MPSec-MSG4000-X4 Firewall Maipu 4x Expansion Slots

Hardware

Hardware Version

V3

CPU

4-Core

3.1GHz

Memory

16G

Flash

16G

HDD Storage

Extension Slot

1

Interface

Default 1000M Interfaces

N/A

Default 10G

Interfaces

N/A

Expansion

Slots

4

Console Port

1

USB Port

2

Default Bypass

Port(Pair)

N/A

Performance

L2&L3 Firewall

Throughput

42Gbps

Max.

Concurrent (Million)

6M

New Connection/Se

c

500K

Recommend

Users

3-5K

Max. IPSec

Tunnels

5000

Max. IPSec

Throughput

2.5Gbps

Max. IPS

Throughput

9Gbps

Max. AV

Throughput

12Gbps

Max. NAT

Policy

4K

Power Supply

Power Supply

Dual Fixed AC

Power Input

100-

240V/50-

60HZ

Power

Consumption

≤300W

Dimension

W*D*H(mm)

560*430*9

0mm

Environment

Working

Temperature

0-40℃

Work environment humidity

5％-90％,

no- condensing

Storage

environment temperature

-25-70℃

Storage environment humidity

5％-90％,

no- condensing

Basic Networking Capabilities

Deployment Mode

Support routing, transparent, switching, hybrid, bypass multi-mode deployment

Routing Features

Default routing, static routing, policy routing, support RIP, RIPng, OSPF, BGP and other dynamic routing

Ip Protocol

Support IPv4, IPv6 dual-stack

NAT

Support more than four conversion methods for source/destination address and port

Load Balancing

Support multi-link load balancing, support DNS traffic load balancing, support server IP-based load balancing; support IPSec VPN multi-link backup and load

Network Service

Support DHCP server, DNS transparent proxy, ARP proxy

VPN

IPSec VPN, L2TP VPN, PPTP VPN, GRE VPN

Virtual System

Support full isolation of virtual system routing, switching, monitoring, auditing, protection, etc.

High Reliability

Support dual-system hot backup function, support "master-standby" and "master-master" mode under routing and transparent mode, support interface linkage, link detection.

Refined Access Control

Access Control

Supports access control based on security domains, VLANs, geographical regions, applications, etc., and one security policy can be configured with advanced access control functions including more than six security policies, realizing fast researching and analysis for security policies

Application Identification

It can identify 6000+ Internet applications and 900+ mobile applications.

Behavior Management and Control

Precisely control the abnormal behavior of SMTP, POP3, IMAP, FTP, TELNET, HTTP and other protocols

User Authentication

Support web authentication, third-party authentication linked with AD active directory, LDAP, RADIUS

File Filtering

Filter more than 30 commonly used document types in the three categories of document, compression and archiving

Mail Filtering

Supports filtering of e-mail senders and recipients, and supports anti-spam function

URL Filtering

Preset rich URL resource library, support offline/online update, support custom URL filtering policy

Content Filtering

Realize bidirectional content transmission filtering of five application protocols including HTTP, FTP, POP3, SMTP, and IMAP, and support predefined and customized sensitive information databases

Bandwidth Management

Support bandwidth management based on time, IP, user, service, application and other elements, support maximum bandwidth limit and minimum bandwidth guarantee

Integrated Threat Protection

Attack Protection

Supported attack protection types include: SYN Flood, ICMP Flood, UDP Flood, IP Flood, DNS Flood, HTTP Flood, SYN Cookie, IP scanning attack, port scanning, IP spoofing, DHCP monitoring auxiliary inspection, Ping of Death, Teardrop, IP option , TCP exception, Smurf, Fraggle, Land, Winnuke, DNS exception, IP fragmentation, etc.

Virus Protection

Support virus cloud detection and killing technology for virus detection and killing of SMTP, POP3, IMAP, HTTP, FTP traffic

Intrusion Prevention

It can identify and block 5000+ vulnerabilities and spyware, and support generating dynamic policy

Visual Intelligent Management

Device Management

Support device management through Http, Https, SSH, Console, CLI

Management Authority

Support separation of three powers, support custom administrators and authorities

Network Analysis

location, perform statistics and ranking through 5 dimensions of session, threat, content, URL, and byte count, displaying the current policy usage and network activity status, and locating abnormal behavior

Threat Analysis

The firewall presents advanced threat behaviors in the network based on hosts accessing malicious URLs and malicious domain names, combined with threat activity policies. In this way, it can be judged that there are compromised hosts in the intranet, or that the current security policy is not perfect

Blocking Analysis

Supports displaying blocking logs of users, applications, threats, content, URLs, etc. Administrators can judge malicious behaviors and potentially risky terminals in the network, and also judge whether normal behaviors have been blocked by mistake

Log Output

Support querying URL filtering logs, mail filtering logs, threat logs, domain name logs, behavior logs, and traffic logs, and support sending logs outside

Statistics Analysis

Supports the sorting of applications, IPs, users, etc. within a specified time range.

Support historical statistics of new connections and concurrent connections. Support ranking statistics based on traffic in the network.

Supports threat maps to help users understand the geographic location-based threat distribution in large networks.

Monitoring Analysis

Supports monitoring and analysis of system resources, users, assets, sessions, routes, etc.

MPSec-X4-4GET4GEF

4-Port 1000M Base-T + 4-Port 1000M SFP interfaces Extension Module

MPSec-X4-8GEF

8-Port 1000M SFP interfaces Extension Module

MPSec-X4-8GET

8-Port 1000M Base-T interfaces Extension Module

MPSec-X4-2XGEF

2-Port 10G SFP+ interfaces Extension Module

MPSec-X4-4XGEF

4-Port 10G SFP+ interfaces Extension Module

MPSec-X4-2QXGE

2-Port 40G QSFP+ interfaces Extension Module