Free Consultant
Hỗ trợ tại Hà Nội
Hỗ trợ tại TP.HCM
Hỗ trợ kỹ thuật
Bộ phận kinh doanh

WatchGuard XTM 515

UTM Security Firewall for Small to Midsized Businesses

WatchGuard XTM 515 Series Appliance

WatchGuard XTM 515 Series Overview:

Fast and affordable, XTM 5 Series appliances combine firewall/VPN with powerful security services and a suite of flexible management tools. Positioned in the middle of the XTM family of unified threat management solutions, 5 Series appliances deliver strong security, up to 3.5 Gbps firewall throughput, and seven Ethernet interfaces – six GigE and one FE – to support high-speed LAN backbone infrastructures and gigabit WAN connections. IT administrators can manage security from a centralized console, scriptable CLI, and web UI. Real-time monitoring and rich reporting are included at no extra cost. Easily scales to accommodate growth.

Fast 2.3 Gbps throughputFast 3.5 Gbps throughput
The XTM 5 Series puts other appliances in its class to shame with up to 3.5 Gbps for firewall throughput and 750 Mbps UTM throughput, even with security services and deep packet inspection enabled. The 5 Series delivers formidable performance for exceptional value.

Faster, safe web surfingFaster, safe web surfing
Add a simple subscription to Reputation Enabled Defense to your XTM solution and your organization will have faster web performance and even stronger security – with no additional hardware to buy.

3 ways to manage your appliance3 ways to manage your appliance
Now you have the power to choose how you manage your WatchGuard appliance including, WatchGuard System Manager, the command line interface, and a web UI for access from anywhere, anytime.

Fireware XTM PRO includedFireware XTM PRO included
For the advanced networking features that demanding networks require.

Reporting in the BrowserReporting in the Browser
Provides a web-based, customizable reports portal designed to be hosted with direct Internet access for easy report selection and viewing.

Maximum network uptimeMaximum network uptime
High availability capabilities – active/active and active/passive – ensure your network is always up and running.

Application ControlApplication Control
Control the use of Web 2.0 and other applications on your network for tighter security, better use of bandwidth, and greater productivity.

Compliance ReportingCompliance Reporting
Built-in reports for PCI and HIPAA mean one-click access to the data you need to ensure compliance requirements are covered.

Remote/External Log Server/Report Server DBRemote/External Log Server/Report Server DB
MSSPs and larger organizations can now take advantage of the ability to isolate logging and reporting on a separate PC for high performance, scalability, and redundancy.

An investment in your securityAn investment in your security
Model upgradability ensures your network security investment is protected with the ability to easily upgrade its performance, capacity, and security capabilities as business requirements change and new threats emerge.

Green securityGreen security
Our firewalls are designed with efficiency in mind, consuming very little energy. Compare our power consumption to other security products and see how WatchGuard can make your data center more energy efficient. Green up your network with WatchGuard.

Features:

Best-of-Breed Security

  • Application-layer content inspection recognizes & blocks threats that stateful packet firewalls cannot detect.
  • Powerful subscription-based security services boost protection in critical attack areas for multiple layers of defense. By partnering with leading technology providers, WatchGuard is able to integrate best-of-breed security components into one UTM platform for stronger security at big cost savings.
    • Application Control keeps unproductive, inappropriate, and dangerous applications off-limits.
    • Intrusion Prevention Service (IPS ) delivers in-line protection from malicious exploits, including buffer overflows, SQL injections, and cross-site scripting attacks.
    • WebBlocker controls access to sites that host objectionable material or pose network security risks.
    • Gateway AntiVirus (GAV) scans traffic on all major protocols to stop threats.
    • spamBlocker delivers continuous protection from unwanted and dangerous email.
    • Reputation Enabled Defense ensures faster, safer web surfing with cloud-based reputation look-up.
    • Data Loss Prevention automatically inspects data in motion for corporate policy violations.
  • Advanced networking features, such as dynamic routing and link aggregation, allow you to add security without needing to change existing network infrastructure.
  • Multiple VPN choices (IPSec, SSL, L2TP) for secure remote access include support for Android and Apple iOS devices.

