Docstoc

Firewall

Document Sample
Firewall Powered By Docstoc
					                                                         Annexure VI
Firewall
Required Minimum Specifications                                                                                              Compliance (Y/ N)
Firewall
Physical attributes
Should be Rack mountable
Interfaces
4 x GE
1 * 10/100 port
Console Port 1 number
Performance and Availability
Firewall Throughput 400 Mbps
IPS Throughput 300 Mbps
VPN Throughput 100 Mbps
Concurrent connections: Min 20,000
Routing Protocols
Static Routes
RIPv1, RIPv2
OSPF
Protocols
TCP/IP
FTP, HTTP, HTTPS
SMTP
Other support
802.1Q, NAT, PAT, support VLAN,
Radius
Management
Console, Telnet, SSHv2, Browser based
configuration
SNMPv1, SNMPv2,SNMP V3
Inspection Engine
Support Stateful Inspection of Packets
NAT Functionality(Including Static and Dynamics)
Filtering
Provision to restrict packets based on the following
Source address
Destination address
Protocol type
User
Port number
URLs
Custom defined
Support for filtering major Internet Services
Filter Telnet
Filter FTP
Filter SMTP
Filter HTTP
Filter SNMP
Filter UDP
Filter ICMP
Support for filtering major Internet Services
Filter LDAP
Filter HTTPS
Filter RADIUS
Support for filtering major Internet Services
Filter Oracle
Filter DB2
Filter Oracle SQL *Net
Support for filtering multimedia
applications such as VoIP, H.323, etc.
Support for filtering TCP based applications
Firewall Logging
The firewall must send log information to an external log server.
Management
The firewall must support SNMP V1, V2 and V3.
Remote network access to the firewall should only be possible through the administration interface
Firewalls must be manageable from a centralized windows administration station
GUI and ClI through Encrypted Channel
Any changes or commands issued by an authenticated user should be logged to an external server.
The administration station must allow for a hierarchical architecture for rules set administration and viewing of firewall
configurations
The firewall must not support any unencrypted means of access to the firewall

High Availability
Support Active / Active or Active Passive
User Licenses
Unlimited

				
DOCUMENT INFO
Shared By:
Categories:
Tags:
Stats:
views:1
posted:4/4/2013
language:Latin
pages:1