et
he
Datas
WatchGuard® XTM 5 Series
With a Next-generation WatchGuard XTM 5 Series solution, your network is:
SECURE
■
Application-layer content inspection recognizes & blocks threats that stateful packet firewalls cannot detect.
■
Wide-ranging proxy protection provides robust security on HTTP, HTTPS, FTP, SMTP, POP3, DNS, TCP/UDP.
■
Recommended for small to
midsized businesses
WatchGuard XTM 5 Series appliances deliver
a new class of performance-driven security for
growing businesses. The 5 Series offers up to
3.5 Gbps firewall throughput and security features
including full HTTPS inspection, VoIP support, and
optional application control. Organizations that
want room to easily scale their network security
can move up to greater performance, more users,
and additional security and networking features
to meet escalating demands, without costly
hardware replacements.
Why buy an all-in-one solution?
An all-in-one XTM network security solution
integrates complete protection while slashing
the time and cost associated with managing
multiple single-point security products. All
security capabilities work together for a holistic,
comprehensive approach to network protection.
Your IT staff has more time to focus on other areas
of network administration, and your business
saves money on support and hardware costs.
Not only is the new XTM 5 Series
powerful, but what I especially
like is how easy it is to
manage, as well as how much
information the reports and
logs provide. Dollar for dollar,
nothing beats it.””
Jason Omens
IT Director, OfficeXpats
■
A
suite of security subscriptions boosts protection in critical attack areas for complete threat
management.
Optional Application Control keeps unproductive, inappropriate, and dangerous applications off-limits.
FAST and EFFICIENT
■
Up to 3.5 Gbps firewall throughput and up to 750 Mbps VPN throughput keep data moving.
■
Best UTM throughput in its class, even with strong security enabled.
■
Gigabit Ethernet ports support high-speed LAN backbone infrastructures & gigabit WAN connections.
■
■
Advanced networking features include active/active high availability, VLAN support, multi-WAN
and server load balancing, dynamic routing, and QoS.
Interactive, real-time monitoring and reporting – at no additional charge – give an unprecedented
view into network security activity so you can take immediate preventive or corrective actions.
■
Intuitive management console centrally manages all security functions.
■
Drag-and-drop Branch Office VPN setup – three clicks and your remote office is connected.
FLEXIBLE
■
■
■
■
WAN and VPN failover provide redundancy for increased reliability.
Multiple VPN choices deliver flexibility in remote access. Includes IPSec, SSL, and support for iOS
devices such as iPhone, iPad, and iPod touch.
To maximize port utilization, any of the seven ports can be configured as Trusted, External, or DMZ.
Networking features, such as transparent bridge mode and multicast over VPN, allow you to add
security without needing to change existing network infrastructure.
SCALABLE
■
■
Add powerful security subscriptions to block spam, control dangerous and inappropriate
application usage and web surfing, prevent network intrusions, and stop viruses, spyware, and
other malware at the gateway.
Upgrade to a higher model within the line for more performance and capacity with a simple license key.
PREPARED FOR TOMORROW’S CHALLENGES
■
■
■
■
No need to compromise protection for strong performance or vice versa. Multi-layered, interlocking
security protects the network while throughput remains high.
Advanced networking features ensure reliability and the flexibility to meet changing business
requirements.
Secure remote connectivity keeps the mobile workforce online and productive.
Monitoring and reporting tools, included at no extra cost, support industry and regulatory
compliance, with drill-down functions that make it easy to pinpoint specific activities.
WatchGuard Technologies, Inc.
