PaloAlto PA-200
Mô tả
The PA-200 is a true desktop-size platform that safely enables applications, users, and content in your enterprise branch offices at throughput speeds of up to 100 Mbps. Dedicated computing resources for the functional areas of networking, security, content inspection, and management ensure predictable firewall performance.
The Palo Alto Networks™ PA-200 is targeted at high speed firewall deployments within distributed enterprise branch offices. The PA-200 manages network traffic flows using dedicated computing resources for networking, security, threat prevention and management.
The high speed backplane is divided into separate data and control planes, thereby ensuring that management access is always available, irrespective of the traffic load. The controlling element of the PA-200 next-generation firewall is PAN-OS™, a security-specific operating system that allows organizations to safely enable applications using App-ID, User-ID, Content-ID, GlobalProtect, and WildFire.
Classify all applications, on all port, all the time with App-ID.
- Identify the application, regardless of port, encryption (SSL or SSH) or evasive technique employed.
- Use the application, not the port, as the basis for all safe enablement policy decisions: allow, deny, schedule, inspect, apply traffic shaping.
- Categorize unidentified applications for policy control, threat forensics, custom App-ID creation, or packet capture for App-ID development.
Extend safe application enablement policies to any user, at any location, with User-ID and GlobalProtect.
- Agentless integration with Active Directory, LDAP, eDirectory Citrix and Microsoft Terminal Services.
- Integrate with NAC, 802.1X wireless and other non-standard user repositories with an XML API.
- Deploy consistent policies to local and remote users running Microsoft Windows, Mac OS X, Linux, Android or iOS platforms.
Protect against all threat—both known and unknown—with Content-ID and Wildfire
- Block a range of known threats including exploits, malware and spyware, across all ports, regardless of common threat evasion tactics employed.
- Limit unauthorized transfer of files and sensitive data, and control non-workrelated web surfing.
- Identify unknown malware, analyze for more than 100 malicious behaviors, automatically create and deliver a signature in the next available update.
Specification
| STT | Tính năng | Palo Alto PA-200 |
| 1 | Thông số kỹ thuật | |
| Firewall Throughput (App-ID enable ) | 100 Mbps | |
| Threat Prevention throughput | 50 Mbps | |
| IPSec VPN throughput | 50 Mbps | |
| New sessions per second | 1000 | |
| Maximum sessions | 64000 | |
| Interfaces supported | (4) 10/100/1000 | |
| Management I/O | (1) 10/100 out-of-band management port | |
| Size | ||
| Power Supply (Avg/Max Power Consumption) | 40W (20W/30W) | |
| Redundant Power Supply | None | |
| Storage Capacity | 16GB SSD | |
| Hot-swappable fans | No | |
| Max BTU/hr | 102 | |
| Input Voltage (Input Frequency) | 100-240VAC (50-60Hz) | |
| Max Current Consumption | 3.3A @ 100VAC | |
| Mean Time Between Failure (MTBF) | 13 Years | |
| Weight (Stand-Alone Device/ As Shipped) | 2.8 lbs / 5.0 lbs | |
| Safety | cCSAus, CB | |
| EMI | FCC Class B, CE Class B, VCCI Class B | |
| Certifications | See https://www.paloaltonetworks.com/company/certifications.html | |
| Enviroment | Operating temperature: 32° to 104° F, 0° to 40° C Non-operating temperature: -4° to 158° F, -20° to 70° C |
|
| 2 | Network Features | |
| Interface mode | L2, L3, tap, virtual wire (transparent mode) | |
| Routing | OSPFv2/v3 with graceful restart, BGP with graceful restart, RIP, static routing Policy-based forwarding Point-to-Point Protocol over Ethernet (PPPoE) Multicast: PIM-SM, PIM-SSM, IGMP v1, v2 and v3 Bidirectional Forwarding Detection (BFD) |
|
| IPv6 | L2, L3, tap, virtual wire (transparent mode) Features: App-ID, User-ID, Content-ID, WildFire and SSL decryption SLAAC |
|
| VLANs | 802.1Q VLAN tags per device/per interface: 4,094/4,094 | |
| Network Address Translation | NAT modes (IPv4): static IP, dynamic IP, dynamic IP and port (port address translation) NAT64, NPTv6 Additional NAT features: dynamic IP reservation, tunable dynamic IP and port oversubscription |
|
| High Availability | Active/Passive with no session synchronization Failure detection: path monitoring, interface monitoring |
