+7 (812) 309 34 73. Договоримся!
Huawei HiSecEngine USG6600E series next-generation firewalls are designed for medium- and large-sized enterprises, institutions, and next-generation data centers. USG6600E firewalls provide NGFW capabilities and collaborate with other security devices to proactively defend against network threats, enhance border detection capabilities, and resolve performance deterioration problems.
Quick Spec
Table 1 shows the Quick Specs.
|
Product Code |
USG6635E-AC |
|
Description |
USG6635E AC Host (2*40GE (QSFP+) + 12*10GE (SFP+) + 16*GE, 2 AC power supplies) |
|
Dimensions (H x W x D) mm |
43.6 x 442 x 420 |
|
Form Factor/Height |
1U |
|
Fixed Interface |
2 x 40GE (QSFP+) + 12 x 10GE (SFP+) + 16 x GE* |
|
USB Port |
1 x USB 2.0 |
|
External Storage |
Optional, SSD (1 x 2.5 inch) supported, 240 GB/HDD 1TB |
|
Power Supply |
100 V to 240 V |
|
Typical power consumption of the machine |
136.1 W |
|
IPsec VPN Throughput1 (AES-256 + SHA256, 1420-byte) |
20 Gbit/s |
|
SSL Inspection Throughput3 |
6 Gbit/s |
Product Details
Huawei USG6600E series NGFW provides these features:
• Comprehensive and integrated protection
* Integrates the traditional firewall, VPN, intrusion prevention, antivirus, data leak prevention, bandwidth management, URL filtering, and online behavior management functions all in one device.
* Interworks with the local or cloud sandbox to effectively detect unknown threats and prevent zero-day attacks.
* Implements refined bandwidth management based on applications and websites, preferentially forwards key services, and ensures bandwidth for key services.
• High performance
* Uses the Huawei-proprietary network processing chip, improving forwarding performance
significantly.
* Enables chip-level pattern matching and accelerates encryption/decryption, improving the
performance for processing IPS, antivirus, and IPSec services.
• High port density
* The device has multiple types of interfaces, such as 40G, 10G, and 1G interfaces. Services can be flexibly expanded without extra interface cards.
Compare to Similar Items
Table 2 shows the comparison.
|
Product Code |
USG6615E-AC |
USG6625E-AC |
USG6635E-AC |
USG6655E-AC |
|
Dimensions (H x W x D) mm |
43.6 x 442 x 420 |
43.6 x 442 x 420 |
43.6 x 442 x 420 |
43.6 x 442 x 420 |
|
Form Factor/Height |
1U |
1U |
1U |
1U |
|
Fixed Interface |
6 x 10GE (SFP+) + 6 x GE (SFP) + 16 x GE |
6 x 10GE (SFP+) + 6 x GE (SFP) + 16 x GE |
2 x 40GE (QSFP+) + 12 x 10GE (SFP+) + 16 x GE |
2 x 40GE (QSFP+) + 12 x 10GE (SFP+) + 16 x GE |
|
Typical power consumption of the machine |
104.5 W |
104.5 W |
136.1 W |
136.1 W |
|
Firewall Throughput1 (1518/512/64-byte, UDP) |
12/12/12 Gbit/s |
20/20/20 Gbit/s |
30/30/30 Gbit/s |
40/40/38 Gbit/s |
|
FW + SA + IPS Throughput |
10 Gbit/s |
10 Gbit/s |
13 Gbit/s |
15 Gbit/s |
|
FW + SA + IPS + Antivirus Throughput2 |
10 Gbit/s |
10 Gbit/s |
12 Gbit/s |
14 Gbit/s |
|
Concurrent Sessions (HTTP1.1)1 |
6,000,000 |
8,000,000 |
12,000,000 |
12,000,000 |
|
New Sessions/Second (HTTP1.1)1 |
200,000 |
200,000 |
400,000 |
400,000 |
Get More Information
Do you have any question about the USG6635E-AC?
Contact us now via Live Chat or info@itg-spb.ru.
