H3C NS-SecPath F100-C-A2-I

Description

Category	Technical Specifications
Operation Modes	Route, Transparent, Hybrid
Firewall	Security zones, Advanced attack protection (Land, Smurf, Fraggle, Ping of Death, Teardrop, IP Spoofing, SYN/UDP/DNS/ICMP Flood, etc.), Basic & Advanced ACLs, Time-based ACL, User & Application-based access control, ASPF, Static/Dynamic Blacklist
Antivirus	Stream-based Kaspersky engine, realtime prevention, detection, and removal of malicious code from network traffic
Deep Intrusion Prevention	H3C FIRST (Full Inspection with Rigorous State Test) engine, integrated intrusion prevention with access control, protection against hacker attacks and DoS/DDoS
Application Control	P2P/IM traffic identification & management (Thunder, BitTorrent, QQ, MSN, etc.), URL filtering (blacklist/whitelist/online query), Email filtering (SMTP), Java/ActiveX blocking, SQL injection prevention
NAT	NAT and VRF-aware NAT, NAT444
VPN	L2TP VPN, IPsec/IKE/IKEv2 VPN, GRE VPN, SSL VPN (supports USB-Key and SMS authentication)
Routing	Static, RIP, OSPF, BGP, Policy-based routing (application & URL-based), IPv4/IPv6
IPv6	IPv6 stateful firewall, IPv6 attack protection, IPv6 static/dynamic routing, IPv6 tunneling (6to4, ISATAP, GRE, etc.), NAT-PT, DS-Lite, IPv6 ACL
High Availability	H3C SCF virtualization (virtualizes multiple devices into one), carrier-level hardware/software platform, service backup
Wireless AC	Supports up to 64 APs (recommended 16-32), Auto configuration/upgrade, 802.1X/MAC/Portal authentication
Management	CLI (Console), Web GUI, SNMPv3, H3C IMC SSM unified management, Intelligent security policy management, In-service software upgrade (ISSU)
Logging & Reports	Centralized log management (Syslog/Binary), Traffic monitoring, Application-based reports, Export formats (PDF, HTML, Word, TXT)

✅ Key Features of H3C SecPath F100-C-A2

✔️ Advanced Hardware & Connectivity

• Enhanced Port Density: Equipped with 10 × GE and 2 × SFP ports to support higher-density network environments.

• Physical Dimensions: Designed in a robust 330mm x 230mm x 44mm chassis.

• Expandable Storage: Supports a TF card with a maximum size of 500 GB for local logging and data storage.

✔️ Elite Performance Metrics

• Firewall Throughput (1518B): Delivers a consistent 1.2 Gbps of high-speed throughput.

• Optimized VPN Performance: Features 250 Mbps IPSec throughput (1400B) and 100 Mbps SSL VPN throughput.

• Massive Session Handling: Manages up to 900,000 maximum concurrent sessions and 8,000 new connections per second.

• Deep Inspection Speed: Maintains 600 Mbps for both IPS and Application layer throughput, with 500 Mbps for full Threat Protection.

✔️ Sophisticated Security & Management

• Unified Threat Management: Highly integrates basic and advanced measures, including the H3C FIRST engine for precise intrusion inspection and Kaspersky’s stream-based antivirus.

• Virtualization (H3C SCF): Can virtualize multiple devices into a single logical unit for unified resource management and service backup.

• Full IPv6 Readiness: Provides a comprehensive IPv6 status firewall, attack protection, and transition technologies like NAT64 and DS-Lite.

• Intelligent Management: Supports Web-based GUI, CLI, and H3C IMC SSM for intuitive network monitoring and centralized log management.

 

 

Category	Technical Specifications: F100-C-A1	Technical Specifications: F100-C-A2
Dimensions (W x D x H)	266mm x 161mm x 44mm	330mm x 230mm x 44mm
Ports	5 × GE + 2 × SFP (MTU: 1500 default)	10 × GE + 2 × SFP
Storage	TF card (up to 500 GB)	TF card (up to 500 GB)
Temperature	Operating: 0°C to 45°C; Storage: –40°C to +70°C	Operating: 0°C to 45°C; Storage: –40°C to +70°C
Operation Modes	Route, Transparent, Hybrid	Route, Transparent, Hybrid
Firewall	SOP virtual firewall (CPU/Memory/Storage virtualization), Security zones, Attack protection (Land, Smurf, Fraggle, Ping of Death, etc.), ACLs (Basic/Advanced/Time-based/MAC-based), ASPF, Static/Dynamic Blacklist, MAC-IP binding	SOP virtual firewall (CPU/Memory/Storage virtualization), Security zones, Attack protection (Land, Smurf, Fraggle, Ping of Death, etc.), ACLs (Basic/Advanced/Time-based/MAC-based), ASPF, Static/Dynamic Blacklist, MAC-IP binding
Antivirus	Stream-based processing, Signature detection (HTTP/FTP/SMTP/POP3), Manual/Auto updates, Virus types: Backdoor, Worms, Trojan, AdWare	Stream-based processing, Signature detection (HTTP/FTP/SMTP/POP3), Manual/Auto updates, Virus types: Backdoor, Worms, Trojan, AdWare
Deep Intrusion Prevention	Prevention against hackers, malicious code, DoS/DDoS, SQL injection, buffer overflow; Manual/Auto signature updates (TFTP/HTTP)	Prevention against hackers, malicious code, DoS/DDoS, SQL injection, buffer overflow; Manual/Auto signature updates (TFTP/HTTP)
Application Control	P2P/IM traffic control, Email filtering (SMTP/Subject/Content), Webpage filtering (URL/Content), Java/ActiveX blocking	P2P/IM traffic control, Email filtering (SMTP/Subject/Content), Webpage filtering (URL/Content), Java/ActiveX blocking
NAT	Many-to-one, Many-to-many, One-to-one, NAT ALGs (DNS, FTP, H.323, SIP, etc.), NAT444	Many-to-one, Many-to-many, One-to-one, NAT ALGs (DNS, FTP, H.323, SIP, etc.), NAT444
VPN	L2TP VPN, IPSec VPN, GRE VPN, SSL VPN	L2TP VPN, IPSec VPN, GRE VPN, SSL VPN
Routing	Static, RIP, OSPF, BGP, Policy-based routing, IPv4/IPv6	Static, RIP, OSPF, BGP, Policy-based routing, IPv4/IPv6
IPv6	IPv6 stateful firewall, Attack protection, Routing (RIPng, OSPFv3, BGP4+), Transition (NAT-PT, Tunneling, NAT64, DS-LITE)	IPv6 stateful firewall, Attack protection, Routing (RIPng, OSPFv3, BGP4+), Transition (NAT-PT, Tunneling, NAT64, DS-LITE)
Management	CLI (Console), Web/SSH Remote, H3C IMC SSM, SNMPv3, Intelligent security policy	CLI (Console), Web/SSH Remote, H3C IMC SSM, SNMPv3, Intelligent security policy
Compliance	EU RoHS, EMC (EN 55032, FCC Part 15), Safety (UL 62368-1, IEC 62368-1, GB 4943.1)	EU RoHS, EMC (EN 55032, FCC Part 15), Safety (UL 62368-1, IEC 62368-1, GB 4943.1)