Call us
+44 (0)20 8830 6820

SonicWall NSsp 15700 Secure Upgrade Plus - Essential Edition

Only for Upgrades: NSsp 15700 hardware with EPSS (Capture ATP with RTDMI Technology, Intrusion Prevention, Application Control, Gateway Anti-Virus, Anti-Spam, Network Visibility, Content Filtering, 24X7 Support)
SKU: 02-SSC-5827
£222,969.23
£164,818.85
(not including discount)

Designed for large enterprise, higher education, government agencies and MSSPs, it eliminates attacks in real time without slowing performance.

The SonicWall Network Security services platform™ (NSsp) 15700 is a next-generation firewall with high port density and multi-gig speed interfaces, that can process several million connections for zero-day (with Capture ATP) and advanced threats.

Highlights
  1. High port density
  2. 100 GbE ports
  3. Multi-instance firewall
  4. Integrates with on-prem and cloud-based sandboxing
  5. Single-pane-of-glass-management through cloud or firewall
  6. Redundant power
  7. SonicOS 7.0
  8. TLS 1.3
  9. Supports millions of simultaneous TLS connections
  10. Low TCO

SonicWall NSsp 15700 Launch Video:

Looking for the best price for an
NSsp 15700 Secure Upgrade Plus - Essential Edition?
That's our job!

We work directly with SonicWall HQ to make sure you always get the best possible quote.

And don't forget the additional
10% education discount (where applicable).

Email us

contact@sonicwallsecurity.co.uk

Call us

+44 (0)20 8830 6820

As businesses evolve along with an increase in managed and unmanaged devices, networks, cloud workloads, SaaS applications, users, internet speeds, and encrypted connections, a firewall that can’t support any one of these becomes a bottleneck in the IT landscape. A firewall should be a source of strength and not a point of weakness.

The SonicWall NSsp 15700’s multiple 100G/40G/10G interfaces allow you to process several million simultaneous encrypted and unencrypted connections with unparallel threat prevention technology. With 70% of all sessions being encrypted, having a firewall that can process and examine this traffic without impacting the end user experience is critical to productivity and information security. The NSsp 15700’s unified policy interface enables organizations to simply and intuitively create access and security policies in a single unified interface.

Ongoing management, monitoring and reporting of network activities are handled through the SonicWall Network Security Manager. This provides an intuitive dashboard for managing firewall operations as well as provide historical reports – from a single source. Together, the simplified deployment and setup along with the ease of management enable organizations to lower their total cost of ownership and realize a high return on investment.

Essential Protection Service Suite
Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support in a single integrated package.

The SonicOS architecture is at the core of SonicWall physical and virtual firewalls including the TZ, NSa, NSv and NSsp Series. SonicOS leverages our patented, single-pass, lowlatency, Reassembly-Free Deep Packet Inspection® (RFDPI) and patent-pending Real-Time Deep Memory Inspection™ (RTDMI) technologies to deliver industry-validated high security effectiveness, SD-WAN, real-time visualization, high-speed virtual private networking (VPN) and other robust security features.

Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that’s been validated by independent third party testing for its extremely high security effectiveness. Unknown threats are sent to SonicWall’s cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our RTDMI™ technology. The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware’s weaponry is exposed for less than 100 nanoseconds.

