AC2600 MU-MIMO Wi-Fi Router

5 Trends That Will Impact Your IT Planning in Layered Security. Executive Brief

AC Touch Screen Wi-Fi Gigabit Router. Highlights

Cisco Catalyst 6500 Series/Cisco 7600 Series Wireless Services Module

AC 750. Wireless Dual Band ADSL2+ Modem Router. Highlights

ESR9752 ESR b/g/n SOHO Router. 2.4 GHz 300Mbps 11N AP/Router PRODUCT DESCRIPTION

ZyWALL VPN2S VPN Firewall

AC3000 Tri-Band Wireless Gigabit Dual-WAN VPN SMB Router TEW-829DRU (v1.0r)

802.11n SOHO Router NSR GHz 300Mbps AP/ Router

Data Sheet: Endpoint Security Symantec Multi-tier Protection Trusted protection for endpoints and messaging environments

4G/LTE VoIP Wireless Router Z-LTE9322

3G Mobile Wireless Mobile Router PRODUCT DESCRIPTION PACKAGE CONTENT. 1* 3G Mobile Wireless-N Router (ESR6650) 1*12V/1.

IBM Proventia Network Multi-Function Security MX1004

NetDefend Firewall UTM Services

Networks with Cisco NAC Appliance primarily benefit from:

AC2600. Wireless Dual Band Gigabit Router. Highlights

All-in one security for large and medium-sized businesses.

AC5400 MU-MIMO Tri-Band Gaming Router

Transcription:

Cisco SA 500 Series Security Appliances An All-in-One Security Solution to Secure Your Small Business The Cisco SA 500 Series Security Appliances, part of the Cisco Small Business Pro Series, are comprehensive gateway security solutions that combine firewall, VPN, and optional intrusion prevention and web and email security capabilities, helping you feel confident that your business is protected and resilient. These easy-to-use security appliances let you control access to network resources, enabling you to protect business data and maximize network uptime. The Cisco SA 500 Series also helps increase employee productivity by controlling web access, spam emails, phishing attacks, unauthorized intrusions, and other emerging threats, as well as by freeing IT resources from virus eradication and system cleanup activities. With the Cisco SA 500 Series, you can safely deploy new business applications without opening up security holes. Mobile employees and business partners can also securely connect to your network over the Internet using IP Security (IPsec) or Secure Sockets Layer (SSL) VPN services. With a Cisco SA 500 Series solution protecting your network, you can focus on growing your business without worrying about the latest security threats. Challenge The Internet has become a critical business tool for organizations of all sizes, offering new opportunities for business growth and allowing partners and remote workers to access the business network via VPN connections. But it is also a conduit for threats to enter a company's network, and these threats can have a significant negative impact: Unauthorized access can lead to loss of company data, unplanned downtime, and related liability concerns. Viruses can infect systems, bringing them down and resulting in outages and lost revenue. Spam and phishing create a nuisance and contribute to a loss of employee productivity. Spyware provides a direct inside view of your network and data that can lead to identity theft and business data loss. Browsing of non-work-related and harmful websites leads to lost productivity, exposure to viruses and spyware, and possible legal issues involving employees. Solution The Cisco SA 500 Series provides small companies with comprehensive gateway security and VPN connectivity. With its combined firewall, email, and web security capabilities, the Cisco SA 500 Series stops threats before they enter the network and affect business operations. The Cisco SA 500 Series: Allows valid business traffic to flow while keeping out unwelcome visitors. It also supports a public accessable network area, known as a demilitarized zone (DMZ), to safely host file, web, and other Internetaccessible servers without exposing the business s internal LAN network to threats. Proactively prevents intrusions and blocks dangerous peer-to-peer communications: With the optional Intrusion Prevention System (IPS) for SA 500 license, the SA 500 Series is able to identify possible intrusions into the business network and take action to stop the intrusion and prevent further risk. Additionally, the SA 500 Series can block peer-to-peer and instant messaging traffic and perform protocol inspection to help increase network security, enhance employee productivity, and keep the network available for business traffic. 2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 7