Easy to Manage

  • Interactive, real-time monitoring and reporting – at no additional charge – give an unprecedented view into network security activity so you can take immediate preventive or corrective actions.
  • WatchGuard Dimension, a public and private cloud-ready visibility solution, instantly turns raw data into security intelligence.
  • Intuitive management console centrally manages all security functions.
  • WAN and VPN failover provide redundancy for increased reliability.
  • Extend best-in-class UTM security to the WLAN by adding WatchGuard’s Wireless Access Points.
  • Drag-and-drop Branch Office VPN setup – three clicks and your remote office is connected.

Highest UTM Performance in the Industry

  • Firewall throughput of up to 3.5 Gbps to keep traffic moving.
  • Best UTM throughput in its class – up to 1.7 Gbps – even with strong security enabled.
  • No need to compromise protection for strong performance or vice versa. Multi-layered, interlocking security protects the network while throughput remains high.
  • Gigabit Ethernet ports support high-speed LAN backbone infrastructures & gigabit WAN connections.
  • Upgrade to a higher model within the line for more performance and capacity with a simple license key.

Compare Model Specs:

 
WatchGuard® Model   XTM 515 XTM 525 XTM 535 XTM 545
Ideal For Main offices/headquarters that want security with fast throughput and room to grow Main offices/headquarters looking for enterprise-grade performance and security in an all-in-one solution Main offices/headquarters looking for security in an all-in-one solution, engineered with room for growth Main offices/headquarters that require enterprise-grade performance and powerful security with flexible, centralized management
Hardware
Model Upgradeable to XTM 525 N/A to XTM 545 N/A
Interfaces 6: 10/100/1000 and 1:10/100 6: 10/100/1000 and 1:10/100 6: 10/100/1000 and 1:10/100 6: 10/100/1000 and 1:10/100
Security
Application Proxies HTTP, HTTPS, SMTP, FTP, DNS, TCP, POP3, SIP, H.323 HTTP, HTTPS, SMTP, FTP, DNS, TCP, POP3, SIP, H.323 HTTP, HTTPS, SMTP, FTP, DNS, TCP, POP3, SIP, H.323 HTTP, HTTPS, SMTP, FTP, DNS, TCP, POP3, SIP, H.323
Intrusion Prevention (DOS, DDOS, PAD, port scanning, spoofing attacks, address space probes, and more) X X X X
Wireless Models Only N/A N/A N/A N/A
User Authentication with transparent Windows authentication X X X X
Performance
Firewall Throughput 2 Gbps 2.5 Gbps 3 Gbps 3.5 Gbps
VPN Throughput 250 Mbps 350 Mbps 550 Mbps 750 Mbps
AV Throughput 1.5 Gbps 1.7 Gbps 1.8 Gbps 2 Gbps
IPS Throughput 1.6 Gbps 2 Gbps 2.4 Gbps 2.8 Gbps
UTM Throughput 850 Mbps 1 Gbps 1.4 Gbps 1.7 Gbps
Concurrent Sessions*
(bi-directional)
40,000 50,000 100,000 350,000
VPN Tunnels
Branch Office VPN Tunnels (Max.) 65 75 200 600
Mobile VPN with SSL/L2TP (Incl/Max) 65 75 300 600
Mobile VPN with IPSec Client Licenses (Bundled) 75 100 300 1,000
Mobile VPN with IPSec Tunnels (Max.) 75 100 300 1,000
VPN Authentication X X X X
Management
Optional Centralized (Multibox) Management. Optional licenses enable Drag and Drop VPN and one-touch appliance updates. 4-device WatchGuard System Manager license included with purchase. 4-device WatchGuard System Manager license included with purchase. 4-device WatchGuard System Manager license included with purchase. 4-device WatchGuard System Manager license included with purchase.
Networking Features
Dynamic NAT X X X X
Static NAT X X X X
One to One NAT X X X X
VLAN 100 200 300 400
Policy-Based Routing X X X X
WAN Failover X X X X
Multi-WAN Load Balancing X X X X
Server Load Balancing X X X X
Traffic Management/QoS X X X X
High Availability Active/Active or Active/Passive X X X X
Dynamic Routing X X X X
VoIP (SIP and H.323) Support X X X X
Additional Security Subscriptions
Application Control Optional Optional Optional Optional
Data Loss Prevention Optional Optional Optional Optional
Reputation Enabled Defense Optional Optional Optional Optional
spamBlocker with Virus Outbreak Detection Optional Optional Optional Optional
Gateway AntiVirus
Intrusion Prevention Service (IPS)
Optional Optional Optional Optional
WebBlocker with HTTPS URL filtering Optional Optional Optional Optional
LiveSecurity® Service LiveSecurity Plus with 24/7 support included with Security Bundle LiveSecurity Plus with 24/7 support included with Security Bundle LiveSecurity Plus with 24/7 support included with Security Bundle LiveSecurity Plus with 24/7 support included with Security Bundle

