Specification Sheet
5
Distributed networks
Because of their exibility, TZ series
rewalls are ideally suited for both
distributed enterprise and single site
deployments. In distributed networks
like those found in retail organizations,
each site has its own TZ rewall which
connects to the Internet often through
a local provider using a DSL, cable
or 3G/4G connection. In addition to
Internet access, each rewall utilizes
an Ethernet connection to transport
packets between remote sites and the
central headquarters. Web services
and SaaS applications such as Ofce
365, Salesforce and others are served
up from the data center. Through mesh
VPN technology, IT administrators can
create a hub and spoke conguration
for the safe transport of data between
all locations.
The SD-WAN technology in SonicOS
is a perfect complement to TZ rewalls
deployed at remote and branch sites.
Instead of relying on more expensive
legacy technologies such as MPLS
and T1, organizations using SD-WAN
can choose lower-cost public Internet
services while continuing to achieve a
high level of application availability and
predictable performance.
SD-WAN Enabled
Transport
Application Server Farm
Web Server Farm
· Anti-malware
· IPS
· Content filtering
· Capture ATP
· VPN
SonicWave
Wireless
Access Point
Guest
WiFi
IoT Devices – Cameras,
IP Phones, etc.
Corp
WiFi
TZ600P Firewall
POS
Terminal
Remote / Branch Offices
Corporate HQ
NSsp 12800
Data Center
NSa 9650
IP
PBX
SonicWall Secure
SD-WAN Features
•
NSS Labs validated high
security efficacy
•
Zero-touch deployment
•
WAN load balancing
•
Dynamic path selection for
business-critical applications
•
Secure AES 256 VPN
•
Application identification and visibility
•
Cloud-based central management
Low-Cost Transport Technologies
Ethernet / DSL / Cable / 3G / 4G
Distributed Enterprise
Network with SD-WAN
Capture
Security Center
Cloud Orchestration
and Management
Sales network
18-port Dell N-Series/X-Series switch
Internet
Printers
Storage
PoE
cameras
Engineering network
Finance network
Protected server network
Secure wireless zone
3G/analog failover
TZ product line
NSa or NSsp
Capture
Security Center
Corporate
Headquarters
$
Capture Security Center
Tying the distributed network together
is SonicWall’s cloud-based Capture
Security Center (CSC) which centralizes
deployment, ongoing management
and real-time analytics of the TZ
rewalls. A key feature of CSC is Zero-
Touch Deployment. Conguring and
deploying rewalls across multiple
sites is time-consuming and requires
onsite personnel. However Zero-
Touch Deployment removes these
challenges by simplifying and speeding
the deployment and provisioning of
SonicWall rewalls remotely through
the cloud. Similarly, CSC eases ongoing
management by providing cloud-based
single-pane-of-glass management for
SonicWall devices on the network. For
complete situational awareness of the
network security environment, SonicWall
Analytics offers a single-pane view
into all activity occurring inside the
network. Organizations gain a deeper
understanding of application usage
and performance while reducing the
possibility of Shadow IT.
Single Sites
For single site deployments, having an
integrated network security solution
is highly benecial. TZ series rewalls
combine high security effectiveness
with options such as built-in 802.11ac
wireless and, in the case of the TZ300P
and TZ600P, PoE/PoE+ support. The
same security engine in our mid-range
NSa series and high-end NSsp series
is featured in TZ series rewall along
with the broad feature set of SonicOS.
Conguration and management is
easy using the intuitive SonicOS UI.
Organizations save valuable rack space
due to the compact desktop form factor.