Provides full-strength email and web protection at full speed: With robust content security capabilities delivered via the optional Cisco ProtectLink Gateway subscription offering, the Cisco SA 500 Series provides critical perimeter security services for comprehensive protection: Full-strength protection at full speed: ProtectLink Gateway services are delivered via a unique cloudbased approach. Emails destined for your small business are first inspected by Cisco s technology partner, Trend Micro, using enterprise-class inspection capabilities to stop a greater range of threats. For example, ProtectLink Gateway will scan your emails for more than 3 million different virus patterns and more than 400,000 spyware patterns. Additional antispam technology is provided via 10 different inspection technologies that evaluate not just the sender s network address reputation, but also the actual content of the email itself. Other small business products cannot make similar claims. In addition to the security benefits this approach provides, it avoids the compromise many other vendors make of having to slow down the bandwidth of traffic in order to inspect email and web content. With ProtectLink Gateway, more threats are stopped before they get to your business, without affecting bandwidth. Antivirus: Award-winning antivirus technology shields your internal network resources from both known and unknown virus attacks, at the most effective point in your infrastructure, the Internet gateway. Filtering your email and web traffic at the perimeter eliminates the need for resource-intensive cleanup of an infection and helps ensure business continuity. Antispyware: Blocking spyware at the gateway prevents it from entering your network through Internet traffic (HTTP and FTP) and email, avoiding costly spyware removal procedures and improving employee productivity. Antispam: Effective blocking of spam, with very low false positives, helps restore the effectiveness of email, so that communication with customers, vendors, and partners continues uninterrupted. Antiphishing: Identity theft protection guards against phishing attacks, thereby preventing employees from inadvertently disclosing company or personal details that could lead to financial loss. URL filtering: Web and URL filtering can be used to control employee Internet usage by blocking access to inappropriate or non-work-related websites, improving employee productivity and limiting the risk of legal action by employees exposed to offensive web content. Increases the security of remote access: With support for VeriSign Indentity Protection (VIP) Services, the Cisco SA 500 Series provides two-factor authentication and one-time-use password access control for an increased level of remote access security without the need to purchase any additional authentication equipment. Offers easy deployment and management: The Cisco SA 500 Series can be managed via the embedded Security Appliance Configuration Utility, a powerful yet easy-to-use browser-based management and monitoring interface. This single solution provides comprehensive configuration and monitoring of all the services in a single application. The Security Appliance Configuration Utility can also be launched from Cisco Configuration Assistant. In addition, the Cisco SA 500 Series supports Simple Network Management Protocol (SNMP) monitoring. Figures 1 and 2 show the interfaces for Cisco Configuration Assistant and the Security Appliance Configuration Utility. 2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 2 of 7

Figure 1. Cisco Configuration Assistant Interface Figure 2. Security Appliance Configuration Utility Interface Business Benefits The Cisco SA 500 Series Security Appliances provide security and connectivity that help you: Support evolving business needs: Safely deploy new applications by providing advanced application-layer security services for a wide range of popular applications, including web-based applications, email, voice over IP (VoIP), video, and multimedia applications. Enhance authentication security for remote users: Prevent unauthorized access to your business network by using hardware- or software-generated one-time-use passwords. Increase employee productivity: Prevent the loss of employee productivity by preventing spam, spyware, and inappropriate web browsing using the Cisco ProtectLink Gateway optional service. Improve business resiliency: Prevent disruption of business-critical applications and services due to security breaches by implementing a robust business-grade firewall along with support for email and web security. Reduce IT costs: Free up IT support resources and avoid the costly process of cleaning up infections due to spyware, viruses, and other malware by preventing them from occurring. Enable easy-to-deploy remote access: Allow employees and partners to quickly and easily connect to the business with SSL VPN. 2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 3 of 7

Achieve operational efficiency: Reduce costs associated with deployment and ongoing management and monitoring of the security solution by using a single easy-to-install, easy-to-use solution. Decrease liability: Reduce the company s exposure to liability related to compromised data or inadequate corporate controls by implementing comprehensive access control and threat protection services in a single device. Enjoy peace of mind: Get maximum value from your Cisco solution through an affordable, subscriptionbased service offering. The Cisco Small Business Pro Service provides software upgrades and updates, extended access to the Cisco Small Business Support Center, and next-business-day hardware replacement. These benefits make the Cisco SA 500 Series Security Appliance the right choice to address your security needs and enable your network and employees to deliver maximum value to your business. Figure 3 shows the Cisco SA 500 Series Security Appliance with and without wireless connectivity. Figure 3. Cisco SA 500 Series Security Appliances, the SA 520W and the SA 520 Product Specifications Table 1 gives the product specifications for the Cisco SA 500 Series. Table 1. Cisco SA 500 Series Security Appliance Models and Specifications SA 520 SA 520W SA 540 Firewall Stateful packet inspection throughput* 200 Mbps 200 Mbps 300 Mbps Firewall plus email and web security throughput* 200 Mbps 200 Mbps 300 Mbps Connections 15,000 15,000 40,000 Rules 100 100 100 Schedules Yes Yes Yes IPS Yes Yes Yes Peer-to-peer and instant messaging blocking Yes Yes Yes VPN Triple Data Encryption Standard (3DES)/ Advanced Encryption Standard (AES) VPN throughput* 65 Mbps 65 Mbps 85 Mbps IPsec VPN tunnels 50 max 50 max 100 max SSL VPN tunnels 2 seats included; license required to upgrade to 25 seats (max) 2 seats included; license required to upgrade to 25 seats (max) 50 seats (max) included Dead peer detection Yes Yes Yes IPsec Network Address Translation (NAT) traversal Yes Yes Yes 2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 4 of 7