*Concurrent sessions here represent the number of bi-directional connections.

Throughput rates are determined using multiple flows through multiple ports and will vary depending on environment and configuration.

Detailed Specifications:

 
  XTM 515 XTM 525 XTM 535 XTM 545
Throughput and Connections
Firewall throughput* 2 Gbps 2.5 Gbps 3 Gbps 3.5 Gbps
VPN throughput* 250 Mbps 350 Mbps 550 Mbps 750 Mbps
AV throughput* 1.5 Gbps 1.7 Gbps 1.8 Gbps 2 Gbps
IPS throughput* 1.6 Gbps 2 Gbps 2.4 Gbps 2.8 Gbps
UTM throughput* 850 Mbps 1 Gbps 1.4 Gbps 1.7 Gbps
Interfaces 10/100 1 copper 1 copper 1 copper 1 copper
Interfaces 10/100/1000 6 copper 6 copper 6 copper 6 copper
I/O interfaces 1 Serial, 
2 USB
1 Serial, 
2 USB
1 Serial, 
2 USB
1 Serial, 
2 USB
Nodes supported (LAN IPs) Unrestricted Unrestricted Unrestricted Unrestricted
Concurrent sessions 
(bi-directional)
40,000 50,000 100,000 350,000
New connections per second 24,000 24,000 28,000 28,000
VLANs (bridging, tagging, routed mode) 100 200 300 400
Authenticated users 500 500 1,000 2,500
PN tunnels
Branch Office VPN 65 75 200 600
Mobile VPN IPSec (incl/max) 75/75 100/100 300/300 1,000/1,000
Mobile VPN SSL/L2TP 65 75 300 600
PPTP 50 50 50 50
Model Upgradeable
  to XTM 525 N/A to XTM 545 N/A
Security
Firewall Stateful packet inspection, deep packet inspection, proxy firewall
Application Proxies HTTP, HTTPS, SMTP, FTP, DNS, TCP, POP3
Threat Protection Blocks spyware, DoS attacks, fragmented packets, malformed packets, blended threats and more
VoIP H.323. SIP, call setup & session security
Security subscriptions Application Control, Reputation Enabled Defense, WebBlocker, spamBlocker, Gateway AntiVirus, Intrusion Prevention Service (available in the Security Bundle)
VPN & Authentication
Encryption DES, 3DES, AES 128-, 192-, 256-bit
IPSec SHA-1, MD5, IKE pre-shared Key, 3rd party cert import
SSL Thin client
L2TP Works with native OS clients
PPTP Server & Passthrough
VPN Failover Yes
Single Sign-On Transparent Active Directory Auth.
XAUTH Radius, LDAP, Windows Active Directory
Other User Authentication VASCO, RSA SecurID, web-based, local
Networking
Operating System Fireware XTM Pro
IP Address Assignment Static, DynDNS, PPPoE, DHCP (server, client, relay)
Routing Static, dynamic (BGP4, OSPF, RIP v1/v2), policy-based
Link Aggregation 802.3ad dynamic, static, active/backup
QoS 8 priority queues, diffserv, modified strict queuing
High Availability Active/passive, active/active with load balancing
NAT Static, dynamic, 1:1, IPSec NAT traversal, policy-based, virtual IP for server load balancing
Other Networking Port independence, multi-WAN failover, multi-WAN load balancing, transparent/drop-in mode
Management
Management Platform

WatchGuard System Manager (WSM) v.11 or higher

4-device WatchGuard System Manager license included with purchase.

Alarms and Notifications SNMP v2/v3, Email, Management System Alert
Server Support Logging, Reporting, Quarantine, WebBlocker, Management
Web UI Supports Windows, Mac, Linux, and Solaris OS
CLI Includes direct connect and scripting
Hardware
Product Dimensions 11.25" x 17" x 1.75"
(28.6 x 43.2 x 4.4 cm)
Shipping Dimensions 21" x 18" x 5.25"
(53.3 x 45.7 x 13.3 cm)
Shipping Weight 16.1 lbs (7.3 Kg)
AC Power 100-240 VAC autosensing
Power Consumption Max 85 Watt (290 BTU/hr)
Rack Mountable Yes (1U rack mount)
Certifications
Security ICSA Firewall, ICSA VPN, CC EAL4+ 
Review pending: FIPS 140-2
Network IPv6 Ready Gold (routing)
Safety NRTL/C, CB
Hazardous Substance Compliance WEEE, RoHS, REACH
*Throughput rates are determined using multiple flows through multiple ports and will vary depending on environment and configuration.

Options & Upgrades:

 

Security Subscriptions

 

Data Loss Prevention (DLP)Data Loss Prevention (DLP)
XTM DLP prevents data breaches by scanning text and common file types to detect sensitive information. A predefined library of over 200 rules for 18 countries makes creating and updating corporate data policies as easy as point and click.

 

Application ControlApplication Control
Application Control enables IT administrators to monitor and control access to web and business applications to enforce policy, and protect productivity and network bandwidth.

 

Reputation Enabled DefenseReputation Enabled Defense
Reputation Enabled Defense delivers a powerful, cloud-based URL reputation service that protects web users from malicious web pages, while dramatically improving web processing overhead.
WebBlockerWebBlocker
WebBlocker content and URL filtering subscription helps eliminate legal liabilities resulting from inappropriate web surfing, while increasing employee productivity and protection from web-based attacks.
spamBlockerspamBlocker
spamBlocker is the best in the industry at distinguishing legitimate communication from spam outbreaks in real time, blocking nearly 100% of unwanted emails and the viral payloads they carry.
Gateway AntiVirusGateway AntiVirus
Gateway AntiVirusis a fully integrated, signature-based security subscription that identifies and blocks known spyware, viruses, trojans, and blended threats in real time.

Intrusion Prevention ServiceIntrusion Prevention Service
Intrusion Prevention Service works hand-in-hand with your WatchGuard firewall's application layer content inspection to provide real-time protection from threats, including SQL injections, cross-site scripting, and buffer overflows.

LiveSecurity ServiceLiveSecurity Service
LiveSecurity Service, a high-value support and maintenance program that you activate online when you register your product. LiveSecurity delivers technical support, hardware warranty with advance hardware replacement, the latest software updates, and threat alerts.

  ĐĂNG KÝ THAM GIA TRẢI NGHIỆM SẢN PHẨM - DỊCH VỤ CỦA CHÚNG TÔI

Nhà phân phối chính thức thiết bị Tường Lửa WatchGuard tại Việt Nam