USG6635E-AC Specification |
|
|
Description |
USG6635E AC Host (2*40GE (QSFP+) + 12*10GE (SFP+) + 16*GE, 2 AC power supplies) |
|
Dimensions (H x W x D) mm |
43.6 x 442 x 420 |
|
Form Factor/Height |
1U |
|
Fixed Interface |
2 x 40GE (QSFP+) + 12 x 10GE (SFP+) + 16 x GE* |
|
*Some 10G ports and 40G ports are mutually exclusive. The ports can be configured as follows: 2 x 40GE (QSFP+) + 8 x 10GE (SFP+) + 16 x GE (RJ45) + 1 x USB or 1 x 40GE (QSFP+) + 12 x 10GE (SFP+) + 16 x GE (RJ45) + 1 x USB. |
|
|
USB Port |
1 x USB 2.0 |
|
Weight (Full Configuration) |
7.6 kg |
|
External Storage |
Optional, SSD (1 x 2.5 inch) supported, 240 GB/HDD 1TB |
|
Power Supply |
100 V to 240 V |
|
Typical power consumption of the machine |
136.1 W |
|
Power Supplies |
Dual AC power supplies |
|
Operating Environment (Temperature/Humidity) |
Temperature: 0°C to 45°C Humidity: 5% to 95%, non-condensing |
|
Non-operating Environment Temperature |
-40°C to +70°C Humidity: 5% to 95%, non-condensing |
|
Firewall Throughput1 (1518/512/64-byte, UDP) |
30/30/30 Gbit/s |
|
Firewall Latency (64-byte, UDP) |
15 µs |
|
FW + SA + IPS Throughput2 |
13 Gbit/s |
|
FW + SA + IPS + Antivirus Throughput2 |
12 Gbit/s |
|
Concurrent Sessions (HTTP1.1)1 |
12,000,000 |
|
New Sessions/Second (HTTP1.1)1 |
400,000 |
|
IPsec VPN Throughput1 (AES-256 + SHA256, 1420-byte) |
20 Gbit/s |
|
SSL Inspection Throughput3 |
6 Gbit/s |
|
Concurrent SSL VPN Users (Default/Maximum) |
100/5000 |
|
Security Policies (Maximum) |
40,000 |
|
Virtual Firewalls |
500 |
|
URL Filtering: Categories |
More than 130 |
|
URL Filtering: URLs |
A database of over 120 million URLs in the cloud |
|
Automated Threat Feedback and IPS Signature Updates |
Yes |
|
Third-Party and Open-Source Ecosystem
|
Open API for integration with third-party products, providing RESTful and NetConf interfaces Other third-part management software based on SNMP, SSH, and Syslog Co-operation with third-party tools, such as Tufin, AlgoSec, and FireMmon Collaboration with anti-APT solution |
|
Centralized Management |
Centralized configuration, logging, monitoring, and reporting is performed by Huawei eSight and eLog |
|
VLANs (Maximum) |
4094 |
|
VLANIF Interfaces (Maximum) |
1024 |
|
1. The performance is tested under ideal conditions based on RFC2544 and RFC3511. The actual result may vary with deployment environments. 2. The Antivirus, IPS, and SA performance is measured using 100 KB HTTP files. 3. SSL inspection throughput is measured with IPS enabled and HTTPS traffic using TLS v1.2 with AES128-GCM-SHA256. *SA: indicates service awareness. |
|
|
Local Storage |
Optional, SSD (1 x 2.5-inch) supported, 240 GB/HDD (1 x 2.5-inch supported, 1 TB) |
|
Integrated Protection |
Provides firewall, VPN, intrusion prevention, antivirus, data leak prevention, bandwidth management, anti-DDoS, URL filtering, and anti-spam functions. |
|
Application Identification and Control |
Identifies more than 6,000 applications with the access control granularity to application functions, for example, distinguishing between WeChat text and voice. Combines application identification with intrusion detection, antivirus, and data filtering, improving detection performance and accuracy. |
|
Bandwidth Management |
Manages per-user and per-IP bandwidth in addition to identifying service applications to ensure the network access experiences of key services and users. Control methods include limiting the maximum bandwidth, ensuring the minimum bandwidth, applying PBR, and changing application forwarding priorities. |
|
Intrusion Prevention and Web Protection |
Obtains the latest threat information in a timely manner for accurate detection and defense against vulnerability-based attacks. The device can defend against web-specific attacks, including SQL injection and XSS attacks. |
|
AAPT |
Collaborates with the local or cloud sandbox to detect and block malicious files. |
|
Cloud Management Mode |
Initiates authentication and registration to the cloud management platform to implement plug-and-play and simplify network creation and deployment. |
|
Cloud Application Security Awareness |
Controls enterprise cloud applications in a refined and differentiated manner to meet enterprises’ requirements for cloud application management. |
| Характеристики | |
| *Some 10G ports and 40G ports are mutually exclusive. The ports | USB Port |
| -40°C to +70°CHumidity: 5% to 95%, non-condensing | Firewall Throughput1 (1518/512/64-byte, UDP) |