XTM 5 Series
XTM 515*
Powered by Fireware® XTM Pro
XTM 525
XTM 535*
XTM 545
2 Gbps
2.5 Gbps
3 Gbps
3.5 Gbps
VPN throughput**
250 Mbps
350 Mbps
550 Mbps
750 Mbps
AV throughput**
1.5 Gbps
1.7 Gbps
1.8 Gbps
2 Gbps
IPS throughput**
1.6 Gbps
1.7 Gbps
1.8 Gbps
1. 9 Gbps
Networking Features
Fireware XTM Pro
UTM throughput**
850 Mbps
1 Gbps
1.1 Gbps
1.2 Gbps
Routing
Static
Dynamic (BGP4, OSPF, RIP v1/v2)
Policy-based
High Availability
Active/passive, active/active with load balancing
NAT
Static, dynamic, 1:1, IPSec traversal,
policy-based
Virtual IP for server load balancing
Other Features
Port Independence, Multi-WAN failover
Transparent/drop-in mode,
Multi-WAN load balancing, Server load
balancing
Throughput and connections
Firewall throughput**
Interfaces 10/100
1 copper
1 copper
1 copper
1 copper
Interfaces 10/100/1000
6 copper
6 copper
6 copper
6 copper
1 Serial/
2 USB
Unrestricted
1 Serial/
2 USB
Unrestricted
1 Serial/
2 USB
Unrestricted
1 Serial/
2 USB
Unrestricted
40,000
50,000
100,000
350,000
24,000
24,000
28,000
28,000
VLANs (bridging, tagging,
routed mode)
100
200
300
400
WSM licenses (incl)
Authenticated users limit
4
500
4
500
4
1,000
4
2,500
I/O interfaces
Nodes supported (LAN IPs)
Concurrent connections
(bi-directional)
New connections per second
VPN Tunnels
Branch Office VPN
65
75
200
600
Mobile VPN IPSec
75
100
300
1,000
Mobile VPN SSL
65
75
300
600
Security Features
Firewall
Stateful packet inspection, deep packet inspection, proxy firewall
Application proxies
HTTP, HTTPS, SMTP, FTP, DNS, TCP, POP3
Threat protection
Blocks spyware, DoS attacks, fragmented packets, malformed packets,
blended threats, and more
H.323, SIP, call setup and session security
VoIP
Security subscriptions
VPN & Authentication
Application Control, Gateway AntiVirus, Reputation Enabled Defense,
WebBlocker, spamBlocker, Intrusion Prevention Service
Encryption
DES, 3DES, AES 128-, 192-, 256-bit
IPSec
SHA-1, MD5, IKE pre-shared key, 3rd party cert
VPN failover
Yes
SSL
Thin client, Web exchange
PPTP
Server and Passthrough
Single sign-on
Transparent Active Directory Authentication
XAUTH
RADIUS, LDAP, Windows Active Directory
Other user authentication
VASCO, RSA SecurID, web-based, local
Management
WatchGuard XTM 5 Series appliances ship with the Pro
version of the Fireware XTM operating system, providing the
advanced networking features that demanding networks
require.
Dimensions and Power
Product Dimensions
11.25” x 17” x 1.75” (28.6 x 43.2 x 4.5 cm)
Shipping Dimensions
18” x 21” x 5.25” (45.7 x 53.3 x 13.3 cm)
Shipping Weight
16.1 lbs (7.3 Kg)
AC Power
100-240 VAC Autosensing
Power Consumption
U.S. 85 Watts (max), 290 BTU/hr (max)
Rack Mountable
1U rack mount kit included
Environment
Operating
Storage
Temperature
32° F to 104° F
0° C to 40° C
-40° F to 158° F
-40° C to 70° C
Relative Humidity
10% to 85%
non-condensing
10% to 95%
non-condensing
Altitude
0 to 9,843 ft at 95° F
(3,000 m at 35° C)
0 to 15,000 ft at 95° F
(4,570 m at 35° C)
MTBF
51,644 hours @ 77° F (25° C)
Power Supply
Cooling Fans
On/Off Switch
Management platform
WatchGuard System Manager (WSM)
Expert Guidance and Support
Alarms and notifications
SNMP v2/v3, Email, Management System Alert
Server support
Web UI
Logging and Reporting with Server Health status, Quarantine, WebBlocker,
Management
Supports Windows, Mac, Linux OS
Command line interface
Includes direct connect and scripting
An initial subscription to LiveSecurity® Service is included
with every XTM 5 Series appliance. LiveSecurity provides
hardware warranty with advance hardware replacement,
12/5 or 24/7 technical support, and software updates.
Standard Networking
QoS
8 priority queues, DiffServ, modified strict queuing
IP address assignment
Static, DHCP (server, client, relay), PPPoE, DynDNS
Certifications
Security
ICSA Firewall, ICSA IPSec VPN Pending: CC EAL4+, FIPS 140-2
Safety
NRTL/C, CB
Network
IPv6 Ready Gold (routing)
Hazardous substance control
WEEE, RoHS, REACH
Buy the Bundle and Get the Works!
Get everything you need for complete threat management
at a great price with the Security Bundle. Includes choice
of 5 Series appliance, plus Application Control,
Intrusion Prevention Service, Reputation
Enabled Defense, Gateway AntiVirus, WebBlocker,
spamBlocker, and LiveSecurity Service with
24/7 tech support.
*The XTM 515 is model-upgradable to the XTM 525. The XTM 535 is model-upgradable to the XTM 545. As business needs grow, model upgradability allows you to move up to the capacity and
performance of the higher model by purchasing and deploying a simple, downloadable license key.
**Throughput rates will vary based on environment/configuration. Contact your WatchGuard reseller or call WatchGuard directly (1.800.734.9905) for help determining the right model for your network.
U.S. SALES 1.800.734.9905
International Sales +1.206.613.0895www.watchguard.com
No express or implied warranties are provided for herein. All specifications are subject to change and expected future products, features or functionality will be provided on an if and when available basis. © 2012 WatchGuard Technologies, Inc. All rights reserved. WatchGuard,
the WatchGuard logo, Fireware, and LiveSecurity are registered trademarks of WatchGuard Technologies, Inc. in the United States and/or other countries. All other tradenames are the property of their respective owners. Part No. WGCE66650_100512