Forcepoint N3401 Firewall

Firewall Throughput  Specification
NGFW/NGIPS throughput 15 Gbps
Max firewall throughput 200 Gbps
TLS 1.2 inspection performance 5.2 Gbps
IPsec VPN throughput  75 Gbps
Concurrent IPsec VPN tunnels 200,000
Mobile VPN clients Unlimited
Concurrent connections 35 million
New TCP connections/sec. 750,000
Network I/O slots 8
Max inspection throughput 26 Gbps
Virtual contexts default/maximum 10 / 100
Category:

Description

Forcepoint N3401 Firewall

Features:

Enterprise SD-WAN Connectivity and NGFW Security for Distributed Enterprises

 

Modular Appliances for Every Environment
Our broad range of appliances provide the right price-performance and form factor for each location; plugable interface cards let you change networks with ease.

Multi-link Connectivity for SD-WAN
Broadband, wireless, and dedicated lines at each location can be centrally deployed and managed, providing full control over what traffic goes over each link with automated failover.

Policy-Driven Centralized Management
Smart Policies describe your business processes in familiar terms and are automatically implemented throughout the network, managed in-house or via MSSP.

Built-in NGFW, VPN, Proxies, and More
Unparalleled security comes standard, from top-ranked Next Generation Firewall and IPS to rapid-setup VPNs and granular decryption, as well as our unique Sidewinder proxy technology.

Human-Centric Endpoint Context
Access policies can whitelist or blacklist specific endpoint apps, patch levels or AV status. Users’ behaviors are consolidated into actionable dashboards.

CASB and Web Security
Our reknowned URL filtering and industry-leading cloud services work together to protect your data and people as they use apps and web content.

APIs
Rich application programming interfaces enable SD-WAN and NGFWs to be integrated with orchestration, management, and third-party analysis infrastructure.

High Availability, Mixed Clustering
Active-active clustering lets you mix up to 16 different models of appliances for unrivaled scalability, longer lifecycles, and seamless updates without dropping packets.

Automated, Zero-Downtime Updates
Policy changes and software updates can be deployed to hundreds of firewalls and IPS devices around the world in minutes, not hours, without the need for service windows.

Actionable, Interactive 360° Visibility
Graphical dashboards and visualizations of network activity go beyond simple reporting, enabling admins to drill into events and respond to incidents faster.

Top-Ranked Anti-Evasion Defense
Multi-layer stream inspection defeats advanced attacks that traditional packet inspection can’t detect—see for yourself in our Evader video series.

Unified Virtual and Physical Security
Native support for AWS, Azure and VMware has the same capabilities, management, and high performance of our physical appliances.

Anti-Malware Sandboxing
Forcepoint Advanced Malware Detection blocks previously undetected ransomware, zero-days, and other attacks before they steal sensitive data or damage your systems.

Certifications
Forcepoint Next Gen Firewalls are rigourously tested to comply with major industry and government certification requirements.

Specifications:

 