| 1 x USB 2.0 | Weight (Full Configuration) |
| 100 V to 240 V | Typical power consumption of the machine |
| 100/5000 | Security Policies (Maximum) |
| 1024 | 1. The performance is tested under ideal conditions based on RFC2544 and RFC3511. The actual result may vary with deployment environments.2. The Antivirus, IPS, and SA performance is measured using 100 KB HTTP files.3. SSL inspection throughput is measured with IPS enabled and HTTPS traffic using TLS v1.2 with AES128-GCM-SHA256.*SA: indicates service awareness. |
| 12 Gbit/s | Concurrent Sessions (HTTP1.1)1 |
| 12,000,000 | New Sessions/Second (HTTP1.1)1 |
| 13 Gbit/s | FW + SA + IPS + Antivirus Throughput2 |
| 136.1 W | Power Supplies |
| 15 µs | FW + SA + IPS Throughput2 |
| 20 Gbit/s | SSL Inspection Throughput3 |
| 30/30/30 Gbit/s | Firewall Latency (64-byte, UDP) |
| 40,000 | Virtual Firewalls |
| 400,000 | IPsec VPN Throughput1 (AES-256 + SHA256, 1420-byte) |
| 4094 | VLANIF Interfaces (Maximum) |
| 500 | URL Filtering: Categories |
| 6 Gbit/s | Concurrent SSL VPN Users (Default/Maximum) |
| 7.6 kg | External Storage |
| A database of over 120 million URLs in the cloud | Automated Threat Feedback and IPSSignature Updates |
| AAPT | Collaborates with the local or cloud sandbox to detect and block malicious files.Supports the flow probe information collection function to collect traffic information and send the collected information to the Cybersecurity Intelligence System (CIS) for analysis, evaluation, and identification of threats and APT attacks.Encrypted traffic does not need to be decrypted. The firewall can work with the CIS to detect threats in encrypted traffic.The firewall can proactively respond to malicious scanning behavior and work with the CIS to analyze behavior, quickly detect and record malicious behavior, and protect enterprises against threats in real time. |
| Application Identification and Control | Identifies more than 6,000 applications with the access control granularity to application functions, for example, distinguishing between WeChat text and voice. Combines application identification with intrusion detection, antivirus, and data filtering, improving detection performance and accuracy. |
| Bandwidth Management | Manages per-user and per-IP bandwidth in addition to identifying service applications to ensure the network access experiences of key services and users. Control methods include limiting the maximum bandwidth, ensuring the minimum bandwidth, applying PBR, and changing application forwarding priorities. |
| Centralized configuration, logging, monitoring, and reporting is | VLANs (Maximum) |
| Cloud Application Security Awareness | Controls enterprise cloud applications in a refined and differentiated manner to meet enterprises’ requirements for cloud application management. |
| Cloud Management Mode | Initiates authentication and registration to the cloud management platform to implement plug-and-play and simplify network creation and deployment.Remote service configuration management, device monitoring, and fault management are used to implement cloud-based management of massive numbers of devices. |
| Description | USG6635E AC Host (2*40GE (QSFP+) + 12*10GE (SFP+) + 16*GE, 2 AC power supplies) |
| Dimensions (H x W x D) mm | 43.6 x 442 x 420 |
| Dual AC power supplies | Operating Environment (Temperature/Humidity) |
| Fixed interface | 2 x 40GE (QSFP+) + 12 x 10GE (SFP+) + 16 x GE* |
| Form Factor/Height | 1U |
| Integrated Protection | Provides firewall, VPN, intrusion prevention, antivirus, data leak prevention, bandwidth management, anti-DDoS, URL filtering, and anti-spam functions. |
| Intrusion Prevention and Web Protection | Obtains the latest threat information in a timely manner for accurate detection and defense against vulnerability-based attacks. The device can defend against web-specific attacks, including SQL injection and XSS attacks. |
| Local Storage | Optional, SSD (1 x 2.5-inch) supported, 240 GB/HDD (1 x 2.5-inch supported, 1 TB) |
| More than 130 | URL Filtering: URLs |
| Open API for integration with third-party products, providingRES | Centralized Management |
| Optional, SSD (1 x 2.5 inch) supported, 240 GB/HDD 1TB | Power Supply |
| Temperature: 0°C to 45°CHumidity: 5% to 95%, non-condensing | Non-operating Environment Temperature |
| Yes | Third-Party and Open-Source Ecosystem |
Теги: USG6635E-AC Huawei