Firewall
۳۲Gbps
۱.۰۵Tbps
Threat Protection Throughput
۵Gbps
۲۰Gbps
Firewall Policies
۱۰,۰۰۰
۲۰۰,۰۰۰
Virtual Domains (Default / Maximum)
۱۰/۱۰
۱۰/۵۰۰
High Availability Configurations
Active/Active, Active/Passive, Clustering
Active/Active, Active/Passive, Clustering
GE RJ45 Interface
۱۶
USB Port
۲
Console (RJ45)
۱
Firewall Throughput (1518/512/64 byte UDP packets)
۳۲/۳۲/۲۴ Gbps
۱.۰۵Tbps / 1.05Tbps / 680Gbps
Firewall Latency( 64byte UDP packets )
۳μs
۳μs
Concurrent Sessions ( TCP )
۴Million
۱۶۰Million
New Sessions/Sec(TCP)
۴۵۰,۰۰۰
۵۵۰,۰۰۰
IPsec VPN Throughput (512 byte)
۲۰Gbps
۴۰۰Gbps
SSL VPN Throughput
۴.۵Gbps
۹.۵Gbps
Concurrent SSL VPN Users (Recommended Maximum, Tunnel Mode)
۵,۰۰۰
۳۰,۰۰۰
IPS Throughput
۷.۸Gbps
۳۲Gbps
Application Control Throughput (HTTP 64K)
۱۲Gbps
۹۵Gbps
NGFW Throughput
۱Gbps
۲۸Gbps
Threat Protection Throughput (Ent. Mix)
۶Gbps
۲۰Gbps
company
Fortinet
Fortinet
Fortinet
cisco
Console port
۱
CPU
Intel Xeon E3-1220 v5 3.0 GHz, 8M cache, 4C/4T, Turbo (Qty 1)
Memory
۸ GB UDIMM, 2400 MT/s, ECC (Qty 2)
Hard Disk
۱TB 7.2K RPM SATA 6 Gbps 3.5in Hot-plug Hard Drive RAID1 (Qty 2)
Optical Drive
DVD ROM SATA Internal (Qty 1)
BMC
iDRAC8 Express (Qty 1)
Network Interface
۴x 10/100/1000 Ethernet, RJ45
RAID Card
PERC H330 Integrated RAID Controller (Qty 1)
RAID Configuration
RAID 1
Console Access
Front LCD Panel
Form Factor
۱U Rack mountable
Power Supply
Dual 350W Hot Plug Power Supplies
Input Power
۱۰۰-۲۴۰V AC Autoranging
Input Current
۳.0A
Cooling
۴fans
Function
Control and Application Server
Capacity
up to 2,000 ports in the network
Throughput: Firewall (FW) + Application Visibility and Control (AVC) (1024B)
۲۵Gbps
Throughput: FW + AVC + Intrusion Prevention System (IPS (1024B)
۲۱Gbps
Maximum concurrent sessions, with AVC
۳۰Million
Maximum new connections per second, with AVC
۱۳۰K
TLS (Hardware Decryption)
۷.۵Gbps
Throughput: NGIPS (1024B)
۳۰Gbps
IPSec VPN throughput (1024B TCP w/Fastpath)
۱۳.۵Gbps
AVC
Standard, supporting more than 4000 applications, as well as geolocations, users, and
websites
AVC: OpenAppID support for custom, open-source application detectors
Standard
Cisco Security Intelligence
Standard, with IP, URL, and DNS threat intelligence
Cisco Firepower NGIPS
Available; can passively detect endpoints and infrastructure for threat correlation and
Indicators of Compromise (IoC) intelligence
Cisco Advanced Malware Protection (AMP) for Networks
Available; enables detection, blocking, tracking, analysis, and containment of targeted and
persistent malware, addressing the attack continuum both during and after attacks. Integrated
threat correlation with Cisco AMP for Endpoints is also optionally available
Cisco AMP Threat Grid sandboxing
Available
URL filtering: number of categories
More than 80
URL filtering: number of URLs categorized
More than 280 Million
Automated threat feed and IPS signature updates
Yes: class-leading Collective Security Intelligence (CSI) from the Cisco Talos® group
(https://www.cisco.com/c/en/us/products/security/talos.html)
Third-party and opensource ecosystem
Open API for integrations with third-party products; Snort® and OpenAppID community
resources for new and specific threats
High availability and clustering
Active/standby; up to 6 modules across up to 6 different Firepower 9300 chassis.
Cisco Trust Anchor Technologies
Cisco Firepower 9300 Series platforms include Trust Anchor Technologies for supply chain
and software image assurance.
Stateful inspection firewall throughput
۷۵Gbps
Stateful inspection firewall throughput (multiprotocol)
۵۰Gbps
Concurrent firewall connections
۵۵Million
Firewall latency (UDP 64B microseconds)
۳.۵
New connections per second
۸۰۰,۰۰۰
IPsec VPN throughput (450B UDP L2L test)
۱۵Gbps
Maximum VPN Peers
۲۰,۰۰۰
Security contexts (included; maximum)
۱۰;۲۵۰
High availability
Active/active and active/standby
Clustering
Up to 16 security modules across up to 16 different Firepower 9300 chassis
Scalability
VPN load balancing, firewall clustering
Centralized management
Centralized configuration, logging, monitoring, and reporting are performed by Cisco Security Manager
or alternatively in the cloud with Cisco Defense Orchestrator
Adaptive Security Device Manager
Web-based, local management for small-scale deployments