| Firewall | Stateful packet inspection
Reassembly-Free Deep Packet Inspection
DDoS attack protection (UDP/ICMP/SYN flood)
IPv4/IPv6
Biometric authentication for remote access
DNS proxy
REST APIs |
| TLS/SSL/SSH decryption and inspection | Deep packet inspection for TLS/SSL/SSH
Inclusion/exclusion of objects, groups or hostnames
TLS/SSL control
Granular DPI SSL controls per zone or rule |
| Capture advanced threat protection | Real-Time Deep Memory Inspection
Cloud-based multi-engine analysis
Virtualized sandboxing
Hypervisor level analysis
Full system emulation
Broad file type examination
Automated and manual submission
Real-time threat intelligence updates
Block until verdict
Capture Client |
| Intrusion prevention | Signature-based scanning
Automatic signature updates
Bi-directional inspection
Granular IPS rule capability
GeoIP enforcement
Botnet filtering with dynamic list
Regular expression matching |
| Anti-malware | Stream-based malware scanning
Gateway anti-virus
Gateway anti-spyware
Bi-directional inspection
No file size limitation
Cloud malware database |
| Application identification | Application control
Application bandwidth management
Custom application signature creation
Data leakage prevention
Application reporting over NetFlow/IPFIX
Comprehensive application signature database |
| Traffic visualization and analytics | User activity
Application/bandwidth/threat usage |
| Web content filtering | URL filtering
Proxy avoidance
Keyword blocking
HTTP header insertion
Bandwidth manage CFS rating categories
Unified policy model with app control
Content Filtering Client |
| VPN | Auto-provision VPN
IPSec VPN for site-to-site connectivity
SSL VPN and IPSec client remote access
Redundant VPN gateway
Mobile Connect for iOS, Mac OS X, Windows, Chrome, Android and Kindle Fire
Route-based VPN (OSPF, RIP, BGP) |
| Networking | PortShield
Jumbo frames
Enhanced logging
VLAN trunking
RSTP (Rapid Spanning Tree Protocol)
Port mirroring
Port security
Layer-2 QoS
Dynamic routing (RIP/OSPF/BGP)
Policy-based routing
NAT
DNS/DNS proxy
DHCP server |
| Wireless | WIDS/WIPS
RF spectrum analysis
Rogue AP prevention
Fast roaming (802.11k/r/v)
Floor plan view/Topology view
Band steering
Beamforming
AirTime fairness
MiFi extender
Guest cyclic quota
LHM guest portal |
| VoIP | Granular QoS control
Bandwidth management
SIP and H.323 transformations per access rule
H.323 gatekeeper and SIP proxy support |
| Management and monitoring | GMS, Web, UI, CLI, REST APIs,SNMPv2/v3
Logging
Netflow/IPFix exporting
Cloud-based configuration backup
BlueCoat Security Analytics Platform
SonicWall access point management |
| Local storage | Logs
Reports
Firmware backups |