At a Glance
  1. Complete network security solution
    All service licences included.
  2. Capture ATP
    Multi-engine network sandbox to prevent zero-day threats. See Capture Advanced Threat Protection Service (CATPS).
  3. Gateway anti-virus and anti-spyware protection
    Including DPI-SSL and RFDPI.
  4. Cutting-edge IPS technology
    Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
  5. Application intelligence and control
    Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
  6. Content filtering
    Enforce internet use policies and control internal access to inappropriate, unproductive and potentially illegal web content with comprehensive content filtering. See Content Filtering Service (CFS).
  7. Network Topology View
    Display hosts, access-points in the network based on device name, mac address and IP Address.
  8. 24x7 support with firmware updates and hardware replacement
    Including firmware updates and hardware replacement protects your business and your SonicWall investment.
General
Operating systemSonicOS 7.0
Interfaces6 x 100-GbE QSFP28, 4 x 40-GbE QSFP+, 16 x 10 GbE SFP+
Built in storage2 x 480 GB SSD
ManagementCLI, SSH, Web UI, REST APIs
Single Sign-On (SSO) Users100 000
LoggingAnalyzer, Local Log, Syslog, IPFIX, NetFlow
Firewall/VPN Performance
Firewall inspection throughput105 Gbps
Threat Prevention throughput82 Gbps
Application inspection throughput86 Gbps
IPS throughput76.5 Gbps
IMIX throughput28.5 Gbps
TLS/SSL decryption and inspection throughput (DPI SSL)21 Gbps
VPN throughput32 Gbps
Connections per second800000
Maximum connections (SPI)80 000 000
Maximum connections (DPI)50 000 000
Default/Maximum connections (DPI SSL)3 000 000
VPN
Site-to-site VPN tunnels25 000
IPSec VPN clients (maximum)2000 (10000)
SSL VPN licenses (maximum)2 (3000)
Encryption/authenticationDES, 3DES, AES (128, 192, 256-bit)/MD5, SHA-1, Suite B Cryptography
Key exchangeDiffie Hellman Groups 1, 2, 5, 14v
Route-based VPNRIP, OSPF, BGP
Certificate supportVerisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-toSonicWall VPN, SCEP
VPN featuresDead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN
Global VPN client platforms supportedMicrosoft® Windows Vista 32/64-bit, Windows 7 32/64-bit, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Windows 10
NetExtenderMicrosoft Windows Vista 32/64-bit, Windows 7, Windows 8.0 32/64-bit, Windows 8.1 32/64-bit, Mac OS X 10.4+, Linux FC3+/Ubuntu 7+/OpenSUSE
Mobile ConnectApple® iOS, Mac OS X, Google® Android™, Kindle Fire, Chrome OS, Microsoft® Windows 10
Networking
Max Tenants per Hardware12
IP address AssignmentStatic (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP Relay
NAT modes1:1, many:1, 1:many, flexible NAT (overlapping IP), PAT, transparent mode
VLAN interfaces512
Wire ModeYes
Routing protocolsBGP, OSPF, RIPv1/v2, static routes, policy-based routing
QoSBandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1p
AuthenticationLDAP, XAUTH/RADIUS, SSO, Novell, internal user database, Terminal Services, Citrix
VoIPFull H.323-v1-5, SIP
StandardsTCP/IP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3
CertificationsICSA Firewall, ICSA Anti-Virus, FIPS 140-2, Common Criteria NDPP (Firewall and IPS), UC APL, USGv6, CsFC
High availabilityActive/Passive with State Sync, Active/Active DPI with State Sync, Active/Active Clustering
Hardware
Power supplyDual, Redundant, 1,200W
Fans10
Input power100-240 VAC, 50-60 Hz
Maximum power consumption (W)1065
Form factor2U Rack Mountable
Dimensions68.6 x 43.8 x 8.8 (cm)
Weight26kg
WEEE weight30.1kg
Shipping weight37.3kg
Shipping Dimensions28 x 63 x 86 (cm)
Major RegulatoryFCC Class A, ICES Class A, CE (EMC Class A, LVD, RoHS), C-Tick, VCCI Class A, MSIP/KCC Class A, UL, cUL, TUV/GS, CB, Mexico UL DGN notification, WEEE, REACH, ANATEL, BSMI
Environment (Operating/Storage)32°-105° F (0°-40° C)/-40° to 158° F (-40° to 70° C)
Humidity10-95% non-condensing
Capture Advanced Threat Protection Service (CATPS)
For effective zero-day threat protection, organizations need solutions that include malware-analysis technologies and can detect evasive advanced threats and malware — today and tomorrow.

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict. This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.

Key Benefits
  • High security effectiveness against unknown threats
  • Near real-time signature deployment protects from follow on attacks
  • Reduced total cost of ownership
  • Block files at the gateway until verdict
  • Multiple engines process files in parallel for rapid verdicts
  • SonicWall's RTDMI engine blocks unknown mass-market malware utilizing real-time memory-based inspection techniques

The solution scans traffic and extracts suspicious code for analysis, but unlike other gateway solutions, analyzes a broad range of file sizes and types (including executable programs, DLL, PDFs, MS Office documents, archives, JAR and APK). Global threat intelligence infrastructure rapidly deploys remediation signatures for newly identified threats to all SonicWall network security appliances, thus preventing further infiltration. Customers benefit from high-security effectiveness, fast response times and reduced total cost of ownership.

The SonicWall Capture reporting page displays daily at a glance results. Colored bars on the report indicate days where malware was discovered. Administrators have the ability to click on individual daily results and apply filters to quickly see malicious files with results.

Features
Multi-engine advanced threat analysis

SonicWall Capture Service extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic, and detects and blocks intrusions and known malware. Suspicious files are sent to the SonicWall Capture cloud service for analysis. The multi-engine sandbox platform, which includes virtualized sandboxing, full system emulation and hypervisorlevel analysis technology, executes suspicious code and analyzes behavior, provides comprehensive visibility to malicious activity while resisting evasion tactics and maximizing zero-day threat detection.

Broad file type analysis

The service supports analysis of a broad range of file sizes and types, including executable programs (PE), DLL, PDFs, MS Office documents, archives, JAR and APK, plus multiple operating systems including Windows and Android. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis by file type, file size, sender, recipient or protocol. In addition, administrators can manually submit files to the cloud service for analysis.

Blocks until verdict

To prevent potentially malicious files from entering the network, files sent to the cloud service for analysis can be held at the gateway until a verdict is determined.

Rapid deployment of remediation signatures

When a file is identified as malicious, a signature is immediately available to firewalls with SonicWall Capture subscriptions to prevent followon attacks. In addition, the malware is submitted to the SonicWall Capture Labs threat research team for further analysis and inclusion with threat information into the Gateway Anti-Virus and IPS signature databases. Additionally, it is sent to URL, IP and domain reputation databases within 48 hours.

Reporting and alerts

The SonicWall Capture Service provides an at-a-glance threat analysis dashboard and reports, which detail the analysis results for files sent to the service. including source, destination and a summary plus details of malware action once detonated. Firewall log alerts provide notification of suspicious files sent to the SonicWall Capture Service, and file analysis verdict.

*
*
*
back to top