NETWORK SECURITY

STORMSHIELD
SN-M-SERIES-720
Supports the development of your business

Fiber 18 Gbps 4 Gbps Modularity

CONNECTIVITY FIREWALL IPSEC VPN CONNECTIONS
PERFORMANCE PERFORMANCE PERFORMANCE

Support your growth

With its scalable performance and network modularity,
the SN-M-Series-720 is perfectly suited to your growth
needs.

Scalability
• 1 platform for 2 products
• 18 Gbps of firewall throughput, scalable to 36 Gbps
• Conversion to SN-M-Series-920 with software option

Adaptability and modularity

• Copper and fiber interfaces (2.5GbE and 10GbE) and
network expansion capabilities
• Service continuity through redundant power supply
• Integration with telecom racks in existing infrastructures

All-in-one equipment
• VPN IPsec and intrusion prevention
• High availability
• Interactive reports to facilitate risk mitigation

NEXT GENERATION UTM MEDIUM-SIZE WWW.STORMSHIELD.COM

& FIREWALL ORGANISATIONS
TECHNICAL SPECIFICATIONS FEATURES
PERFORMANCE* USAGE CONTROL
Firewall throughput (1,518 byte UDP) 18 Gbps Firewall/IPS/IDS mode - Identity-based firewall -
Application detection and management - Microsoft
IPS throughput (1,518 byte UDP) 10 Gbps Services Firewall - Industrial firewall/IPS/IDS
IPS throughput (1 MB HTTP) 5 Gbps - Industrial application control - Detection and
control of the use of mobile terminals - Application
Antivirus throughput 3 Gbps inventory (option) - Vulnerability detection (option) -
Geolocation (countries, continents) - Dynamic host
VPN*
reputation - URL filtering (embedded database or
IPSec throughput - AES-GCM 4 Gbps cloud mode) - Transparent authentication (Active
Directory SSO Agent, SSL, SPNEGO) - Agent based
Max number of IPSec VPN tunnels 1,000
multi-user VDI authentication (Citrix-TSE) - Guest
Number of SSL VPN clients in portal mode 300 and sponsorship mode authentication, webservices.
Number of simultaneous SSL VPN clients 300
PROTECTION FROM THREATS
NETWORK CONNECTIVITY Intrusion detection and prevention - Protocol auto-
detection and compliance check - Application
Max number of simultaneous sessions 1,000,000
inspection - Protection from denial of service (DoS)
Number of new sessions/sec. 50,000 attacks - Protection from SQL injections - Protection
from Cross-Site Scripting (XSS) - Protection
Number of main gateways (max)/backup (max) 64/64 from malicious Web2.0 code and scripts - Trojan
detection - Detection of interactive connections
CONNECTIVITY
(Botnets, Command&Control) - Protection against
2.5 Gb copper interfaces 8-16 evasion techniques - Advanced fragmentation
management - Automatic quarantining in the
10 Gb copper interfaces 0-4
event of an attack - Antispam and antiphishing:
1 Gb fiber interfaces 0-8 reputation-based analysis, heuristic engine -
Embedded antivirus (HTTP, SMTP, POP3, FTP) - SSL
10 Gb fiber interfaces (Dual speed) 21-6
decryption and inspection - VoIP protection (SIP) -
Optional network extension modules 1 Collaborative security: IP Reputation, Cloud-based
(8 ports 10/100/1000 - 4 ports 10 Gb copper - 8 ports 1 Gb fiber - 4 ports Sandbox hosted in Europe (option).
10 Gb fiber)

SYSTEM CONFIDENTIALITY OF EXCHANGES

Site-to-site or nomad IPSec VPN - Remote SSL
Number of filtering rules (recommended / specific 8,192 / 32,768 VPN access in multi-OS tunnel mode (Windows,
config) Android, iOS, etc.) - SSL VPN agent with automatic
Max number of static routes 5,120 configuration (Windows) - IPSec VPN support for
Android/iPhone.
Max number of dynamic routes 10,000
NETWORK - INTEGRATION
REDUNDANCY
IPv6 - NAT, PAT, transparent (bridge)/routed/
High availability (active/passive)  hybrid modes - Dynamic routing (RIP, OSPF, BGP)
- Multicast - Multiple link management (balancing,
Double integrated non-hot
Redundant power supply* failover) - Multi-level internal or external PKI
swappable management - Multi-domain directories (including
internal LDAP) - Explicit proxy - Policy-based routing
HARDWARE
(PBR) - Quality of Service management - DHCP
Storage  client/relay/server - NTP client - DNS proxy-cache
- HTTP proxy - LACP management - Spanning-tree
Log Partition > 200 Gb management (RSTP/MSTP) - SD-WAN, Multifactor
TPM chip  Authentication (MFA).

MTBF at 25 °C (years) 21.4

MANAGEMENT
Size 1U - 19" Web-based management interface with privacy
mode (GDPR compliant) - Object-oriented
Height x Width x Depth (mm) 44.45 x 440 x 343
security policy - Contextual security policy - Real-
Weight 4.93 kg (10.86 lbs) time configuration support - Firewall rule usage
counters - Connected or disconnected security
Power supply (AC) 100-240 V 60-50 Hz 3-1.5 A
updates - Global/local security policy - Embedded
Consumption 230 V 50 Hz 98 W 0.49 A log reporting and analysis tools - Interactive and
customisable reports - Support for multiple syslog
Fans 2
servers: UDP/TCP/TLS - SNMP v1, v2c, v3 agent -
Noise level 62 dbA IPFIX - Automated configuration backup - Open API
- Script recording.
Thermal dissipation (max, BTU/h) 270
Operating temperature 0° to 40 °C (32° to 104 °F)
Non-contractual document. The features mentioned are for
Relative humidity when operating (without condensation) 0% to 90% at 40°C version 4.x.
Storage temperature -30° to 65 °C (-22° to 149 °F) * Performance is measured in a laboratory and under conditions ideal
for version 4.x. Results may vary according to the test conditions and
Relative humidity for storage (without condensation) 5% to 95% at 60 °C
the software version.

CERTIFICATIONS
Compliance CE/FCC/CB

1
Requires transceivers
Version 1.3 - Copyright Stormshield 2023