WATCHGUARD - NETWORK SECURITY


WATCHGUARD - AWARDS & PERFORMANCE REPORTS

WATCHGUARD XTMv

Virtualizing Security for Today’s Business Needs


Organizations of all sizes are turning to virtualization to reduce costs and increase the efficiency, availability, and flexibility of their IT resources. But virtualization comes at a cost. Virtual environments are complex to manage and vulnerable to security threats. IT must be prepared. Now applications can be secured, resources can be maximized and your IT department can reap the rewards of having a single, unified management system—without a security risk in sight. WatchGuard XTMv brings best-in-class network security to the world of virtualization. With real-time monitoring, multi-WAN support and scalable solutions to fit any sized business, your virtual environments can be just as secure as your physical one.

WatchGuard’s virtual solutions provide you with unmatched deployment flexibility. You can choose to deploy a mix of hardware and virtual appliances, operating together and managed from a common centralized management platform. WatchGuard virtual appliances feature all of the security and networking services found in our physical appliances and can be deployed in a per-customer, per-department, or per-app scenarios, for your virtual infrastructure.

Virtualize the traditional gateway firewall for unprecedented flexibility ‐ protecting the internal edge

WatchGuard XTMv protects not only the physical perimeter of the datacenter, but the "virtual edge." Now you can easily implement policy that protects the data in the corporate database from the messaging infrastructure, or confidential HR information from financial data from other divisions ‐ even when running on the same servers.

Consolidate multiple firewalls for high-impact efficiencies ‐ multi-tenant protection

Service providers ‐ hosting, cloud, or managed security services ‐ can deploy multiple instances of XTMv on servers at the perimeter of their datacenters. These virtual firewalls are isolated from each other, so service level agreements (SLAs) can be guaranteed to each tenant, and a configuration change to one doesn’t affect the others. And yet they can all be managed by the provider using a single intuitive console.

Eliminate redundant hardware costs while securing the virtual networks ‐ branch consolidation

As larger branches and divisions consolidate local servers ‐ file, print, voice, and more ‐ onto one box, a virtual firewall can be deployed on the physical server, insulating all traffic from the public Internet. A single VPN tunnel can provide a secure path back to corporate datacenters or virtual private clouds ‐ yielding cost savings at every location without compromising security.

Compare Editions and Detailed Specs

XTMv
Small Office

XTMv
Medium Office

XTMv
Large Office

XTMv
Datacenter

Throughput and Connections

Firewall throughput¹

1 Gbps

2.5 Gbps

5 Gbps

Unrestricted

Virtual Interfaces

10

10

10

10

Nodes Supported

Unrestricted

Unrestricted

Unrestricted

Unrestricted

Concurrent sessions
(bi-directional)

30,000

350,000

1,250,000

2,500,000

VLAN

50

75

400

4,000

VPN and Authentication

Branch Office VPN

50

600

6,000

10,000

Mobile VPN with SSL (Incl/Max)

10/50

10/600

6,000/6,000

Unrestricted

Mobile VPN with IPSec

5

50

800

Unrestricted

Authenticated Users

200

2,500

5,000

Unrestricted

Throughput rates will vary based on environment & configuration.

Management

Management Platform:  WatchGuard System Manager (WSM) v.11 or higher
Alarms and Notifications: SNMP v2/v3, Email, Management System Alert
Server Support:  Logging, Reporting, Quarantine, WebBlocker, Management
Web UI: Supports Windows, Mac, Linux, and Solaris OS
CLI: Includes direct connect and scripting
WSM licenses enable drag-and-drop VPN and one-touch virtual appliance updates.
Medium Office, Large Office and Datacenter Editions include 4-device WSM license. Appliances activated online receive an automatic 5-device bonus pack.

Initial WSM licenses are a purchase upgrade for Small Office Edition.

Next-Generation Security

Firewall : Stateful packet inspection, deep application inspection, proxy firewall
Application Proxies: HTTP, HTTPS, SMTP, FTP, DNS, TCP, POP3, SIP, H.323
Intrusion Protection: Blocks DOS, DDOS, PAD, port scanning, spoofing attacks, address space probes, and more
VoIP: H.323. SIP, call setup & session security
Security subscriptions: Application Control, Reputation Enabled Defense, WebBlocker, spamBlocker, Gateway AntiVirus, Intrusion Prevention Service (available in the Security Bundle)

VPN & Authentication

Encryption: DES, 3DES, AES 128-, 192-, 256-bit
IPSec: SHA-1, MD5, IKE pre-shared Key, 3rd party cert import
SSL: Thin client, Web exchange
PPTP: Server & Passthrough
VPN Failover: Yes
Single Sign-On: Transparent Active Directory Auth.
XAUTH: Radius, LDAP, Windows Active Directory
Other User Authentication: VASCO, RSA SecurID, web-based, local

Networking

Operating System: Fireware XTM / Fireware XTM Pro*
Hypervisor Support: VMware vSphere 4.1, 5.0
IP Address Assignment: Static, DynDNS, PPPoE, DHCP (server, client, relay)
Routing: Static, dynamic (BGP4, OSPF, RIP v1/v2)**, policy-based**
QoS: 8 priority queues, diffserv, modified strict queuing
NAT: Static, dynamic, 1:1, IPSec NAT traversal, policy-based**, virtual IP for server load balancing**
Other Networking: Port independence, multi-WAN failover, multi-WAN load balancing**, transparent/drop-in mode
* Fireware XTM Pro ships with Large Office and Datacenter Editions, and is an easy upgrade for Small Office and Medium Office Editions
** Requires Fireware XTM Pro operating system.

HOME

ABOUT US
COMPANY BACKGROUND
VISION & MISSION
MILESTONE

OUR PARTNERS
PRODUCTS
WATCHGUARD
AGILYSYS
JANRAIN

SOLUTIONS
Our Services
Our Solutions
Additional Services
NEWS & EVENTS

JOIN US ON
FACEBOOK
LINKEDIN

CONTACT US
Enquiry Form
ITMAP ASIA - @Copyright 2009 ITMAP ASIA
All rights reserved