NetBIOS broadcast over VPN Yes Yes Yes Cisco ProtectLink Gateway URL filtering 80+ categories 80+ categories 80+ categories Web threat protection Yes Yes Yes Antispam protection Yes Yes Yes Virus patterns More than 3 million More than 3 million More than 3 million Spyware patterns More than 420,000 More than 420,000 More than 420,000 Wireless 802.11b/g/n 2 x 3 multiple input, multiple output (MIMO) 2.4 GHz Wi-Fi Multimedia (WMM) quality of service (QoS) Unscheduled automatic power save delivery (U-APSD) (WMM Power Save [WMM-PS]) MAC filtering Wired Equivalent Privacy (WEP), Wi-Fi Protected Access Pre-Shared Key (WPA2- PSK), WPA2-ENT Basic service set identifier (BSSID) or virtual access points Ability to dynamically or manually adjust transmit power No Yes; 4 supported No Wi-Fi Protected Setup (WPS) Other Routing Static, Routing Information Protocol (RIP) v1, v2 Static, RIP v1, v2 Static, RIP v1, v2 VLANs 16 16 16 IPsec/Point-to-Point Tunneling Protocol (PPTP)/Layer 2 Tunneling Protocol (L2TP) pass-through Yes Yes Yes Message digest MD5/SHA1/SHA2 MD5/SHA1/SHA2 MD5/SHA1/SHA2 Encryption DES/3DES/AES DES/3DES/AES DES/3DES/AES User database 100 100 400 Dynamic DNS (DDNS) Yes Yes Yes Load balancing Yes Yes Yes Integrated and automated failover and failback Yes, using optional port for dual WAN Yes, using optional port for dual WAN Yes, using optional port for dual WAN VeriSign VIP support Yes Yes Yes Physical interfaces All Ethernet ports 10BASE- T, 100BASE-TX, 1000BASE-T capable 4 LAN ports All Ethernet ports 10BASE- T, 100BASE-TX, 1000BASE-T capable 4 LAN ports All Ethernet ports 10BASE- T, 100BASE-TX, 1000BASE-T capable 8 LAN ports 1 WAN port 1 WAN port 1 WAN port 1 optional port for use as LAN, WAN, or DMZ port 1 USB 2.0 port 1 optional port for use as LAN, WAN, or DMZ port 1 USB 2.0 port 1 optional port for use as LAN, WAN, or DMZ port 1 USB 2.0 port 1 power switch 1 power switch 1 power switch 3 external antennas Environmental operating temperature 32º to 104ºF (0º to 40ºC) Storage temperature 4º to 158 F ( 20º to 70 C) 32º to 104ºF (0º to 40ºC) 4º to 158 F ( 20º to 70 C) 32º to 104ºF (0º to 40ºC) 4º to 158 F ( 20º to 70 C) 2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 5 of 7

