WatchGuard XTM 22 and 3-Y Security Bundle

Datasheet
WatchGuard® XTM 2 Series
Recommended for small businesses,
With a WatchGuard® XTM 2 Series appliance, your network is:
remote offices, and wireless hotspots
SECURE
■
Application-layer content inspection recognizes & blocks threats that stateful packet firewalls cannot detect.
deliver a new class of performance-
■
Wide-ranging proxy protection provides robust security on HTTP, HTTPS, FTP, SMTP, POP3, DNS, TCP/UDP.
driven security. Network protection
■
WatchGuard® XTM 2 Series appliances
is stronger than ever, with full HTTPS
inspection, VoIP support, and optional
application control. All models have
■
three 1-Gigabit Ethernet ports for faster
■
technology for greater wireless speed
and responsiveness.
Intuitive management console centralizes configurations and streamlines remote management.
■
Three 1-GbE interfaces allow faster link speeds, which is particularly useful for trusted LAN.
■
Drag-and-drop Branch Office VPN setup – three clicks and your remote office is connected.
a small business, and makes an ideal
FLEXIBLE
endpoint for connecting a secure VPN
tunnel back to a WatchGuard XTM or
Interactive, real-time monitoring and reporting – at no extra charge – give an unprecedented view into
network security activity, so you can take immediate preventive or corrective actions.
■
An XTM 2 Series appliance can be used
as a stand-alone security solution for
Easily add Application Control to keep unproductive, inappropriate, and dangerous applications off-limits.
EFFICIENT
link speeds, and optional wireless
capabilities include dual-band 802.11n
Security subscriptions boost protection in critical attack areas for complete unified threat management:
blocking spam, controlling dangerous web surfing, preventing network intrusions, and stopping viruses,
spyware, and other malware at the gateway.
■
WatchGuard Firebox network.
Call setup security for VoIP means you don’t need to “wire around the firewall” to take advantage of the big
cost savings that VoIP can generate.
■
WAN and VPN failover increase performance, redundancy, and reliability.
■
Multiple VPN choices, including SSL and IPSec, deliver flexibility in remote access.
■
Advanced networking features, like transparent bridge mode and dynamic routing support, allow you to add
security without needing to change existing network infrastructure.
WIRED OR WIRELESS – YOUR CHOICE
“We made the decision to
go with WatchGuard
because one appliance
would give us all the
security, control,
reporting, and
visibility we needed.”
Justin Brake
Manager of IT Services
Wireless Express
■
■
Wireless models include optional dual-band 802.11n technology for much more responsive wireless network
connection and expanded range. Allows users to access 2.4 GHz or less crowded 5GHz band.
Three distinct security zones give administrators precise control over Internet access
privileges for different user groups.
■
Wireless guest services segment the Internet for customers/guests.
■
Multi-layered, interlocking security protects the network.
■
Secure remote connectivity keeps mobile workforce productive.
■
Intuitive, centralized management gives you the control you need to manage efficiently.
■
Choice of wired or wireless models to suit your specific business requirements.
■
Monitoring and reporting tools support industry and regulatory compliance.
CAPABLE
Earth-friendly technology
WatchGuard® Technologies, Inc.
XTM 2 Series
XTM 21/21-W
XTM 22/22-W
XTM 23/23-W
Throughput & Connections
Firewall throughput*
110 Mbps
150 Mbps
195 Mbps
VPN throughput*
35 Mbps
55 Mbps
55 Mbps
Networking
Fireware XTM
Fireware XTM Pro**
Routing
Static
Dynamic (BGP4, OSPF,
RIP v1/2), Policy-based
SSL
1 SSL tunnel available
Maximum number of
SSL tunnels available
50
XTM throughput*
18 Mbps
30 Mbps
45 Mbps
VLAN support
20
Interfaces 10/100
3 copper
3 copper
3 copper
Other Features
Interfaces 10/100/1000
3 copper
3 copper
3 copper
Port Independence
Transparent/drop-in
mode
2 USB
2 USB
2 USB
Unrestricted
Unrestricted
Unrestricted
Concurrent connections
(bi-directional)
10,000
20,000
30,000
Local user auth. DB limit
100
200
200
Model upgradeable
Yes
Yes
No
I/O interfaces
Nodes supported (LAN IPs)
Wireless Available**
