The SonicWall Network Security services platform™ (NSsp) series has next-generation firewalls with high port density and multi-gig speed interfaces, that can process several million connections for zero-day and advanced threats. Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance. It is designed to be highly reliable and deliver uninterrupted services to organizations.

Enterprise-Class Firewalls

As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, Internet speeds, and encrypted connections, a firewall that can't support any one of these becomes a bottleneck. A firewall should be a source of strength and not a point of weakness.

The SonicWall NSsp firewall's multiple 100G/40G/25G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With more than 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security.

The NSsp's unified policy enables organizations to simply and intuitively create access and security policies in a single interface.

Simplified management and reporting

Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provides historical reports - from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.

Deployment | Next-Generation Firewall (NGFW)

• Managed through a single pane of glass
• NSsp integrates with the rest of the SonicWall ecosystem of solutions
• Gain full visibility into your network to see what applications, devices, and users are doing to enforce policies as well as eliminate threats and bandwidth bottlenecks
• Integrate with Capture ATP with RTDMI for cloud-based sandboxing or Capture Security appliance for on-premise malware detection

Deep Packet Inspection of SSL/ TLS (DPI-SSL) for hidden threats

• The NSsp provides inspection for over millions of simultaneous TLS/SSL and SSH encrypted connections regardless of port or protocol
• Inclusion and exclusion rules allow customization based on specific organizational compliance and/or legal requirements
• Support for TLS cipher suites up to TLS 1.3

Segmentation and Networking

• Operate across several segmented networks, clouds, or service definitions, with unique templates, device groups, and policies across multiple devices and tenants

• Threat Protection
• TLS Decryption
• TLS Inspection
• SSL Decryption
• SSL Inspection
• Anti-spyware
• Malware Protection
• Cloud Sandboxing
• Zero Day Event
• Network Protection
• Application Control
• URL Filtering
• DNS Security
• Botnet Filtering
• Advanced Threat Protection
• Deep Packet Inspection (DPI)
• Content Filtering
• IoT Security

• TLS
• SSL
• DES
• 3DES
• AES (128-bit)
• AES (192-bit)
• AES (256-bit)
• MD5
• SHA-1
• SHA-256
• SHA-384
• SHA-512
• TLS 1.3

• TCP/IP
• HTTP
• HTTPS
• L2TP
• PPTP

• 100GBase-X
• 40GBase-X
• 10GBase-X
• 10GBase-T
• 5GBase-T
• 2.5GBase-T
• 1000Base-T

• QSFP28
• SFP+

• 50 Hz
• 60 Hz

• Network
• Security
• Enterprise
• Education
• Government

• FCC Class A
• CE (EMC, LVD)
• C-Tick
• VCCI Class A
• MSIP/KCC Class A
• UL
• cUL
• TUV/ GS
• CB
• Mexico CoC by UL
• WEEE
• REACH
• ANATEL
• BSMI

• Waste Electrical and Electronic Equipment Directive (WEEE)
• Restriction of Hazardous Substances (RoHS)
• Registration, Evaluation, Authorization and Restriction of Chemicals (REACH)