Platforms
Physical Appliance Multiple hardware appliance options, ranging from branch office to data center installations
Cloud Infrastructure Amazon Web Services, Microsoft Azure
Virtual Appliance x86 64-bit based systems; VMware ESXi, VMware NSX, Microsoft Hyper-V, and KVM
Endpoint Endpoint Context Agent (ECA), VPN Client
Virtual Contexts Up to 250
Centralized Management Enterprise-level centralized management system with log analysis, monitoring and reporting capabilities
Firewall Features
Deep Packet Inspection Multi-Layer Traffic Normalization/Full-Steam Deep Inspection, Anti-Evasion Defense, Dynamic Context Detection, Protocol-Specific Traffic Handling/Inspection, Granular Decryption of SSL/TLS Traffic, Vulnerability Exploit Detection, Custom Fingerprinting, Reconnaissance, Anti-Botnet, Correlation, Traffic Recording, DoS/DDoS Protection, Blocking Methods, Automatic Updates
User Identification Internal user database, Native LDAP, Microsoft Active Directory, RADIUS, TACACS+, Microsoft Exchange, Client Certificates
High Availability
  • Active-active/active-standby firewall clustering up to 16 nodes  SD-WAN
  • Stateful failover (including VPN connections)
  • Server load balancing
  • Link aggregation (802.3ad)
  • Link failure detection
IP Address Assignment
  • IPv4 static, DHCP, PPPoA, PPPoE, IPv6 static, SLAAC, DHCPv6
  • Services: DHCP Server for IPv4 and DHCP relay for IPv4 and IPv6
Routing
  • Static IPv4 and IPv6 routes, policy-based routing, static multicast routing
  • Dynamic routing: RIPv2, RIPng, OSPFv2, OSPFv3, BGP, MP-BGP, BFD, PIM-SM, PIM-SSM, IGMP proxy
  • Application-aware routing
IPv6t Dual stack IPv4/IPv6, ICMPv6, DNSv6, NAT, Full NGFW features
Proxy Redirection HTTP, HTTPS, FTP, SMTP protocols redirection to Forcepoint or third party Content Inspection Service (CIS) on premise and Cloud
Geo-Protection Dynamically updated source/destination country or continent
IP Address List Predefined IP categories or using custom or imported IP address lists
URL Filtering (Separate Subscription) Custom or imported URL lists
Endpoint Applications Application name and version
Network Applications 7400+ network and cloud applications
Sidewinder Security Proxies TCP, UDP, HTTP, HTTPS, SSH, FTP, TFTP, SFTP, DNS
SD-WAN
Protocols IPsec and TLS
Site-to-Site VPN
  • Policy- and route-based VPN
  • Hub and spoke, full mesh, partial mesh, Hybrid topologies
  • Dynamic selection of multiple ISP Links
  • Load sharing, active/standby, link aggregation
  • Live monitoring and reporting on ISPs link quality (Delay, jitter, packet loss)
Remote Access
  • Forcepoint VPN client for Microsoft Windows, Android, and Mac OS
  • Any standard IPsec client
  • High availability with automatic failover
  • Client security checks
  • Access to TLS VPN portal
Advanced Malware Detection and File Control
Protocols FTP, HTTP, HTTPS, POP3, IMAP, SMTP
File Filtering Policy-based file filtering with efficient down selection process.
Over 200 supported file types in 19 file categories
File Reputation High speed cloud based Malware reputation checking and blocking
Anti-Virus Local antivirus scan engine*
Zero-Day Sandboxing Forcepoint Advanced Malware Detection available both as cloud and on-premise service
Component Details for license binding
Management Servers
  • IP-address-bound license — Enter the IP address that you plan to use on the server. If your license allows several Management Servers in the same SMC for high availability, enter a comma-separated list of the IP addresses of all Management Servers.
  • UIID-bound license — Enter the UIID of the SMC. The UIID is automatically generated when you install the SMC. The UIID is also shown in the properties of the Management Server, Log Server, or Web Portal Server elements.
Other SMC servers
  • IP-address-bound license — Enter the IP address that you plan to use on the server.
  • Management Server POL-bound license — Enter the Management Server’s POL code.
  • UIID-bound license — Enter the UIID of the SMC. The UIID is automatically generated when you install the SMC. The UIID is also shown in the properties of the Management Server, Log Server, or Web Portal Server elements.
Master NGFW Engines Enter the POS code of a Forcepoint NGFW appliance (see the label attached to the appliance).
NGFW Engines
  • For Forcepoint NGFW appliances, enter the POS code of the appliance (see the label attached to the appliance).
  • For Forcepoint NGFW software installed on your own hardware or on a virtualization platform, enter the POL code of the Management Server that you use to manage the NGFW Engine.

Buy Forcepoint Firewall online from Firewall Firm’s IT Monteur Store

Sales Number : +91 9582 90 7788
Support Number : +91-9654016484
Sales Email : sales@itmonteur.net
Support Email : support@itmonteur.net

Register & Request Quote
Submit Support Ticket

Related products