802.11a/b/g/n
802.11a/b/g/n
802.11a/b/g/n
VPN Tunnels (incl/max)
Multi-WAN failover
Multi-WAN load balancing
Dimensions and Power
Product Dimensions - Wired
6.1” x 7.5” x 1.25” (15.5 x 19.0 x 3.2 cm)
Product Dimensions - Wireless
(antennae up)
Shipping Dimensions
7.75” x 10.75” x 5” (19.7 x 27.3 x 12.7 cm)
Shipping Weight - Wired
3.2 lbs (1.45 Kg)
Shipping Weight - Wireless
3.6 lbs (1.6 Kg)
10.75” x 13.25” x 3.4” (27.3 x 33.7 x 8.6 cm)
Branch Office VPN
5
20
50
AC Power
100-240 VAC Autosensing
Mobile VPN IPSec
1/11
5/25
5/55
Power Consumption - Wired
U.S. 23.33 Watts (80 BTU/hr)
55/55
Power Consumption - Wireless
U.S. 24.0 Watts (82 BTU)
Rack Mountable
No (wall mount bracket included)
1/11
Mobile VPN SSL
Security Features
Firewall
1/25
Stateful packet inspection, deep application inspection,
application proxies
HTTP, HTTPS, SMTP, FTP, DNS, TCP, POP3
Environment
Operating
Storage
Temperature
32° F to 104° F
0° C to 40° C
-40° F to 158° F
-40° C to 70° C
Relative Humidity
Application Control, WebBlocker, spamBlocker, Gateway
AntiVirus, Intrusion Prevention, Reputation Enabled Defense
10% to 85%
non-condensing
10% to 95%
non-condensing
Altitude
0 to 9,843 ft @ 95° F
(3,000 m @ 35° C)
0 to 15,000 ft @ 95° F
(4,570 m @ 35° C)
VPN & Authentication
Encryption
Wired
Wireless
DES, 3DES, AES 128-, 192-, 256-bit
MTBF
IPSec
SHA-1, IKE pre-shared key, 3rd party cert
129,955 hours @ 104° F
(40° C )
103,612 hours @ 104° F
(40° C )
VPN failover
Yes
SSL
Thin client, Web exchange
PPTP
Server and Passthrough
XAUTH
Radius, LDAP, Windows Active Directory
Other user authentication
VASCO, RSA SecurID, web-based, local
802.1X for XTM 2 Series wireless
Application proxies
Threat protection
VoIP
Security Subscriptions
Blocks spyware, DoS attacks, fragmented & malformed
packets, blended threats, and more
H.323. SIP, call setup and session security
Management
Management platform
WatchGuard System Manager (WSM)
Alarms and notifications
SNMP v2/v3, Email, Management System Alert
Server support
Web UI
Logging and Reporting with Server Health status, Quarantine,
WebBlocker, Management
Supports Windows, Mac, Linux, and Solaris OS
Command Line Interface
Includes direct connect and scripting
Standard Networking
QoS
8 priority queues, DiffServ, modified strict queuing
IP Address Assignment
Static, DynDNS, PPPoE, DHCP (server, client, relay)
NAT
Static, dynamic, 1:1, IPSec traversal, policy-based
Certifications
Security
ICSA, FIPS 140-2 and EAL4+ in progress
Safety
Hazardous Substance Control
NRTL/C, CB
WEEE, RoHS, REACH
Support & Maintenance
LiveSecurity® Service
Antennae (on wireless models only)
Power Supply
Network Interfaces
Hardware warranty, 12/5 technical support with 4-hour
response time, software updates, threat alerts
Initial 90-day or 1-year, 2-year, and 3-year subscriptions available
Reset Button
USB Ports
Buy the Bundle and Get the Works!
Get everything you need for complete threat management at a
great price with the Security Bundle. Includes choice of any 2 Series
appliance (wired or wireless), plus Application Control, WebBlocker,
spamBlocker, Gateway AntiVirus, Reputation Enabled Defense, Intrusion
Prevention Service, and LiveSecurity® Service for support and maintenance.
*Throughput rates will vary based on environment and configuration. Contact your authorized
WatchGuard reseller or call WatchGuard directly (1.800.734.9905) for help determining the right
model for your network.
**Fireware XTM Pro advanced OS is standard on XTM 23 and 23-W, and is a purchase upgrade for all
other models.
Address: 505 Fifth Avenue South, Suite 500, Seattle, WA 98104 • Web: www.watchguard.com • U.S. Sales: 1.800.734.9905 • International Sales: +1.206.613.0895
No express or implied warranties are provided for herein. All specifications are subject to change and expected future products, features or functionality will be provided on an if and when available basis. © 2010 WatchGuard Technologies, Inc. All rights reserved. WatchGuard, the
WatchGuard logo, Firebox, and LiveSecurity are either trademarks or registered trademarks of WatchGuard Technologies, Inc. in the United States and/or other countries. All other tradenames are the property of their respective owners. Part No. WGCE66679_100610