|
Features |
4215 |
4225 |
4245 |
|
|
Throughput: FW + AVC (1024B) |
65 Gbps |
80 Gbps |
140 Gbps |
|
|
Throughput: FW + AVC + IPS (1024B) |
65 Gbps |
80 Gbps |
140 Gbps |
|
|
Maximum concurrent sessions, with AVC |
15 Million |
30 Million |
60 Million |
|
|
New Connections Per Second with, AVC |
350 K |
600 K |
800 K |
|
|
TLS (Hardware Decryption)1 |
20 Gbps |
30 Gbps |
45 Gbps |
|
|
Throughput: NGIPS (1024B) |
65 Gbps |
80 Gbps |
140 Gbps |
|
|
IPSec VPN Throughput |
45 Gbps |
80 Gbps |
140 Gbps |
|
|
Maximum VPN Peers |
20,000 |
25,000 |
30,000 |
|
|
Centralized Management |
Centralized configuration, logging, monitoring, and reporting are performed by the Firewall Management Center or alternatively in the cloud with Cisco Defense Orchestrator |
|
||
|
Application Visibility and |
Standard, Supporting more than 4000 applications, as well as geolocation, users, and websites |
|
||
|
AVC: OpenAppID support for custom, open source, application detectors |
Standard |
|
||
|
Cisco Security Intelligence |
Standard with IP, URL, and DNS Threat Intelligence |
|
||
|
Cisco Secure IPS |
Available; can passively detect endpoints and infrastructure for threat correlation and Indicators of Compromise (IOC) intelligence |
|
||
|
Cisco Malware Defense |
Available; enables detection, blocking, tracking, analysis, and containment of targeted and persistent malware, addressing the attack continuum both during and after attacks. Integrated threat correlation with CISCO Secure Endpoint is also optionally available |
|
||
|
Cisco Secure Malware Analytics |
Available |
|
||
|
URL Filtering: Number of Categories |
More than 80 |
|
||
|
URL Filtering: Number of URLs categorized |
More than 280 million |
|
||
|
Automated Threat Feed and IPS signature updates |
Yes: class-leading Collective Security Intelligence (CSI) from the Cisco Talos Group (https://www.cisco.com/c/en/us/products/security/talos.html) |
|
||
|
Third-party and open-source ecosystem |
Open API for integrations with third-party products; Snort® and OpenAppID community resources for new and specific threats |
|
||
|
High Availability and Clustering |
Active/active, Active/standby. Cisco Secure Firewall 4200 Series allows clustering of up to 8 chassis |
|
||
|
Cisco Trust Anchor Technologies |
Secure Firewall 4200 Series platforms include Trust Anchor Technologies for supply chain and software image assurance. Please see the section below for additional details |
|
||
Cisco Secure Firewall 4200
Roll over image to zoom in
Cisco Secure Firewall Seri 4200 adalah firewall canggih yang dirancang untuk memenuhi persyaratan keamanan perusahaan besar, pusat data, dan penyedia layanan. Tersedia dalam tiga model kinerja yang berbeda, menawarkan berbagai pilihan sekaligus menyediakan pertahanan ancaman yang unggul dalam faktor bentuk 1 RU yang ringkas. Fitur dan manfaat utama dari alat ini meliputi:
- Arsitektur akselerasi kriptografi mempertahankan kinerja dengan dekripsi SSL dan VPN
- Hemat ruang dan energi dengan faktor bentuk 1 RU
- Persiapkan investasi Anda untuk masa depan dengan kluster node 8x
- Fleksibilitas 2x ruang modul antarmuka untuk dukungan antarmuka tambahan
- Kustomisasi dan persiapkan investasi untuk masa depan hingga antarmuka 200G
- 2x SSD untuk penyimpanan kejadian dan analisis malware
- Waktu aktif/ketahanan dengan antarmuka manajemen ganda
- Modul jaringan fail-to-wire, yang selanjutnya meningkatkan keandalan dan toleransi kesalahannya
Platform ini dapat digunakan dalam mode firewall dan IPS khusus, yang menyediakan opsi penggunaan yang serbaguna. Untuk set sebaris dan antarmuka pasif, Seri 4200 mendukung Q-in-Q (VLAN bertumpuk) dengan kemampuan menangani hingga dua header 802.1Q dalam satu paket.
