Palo Alto Networks PA-850
Palo Alto Networks PA-850 - Security appliance - Zero Touch Provisioning - 1GbE - 1U - rack-mountable
- Brand
- PALO ALTO
- Product code
- PAN-PA-850-ZTP
- SKU
- 516H1RV2ZGE3E
- Embeds machine learning (ML) in the core of the firewall to provide inline signatureless attack prevention for file-based attacks while identifying and immediately stopping never-before-seen phishing attempts
- Leverages cloud-based ML processes to push zero-delay signatures and instructions back to the NGFW
- Uses behavioral analysis to detect internet of things (IoT) devices and make policy recommendations; cloud-delivered and natively integrated service on the NGFW
- Automates policy recommendations that save time and reduce the chance of human error
- Identifies the applications traversing your network irrespective of port, protocol, evasive techniques, or encryption (TLS/SSL)
- Uses the application, not the port, as the basis for all your safe enablement policy decisions: allow, deny, schedule, inspect, and apply traffic-shaping
- Offers the ability to create custom App-IDs for proprietary applications or request App-ID development for new applications from Palo Alto Networks
- Identifies all payload data within the application, such as files and data patterns, to block malicious files and thwart data exfiltration attempts
- Creates standard and customized application usage reports, including software-as-a-service (SaaS) reports that provide insight into all SaaS traffic - sanctioned and unsanctioned - on your network
- Enables safe migration of legacy Layer 4 rule sets to App-ID-based rules with built-in Policy Optimizer, giving you a rule set that is more secure and easier to manage
- Enables visibility, security policies, reporting, and forensics based on users and groups - not just IP addresses
- Easily integrates with a wide range of repositories to leverage user information: wireless LAN controllers, VPNs, directory servers, SIEMs, proxies, and more
- Allows you to define Dynamic User Groups (DUGs) on the firewall to take time-bound security actions without waiting for changes to be applied to user directories
- Prevents corporate credentials from leaking to third-party websites, and prevents reuse of stolen credentials by enabling multi-factor authentication (MFA) at the network layer for any application, without any application changes
- Provides dynamic security actions based on user behavior to restrict suspicious or malicious users
- Inspects and applies policy to TLS/SSL-encrypted traffic, both inbound and outbound, including for traffic that uses TLS 1.3 and HTTP/2
- Offers rich visibility into TLS traffic, such as amount of encrypted traffic, TLS/SSL versions, cipher suites, and more, without decrypting
- Enables control over use of legacy TLS protocols, insecure ciphers, and incorrectly configured certs to mitigate risks
- Facilitates easy deployment of decryption and lets you use built-in logs to troubleshoot issues, such as applications with pinned certs
- Lets you enable or disable decryption flexibly based on URL category and source and destination zone, address, user, user group, device, and port, for privacy and regulatory compliance purposes
€12207.18
(Inc. VAT)
Sold Out
(Delivery 2-4 working days)
| General | |
|---|---|
| Device type | Security appliance |
| Height (Rack Units) | 1U |
| Width | 43.5 cm |
| Depth | 36.8 cm |
| Height | 4.45 cm |
| Weight | 6.12 kg |
| Processor / Memory / Storage | |
| Hard Drive | SSD 240 GB x 1 |
| Networking | |
| Form factor | Rack-mountable |
| Connectivity technology | Wired |
| Data Link Protocol | Ethernet, Fast Ethernet, Gigabit Ethernet |
| Network / Transport Protocol | PPPoE |
| Routing Protocol | RIP, BGP, IGMPv2, IGMP, OSPFv2, PIM-SM, IGMPv3, OSPFv3, PIM-SSM, static IPv4 routing, Bidirectional Forwarding Detection (BFD) |
| Remote Management Protocol | SSH |
| Performance | Firewall throughput:1.9 Gbps Threat prevention throughput:780 Mbps VPN throughput (IPSec):500 Mbps |
| Capacity | New sessions per second:9500 Maximum number of sessions:192000 VLAN tags per device:4094 VLAN tags per interface:4094 IPSec VPN tunnels:1000 Virtual routers:5 Security zones:40 Maximum number of policies:1500 |
| Features | Firewall protection, NAT support, LDAP support, VLAN support, IPv6 support, High Availability, IPSec Virtual Private Network (VPN), IPv4 support |
| Encryption Algorithm | Triple DES, MD5, IKE, SSL, SHA-1, 128-bit AES, 192-bit AES, 256-bit AES, IKEv2, 384-bit SHA-2, 256-bit SHA, 512-bit SHA-2 |
| Compliant Standards | IEEE 802.1Q, IEEE 802.3ad (LACP) |
| Expansion / Connectivity | |
| Interfaces | 4 x 1000Base-T - RJ-45 8 x Ethernet 1000 - SFP (mini-GBIC) 3 x 1000Base-T (management) - RJ-45 1 x console - RJ-45 1 x USB 1 x console |
| Miscellaneous | |
| Compliant Standards | FCC Class A certified, CB, cCSAus, VCCI Class A |
| Power | |
| Power Device | Internal power supply |
| Installed Qty | 2 |
| Max Supported Qty | 2 |
| Power Redundancy | Yes |
| Voltage Required | AC 120/230 V (50/60 Hz) |
| Power Consumption Operational | 75 Watt |
| Power Provided | 500 Watt |
| Environmental Parameters | |
| Min Operating Temperature | 0 °C |
| Max Operating Temperature | 40 °C |