Internal Power Supply Voltage range 90 to 264 VAC single phase 90 to 264 VAC single phase 90 to 264 VAC single phase Input frequency 47 to 63 Hz 47 to 63 Hz 47 to 63 Hz Output voltage regulation 11.4V ~ 12.6V 11.4V ~ 12.6V 11.4V ~ 12.6V Output current Max 2.5A Max 2.5A Max 2.5A Physical Specifications Form factor 1 RU, 19-in. rack mountable 1 RU, 19-in. rack mountable 1 RU, 19-in. rack mountable Dimensions (H x W x D) 1.73 x 12.12 x 7.08 inches (44 x 308 x 180 mm) 1.73 x 12.12 x 7.08 inches (44 x 308 x 180 mm)without antennas 1.73 x 12.12 x 7.08 inches (44 x 308 x 180 mm) Weight (with internal power supply) 4.91 lb (2.23 kg) 5.15 lb (2.34 kg) 5.14 lb (2.34 kg) * Performance test methodology: Maximum performance based on RFC 2544. All results are aggregate bidirectional. Actual performance may vary depending upon network environment and configuration. Ordering Table 2 lists the part numbers for Cisco SA 500 Series Security Appliances. Table 2. Product Part Numbers Product SA 520 Security Appliance SA 520W Security Appliance SA 540 Security Appliance ProtectLink Gateway Unlimited Web + 25 Max Email Seats 1 year ProtectLink Gateway Unlimited Web + 25 Max Email Seats 3 year ProtectLink Gateway Unlimited Web + 100 Max Email Seats 1 year ProtectLink Gateway Unlimited Web + 100 Max Email Seats 3 year IPS for SA 500 Series license Cisco ProtectLink Endpoint incremental 5-seat license Cisco ProtectLink Endpoint incremental 25-seat license Cisco ProtectLink Endpoint incremental 5-seat license renewal Cisco ProtectLink Endpoint incremental 25-seat license renewal SSL license for SA 520 and SA 520W Cisco Small Business Pro Service, 3 years SA 520 with IPS and ProtectLink Web Licenses, 3 year SA 520 with IPS and ProtectLink Gateway 25 Licenses, 3 year SA 520 with IPS and ProtectLink Gateway 100 Licenses, 3 year SA 520W with IPS and ProtectLink Web Licenses, 3 year SA 520W with IPS and ProtectLink Gateway 25 Licenses, 3 year SA 520W with IPS and ProtectLink Gateway 100 Licenses, 3 year SA 540 with IPS and ProtectLink Web Licenses, 3 year SA 540 with IPS and ProtectLink Gateway 25 Licenses, 3 year SA 540 with IPS and ProtectLink Gateway 100 Licenses, 3 year SKU SA520-K9 SA520W-K9 SA540-K9 L-PL-GW-25MAX-1= L-PL-GW-25MAX-3= L-PL-GW-100MAX-1= L-PL-GW-100MAX-3= L-SA500-IPS-1YR= L-PLEP-5= L-PLEP-25= L-PLEP-5R= L-PLEP-25R= L-FL-SSL-SA520-K9= CON-SBS-SVC2 SA520-WEB-BUN3-K9 SA520-GW25-BUN3-K9 SA520-GW100BUN3-K9 SA520W-WEB-BUN3-K9 SA520W-GW25BUN3-K9 SA520W-GW100BN3-K9 SA540-WEB-BUN3-K9 SA540-GW25-BUN3-K9 SA540-GW100BUN3-K9 2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 6 of 7

Secure Connectivity for Your Business The network is becoming a key part of your most important business operations. To keep your business running at its best, and to give customers the service they expect, you need a network that is secure, powerful, and flexible. The Cisco SA 500 Series Security Appliances help make communications easier by connecting customers to your business and your employees to each other. The appliances deliver the solid security, secure VPN access, and advanced routing you need. At the same time, they help you control costs, reduce your need for separate network equipment, and simplify network management. Whether you are starting up a small business or expanding a successful one, the Cisco SA 500 Series Security Appliances can help you get connected today and grow smoothly in the future. Service and Support The Cisco SA 500 Series Security Appliances are backed by the Cisco Small Business Pro Service, which provides affordable coverage that offers peace of mind. This subscription-based service helps you derive maximum value from Cisco Small Business Pro Series products. Delivered by Cisco, this comprehensive service includes software upgrades and updates, extended access to the Cisco Small Business Support Center, and next-business-day hardware replacement as necessary. It provides community-based support to enable small businesses to share knowledge and collaborate using online forums and wikis to help boost business efficiency, identify and reduce risks, and serve customers better. For More Information For more information about the Cisco SA 500 Series Security Appliances, visit http://www.cisco.com/go/sa500 or contact your local Cisco provider. For more information about the Cisco ProtectLink Gateway and Endpoint products, visit http://www.cisco.com/go/protectlink or contact your local Cisco provider. For more information about the VeriSign VIP product, visit http://www.cisco.com/go/viptoken or contact your local Cisco provider. For more information about the Cisco Small Business Pro Service, visit http://www.cisco.com/go/proservice. Printed in USA C78-542899-03 03/10 2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 7 of 7

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback