Sns en SNrange Installation Guide
Uploaded by
vuduchung02122001Sns en SNrange Installation Guide
Uploaded by
vuduchung02122001GUIDE
STORMSHIELD NETWORK SECURITY
PRODUCT PRESENTATION AND
INSTALLATION 2024
Date : September 2024
Document version: 1.0
Reference: sns-en-SNrange_installation_guide
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
SN310 model 29
Table of contents SN-XS-Series-170 and SNi10 models 30
SN-S-Series-220 and SN-S-Series-320 models 31
Foreword 4 SN510 and SN710 models 32
Products concerned 4 SN-M-Series-520 models 33
Recommendations on the operating SN910 model 34
environment 4 SN-M-Series-720 and SN-M-Series-920 models35
Regulations 6 SN1100 model 36
Introduction 7 SN2100 and SN3100 models 37
Administration tools 7 SN-L-Series-2200 and SN-L-Series-3200
models 39
Upon receiving your firewall 9 SN6100 model 41
Integrity of the product 9 SN-XL-Series-5200 or SN-XL-Series-6200
Contents of the packaging 10 models 41
SNi20 model 43
Safety rules 12 SNi40 model 45
All models except SNi20, SNi40 and SNxr1200 model 48
SNxr1200 12
SNi10, SNi20, SNi40, and SNxr1200 Network connectors 53
models 14 RJ45 Ethernet connectors 53
Fiber Ethernet connectors (all models except
Installation precautions 16 SN160, SN210, SN310 and SNxr1200) 58
Conditions of use (all models except Extension modules (SN710 and upwards) 63
SNi20, SNi40 and SNxr1200) 16
Conditions of use (SNi10, SNi20, SNi40 Initial connection to the product 68
and SNxr1200 models) 17 Requirements 68
Connecting to the mains 19 Connections 68
Connecting a DC power supply unit (SN- Configuration 70
XS-Series-170, SNi10, SNi20, SNi40 and Startup 71
SNxr1200) 20 Shutting down 80
Connecting to the network 21 General remarks 81
Installation in a 19" rack and cabinet 22 Updating the license 83
Installing SN160, SN160W, SN210, Retrieving licenses 83
SN210, SN310, SN-XS-Series-170, SN-S- Install license 83
Series-220, SN-S-Series-320 and SNi10
models on a 19" cabinet shelf 22 Documentation & assistance 84
Installing SN210, SN210W, SN310, SN- Documentation 84
XS-Series-170, SN-S-Series-220, SN-S- MyStormshield personal area 84
Series-320 and SNi10 models on a 19" Knowledge Base 84
cabinet 1U shelf 23 Help desk 84
Fastening SN160, SN160W, SN-XS-
Series-170 and SNi10 models to a wall 25 Appendix A. Resetting firewalls 85
Installing SN510, SN-M-Series-520, All models except SN-L-Series-2200, SN-L-
SN710, SN910, SN-M-Series-720 and SN- Series-3200, SN6100, SN-XL-Series-5200, SN-
M-Series-920 models in a 19" cabinet 25 XL-Series-6200, SNi40 and SNxr1200 85
Installing SN1100, SN2100, SN3100, SN- SN-L-Series-2200, SN-L-Series-3200, SN6100,
L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200, SN-XL-Series-6200, SNi40
SN6100, SN-XL-Series-5200 and SN-XL- and SNxr1200 models 87
Series-6200 model in a 19" cabinet 25
Installing SN-XS-Series-170, SNi10, Appendix B. Storing logs 88
SNi20 and SNi40 models on DIN rails 26 External log storage on SD cards (SN160,
SN160W, SN210, SN210W, SN310, SN-XS-
Presentation of the SNS range 27 Series-170, SN-S-Series-220, SN-S-Series-320,
SN160 and SN160W models 27 SNi10 and SNi20) 88
SN210 and SN210W models 28
Page 2/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
Enabling log storage 89
Reading logs 89
Appendix C. Managing SSDs 91
Detecting issues 91
Replacing an SSD 91
RAID option (SN2100) 92
Big Data option (SN2100, SN3100, SN-L-
Series-2200, SN-L-Series-3200, SN6100,
SN-XL-Series-5200 and SN-XL-Series-
6200) 92
Appendix D. Exchanging a power supply
module 93
SN1100, SN2100, SN3100, SN-L-Series-
2200, SN-L-Series-3200, SN6100, SN-XL-
Series-5200 and SN-XL-Series-6200
models 93
SN6100 95
Appendix E. Managing firewalls via IPMI 97
SN6100, SN-XL-Series-5200 and SN-XL-
Series-6200 models 97
Page 3/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
FOREWORD
Foreword
We strongly recommend that you read this whole document before installing a Stormshield
Network Security firewall.
This document presents the Stormshield Network Security range models marketed by
Stormshield. In it, we explain the process of the physical installation needed to integrate an
appliance into your network architecture. It also provides the necessary details for adding
transceivers and network modules to SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-
Series-920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-
Series-5200, SN-XL-Series-6200, SNi20 and SNi40 models.
The aim of this document is to allow you to quickly integrate a Stormshield Network Security
firewall into your network but does not provide any information on how to configure the
product. Several documents (guides and technical notes) explaining the configuration of the
firewall are available in the Network Security section of the Stormshield documentation
website: [Link]
For more information on using and configuring your firewall, refer to the SNS user guide.
Products concerned
SN160, SN160W, SN210, SN210W, SN310, SN-XS-Series-170, SN-S-Series-220, SN-S-Series-
320, SN510, SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-Series-920, SN1100,
SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200, SN-XL-
Series-6200, SNi10, SNi20, SNi40 and SNxr1200.
NOTE
For earlier products in the Stormshield Network Security range (SN150, SN200, SN300, SN500,
SN700, SN900, SN2000, SN3000 and SN6000), refer to the 2016 version of this Product
presentation and installation guide.
Recommendations on the operating environment
Definition
On an Evaluation Assurance Level or EAL scale of 1 to 7, the Common Criteria evaluate a
product’s capacity to provide security functions for which it had been designed, as well as the
quality of its life cycle (development, production, delivery, operation, and updates).
Introduction
The installation of a firewall is often part of implementing a global security policy. To ensure
optimal protection of your assets, resources and information, installing a firewall between your
network and the Internet is only the first step. This is mainly because the majority of attacks
come from the inside (accidents, disgruntled employees, dismissed employee having retained
internal access, etc.). And anyone would agree that installing a steel security door defeats its
purpose when the walls are made of paper.
Stormshield Network Security therefore adopts and applies the usage recommendations
defined in the Common Criteria in its administration suite and firewalls. These
Page 4/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
FOREWORD
recommendations set out the usage requirements to meet to ensure that your firewall operates
within the context of the common criteria certification.
For further information on Common Criteria compliance, go to:
[Link]
Security watch
Check regularly for the Stormshield security advisories published on
[Link]
Always apply updates if they fix security flaws on your firewall. Updates are available here:
[Link]
Physical security measures
Stormshield Network Security firewalls must be installed and stored in compliance with the
state of the art regarding sensitive security devices: secured access to the premises, shielded
cables with twisted pairs, labeled cables, etc.
Organizational security measures
The default password of the admin user (super administrator) must be changed the very first
time the product is used. In the web administration interface, this password can be changed in
Configuration > System > Administrator > Administration account.
This password must be set in line with the best practices described in the User awareness
section in the SNS user guide.
A particular administrative role – that of the super-administrator – has the following
characteristics:
l The only administrator authorized to log in via the local console on firewalls, and only during
the installation of the firewall or for maintenance operations outside of normal production
use,
l In charge of defining the profiles of other administrators,
l The premises where the firewalls are stored must only be accessed under this
administrator's supervision, regardless of whether the purpose of the access is to conduct
operations on the product or on other equipment. All operations on firewalls have to be
conducted under this administrator’s responsibility.
IT security environment
Stormshield Network Security firewalls must be installed in line with the current network
interconnection policy, and must be the only gateways between the various networks to which
the information flow control policy has to be applied. They are scaled according to the
capacities of the adjacent devices or these devices restrict the number of packets per second,
positioned slightly below the maximum processing capacities of each appliance installed in the
network architecture.
Page 5/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
FOREWORD
Regulations
WEEE (Waste Electrical and Electronic Equipment) directive
All Stormshield Network Security products to which the WEEE directive applies are marked with
the mandated crossed-out wheelie bin symbol. This symbol means that the product meets the
requirements laid down by the WEEE directive with regard to the destruction and reuse of waste
electrical and electronic equipment.
RoHS (Restriction of Hazardous Substances) directive
For further information on RoHS compliance or on the Stormshield Network firewall recycling
program (WEEE), refer to: [Link]
Certifications
Part 15 Subpart B
Page 6/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INTRODUCTION
Introduction
Thank you for choosing Stormshield Network Security. Designed to protect networks of all sizes,
Stormshield Network Security - SNS range appliances are pre-configured: no hardware or
software installation is needed and no UNIX knowledge is necessary, just a user-friendly
configuration via a graphical interface.
The Stormshield Network Security (SNS) range consists of 26 products:
SN160, SN160W, SN210, SN210W, SN310, SN-XS-Series-170, SN-S-Series-220, SN-S-Series-
320, SN510, SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-Series-920, SN1100,
SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200, SN-XL-
Series-6200, SNi10, SNi20, SNi40 and SNxr1200.
The architecture of the new-generation SNS range was specifically designed to maximize the
performance of the Stormshield Network Security protection engine. Complex application traffic
is therefore inspected at high speed at the heart of the network and without discernible latency
(less than 1 millisecond).
Hardware acceleration for data encryption also anticipates multiple high-speed VPN sessions.
The SNS firewall makes it possible to define incoming or outgoing access control rules. Its
concept is simple: any incoming or outgoing transmission passing through the firewall is
monitored, allowed or blocked according to the rules, packet by packet.
The SNS firewall is based on a sophisticated packet filtering mechanism that provides a high
level of security. All firewalls integrate the ASQ (Active Security Qualification) technology
developed by Stormshield Network Security. This technology makes it possible detect and
block hacking attempts in real time: illegal packets, denial of service attempts, anomalies in a
connection, port scans, buffer overflows, etc.
In an intrusion attempt, depending on the instructions set in the security policy, the SN firewall
blocks the transmission, generates an alarm and stores the information linked to the packet
which set off the alarm. You will therefore be able to analyze the attack and trace its source.
The SNS firewall not only allows you to prevent, or restrict to just certain services, incoming
connections on your network, but also makes it possible to monitor your internal users' Internet
usage (HTTP, FTP, SMTP, etc.). You can also monitor your users by authenticating them via an
internal or external authentication database.
The SNS firewall also manages port and address translation mechanisms. These mechanisms
provide security (by masking your internal address range) and flexibility (by enabling the use
of any private internal addressing range) and reduce costs (by enabling the provision of several
servers on the Internet with a single public IP address).
Stormshield Network Vulnerability Manager, the risk management solution, is based on the
detection of applications and the associated vulnerabilities. It allows you to quickly zero in on
the most vulnerable hosts, identify affected applications and know which bug fixes to apply.
Lastly, the SNS firewall includes VPN gateway functions allowing you to establish encrypted
tunnels with other VPN equipment. In this way, your communications between sites or with
your mobile users may be secured even while using an insecure communication infrastructure
like the Internet.
Administration tools
Thanks to the web administration interface, you can administer your Stormshield Network
Security firewall from the operating system of your choice. The new firewall configuration
Page 7/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INTRODUCTION
interface, accessible from a web browser, benefits from the latest breakthroughs in user
friendliness and simplicity of use.
Monitoring tab
The dashboard gives an overview of information relating to the firewall’s activity and its
configuration.
The Logs - Audit logs module, available on firewalls equipped with storage media, allows you to
read logs generated by appliances and stored locally. These logs are grouped by views, i.e., by
alarm, connection, web log, etc. Advanced filters make it possible to analyze logs even deeper.
In the Reports module, you will be able to view how Internet access is used, which attacks your
firewall has blocked, and which hosts are vulnerable on your corporate network. Many
interactive features allow you to modify the configuration of your firewall. These reports appear
as Top 10 lists in Web, Security, Viruses, Vulnerabilities and Spam.
The Monitoring module shows graphs and data in real time, and history graphs can be added to
these if this option is enabled in the Report configuration module.
Stormshield Management Center
With the SMC administration tool, you can manage and supervise a pool of SNS firewalls.
Common or specific filter rules and VPN access can be set up to optimize configuration tasks.
Always keep your firewall pool up to date, make regular backups and configure the privileges of
your SMC administrators.
Page 8/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
UPON RECEIVING YOUR FIREWALL
Upon receiving your firewall
Several security mechanisms have been implemented to guarantee the integrity of the product
that you receive, and confirm that your product has not been tampered with. Check them
carefully to avoid any ambiguity regarding the application of the warranty.
If your product does not match your order, report any anomaly to your reseller within 48 hours
after you receive the product.
Integrity of the product
Seals and labels on the packaging
Every firewall is delivered in a cardboard box sealed with one or two warranty seals. A label on
the packaging indicates information that identifies the product it contains and its version.
Check that this information matches your order.
Seals
Every firewall is sold in a closed cardboard box sealed with
a"STORMSHIELD QUALITY SEAL".
IMPORTANT
If this seal is missing or has been tampered with, contact your
distributor as soon as possible to find out why the packaging has been
opened.
Figure 1: "Stormshield Quality seal"
label
Identification labels
These labels indicate the information relating to the firewall
(product reference, part number, serial number, software
version installed, etc). Check that this information matches
your order. You can also check whether the version installed
has been certified.
Figure 2: Product labels on the cardboard box
Labels on the product
Warranty label
A warranty label is pasted on all firewalls. Once this label is torn, the
warranty will be void.
Figure 3: Warranty label
Page 9/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
UPON RECEIVING YOUR FIREWALL
Serial number label
This label displays your product's serial number and registration password. It is pasted on:
l The underside of SN160, SN160W, SN210, SN210W, SN310, SN-XS-Series-170, SN-S-
Series-220, SN-S-Series-320, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200,
SN-XL-Series-5200, SN-XL-Series-6200 and SNi10 models,
l The back of SN510, SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-Series-
920, SN1100, SN6100 and SNxr1200 models,
l The side of SNi20 and SNi40 models.
Figure 4: Serial number label
IMPORTANT
Take note of your registration password (1) and your serial number (2). You will be asked for
these during the installation and registration of your product.
Product label
This label, found on your product, provides information relating to the firewall, such as the part
number and the product's electrical power characteristics.
Figure 5: Product label
Contents of the packaging
Keep the cardboard packaging in a safe place in case you need it later to transport the firewall.
The packaging is shock resistant to protect your SNS firewall optimally.
Upon delivery, check that all the following components are included:
l Your Stormshield Network Security firewall,
l A power cord (two for SN-M-Series-520, SN-M-Series-720, SN-M-Series-920, SN1100,
SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200 and
SN-XL-Series-6200 models),
l A power adapter (SN160, SN160W, SN210, SN210W, SN310, SN-XS-Series-170, SN-S-Series-
220, SN-S-Series-320 and SNi10 models),
l A 2-pole screw connector (SN-XS-Series-170 and SNi10 models),
l A 6-pole screw connector (SNi20 and SNi40),
l A Category-5e RJ45 crossover cable,
l An “A to B” USB cable (SN160, SN160W, SN210, SN210W and SN310 models) or “A to C”
USB cable (SN-XS-Series-170, SN-S-Series-220, SN-S-Series-320, SN-M-Series-520, SN-M-
Series-720, SN-M-Series-920, SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200, SN-
XL-Series-6200 and SNi10 models),
Page 10/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
UPON RECEIVING YOUR FIREWALL
l An RJ45 to DB9F serial DB9F (SN510, SN-M-Series-520, SN710, SN910, SN-M-Series-720,
SN-M-Series-920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200,
SN6100, SN-XL-Series-5200, SN-XL-Series-6200 and SNi20) or DB9F serial (SNi40 and
SNxr1200 models),
l An "A to B” micro USB cable (SN1100),
l Three Wi-Fi antennae to be screwed to the back of the appliance (SN160W and SN210W).
For SN510, SN-XS-Series-170, SN-S-Series-220, SN-S-Series-320, SN-M-Series-520, SN710,
SN910, SN-M-Series-720, SN-M-Series-920, SN1100 and SNi10 models, the packaging should
also contain four non-slip rubber feet.
SN6100 models have brackets mounted by default so that they can be installed in a rack.
Depending on the model, the following components are also included for racking:
l SN510, SN-M-Series-520, SN710, SN910, SN-M-Series-720 and SN-M-Series-920 models: a
set of brackets and screws,
l SN1100: a set of brackets, rails and screws,
l SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200 and SN-XL-
Series-6200 models contain a set of brackets, slide rails and screws,
l SN6100: a set of slide rails and screws.
SN-XS-Series-170, SNi10, SNi20 and SNi40 models are equipped with a fastener for a 35 mm-
wide DIN rail (EN50022 standard).
NOTE
As SN160, SN160W, SN210, SN210W, SN310, SN510, SN-XS-Series-170, SN-S-Series-220, SN-S-
Series-320, SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-Series-920, SN1100 and
SNi10 firewalls can be installed on a desk or in a rack, their non-slip rubber feet come separately.
The documentation provided includes:
l General Conditions of Use and User License,
l Safety Rules and Installation Precautions,
l Quick Installation Guide (accessible via QR code on SN-XS-Series-170 and SNi10 models),
l Installation guide for mounting the firewall in a rack (SN1100, SN2100, SN3100, SN-L-
Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200 and SN-XL-Series-6200
models).
If any component is missing, contact your distributor immediately.
Page 11/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
SAFETY RULES
Safety rules
Before installing anything, carefully read and follow the safety instructions.
All models except SNi20, SNi40 and SNxr1200
IMPORTANT
You must use the power adapter provided with the product.
Before plugging in any devices
l Ensure that neither your Stormshield product, the power cord nor power adapter is
damaged.
l Ensure that the power supply or power adapter of your firewall is compatible with the
voltage of your power supply network.
l When the product’s power cord or power adapter has a ground pin, it must be plugged into a
properly grounded electrical outlet. Ensure that the connection is reliable and that the
protective earth circuit of your installation complies with safety standards in force.
l To be able to disconnect the product, ensure that the connection to the power supply is
always easily accessible.
Prior to plugging any equipment into a -48VDC power supply module (SN1100,
SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200
and SN-XL-Series-6200 models)
Special considerations for equipment connected to a DC mains supply:
l Please follow IEC, NEC, ANSI/NFPA 70 and CEC, Part I, C22.1 for all relevant field wiring
instructions and cautions. The equipment must be installed by a qualified electrician
l Before using the equipment, the chassis must be permanently and reliably connected to
the protective earth circuit, using a yellow-green cable with these minimum ratings:
o 1.5 mm² (16 AWG) on SN1100, SN2100 and SN3100 models,
o 3.31 mm² (12 AWG) on SN-L-Series-2200, SN-L-Series-3200 and SN6100 models,
o 5.3 mm² (10 AWG) on SN-XL-Series-5200 and SN-XL-Series-6200 models.
l The equipment must be connected to the DC mains supply with an approved switch or
breaker.
l The equipment must only be connected to the DC mains supply with cables that have these
minimum ratings:
o 1.5 mm² (16 AWG) on SN1100, SN2100 and SN3100 models,
o 3.31 mm² (12 AWG) on SN-L-Series-2200, SN-L-Series-3200 and SN6100 models,
o 5.3 mm² (10 AWG) on SN-XL-Series-5200 and SN-XL-Series-6200 models.
Warranty and safety rules
Never take apart a Stormshield Network Security appliance on your own. Only Stormshield,
which markets the Stormshield Network Security range, and its approved maintenance agents
Page 12/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
SAFETY RULES
are authorized to do so. A seal label protects all Stormshield Network Security firewalls from
being opened.
Your warranty will be rendered null and void as soon as you dismantle a Stormshield Network
Security firewall on your own.
IMPORTANT
Never dismantle your Stormshield Network Security appliance, as doing so may cause hardware
accidents and/or bodily harm.
IMPORTANT
Do not insert objects into the appliance’s vents – this may hinder the rotation of an internal fan
or damage it, causing the appliance to overheat. This may also cause a short-circuit that may
lead to the breakdown of the appliance.
IMPORTANT
Copper Ethernet cables connected to your Stormshield Network Security firewall must not be
connected to other appliances located in other buildings.
In line with legal safety requirements, anyone performing any operation on a Stormshield
Network Security range product must know and follow the safety indications below:
To the attention of maintenance teams:
WARNING
DANGER OF EXPLOSION IF BATTERY IS INCORRECTLY REPLACED. REPLACE ONLY WITH SAME OR
EQUIVALENT TYPE RECOMMENDED BY THE MANUFACTURER. DISCARD USED BATTERIES ACCORDING
TO THE MANUFACTURER’S INSTRUCTIONS.
Only qualified personnel from an approved maintenance center can perform operations on this
component.
If a hardware issue occurs on your firewall or if one of the accessories does not match its
description, contact your certified partner.
Installing an appliance outside a rack
Your product must be equipped with its non-slip rubber feet in order to reduce the possibility of
your appliance slipping off the surface on which it has been installed.
These flexible non-slip rubber feet are to be attached to the underside of the chassis on SN160,
SN160W, SN210, SN210W, SN310, SN510, SN-XS-Series-170, SN-S-Series-220, SN-S-Series-
320, SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-Series-920, SN1100 and SNi10
models. Refer to the section Installation precautions for further information.
Assembly in a cabinet
For a racked installation, place heavier appliances in the lower section of the rack and lighter
elements in the higher section. Refer to the section Installation in a 19" cabinet and rack for
details on how to install an appliance in a racking bay.
Page 13/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
SAFETY RULES
Precautions
l Installation kit: use only the installation kit supplied with the product for rack mounting.
l Elevated Operating Ambient Temperature - If installed in a closed or multi-unit rack
assembly, the operating ambient temperature of the rack environment may be greater than
room ambient. Therefore, consideration should be given to installing the equipment in an
environment compatible with the maximum ambient temperature (Tma) specified by the
manufacturer.
l Reduced Air Flow - Installation of the equipment in a rack should be such that the amount of
air flow required for safe operation of the equipment is not compromised.
l Mechanical Loading - Mounting of the equipment in the rack should be such that hazardous
conditions due to uneven mechanical loading are avoided.
l Circuit Overloading - Consideration should be given to the connection of the equipment to
the supply circuit and the effect that overloading of the circuits might have on overcurrent
protection and supply wiring. Appropriate consideration of equipment nameplate ratings
should be used when addressing this concern.
l Reliable Earthing - Reliable earthing of rack-mounted equipment should be maintained.
Particular attention should be given to supply connections other than direct connections to
the branch circuit (e.g. use of power strips).
l Leakage current - considerations should be given to the summation of leakage currents
when installing the equipment in a closed or multi-unit rack assembly.
SNi10, SNi20, SNi40, and SNxr1200 models
Before plugging in any devices
l Ensure that your Stormshield product and its accessories are not damaged.
l Ensure that the electrical characteristics of your product indicated on the product label are
compatible with those of your power supply network
l The chassis of your product must be connected to a protective earth circuit, using rated
minimum 1 mm² wire (16AWG) on SN-XS-Series-170, SNi10, SNi20, SNi40 and SNxr1200
models. Ensure that the connection is permanent and reliable, and that the protective earth
circuit of your installation complies with safety standards in force.
l Before installing or removing your product, ensure that it has been turned off, and that all
power supply connections have been removed.
l Equipment connected to a DC mains supply: please follow IEC, NEC, ANSI/NFPA 70 and CEC,
Part I, C22.1 for all relevant field wiring instructions and cautions. The equipment must be
installed by a qualified electrician Only the CEI standard applies to the SNxr1200.
l The equipment shall be connected to the DC mains supply with an approved switch or
breaker and easily accessible.
l Only wires rated minimum 16AWG or 1 mm² must be used to connect the equipment to the
DC mains supply on SN-XS-Series-170, SNi10, SNi20, SNi40 and SNxr1200 models.
Warranty and safety rules
Never take apart a Stormshield Network Security appliance on your own. Only Stormshield,
which markets the Stormshield Network Security range, and its approved maintenance agents
Page 14/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
SAFETY RULES
are authorized to do so. A seal label protects all Stormshield Network Security firewalls from
being opened.
Your warranty will be rendered null and void as soon as you dismantle a Stormshield Network
Security firewall on your own.
IMPORTANT
Never dismantle your Stormshield Network Security appliance, as doing so may cause hardware
accidents and/or bodily harm.
IMPORTANT
Copper Ethernet cables connected to your Stormshield Network Security firewall must not be
connected to other appliances located in other buildings.
In line with legal safety requirements, anyone performing any operation on a Stormshield
Network Security range product must know and follow the safety indications below:
To the attention of maintenance teams:
WARNING
DANGER OF EXPLOSION IF BATTERY IS INCORRECTLY REPLACED. REPLACE ONLY WITH SAME
OR EQUIVALENT TYPE RECOMMENDED BY THE MANUFACTURER. DISCARD USED BATTERIES
ACCORDING TO THE MANUFACTURER’S INSTRUCTIONS.
Only qualified personnel from an approved maintenance center can perform operations on this
component.
If a hardware issue occurs on your firewall or if one of the accessories does not match its
description, contact your certified partner.
Precautions for assembly in a cabinet
l Installation kit: use only the installation kit supplied with the product.
l Elevated Operating Ambient - If installed in a closed or multi-unit cabinet assembly, the
operating ambient temperature of the cabinet environment may be greater than room
ambient. Therefore, consideration should be given to installing the equipment in an
environment compatible with the maximum ambient temperature (Tma) specified by the
manufacturer.
l Reduced Air Flow - Installation of the equipment in a cabinet should be such that the
amount of air flow required for safe operation of the equipment is not compromised.
l Mechanical Loading - Mounting of the equipment in the cabinet should be such that a
hazardous condition is not achieved due to uneven mechanical loading.
l Circuit Overloading - Consideration should be given to the connection of the equipment to
the supply circuit and the effect that overloading of the circuits might have on overcurrent
protection and supply wiring. Appropriate consideration of equipment nameplate ratings
should be used when addressing this concern.
l Reliable Earthing - Reliable earthing of cabinet-mounted equipment should be maintained.
Particular attention should be given to supply connections other than direct connections to
the branch circuit (e.g. use of terminal blocks)
Page 15/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION PRECAUTIONS
Installation precautions
A firewall is a central device in your network, so it requires special attention. Install it under
optimal conditions.
NOTE
Instructions on how to connect products are also given in the SNS Quick Installation Guide.
Conditions of use (all models except SNi20, SNi40 and SNxr1200)
The Stormshield Network Security firewall is designed to run continuously, in an office or in a
server room. If you wish to install your appliance in an office, choose a flat and uncluttered
surface. Add the non-slip rubber feet to SN160, SN160W, SN210, SN210W, SN310, SN-XS-
Series-170, SN-S-Series-220, SN-S-Series-320, SN510, SN-M-Series-520, SN710, SN910, SN-M-
Series-720, SN-M-Series-920, SN1100 and SNi10 models: stick a non-slip rubber foot to the
underside of the appliance, close to each corner about 2 cm from the edges. This will ensure
the stability of the firewall and protect it from scratches.
IMPORTANT
When firewalls are in storage, they have to be powered up for a 24-hour period at least once
every two years, to allow the internal electrolytic capacitors to reform. Failure to do so may
compromise their reliability.
WARNING
The firewall must be installed in compliance with state-of-the-art conditions of secure installation,
i.e., in a protected office or other premises with limited access. To guarantee the integrity of the
product and to avoid compromising the security of your installation, all unauthorized access to
the firewall must be prevented.
NOTE
Ensure that the cables do not obstruct passageways to prevent them from being pulled out or
the product from falling.
Do not install and/or use your Stormshield firewall close to an area where inflammable objects
are stored or used. Your Stormshield firewall is intended for indoor use (office environment or
other IT environment), away from areas that may receive rainfall, floods or excessive humidity.
It must be installed away from sources of shocks, vibrations, and dust, in an environment
where the temperature conforms to the product's specifications.
The ideal ambient temperature is around 25°C. The tables below set out the operational
temperature, storage temperature and humidity level for all models of SNS range.
Page 16/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION PRECAUTIONS
SN160, SN160W, SN210, SN210W, SN310, SN-S-Series-220, SN-S-Series-320, SN510, SN-M-Series-520,
SN710, SN910, SN-M-Series-720, SN-M-Series-920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-
Series-3200, SN-XL-Series-5200 and SN-XL-Series-6200 models
Operating temperature Relative humidity operating (%) Storage temperature Relative humidity storage
(%)
+0° to +40°C 0% to 95% at +40°C (+104°F) -30° to +65°C 5% to 95% at +60°C (+140°F)
(+32° to +104°F) non-condensing (-22° to +149°F) non-condensing
SN-XS-Series-170 and SNi10 models
Operating temperature Relative humidity operating (%) Storage temperature Relative humidity storage
(%)
-20° to +60°C 0% to 95% at +60°C (+140°F) -40° to +85°C 0% to 95%
(-4° to +140°F) non-condensing (-4° to +185°F) non-condensing
SN6100 model
Operating temperature Relative humidity operating (%) Storage temperature Relative humidity storage
(%)
+0° to +40°C 0% to 90% at +40°C (+104°F) -20° to +70°C 5% to 95%
(+32° to +104°F) non-condensing (-4° to +158°F) non-condensing
IMPORTANT
Avoid in particular direct exposure to sunlight. Always keep adequate distance around the
appliance’s vents in order to guarantee a free flow of air, thereby preventing the possibility of
overheating.
IMPORTANT
Do not place objects on your Stormshield Network appliance.
IMPORTANT
Stormshield Network Security appliances have been tested, and comply with the limits defined
for Class A digital devices, in line with section 15 of the FCC regulation. The purpose of these
limits is to provide reasonable protection from harmful interference that may arise when an
appliance is used in a commercial environment. Stormshield Network Security firewalls generate,
use and potentially emit radioelectric waves that may cause harmful interference to radio
communications if not installed and used according to the instructions in the manual. Using your
appliance in a residential area may cause harmful interference. If this is the case, the user will
need to resolve these issues at his own expense.
Stormshield Network Security firewalls comply with the requirements set out in the European
standard EN55032, Class A. In a residential environment, a Class A product may cause
radioelectric interference, for which the user may need to take appropriate measures.
Conditions of use (SNi10, SNi20, SNi40 and SNxr1200 models)
SNi10, SNi20, SNi40 and SNxr1200 firewalls have been built to run continuously, in a server
room for SNi10, SNi20 and SNi40 appliances, or embedded for the SNxr1200 model.
Page 17/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION PRECAUTIONS
IMPORTANT
When firewalls are in storage, they have to be powered up for a 24-hour period at least once
every two years, to allow the internal electrolytic capacitors to reform. Failure to do so may
compromise their reliability.
WARNING
The firewall must be installed in compliance with state-of-the-art conditions of secure installation,
i.e., in protected premises with limited access. To guarantee the integrity of the product and to
avoid compromising the security of your installation, all unauthorized access to the firewall must
be prevented.
NOTE
Ensure that the cables do not obstruct passageways to prevent them from being pulled out or
the product from falling.
Do not install and/or use your Stormshield firewall close to an area where inflammable objects
are stored or used.
Your SNi10, SNi20 or SNi40 firewall is intended for industrial use (see product specifications),
away from areas that may be vulnerable to rainfall, floods or excessive humidity. It must be
installed away from sources of shocks, vibrations, and dust, in an environment where the
temperature conforms to the product's specifications.
Your SNxr1200 firewall is a built-in system that must be installed under conditions that meet
the environmental qualifications provided by Stormshield (upon request).
The ideal ambient temperature is around 25°C. The tables below set out the operational
temperature, storage temperature and humidity level for SNi10, SNi20, SNi40 and SNxr1200
models.
SNi10, SNi20, SNi40, and SNxr1200 models
Operating Relative humidity operating Relative humidity
Model Storage temperature
temperature (%) storage (%)
-20° to +60°C
SNi10
(-4° to +140°F) 0% to 95%
SNi20 -40° to +70°C 0% to 95% -40° to +85°C non-condensing
and SNxr1200 (-40° to +158°F) non-condensing (-40° to +185°F)
-40° to +75°C 5% to 95%
SNi40
(-40° to +167°F) non-condensing
Page 18/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION PRECAUTIONS
The tables below set out the operational temperature, storage temperature and humidity level
for the power adapter, which is sold separately.
Power adapter for SNi20 (optional) and SNi10 (industrial) models
Relative humidity storage
Operating temperature Relative humidity operating (%) Storage temperature
(%)
-30° to +60°C 20% to 90% -40° to +85°C 10% to 95%
(-22° to +140°F) non-condensing (-40° to 185°F) non-condensing
Power adapter for SNi40 models (optional)
Relative humidity storage
Operating temperature Relative humidity operating (%) Storage temperature
(%)
0° to +40°C 10% to 90% -20° to +70°C 10% to 90%
(+32° to +104°F) non-condensing (-4° to +158°F) non-condensing
Power adapter for SNxr1200 models (optional)*
Relative humidity storage
Operating temperature Relative humidity operating (%) Storage temperature
(%)
-30° to +70°C 20% to 90% -40° to +85°C 10% to 95%
(-22° to +158°F) non-condensing (-40° to +185°F) non-condensing
*approved only for pre-production
IMPORTANT
Avoid in particular direct exposure to sunlight. Always keep an adequate distance around the
appliance (at least 50 mm for the SNxr1200 model) in order to guarantee a free flow of air,
thereby preventing the possibility of overheating.
IMPORTANT
Do not place objects on your Stormshield Network Security appliance.
IMPORTANT
Stormshield Network Security appliances have been tested, and comply with the limits defined
for Class A digital devices, in line with section 15 of the FCC regulation. The purpose of these
limits is to provide reasonable protection from harmful interference that may arise when an
appliance is used in a commercial environment. Stormshield Network Security firewalls generate,
use and potentially emit radioelectric waves that may cause harmful interference to radio
communications if not installed and used according to the instructions in the manual. Using your
appliance in a residential area may cause harmful interference. If this is the case, the user will
need to resolve these issues at his own expense.
Stormshield Network Security firewalls comply with the requirements set out in the European
standard EN55032, Class A. In a residential environment, a Class A product may cause
radioelectric interference, for which the user may need to take appropriate measures.
Connecting to the mains
The supported voltage ranges from 100V to 240V.
Page 19/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION PRECAUTIONS
NOTE
You are strongly advised to connect all appliances to a UPS device. As SN-M-Series-520, SN-M-
Series-720, SN-M-Series-920, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-
Series-5200 and SN-XL-Series-6200 models are equipped with redundant power supplies (option
offered on SN-S-Series-220, SN-S-Series-320, SN1100 and SN2100 models), plugging them into
two separate mains circuits is recommended.
NOTE
In the event of an accidental power cut, the product will automatically start up once it is powered
up again.
NOTE
For SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-
5200 and SN-XL-Series-6200 models, -48VDC power supply modules may be provided
separately upon request.
For SN160, SN160W, SN210, SN210W, SN310, SN-XS-Series-170, SN-S-Series-220, SN-S-Series-
320 and SNi10 models, insert or screw the connector of the power adapter into the power
socket on the rear panel of the firewall. Next, connect the adapter to an appropriate mains
socket using the power cord provided.
For SN510, SN710, SN910 and SN1100 models, insert the plug of the power cord (provided with
the product) into the power socket on the rear panel of the appliance. Next, plug the other end of
the power cord into an appropriate mains socket.
For SN-M-Series-520, SN-M-Series-720, SN-M-Series-920, SN3100, SN-L-Series-2200, SN-L-
Series-3200, SN6100, SN-XL-Series-5200 and SN-XL-Series-6200 models, insert the plugs of
both power cords provided into both power sockets located on the rear panel of the appliance.
Next, plug in the other ends of the power cords into appropriate mains sockets.
Connecting a DC power supply unit (SN-XS-Series-170, SNi10, SNi20, SNi40 and
SNxr1200)
On SN-XS-Series-170, SNi10 and SNi20 models, the supported voltage ranges from 12 VDC to
48 VDC. On SNi40 and SNxr1200 models, the supported voltage ranges from 12 VDC to 36 VDC.
REMINDER
Equipment has to be installed by a qualified electrician.
NOTE
You are strongly advised to connect all appliances to a UPS device. SNi20 and SNi40 models are
equipped with a redundant power supply unit, so we recommend that you connect your
appliance to two independent sources of power.
NOTE
If the power supply is disrupted, the appliance will automatically start up once it is powered up
again.
Page 20/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION PRECAUTIONS
NOTE
A power adapter may be ordered separately.
Connecting to the network
All models except the SNxr1200 are fitted with RJ45 Gigabit Ethernet ports by default. On the
SNxr1200 model, RJ45 Gigabit Ethernet is offered as an option via breakout cables.
SN910, SN-M-Series-520, SNi20 and SNi40 models offer by default two SFP sockets, which
make it possible to insert SFP transceivers, provided as an option.
The SN-M-Series-720, SN-M-series-920, SN1100 and SN6100 models also have by default two
SFP+ sockets, making it possible to insert SFP+ transceivers provided as an option.
SN710, SN910, SN-M-Series-520, SN-M-Series-720, SN-M-Series-920, SN1100, SN2100,
SN3100, SN-L-Series-2200 and SN-L-Series-3200, SN6100, SN-XL-Series-5200 and SN-XL-
Series-6200 models also offer one or several slots for various types of extension modules,
depending on the module reference ordered, that allow Ethernet ports to be added:
l RJ45 copper,
l Or module for SFP transceivers,
l Or module for SFP+ transceivers,
l Or module for SFP28 transceivers,
l Or module for QSFP+ transceivers.
There are:
l One available slot on SN-M-Series-520, SN710, SN910, SN-M-Series-720 and SN-M-Series-
920 models,
l Two available slots on SN1100 models,
l Three available slots on SN2100, SN3100, SN-L-Series-2200 and SN-L-Series-3200 models,
l Eight available slots on SN6100, SN-XL-Series-5200 and SN- XL-Series-6200 models.
IMPORTANT
Use only Stormshield Network-approved SFP (1Gbe), SFP+ (1Gbe/10Gbe), SFP28 (10Gbe/25Gbe)
or QSFP+ (40Gbe) transceivers available in the catalogue.
For information on the type of network cable to choose according to the network port and the
selected connectors, see the sections Extension modules (SN710 and upwards) and Fiber
Ethernet connectors.
Page 21/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION IN A 19" RACK AND CABINET
Installation in a 19" rack and cabinet
All Stormshield Network Security appliances can be installed in 19-inch cabinets (except SNi20,
SNi40 and Snxr1200 models). A rack-mounting system, in the form of a rackable shelf that can
hold two firewalls, can be supplied upon request on SN160, SN160W, SN210, SN210W, SN310,
SN-XS-Series-170, SN-S-Series-220, SN-S-Series-320 and SNi10 models.
SN510, SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-Series-920, SN2100 and
SN3100 models come with a set of brackets. The SN1100 model is sold with a set of brackets
and rails. SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200
and SN-XL-Series-6200 models come with a set of slide rails.
REMINDER
Ensure that the cabinet complies with temperature and humidity conditions indicated in the
section Conditions of use.
NOTE
SN160, SN160W, SN-XS-Series-170 and SNi10 models can also be installed vertically (screws
and fasteners not provided).
Installing SN160, SN160W, SN210, SN210, SN310, SN-XS-Series-170, SN-S-
Series-220, SN-S-Series-320 and SNi10 models on a 19" cabinet shelf
In this non-standard installation, allow a height of more than 1U due to the thickness of the
shelf, the presence of rubber feet below the appliance as well as antennae on Wi-Fi products.
The procedure is as follows:
l Using screws and caged nuts (not provided with the appliance), fasten the shelf to the vertical rails
located at the front of the cabinet.
l Once the shelf has been installed, you can place one or two appliances on it (no additional fastening
is needed).
WARNING
If you are installing two firewalls on the same rack mount shelf, you will need to leave enough
space between the firewalls to avoid obstructing the flow of air from the sides.
Page 22/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION IN A 19" RACK AND CABINET
Installing SN210, SN210W, SN310, SN-XS-Series-170, SN-S-Series-220, SN-S-
Series-320 and SNi10 models on a 19" cabinet 1U shelf
The minimum vertical space needed for installing the shelf is 1U. In this configuration, the shelf
makes it possible to install one or two products. There are indentations to ensure that products
and power adapters are held securely in place.
WARNING
Before any installation, ensure that you have removed the four non-slip rubber feet under each
product.
NOTE
Fasteners for two power adapters are provided with the shelf.
l Place your firewall in front of its slot at the front of the shelf, then set it upright until it is firmly in
place.
l Install and fasten the power adapter on the shelf. Connect it to the firewall.
l Using screws and caged nuts (not provided with the appliance), fasten the shelf to the vertical rails
located at the front of the cabinet.
Kit for USB and network interfaces on the front panel option (not available on SN-XS-
Series-170 and SNi10 models)
In this configuration, the shelf makes it possible to install one product. There are indentations
to ensure that product and power adapter are held securely in place.
NOTE
This kit must be ordered separately.
Page 23/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION IN A 19" RACK AND CABINET
NOTE
This kit allows you to connect the console, via a USB port, and network interfaces on the front
panel of the shelf (cables provided).
l Place your firewall in front of its slot at the front left of the shelf, then set it upright until it is firmly in
place.
l Unscrew the right side of the front panel (two screws).
l Position the kit, then fasten it to the front panel with both screws.
l Install and fasten the power adapter on the shelf. Connect the power adapter to the firewall, as well
as the USB and network ports from the kit.
l Using screws and caged nuts (not provided with the appliance), fasten the shelf to the vertical rails
located at the front of the cabinet.
Page 24/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION IN A 19" RACK AND CABINET
Fastening SN160, SN160W, SN-XS-Series-170 and SNi10 models to a wall
SN160, SN160W, SN-XS-Series-170 and SNi10
models can also be installed vertically using screws
and fasteners (not provided). The screw heads must
be narrower than 8mm in diameter and the diameter
of the shank must not exceed 4mm.
The procedure is as follows:
Place against the wall the 2 screws aligned
horizontally, leaving a space of 12cm (center to
center) between them and letting them protrude
slightly to take into account the thickness of the non-
slip rubber feet.
Once the screws have been drilled into the wall, you
can insert the screw heads into the indentations
meant for this purpose, then gently bring the
appliance downwards in order to insert the screws.
Installing SN510, SN-M-Series-520, SN710, SN910, SN-M-Series-720 and SN-M-
Series-920 models in a 19" cabinet
The minimum vertical space needed for installing an
SNS firewall is 1U.
Once the brackets have been installed, you can fasten
the firewall to the vertical rails located at the front of
your cabinet using screws and the caged nuts (not
provided with the appliance).
Installing SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200,
SN6100, SN-XL-Series-5200 and SN-XL-Series-6200 model in a 19" cabinet
The minimum vertical space needed to install an SN1100, SN2100, SN3100, SN-L-Series-2200
or SN-L-Series-3200 model is 1U, and 2U for an SN6100, SN-XL-Series-5200 or SN-XL-Series-
6200. The processes of mounting lateral rails and installing appliances in racks are described in
SN1100 rack mounting, SN2100-SN3100 rack mounting, SN-L-Series rack mounting, SN6100
Page 25/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INSTALLATION IN A 19" RACK AND CABINET
rack mounting and SN-XL-Series rack mounting. These documents are delivered with SN1100,
SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200 and SN-
XL-Series-6200 models.
The rails that come with the product make it possible to install firewalls in a 19" rack. The depth
between the vertical rails located in the front and back are:
l SN1100: between 655 and 745mm,
l SN2100/SN3100: between 735 and 850mm,
l SN6100: between 620 and 808mm,
l SN-L-Series-2200/SN-L-Series-3200: between 635 and 920mm,
l SN-XL-Series-5200/SN-XL-Series-6200: between 715 and 810mm.
Installing SN-XS-Series-170, SNi10, SNi20 and SNi40 models on DIN rails
To install the appliance in a cabinet, SN-XS-Series-170, SNi10, SNi20 and SNi40 models have a
fastener on a 35mm-wide DIN rail (EN50022 standard).
REMINDER
Ensure that the cabinet complies with temperature and humidity conditions indicated in the
section Conditions of use. Equipment has to be installed by a qualified electrician.
NOTE
SNi20 and SNi40 models must be installed vertically.
The procedure is as follows:
l Hold the appliance facing the DIN
rail, then insert the upper part of the
rail into the notch in the fastener.
Set the appliance upright.
l Push the appliance against the DIN
rail until you hear a click. Ensure
that the position of the appliance
has been locked.
Page 26/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Presentation of the SNS range
Stormshield Network Security firewalls in the SNS range rely on the most advanced
technologies to provide high performance and optimum protection.
NOTE
For more information on Ethernet interfaces, refer to the section Connecting to the network under
Installation precautions.
SN160 and SN160W models
SN160 and SN160W firewalls are fanless. The products come with an external power adapter.
Front panel: LEDs
1 OUT interface
2 IN interface
3 Wi-Fi interface
1 Online LED (green)
2 Status LED (green)
3 Power LED (yellow)
Connectors
The connectors on SN160 and SN160W models are located on the front and rear panels.
1 This is the slot for the SD card*.
2 Plugging in the mains adapter automatically starts this product.
3 The USB port makes it possible to access the product in console mode**; the user can connect to the
firewall directly from a computer. The default baud rate on these models is 115200 baud (8N1).
4 The USB 3.0 port can be used for secure configurations or upgrades. You can also plug a USB key or an
approved USB modem into it.
Page 27/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
5 The USB 2.0 port can be used for secure configurations or upgrades. You can also plug a USB key or an
approved USB modem into it.
SN160 and SN160W models hold five 1Gbe ports:
6 The first zone is the EXTERNAL (OUT) interface, in external mode by default. It makes up the zone that is
needed for connecting to the internet.
7 The second zone is identified by default in INTERNAL (IN) mode. It is made up of 4 switched ports.
8 This is the button for resetting the appliance to its factory settings (defaultconfig).
9 Sockets for Wi-Fi antennae.
* The recommended type of SD card is at least Class 10 (C10) UHS Class 1 (U1) or App Performance 2
(A2). The memory card must be in a full-size physical SD format, in SDHC or SDXC standard. Only
adapters provided with the card must be used. The maximum memory size supported is 2 TB.
Stormshield recommends the use of high-endurance/industrial cards or preferably, those that have a
built-in MLC flash chip developed by major brands (e.g., SanDisk, Western Digital, Innodisk, Transcend,
etc.) and with at least 32 GB.
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
SN210 and SN210W models
SN210 and SN210W firewalls are fanless. The products come with an external power adapter.
Front panel: LEDs
1 OUT interface
2 IN interface
3 DMZ interface
4 Wi-Fi interface
1 Online LED (green)
2 Status LED (green)
3 Power LED (yellow)
Connectors
Page 28/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
The connectors on SN210 and SN210W models are located on the front and rear panels.
1 This is the slot for the SD card*.
2 Plugging in the mains adapter automatically starts this product.
3 The USB port makes it possible to access the product in console mode**; the user can connect to the
firewall directly from a computer. The default baud rate on these models is 115200 baud (8N1).
4 The USB 3.0 port can be used for secure configurations or upgrades. You can also plug a USB key or an
approved USB modem into it.
5 The USB 2.0 port can be used for secure configurations or upgrades. You can also plug a USB key or an
approved USB modem into it.
SN210 and SN210W models hold eight 1GbE ports:
6 The first zone is the EXTERNAL (OUT) interface, in external mode by default. It makes up the zone that is
needed for connecting to the internet.
7 The second zone is identified by default in INTERNAL (IN) mode. It is made up of 6 switched ports.
8 The third zone is identified by default in INTERNAL (DMZ) mode.
9 This is the button for resetting the appliance to its factory settings (defaultconfig).
10 Sockets for Wi-Fi antennae.
* The recommended type of SD card is at least Class 10 (C10) UHS Class 1 (U1) or App Performance 2
(A2). The memory card must be in a full-size physical SD format, in SDHC or SDXC standard. Only adapters
provided with the card must be used. The maximum memory size supported is 2 TB. Stormshield
recommends the use of high-endurance/industrial cards or preferably, those that have a built-in MLC
flash chip developed by major brands (e.g., SanDisk, Western Digital, Innodisk, Transcend, etc.) and with at
least 32 GB.
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
SN310 model
The SN310 firewall is fanless. The product comes with an external power adapter.
Front panel: LEDs
1 OUT interface
2 IN interface
1 Online LED (green)
2 Status LED (green)
3 Power LED (yellow)
Page 29/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Connectors
The connectors on the SN310 model are located on the front and rear panels.
1 This is the slot for the SD card*.
2 Plugging in the mains adapter automatically starts this product.
3 The USB port makes it possible to access the product in console mode**; the user can connect to the
firewall directly from a computer. The default baud rate on these models is 115200 baud (8N1).
4 The USB 3.0 port can be used for secure configurations or upgrades. You can also plug a USB key or an
approved USB modem into it.
5 The USB 2.0 port can be used for secure configurations or upgrades. You can also plug a USB key or an
approved USB modem into it.
The SN310 model offers 8 1Gbe Ethernet ports:
6 The first zone is the EXTERNAL (OUT) interface, in external mode by default. It makes up the zone that is
needed for connecting to the internet.
7 The second zone is the INTERNAL (IN) interface.
8 This is the button for resetting the appliance to its factory settings (defaultconfig).
* The recommended type of SD card is at least Class 10 (C10) UHS Class 1 (U1) or App Performance 2
(A2). The memory card must be in a full-size physical SD format, in SDHC or SDXC standard. Only adapters
provided with the card must be used. The maximum memory size supported is 2 TB. Stormshield
recommends the use of high-endurance/industrial cards or preferably, those that have a built-in MLC
flash chip developed by major brands (e.g., SanDisk, Western Digital, Innodisk, Transcend, etc.) and with at
least 32 GB.
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
SN-XS-Series-170 and SNi10 models
Depending on the license, the SN-XS-Series platform (physical appliance) may either be an SN-
XS-Series-170 or SNi10 model.
Temporary licenses correspond to the SN-XS-Series-170 model by default. A license must be
installed in order to change to an SNi10 model. For further information on updating licenses,
refer to the module Updating the license.
The SN-XS-Series firewall is fanless. The product comes with an external power adapter. SN-XS-
Series firewalls can also use another power supply - a 2-pole threaded connector is provided for
this purpose. The SN-XS-Series model holds 4 2.5Gbe Ethernet interfaces.
Page 30/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Front panel: connectors and LEDs
1 Online LED (green)
2 Status LED (green)
3 Power LED (yellow)
1 A 2-pole threaded connector makes it possible to connect to a 24VDC power supply.
2 This is the button for resetting the appliance to its factory settings (defaultconfig).
3 The USB 3.0 port can be used for secure configurations or upgrades. You can also plug a USB key or an
approved USB modem into it.
4 The USB-C port makes it possible to access the product in console mode*; the user can connect to the
firewall directly from a computer. The default baud rate on this model is 115200 baud (8N1).
5 This is the slot for the microSD card**.
6 The first zone is the EXTERNAL (OUT) interface, in external mode by default. It makes up the zone that is
needed for connecting to the internet.
7 The second zone is the INTERNAL (IN) interface.
8 Connection of the protective earth circuit.
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
** The recommended type of micro SD card is at least Class 10 (C10) UHS Class 1 (U1) or App
Performance 2 (A2). The memory card must be in SDHC or SDXC standard. Only adapters provided with
the card must be used. The maximum memory size supported is 2 TB.
Stormshield recommends the use of high-endurance/industrial cards or preferably, those that have a
built-in MLC flash chip developed by major brands (e.g., SanDisk, Western Digital, Innodisk, Transcend,
etc.) and with at least 32 GB.
SN-S-Series-220 and SN-S-Series-320 models
Depending on the license, the SN-S-Series platform (physical appliance) may either be an SN-S-
Series-220 or SN-S-Series-320 model.
Temporary licenses correspond to the SN-S-Series-220 model by default. A license must be
installed in order to upgrade to an SN-S-Series-320 model. For further information on upgrading
licenses, refer to the section Updating the license.
The SN-S-Series firewall is fanless. The product comes with an external power adapter.
Front panel: LEDs
1 OUT interface
2 IN interface
1 Online LED (green)
2 Status LED (green)
3 Power 2 LED (yellow)
4 Power 1 LED (yellow)
Page 31/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Connectors
The connectors on the SN-S-Series model are located on the front and rear panels.
1 This is the slot for the SD card*.
2 Two mains sockets to be screwed in for redundant power supplies. Plugging in a mains adapter
automatically starts this product.
3 The USB-C port makes it possible to access the product in console mode**; the user can connect to the
firewall directly from a computer. The default baud rate on this model is 115200 baud (8N1).
4 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
The SN-S-Series model holds 8 Gigabit Ethernet interfaces.
5 The first zone is the EXTERNAL (OUT) interface, in external mode by default. It makes up the zone that is
needed for connecting to the internet.
6 The second zone is the INTERNAL (IN) interface.
7 This is the button for resetting the appliance to its factory settings (defaultconfig).
* The recommended type of micro SD card is at least Class 10 (C10) UHS Class 1 (U1) or App Performance
2 (A2). The memory card must be in SDHC or SDXC standard. Only adapters provided with the card must be
used. The maximum memory size supported is 2 TB.
Stormshield recommends the use of high-endurance/industrial cards or preferably, those that have a
built-in MLC flash chip developed by major brands (e.g., SanDisk, Western Digital, Innodisk, Transcend,
etc.) and with at least 32 GB.
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
SN510 and SN710 models
Front panel: connectors and LEDs
1 Online LED (green)
2 Status LED (green)
3 Power LED (yellow)
1 This is the button for resetting the appliance to its factory settings (defaultconfig).
2 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on these models is 115200 baud (8N1).
3 Two USB 2.0 ports that can be used for secure configurations or upgrades. You can also plug a USB key
or an approved USB modem into it.
Page 32/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
4 The Power, Status and Online (from bottom to top) LEDs.
5 The Reset button: electrically resets the firewall.
SN510 model
This product has an internal power supply. 1 OUT interface
The SN510 model offers 12 1Gbe ports: 2 IN interface
SN710 model
This product has an internal power supply. 1 OUT interface
The SN710 model offers 8 1Gbe ports: It allows the addition of one 2 IN interface
extension module with RJ45 (1Gbps) or fiber (1Gbps or 10Gbps)
connectors.
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
Rear panel: connectors
The socket for the power cord is located on the rear panel of the product. A switch makes it
possible to turn the product on or off.
SN-M-Series-520 models
It has two internal power supply units to provide a redundant power supply.
Front panel: connectors and LEDs
1 OUT interface
2 IN interface
The SN-M-Series platform holds 8 2.5Gbe Ethernet interfaces by default (10Mbe, 100Mbe, 1Gbe
and 2.5Gbe) and 2 SFP sockets for adding 1Gbe transceivers. On this model, 1 extension
module can be added with RJ45 (1Gbps, 2.5Gbps or 10Gbps) or fiber (1Gbps, 10Gbps or
25Gbps) connectors.
Page 33/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
1 Online LED (green)
2 Status LED (green)
3 Power 2 LED (yellow)
4 Power 1 LED (yellow)
1 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on this model is 115200 baud (8N1).
2 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
3 This is the button for resetting the appliance to its factory settings (defaultconfig).
4 The Reset button: electrically resets the firewall.
5 The USB-C port makes it possible to access the product in console mode*; the user can connect to the
firewall directly from a computer. The default baud rate on this model is 115200 baud (8N1).
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
Rear panel: connectors
1 Connection of the protective earth circuit.
2 Two Power buttons to switch the firewall on or off.
3 Two mains sockets for redundant power supplies.
SN910 model
This product has an internal power supply.
Front panel: connectors and LEDs
1 OUT interface
2 IN interface
The SN910 model holds 8 1Gbe Ethernet interfaces and 2 SFP sockets for adding 1Gbe Ethernet
transceivers. It allows the addition of one extension module with RJ45 (1Gbps) or fiber (1Gbps
or 10Gbps) connectors.
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
Page 34/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
1Power LED (green)
2SSD activity LED
(red)
1 This is the button for resetting the appliance to its factory settings (defaultconfig).
2 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on these models is 9600 baud (8N1).
3 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
4 The Power and SSD activity LEDs (from top to bottom).
5 The Reset button: electrically resets the Firewall.
6 LCD screen: indicates the version of the firmware installed, the active partition, the serial number of the
product as well as the HA status if it has been enabled.
Rear panel: connectors
1 The mains socket.
2 The product’s on/off switch.
3 The USB 2.0 port can be used for secure configurations or upgrades. You may also plug in a USB key,
USB keyboard or approved USB modem.
4 The VGA port makes it possible to connect a monitor.
SN-M-Series-720 and SN-M-Series-920 models
Depending on the license, the SN-M-Series platform (physical appliance) may either be an SN-
M-Series-720 or SN-M-Series-920 model.
Temporary licenses correspond to the SN-M-Series-720 model by default. A license must be
installed in order to upgrade to an SN-M-Series-920 model. For further information on updating
licenses, refer to the module Updating the license.
It has two internal power supply units to provide a redundant power supply.
Front panel: connectors and LEDs
1 OUT interface
2 IN interface
The SN-M-Series platform holds 8 2.5Gbe interfaces by default (backward compatible between
100Mbe/1Gbe) and 2 SFP+ sockets for adding 1Gbe/10Gbe transceivers. On this model, 1
Page 35/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
extension module can be added with RJ45 (1Gbps or 10Gbps) or fiber (1Gbps, 10Gbps or
25Gpbs) connectors.
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
1 Online LED (green)
2 Status LED (green)
3 Power 2 LED (yellow)
4 Power 1 LED (yellow)
1 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on this model is 115200 baud (8N1).
2 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
3 This is the button for resetting the appliance to its factory settings (defaultconfig).
4 The Reset button: electrically resets the firewall.
5 The USB-C port makes it possible to access the product in console mode*; the user can connect to the
firewall directly from a computer. The default baud rate on this model is 115200 baud (8N1).
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
Rear panel: connectors
1 Connection of the protective earth circuit.
2 Two Power buttons to switch the firewall on or off.
3 Two mains sockets for redundant power supplies.
SN1100 model
This product has a removable power supply.
A second power supply module can be ordered separately for redundant power supply.
Front panel: connectors and LEDs
1 OUT interface
2 IN interface
The SN1100 model holds 8 1Gbe ports by default and 2 SFP+ sockets for adding 1Gbe/10Gbe
transceivers. On this model, 2 extension modules can be added with RJ45 (1Gbps, 2.5Gbps or
10Gbps) or fiber (1Gbps, 10Gbps or 25Gbps) connectors.
Page 36/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
1 Online LED (green)
2 Status LED (green)
3 Power LED (yellow)
1 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on this model is 115200 baud (8N1).
2 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
3 The Reset button: electrically resets the firewall.
4 This is the button for resetting the appliance to its factory settings (defaultconfig).
5 The USB port allows accessing the appliance in console mode*; it is possible to log on to the Firewall
directly using a computer. The default baud rate on this model is 115200 baud (8N1).
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
Rear panel: connectors
1 The HDMI port makes it possible to connect a monitor.
2 The USB 3.0 port can be used for secure configurations or upgrades. You may also plug in a USB key,
USB keyboard or approved USB modem.
3 The power button makes it possible to switch the firewall on or off.
4 The mains socket. Modules are hot-swappable on products with a redundant power supply.
5 The Alarm off button. The alarm rings when a power supply module is missing or when there is a power
failure on either module. Press this button to deactivate the alarm.
6 Connection of the protective earth circuit.
SN2100 and SN3100 models
Front panel: connectors and LEDs
1 Online LED (green)
2 Status LED (green)
3 Power LED (yellow)
1 This is the button for resetting the appliance to its factory settings (defaultconfig).
2 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
3 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on these models is 115 200 baud (8N1).
Page 37/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
4 SSD racks for log storage (1 SSD by default on SN2100 models, RAID available as an option, 2 in RAID 1
on SN3100 models). Disks are hot-swappable on products in a RAID setup.
5 The LEDs on SSD racks confirm whether the SSD has been accessed (blue LED on the right) and
installed (green LED on the left).
SN2100 model
This product has an internal removable power supply and is equipped 1 OUT interface
with an SSD. 2 IN interface
A second power supply module can be ordered separately for redundant power supply. You can
also order a second SSD for a RAID installation.
The SN2100 model offers 2 1Gbe Ethernet interfaces and allows the addition of 3 extension
modules with RJ45 (1Gbps, 2.5Gbps or 10Gbps) or fiber (1Gbps, 10Gbps, 25Gbps or 40Gbps)
connectors.
NOTE
For this model, network extension modules are sold separately and must be ordered.
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
SN3100 model
This product has redundant internal power supplies. Two removable 1 OUT interface
SSDs are installed in a RAID configuration. 2 IN interface
The SN3100 model offers 2 1Gbe Ethernet interfaces and allows the addition of 3 extension
modules with RJ45 (1Gbps, 2.5Gbps or 10Gbps) or fiber (1Gbps, 10Gbps, 25Gbps or 40Gbps)
connectors.
NOTE
For this model, network extension modules are sold separately and must be ordered.
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
Page 38/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Rear panel: connectors
1 The power button makes it possible to switch the firewall on or off.
2 Three independent hot-swappable fans in the event of a breakdown.
3 The Reset button: electrically resets the firewall.
4 Two ports dedicated to the management of the appliance (MGMT1 and MGMT2).
5 The HDMI port makes it possible to connect a monitor.
6 A mains socket (SN2100) or two mains sockets (SN3100) for redundant power supplies. Modules are
hot-swappable on products with a redundant power supply.
7 The Alarm off button. The alarm rings when a power supply module is missing or when there is a power
failure on either module. Press this button to deactivate the alarm.
SN-L-Series-2200 and SN-L-Series-3200 models
Depending on the license, the SN-L-Series platform (physical appliance) may either be an SN-L-
Series-2200 or SN-L-Series-3200 model.
Temporary licenses correspond to the SN-L-Series-2200 model by default. A license must be
installed in order to upgrade to an SN-L-Series-3200 model. For further information on
upgrading licenses, refer to the section Updating the license.
It has two internal power supply units to provide a redundant power supply.
Front panel: connectors and LEDs
1 OUT interface
2 IN interface
The SN-L-Series platform holds 2 2.5Gbe Ethernet interfaces by default (backward compatible
with 100Mbe/1Gbe interfaces). On this model, 3 extension modules can be added with RJ45
(2.5Gbps or 10Gbps) or fiber (1Gbps, 10Gbps or 40Gbps) connectors.
NOTE
For this model, network extension modules are sold separately and must be ordered.
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
Page 39/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
NOTE
Bandwidth on the following extension modules has been limited to 30Gbps if these modules are
placed in slot 1:
l 4 x 10Gbps SFP+,
l 4 x 10Gbps RJ45,
l 2 x 40Gbps QSFP+.
1 Online LED (green)
2 Status LED (green)
3 Power 2 LED (yellow)
4 Power 1 LED (yellow)
1 The USB-C port makes it possible to access the product in console mode*; the user can connect to the
firewall directly from a computer. The default baud rate on this model is 115200 baud (8N1).
2 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on this model is 115200 baud (8N1).
3 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
4 Two ports dedicated to the management of the appliance (MGMT1 and MGMT2).
5 SSD racks for log storage (2 SSD in RAID1 1 and hot-swappable). The LEDs on racks confirm that
installation (green LED at the top) and access (yellow LED at the bottom) have been successful.
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
Rear panel: connectors
1 Connection of the protective earth circuit.
2 The power button makes it possible to switch the firewall on or off.
3 The USB 3.0 port can be used for secure configurations or upgrades. You can also plug a USB key or an
approved USB modem into it.
4 The HDMI port makes it possible to connect a monitor.
5 Two mains sockets for redundant power supplies. These modules are hot-swappable.
Page 40/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
SN6100 model
Front panel: connectors and LEDs
1Power LED (green)
2Run LED (green)
3SSD activity LED (yellow)
1 SSD racks for log storage (2 SSD in RAID1 1 and hot-swappable). The LEDs on racks confirm that
installation (green LED at the top) and access (yellow LED at the bottom) have been successful.
2 The Reset button: electrically resets the firewall.
3 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
4 MGMT1 and MGMT2: two SFP+ sockets, allowing the insertion of SFP+ transceivers, provided as an
option. Both of these ports are dedicated to the management of the appliance or the configuration of
high availability.
5 The IPMI network port dedicated to the administration of the appliance via IPMI. Refer to the appendix
Configuration and administration via IPMI.
6 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on this model is 115 200 baud (8N1).
SN-XL-Series-5200 or SN-XL-Series-6200 models
Depending on the license, the SN-XL-Series platform (physical appliance) may either be an SN-
XL-Series-5200 or SN-XL-Series-6200 model.
Temporary licenses correspond to the SN-XL-Series-5200 model by default. A license must be
installed in order to upgrade to an SN-XL-Series-6200 model. For further information on
updating licenses, refer to the module Updating the license.
It has two internal power supply units to provide a redundant power supply.
Front panel: connectors and LEDs
Page 41/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
1 OUT interface
2 IN interface
The SN-XL-Series platform holds 2 2.5Gbe Ethernet interfaces by default (backward compatible
with 100Mbe/1Gbe interfaces). On this model, 8 extension modules can be added with RJ45
(2.5Gbps or 10Gbps) or fiber (1Gbps, 10Gbps or 40Gbps) connectors.
NOTE
For this model, network extension modules are sold separately and must be ordered.
Specifications of Stormshield Network-approved extension modules and transceivers are set
out in sections Extension modules (SN710 and upwards) and Fiber Ethernet connectors.
1 Online LED (green)
2 Status LED (green)
3 Power 2 LED (yellow)
4 Power 1 LED (yellow)
1 SSD racks for log storage (2 SSD in RAID1 1 and hot-swappable). The LEDs on racks confirm that
installation (green LED at the top) and access (yellow LED at the bottom) have been successful.
2 The USB-C port makes it possible to access the product in console mode*; the user can connect to the
firewall directly from a computer. The default baud rate on this model is 115200 baud (8N1).
3 The serial port enables access to the product in console mode; the user can connect to the firewall
directly from a computer. The default baud rate on this model is 115200 baud (8N1).
4 Two USB 3.0 ports that can be used for secure configurations or upgrades. You may also plug in a USB
key, USB keyboard or approved USB modem.
5 Two ports dedicated to the management of the appliance (MGMT1 and MGMT2).
6 The IPMI network port dedicated to the administration of the appliance via IPMI. Refer to the appendix
Configuration and administration via IPMI.
* This connection in console mode requires the installation of a third party driver. Depending on your
operating system, you can download a driver from: [Link]
Rear panel: connectors
1 Connection of the protective earth circuit.
2 Five independent hot-swappable fans in the event of a breakdown.
Page 42/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
3 The USB 2.0 port can be used for secure configurations or upgrades. You may also plug in a USB key,
USB keyboard or approved USB modem.
4 The VGA port makes it possible to connect a monitor.
5 The power button makes it possible to switch the firewall on or off.
6 The Alarm off button. The alarm rings when a power supply module is missing or when there is a power
failure on either module. Press this button to deactivate the alarm.
7 Two mains sockets for redundant power supplies. These modules are hot-swappable.
SNi20 model
In order to ensure service continuity in an industrial setting, the SNi20 firewall is equipped with
a hardware bypass function, which when enabled, allows network traffic to pass through in the
event of a power outage or appliance breakdown.
This feature, available from version 4.1 onwards, is disabled by default. If you want to allow
bypass to be enabled, high availability must not be configured on the appliance.
The SNi20 multi-function firewall is fanless.
This appliance is equipped with a 48VDC redundant power supply; the 6-pole screw terminal
connector provided allows connecting to two independent sources of power.
Connectors and LEDs
1 OUT interface
2 IN interface
The SNi20 model holds 4 1Gbe Ethernet interfaces
and 2 SFP* sockets for adding 1Gbe Ethernet
transceivers.
Specifications of Stormshield Network-approved
transceivers are set out in the sections Optional
Ethernet Transceivers and Fiber Ethernet connectors.
* may vary by license.
Page 43/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
1Power LED (green)
2Bypass LED (off/green/red)
3Run LED (green)
4Power in 1 OK LED (green)
5Power in 2 OK LED (green)
1 The Reset button (underside): resets the
firewall’s electrical supply.
2 This is the button for resetting the appliance to
its factory settings (defaultconfig).
3 The serial port enables access to the product
in console mode; the user can connect to the
firewall directly from a computer. The default
baud rate on this model is 115 200 baud
(8N1).
4 The USB 3.0 ports can be used for secure
configurations or upgrades. You can also plug a
USB key or an approved USB modem into it.
5 Two network ports dedicated to Ethernet
Bypass (may vary by license).
6 The micro HDMI port makes it
possible to connect a monitor.
7 This is the slot for the SD card*.
8 This 6-pole screw terminal connector
enables connection to a 48VDC
redundant power supply and a P-Fail
relay.
9 Connection of the protective earth
circuit.
* The recommended type of SD card is at least Class 10 (C10) UHS Class 1 (U1) or App Performance 2
(A2). The memory card must be in a full-size physical SD format, in SDHC or SDXC standard. Only
adapters provided with the card must be used. The maximum memory size supported is 2 TB.
Stormshield recommends the use of high-endurance/industrial cards or preferably, those that have a
built-in MLC flash chip developed by major brands (e.g., SanDisk, Western Digital, Innodisk, Transcend,
etc.) and with at least 32 GB.
IMPORTANT
On SNi20 appliances, use a Phillips PH1 screwdriver to remove the screws from the SD card
reader cache. Insert the SD card, then put back the SD card reader cache to guarantee that the
SNi20 is airtight.
Page 44/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Bypass LED
Color Status Status
Off Bypass feature disabled (default status, Security mode).
Green On Bypass feature configure in Safety mode. The Bypass mechanism will be enabled
whenever the appliance breaks down or there is a power outage.
Red On Bypass mechanism enabled.
Redundant power supply and P-Fail (Power Failure) relay
REMINDER
Before plugging any equipment into a DC power supply module, read the security rules carefully
and follow them.
Both electrical power supplies can be connected to the SNi20 to provide a redundant power
source. Connect the power supplies according to the diagram shown in Connectors and LEDs
A P-Fail relay makes it possible to detect an abnormal status on a power supply. You can connect
this relay to a sound or light alarm, such as a buzzer or a LED, equipped with an independent power
supply. To do so, connect the external power supply of the alarm to the third and fourth pins. If both
power supplies run at the same time, the alarm will be short-circuited. If either power supply is
defective, the alarm will go off. The highest intensity that this relay supports is 1A.
SNi40 model
In order to ensure service continuity in an industrial setting, the SNi40 firewall is equipped with
a hardware bypass function, which when enabled, allows network traffic to pass through in the
event of a power outage or appliance breakdown.
This feature, available from version 3.0 onwards, is disabled by default. If you want to allow
bypass to be enabled, high availability must not be configured on the appliance.
The SNi40 multi-function firewall is fanless.
This appliance is equipped with a 24 VDC redundant power supply; the 6-pole screw terminal
connector provided allows connecting to 2 independent sources of power.
Page 45/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Connectors and LEDs
1 OUT interface
2 IN interface
The SNi40 model holds 5 1Gbe Ethernet interfaces and 2
SFP sockets for adding 1Gbe Ethernet transceivers.
Specifications of Stormshield Network-approved
transceivers are set out in the sections Optional Ethernet
Transceivers and Fiber Ethernet connectors.
Page 46/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
1SSD activity LED (yellow)
2Run LED (green)
3Power LED (green)
1 Two network ports
dedicated to Ethernet
Bypass.
2 The USB 2.0 port can be
used for secure
configurations or upgrades.
You can also plug a USB key
or an approved USB modem
into it.
3 The USB 3.0 port can be
used for secure
configurations or upgrades.
You can also plug a USB key
or an approved USB modem
into it.
4 The serial port enables
access to the product in
console mode; the user can
connect to the firewall
directly from a computer.
The default baud rate on
this model is 115 200 baud
(8N1).
5 The Reset button
(underside): resets the
firewall’s electrical supply.
6 Connection of the protective
earth circuit.
7 This 6-pole screw terminal
connector enables
connection to a 24VDC
redundant power supply
and a P-Fail relay.
Redundant power supply and P-Fail (Power Failure) relay
REMINDER
Before plugging any equipment into a DC power supply module, read the security rules carefully
and follow them.
Both electrical power supplies can be connected to the SNi40 to provide a redundant power
source. Connect the power supplies according to the diagram shown in Connectors and LEDs
A P-Fail relay makes it possible to detect an abnormal status on a power supply. You can
connect this relay to a sound or light alarm, such as a buzzer or a LED, equipped with an
independent power supply. To do so, connect the external power supply of the alarm to the
third and fourth pins. If both power supplies run at the same time, the alarm will be short-
circuited. If either power supply is defective, the alarm will go off. The recommended intensity
for this relay is 30 VDC, 2A or 60W.
Page 47/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
SNxr1200 model
Connectors and LEDs
1Power LED (green)
1 Connection of the protective earth
circuit.
Plugging in connectors
To access your firewall from a client workstation, you will need to connect on the IN or “Internal” port,
or on another port (except the OUT port) located on connectors J3 or J4.
For further information, refer to the section on Network connectors, under IN/OUT definition.
For testing purposes, an IT connection kit (breakout cables) is
available as an option. This kit is not intended for use in a
production environment.
To connect the cables, engage the coded pins according to the
diagram opposite (coded pins specific to each connector), then
screw firmly to ensure that the product is watertight.
J1 connectors
J1 connectors, which cater to the product’s power supply, are described below.
The power adapter (provided as an option) is plugged into the breakout cable (“IT connection
kit” provided as an option) corresponding to this connector.
Pin Signal
J1.1 VIN_28+
J1.2 VIN_28-
J1.3 n/a
Page 48/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
J2 connectors
J2 connectors correspond to the following
connectors:
l 2 push buttons: ON/OFF switch and Reset button
(resets the firewall’s electrical supply),
l 1 DVI output port,
l 2 USB 2.0 ports,
l 1 RJ45 1Gbps Ethernet port,
l 1 RS232 serial port,
l 1 RS422 serial port,
"IT connection kit" connectors
2 push buttons: Details Pin Signal 1 Ethernet port Details Pin Signal
ON/OFF switch ON J2.10 POWER_BUTTON+ RJ45 1Gbps OUT 1 J2.32 ETH1_MDI0+
and Reset button OFF J2.11 POWER_BUTTON- J2.33 ETH1_MDI0-
(electrically resets RESET J2.17 RESET_BUTTON+ J2.34 ETH1_MDI1+
the firewall) J2.18 RESET_BUTTON- J2.35 ETH1_MDI1-
J2.36 ETH1_MDI2+
J2.37 ETH1_MDI2-
J2.38 ETH1_MDI3+
J2.39 ETH1_MDI3-
1 DVI output port Pin Signal 1 RS232 serial port Pin Signal
J2.2 DVI_DATA2+ J2.45 RS232_SER0_TX
J2.3 DVI_DATA2- J2.46 RS232_SER0_RX
J2.4 DVI_DDCCLK
J2.5 DVI_DDCDATA
J2.6 DVI_HPD
J2.2 DVI_DATA2+
2 USB 2.0 ports Details Pin Signal 1 RS422 serial port Pin Signal
USB no. 1J2.47 USB0_5VDC J2.40 RS422_SER0_RXN
J2.48 USB0- J2.41 RS422_SER0_RXP
J2.49 USB0+ J2.42 RS422_SER0_TXN
J2.50 USB0_GND J2.43 RS422_SER0_TXP
USB no. 2J2.51 USB1_GND
J2.53 USB1_5VDC
J2.54 USB1-
J2.55 USB1+
Overview of J2 connectors
Pin Signal Pin Signal Pin Signal
J2.1 GND J2.21 n/a J2.41 RS422_SER0_RXP
J2.2 DVI_DATA2+ J2.22 GND J2.42 RS422_SER0_TXN
J2.3 DVI_DATA2- J2.23 DVI_CLK+ J2.43 RS422_SER0_TXP
J2.4 DVI_DDCCLK J2.24 DVI_CLK- J2.44 GND
J2.5 DVI_DDCDATA J2.25 n/a J2.45 RS232_SER0_TX
J2.6 DVI_HPD J2.26 n/a J2.46 RS232_SER0_RX
J2.7 GND J2.27 n/a J2.47 USB0_5VDC
J2.8 DVI_DATA1+ J2.28 n/a J2.48 USB0-
J2.9 DVI_DATA1- J2.29 n/a J2.49 USB0+
J2.10 POWER_BUTTON+ J2.30 n/a J2.50 USB0_GND
J2.11 POWER_BUTTON- J2.31 n/a J2.51 USB1_GND
J2.12 GND J2.32 ETH1_MDI0+ J2.52 GND
J2.13 DVI_5VDC J2.33 ETH1_MDI0- J2.53 USB1_5VDC
J2.14 GND J2.34 ETH1_MDI1+ J2.54 USB1-
J2.15 DVI_DATA0+ J2.35 ETH1_MDI1- J2.55 USB1+
J2.16 DVI_DATA0- J2.36 ETH1_MDI2+
J2.17 RESET_BUTTON+ J2.37 ETH1_MDI2-
J2.18 RESET_BUTTON- J2.38 ETH1_MDI3+
J2.19 +5VDC_STANDBY (*1) J2.39 ETH1_MDI3-
J2.20 GND J2.40 RS422_SER0_RXN
(*1) +5VDC_STANDBY limited to 0.2A
(*2) VBUS0, VBUS1: 0.5A for each voltage (0.8A max)
Page 49/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
J3 connectors
J3 connectors correspond to the following
connectors:
l 2 USB 2.0 ports,
l 2 RJ45 1Gbps Ethernet ports,
l 1 RS232 serial port,
l 1 RS422 serial port,
"IT connection kit" connectors
2 USB 2.0 ports Details Pin Signal 1 RS232 serial port Pin Signal
USB no. J3.75 USB2_GND J3.70 RS232_1_RX
1 J3.76 USB2- J3.71 RS232_1_TX
J3.77 USB2+
J3.78 USB2_5VDC
USB no. J3.82 USB3_5VDC
2 J3.83 USB3+
J3.84 USB3-
J3.85 USB3_GND
2 Ethernet ports Details Pin Signal 1 RS422 serial port Pin Signal
RJ45 1Gbps DMZ2 J3.1 ETH4_MDI0+ J3.73 RS422_1_RX+
J3.2 ETH4_MDI0- J3.74 RS422_1_RX-
J3.3 ETH4_MDI1+ J3.80 RS422_1_TX-
J3.4 ETH4_MDI1- J3.81 RS422_1_TX+
J3.11 ETH4_MDI2+
J3.10 ETH4_MDI2-
J3.9 ETH4_MDI3+
J3.8 ETH4_MDI3-
DMZ3 J3.31 ETH5_MDI0+
J3.32 ETH5_MDI0-
J3.33 ETH5_MDI1+
J3.34 ETH5_MDI1-
J3.35 ETH5_MDI2+
J3.36 ETH5_MDI2-
J3.37 ETH5_MDI3+
J3.38 ETH5_MDI3-
Overview of J3 connectors
Pin Signal Pin Signal Pin Signal Pin Signal Pin Signal
J3.1 ETH4_MDI0+ J3.21 n/a J3.41 n/a J3.61 LINE_OUTn/a_L J3.81 RS422_1_TX+
J3.2 ETH4_MDI0- J3.22 n/a J3.42 n/a J3.62 LINE_OUTn/a_GND J3.82 USB3_5VDC
J3.3 ETH4_MDI1+ J3.23 n/a J3.43 n/a J3.63 LINE_OUTn/a_R J3.83 USB3+
J3.4 ETH4_MDI1- J3.24 n/a J3.44 n/a J3.64 n/a J3.84 USB3-
J3.5 n/a J3.25 n/a J3.45 n/a J3.65 n/a J3.85 USB3_GND
J3.6 n/a J3.26 n/a J3.46 n/a J3.66 n/a
J3.7 n/a J3.27 n/a J3.47 n/a J3.67 n/a
J3.8 ETH4_MDI3- J3.28 n/a J3.48 n/a J3.68 LINE_IN_L
J3.9 ETH4_MDI3+ J3.29 n/a J3.49 n/a J3.69 LINE_IN_R
J3.10 ETH4_MDI2- J3.30 n/a J3.50 n/a J3.70 RS232_1_RX
J3.11 ETH4_MDI2+ J3.31 ETH5_MDI0+ J3.51 n/a J3.71 RS232_1_TX
J3.12 n/a J3.32 ETH5_MDI0- J3.52 n/a J3.72 GND
J3.13 n/a J3.33 ETH5_MDI1+ J3.53 n/a J3.73 RS422_1_RX+
J3.14 n/a J3.34 ETH5_MDI1- J3.54 n/a J3.74 RS422_1_RX-
J3.15 n/a J3.35 ETH5_MDI2+ J3.55 n/a J3.75 USB2_GND
J3.16 n/a J3.36 ETH5_MDI2- J3.56 n/a J3.76 USB2-
J3.17 n/a J3.37 ETH5_MDI3+ J3.57 n/a J3.77 USB2+
J3.18 n/a J3.38 ETH5_MDI3- J3.58 n/a J3.78 USB2_5VDC
J3.19 n/a J3.39 n/a J3.59 GND J3.79 GND
J3.20 n/a J3.40 n/a J3.60 LINE_IN_Cn/aOM J3.80 RS422_1_TX-
Page 50/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
J4 connectors
J4 connectors correspond to the following
connectors:
l 2 RJ45 1Gbps Ethernet ports,
l 1 GPIO COM port.
"IT connection kit" connectors
2 Ethernet ports Details Pin Signal 1 GPIO COM port Pin Signal
RJ45 1Gbps IN 2 J4.1 ETH2_MDI0+ J4.20 GPO3
J4.2 ETH2_MDI0- J4.29 GPO2
J4.3 ETH2_MDI1+ J4.48 GPI2
J4.4 ETH2_MDI1- J4.58 GPI3
J4.11 ETH2_MDI2+
J4.10 ETH2_MDI2-
J4.9 ETH2_MDI3+
J4.8 ETH2_MDI3-
DMZ1 J4.55 ETH3_MDI0+
J4.56 ETH3_MDI0-
J4.57 ETH3_MDI1+
J4.66 ETH3_MDI1-
J4.65 ETH3_MDI2+
J4.64 ETH3_MDI2-
J4.63 ETH3_MDI3+
J4.62 ETH3_MDI3-
Overview of J4 connectors
Pin Signal Pin Signal Pin Signal Pin Signal Pin Signal
4.1 ETH2_MDI0+ J4.21 n/a J4.41 n/a J4.61 n/a J4.81 n/a
J4.2 ETH2_MDI0- J4.22 n/a J4.42 n/a J4.62 ETH3_MDI3- J4.82 n/a
J4.3 ETH2_MDI1+ J4.23 n/a J4.43 n/a J4.63 ETH3_MDI3+ J4.83 n/a
J4.4 ETH2_MDI1- J4.24 n/a J4.44 n/a J4.64 ETH3_MDI2- J4.84 n/a
J4.5 n/a J4.25 n/a J4.45 n/a J4.65 ETH3_MDI2+ J4.85 n/a
J4.6 n/a J4.26 n/a J4.46 n/a J4.66 ETH3_MDI1-
J4.7 n/a J4.27 n/a J4.47 n/a J4.67 n/a
J4.8 ETH2_MDI3- J4.28 n/a J4.48 GPI2 J4.68 n/a
J4.9 ETH2_MDI3+ J4.29 GPO2 J4.49 n/a J4.69 n/a
J4.10 ETH2_MDI2- J4.30 n/a J4.50 n/a J4.70 n/a
J4.11 ETH2_MDI2+ J4.31 n/a J4.51 n/a J4.71 n/a
J4.12 n/a J4.32 n/a J4.52 n/a J4.72 n/a
J4.13 n/a J4.33 n/a J4.53 n/a J4.73 n/a
J4.14 n/a J4.34 n/a J4.54 n/a J4.74 n/a
J4.15 n/a J4.35 n/a J4.55 ETH3_MDI0+ J4.75 n/a
J4.16 n/a J4.36 n/a J4.56 ETH3_MDI0- J4.76 n/a
J4.17 n/a J4.37 n/a J4.57 ETH3_MDI1+ J4.77 n/a
J4.18 n/a J4.38 n/a J4.58 GPI3 J4.78 n/a
J4.19 n/a J4.39 GND J4.59 n/a J4.79 n/a
J4.20 GPO3 J4.40 n/a J4.60 n/a J4.80 n/a
Page 51/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
PRESENTATION OF THE SNS RANGE
Overview of RJ45 Ethernet connectors
To summarize, RJ45 Ethernet ports are arranged as follows:
Port Signal Pin Port Signal Pin
OUT 1 ETH1_MDI0+ J2.32 IN 2 ETH2_MDI0+ J4.1
ETH1_MDI0- J2.33 ETH2_MDI0- J4.2
ETH1_MDI1+ J2.34 ETH2_MDI1+ J4.3
ETH1_MDI1- J2.35 ETH2_MDI1- J4.4
ETH1_MDI2+ J2.36 ETH2_MDI2+ J4.11
ETH1_MDI2- J2.37 ETH2_MDI2- J4.10
ETH1_MDI3+ J2.38 ETH2_MDI3+ J4.9
ETH1_MDI3- J2.39 ETH2_MDI3- J4.8
Port Signal Pin Port Signal Pin Port Pin
DMZ1 ETH3_MDI0+ J4.55 DMZ2 ETH4_MDI0+ J3.1 DMZ3 ETH5_MDI0+ J3.31
ETH3_MDI0- J4.56 ETH4_MDI0- J3.2 ETH5_MDI0- J3.32
ETH3_MDI1+ J4.57 ETH4_MDI1+ J3.3 ETH5_MDI1+ J3.33
ETH3_MDI1- J4.66 ETH4_MDI1- J3.4 ETH5_MDI1- J3.34
ETH3_MDI2+ J4.65 ETH4_MDI2+ J3.11 ETH5_MDI2+ J3.35
ETH3_MDI2- J4.64 ETH4_MDI2- J3.10 ETH5_MDI2- J3.36
ETH3_MDI3+ J4.63 ETH4_MDI3+ J3.9 ETH5_MDI3+ J3.37
ETH3_MDI3- J4.62 ETH4_MDI3- J3.8 ETH5_MDI3- J3.38
Page 52/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Network connectors
RJ45 Ethernet connectors
These interfaces have to be connected to other network appliances with an RJ45 Ethernet
cable. Details on how to connect SNxr1200 model firewalls are given in the section RJ45
Ethernet cabling on the SNxr1200 model below.
NOTE
A crossover cable is delivered with the Stormshield Network firewall. This is a Category 5e cable,
for running in 10Mbe, 100Mbe, 1Gbe or 2.5Gbe. Check the compatibility of your devices.
Connectors
The Ethernet (1Gbe, 2.5Gbe or 10Gbe) ports of the
Stormshield Network SN range are configured in auto-
sense mode, meaning that they adapt to the
configuration of the Ethernet port on the appliance to
which they are connected. These ports are therefore
compatible with straight or crossover RJ45 Ethernet
cables.
On SN710, SN910, SN-M-Series-520, SN-M-Series-720,
SN-M-Series-920, SN1100, SN2100, SN3100 and
SN6100 models, Ethernet RJ45 ports can be added by
inserting extension modules.
WARNING
Keep data cables some distance away from any
source of electromagnetic interference such as
mains cables, radio transmitters, fluorescent tubes,
etc.
IN/OUT definition
The OUT 1 or "External" network port is reserved for the
modem or Internet router.
Access to this interface is blocked by default, you will
therefore not be able to access the configuration
interface from this port.
To access your firewall from a client workstation, you
will need to connect on the IN 2 or “Internal” port, or on
another port (except port 1).
Page 53/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
For further information regarding the startup procedure of your firewall, refer to the section
Initial connection to the product.
Ethernet cabling on the SNxr1200 model
WARNING
To access your firewall from a client workstation, you will need to connect on the IN 2 or
“Internal” port, or on another port (except port 1). Refer to the previous section IN/OUT definition.
Port Signal Pin Port Signal Pin
OUT 1 ETH1_MDI0+ J2.32 IN 2 ETH2_MDI0+ J4.1
ETH1_MDI0- J2.33 ETH2_MDI0- J4.2
ETH1_MDI1+ J2.34 ETH2_MDI1+ J4.3
ETH1_MDI1- J2.35 ETH2_MDI1- J4.4
ETH1_MDI2+ J2.36 ETH2_MDI2+ J4.11
ETH1_MDI2- J2.37 ETH2_MDI2- J4.10
ETH1_MDI3+ J2.38 ETH2_MDI3+ J4.9
ETH1_MDI3- J2.39 ETH2_MDI3- J4.8
LEDs of interfaces (all models except SNxr1200)
LEDs associated with Ethernet interfaces provide indications on the status of the connection.
following information on the connection:
SN160, SN160W, SN210, SN210W and SN310 models
Name Color Status Status
Front Green On Link established between the Ethernet port and the connected appliance.
panel LED
ACT/LINK Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
SN160W and SN210W models
Name Color Status Status
Front Blue On Wi-Fi interface on.
panel Wi-Fi
LED Off Wi-Fi interface off.
ACT/LINK Blinking The Wi-Fi interface is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Page 54/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
SN-XS-Series-170, SN-S-Series-220, SN-S-Series-320, SN510, SN-M-Series-520, SN710,
SN910, SN1100, SN-M-Series-720, SN-M-Series-920, SN2100, SN3100 and SNi10 models
1Gbe Ethernet ports (except on SN-XS-Series-170, SN-S-Series-220, SN-S-Series-320 and SNi10
models)
Name Color Status Status
Left LED Green On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Yellow On Media speed negotiated at 1Gbps.
SPEED
Green On Media speed negotiated at 100Mbps.
Off Media speed negotiated at 10Mbps.
2.5Gbe Ethernet ports (except on SN510 models)
IMPORTANT
For the 2.5Gbps extension module to be compatible with the SN1100 model, the BIOS must be
updated to version R1.01 or higher.
Name Color Status Status
Left LED Green On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Orange On Media speed negotiated at 2.5Gbps.
SPEED
Green On Media speed negotiated at 1Gbps.
Off Media speed negotiated at 100Mbps.
Off Media speed negotiated at 10Mbps.
10Gbe Ethernet ports (except on SN510, SN-XS-Series-170, SN-S-Series-220, SN-S-Series-320 and
SNi10 models)
Name Color Status Status
Left LED Green On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Green On Media speed negotiated at 10Gbps.
SPEED
Yellow On Media speed negotiated at 1Gbps.
Off Media speed negotiated at 100Mbps.
Page 55/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200 and SN-XL-Series-6200 models
1Gbe Ethernet ports
Name Color Status Status
Left LED Green On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Yellow On Media speed negotiated at 1Gbps.
SPEED
Green On Media speed negotiated at 100Mbps.
Off Media speed negotiated at 10Mbps.
2.5Gbe Ethernet ports
Name Color Status Status
Left LED Green On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Orange On Media speed negotiated at 2.5Gbps.
SPEED
Green On Media speed negotiated at 1Gbps.
Off Media speed negotiated at 100Mbps.
Off Media speed negotiated at 10Mbps.
10Gbe Ethernet ports
Name Color Status Status
Left LED Green On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Green On Media speed negotiated at 10Gbps.
SPEED
Yellow On Media speed negotiated at 1Gbps, 2.5Gbps or 5Gbps.
Off Media speed negotiated at 100Mbps.
SN6100 model
1Gbe Ethernet ports (including IPMI)
Name Color Status Status
Page 56/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Left LED Yellow On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Yellow On Media speed negotiated at 1Gbps.
SPEED
Green On Media speed negotiated at 100Mbps.
Off Media speed negotiated at 10Mbps.
10Gbe Ethernet ports
Name Color Status Status
Left LED Green On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Green On Media speed negotiated at 10Gbps.
SPEED
Yellow On Media speed negotiated at 1Gbps.
Off Media speed negotiated at 100Mbps.
SNi20 model
Name Color Status Status
Lower LED Green On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Upper LED Yellow On Media speed negotiated at 1Gbps.
SPEED
Green On Media speed negotiated at 100Mbps.
Off Media speed negotiated at 10Mbps.
SNi40 model
Name Color Status Status
Upper LED Yellow On Link established between the Ethernet port and the connected appliance.
ACT/LINK
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Lower LED Yellow On Media speed negotiated at 1Gbps.
SPEED
Green On Media speed negotiated at 100Mbps.
Off Media speed negotiated at 10Mbps.
Page 57/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Fiber Ethernet connectors (all models except SN160, SN210, SN310 and
SNxr1200)
These Ethernet ports are available by default on the following models:
l SN-M-Series-520 and SN910: ports 9 and 10 (via two sockets for SFP transceivers),
l SNi20: ports 5 and 6 (via two sockets for SFP transceivers)*,
l SNi40: ports 6 and 7 (via two sockets for SFP transceivers),
l SN-M-Series-720, SN-M-Series-920 and SN1100: ports 9 and 10 (via two sockets for SFP+
transceivers),
l SN6100: ports MGMT1 and MGMT2 (via two sockets for SFP+ transceivers).
* may vary by license.
On SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-Series-920, SN1100, SN2100,
SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200 and SN-XL-Series-
6200 models, Ethernet fiber connectors can be added by inserting extension modules.
In both cases it is necessary to install a transceiver. SFP transceivers are used for 1Gbe
connections, SFP+ for 1Gbe/10Gbe connections, SFP28 for 25Gbe connections, or QSFP+ for
40Gbe connections (on SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-
XL-Series-5200 and SN-XL-Series-6200 models).
IMPORTANT
Use only Stormshield Network-approved transceivers found in the catalogue.
LEDs
The LEDs indicate the following information:
1Gbe connectors with SFP transceivers
Default ports on SN-S-Series-220, SN- S-Series-320, SN-M-Series-520, SN910 and SNi40 models
A green LED will light up when the link is established and blink depending on the
volume of traffic.
For SN-M-Series-520 models, the position of LEDs is shown in the diagram on the
right.
SN-M-Series-520: LEDs on ports 9
and 10
Extension modules for SN710, SN910, SN-M-Series-520, SN-M-Series-720, SN-M-Series-920,
SN1100, SN2100, SN3100 SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200 and SN-XL-
Series-6200 models
A green LED will light up when the link is established and blink depending on the volume of
traffic.
Page 58/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Default ports on SNi20* models
Both lower LEDs correspond to port 5 and both upper LEDs correspond to port
6.
The position of LEDs is shown in the diagram on the right.
SNi20: LEDs on ports 5 and 6
Name Color Status Status
Upper LED Yellow On Media speed negotiated at 1Gbps.
SPEED
Lower LED Green On Link established between the Ethernet port and the connected
ACT/LINK appliance.
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
* may vary by license.
Extension modules for SN6100 models
Name Color Status Status
Left LED Yellow On Link established between the Ethernet port and the connected
ACT/LINK appliance.
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Yellow On Media speed negotiated at 1Gbps.
SPEED
10Gbps connectors with SFP+ transceivers
Extension modules for SN710, SN910, SN-M-Series-720 and SN-M-Series-920 models
Name Color/State Status
Left LED Green/Blinking Link established between the Ethernet port and the connected
ACT/LINK appliance.
The blinking speed varies according to the volume of traffic.
Right LED SPEED Blue Media speed negotiated at 10Gbps.
Yellow Media speed negotiated at 1Gbps.
Page 59/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Default ports and extension modules on SN-M-Series-520, SN-M-Series-720, SN-M-Series-920,
SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200 and SN-XL-
Series-6200 models
For SN1100 models, the position of LEDs is shown in the diagram below.
Name Color/State Status
Left LED ACT/LINK Green/Blinking Link established between the Ethernet port
(Upper LED on SN-M- and the connected appliance.
Series-720 and SN-M- The blinking speed varies according to the
Series-920) volume of traffic.
Right LED SPEED Blue Media speed negotiated at 10Gbps. SN1100: LEDs on ports
(Upper LED on SN-M- 9 and 10
Series-720 and SN-M- Off Media speed negotiated at 1Gbps.
Series-920)
Default ports and extension modules for SN6100 models
Name Color Status Status
Left LED Green On Link established between the Ethernet port and the connected
ACT/LINK appliance.
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Green On Media speed negotiated at 10Gbps.
SPEED
Off Media speed negotiated at 1Gbps.
25Gbe connectors with SFP28 transceivers
Extension modules for SN-M-Series-520, SN-M-Series-720, SN-M-Series-920, SN1100, SN2100 and
SN3100 models
Name Color/State Status
Left LED Green/Blinking Link established between the Ethernet port and the connected
ACT/LINK appliance.
The blinking speed varies according to the volume of traffic.
Right LED SPEED Green Media speed negotiated at 25Gbps.
Yellow Media speed negotiated at 10Gbps.
40Gbe connectors with QSFP+ transceivers
Page 60/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Extension modules for SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200
and SN-XL-Series-6200 models
Name Color Status Status
Left LED Green/Blinking On Link established between the Ethernet port and the connected
ACT/LINK appliance.
Blinking The blinking speed varies according to the volume of traffic.
Right LED Green On Media speed negotiated at 40Gbps.
SPEED
Extension modules for SN6100 models
Name Color Status Status
Left LED Yellow On Link established between the Ethernet port and the connected
ACT/LINK appliance.
Off Ethernet port switched off or link not established with the connected
appliance.
Blinking The Ethernet port is sending or receiving data.
The blinking speed varies according to the volume of traffic.
Right LED Yellow On Media speed negotiated at 40Gbps.
SPEED
Optional Ethernet transceivers
Ethernet fiber transceivers (SN710 and upwards, SNi20 and SNi40)
For 1 Gbps transmission, two types of transceivers are available according to the
length of the cable and the type of fiber used:
- SFP SX: short distance
- SFP LX: long distance.
For 10 Gbps transmission, two types of transceivers are available according to
the length of the cable and the type of fiber used:
- SFP+ SR: short distance
- SFP+ LR: long distance.
For 25 Gbps transmission, two types of transceivers are available according to
the length of the cable and the type of fiber used:
- SFP28 SR: short distance
- SFP28 LR: long distance.
For 40 Gbps transmission, two types of transceivers are available according to
the length of the cable and the type of fiber used:
- QSFP+ SR4: short distance
- QSFP+ LR4: long distance
Page 61/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
NOTE
Only LC fiber optic connectors are supported (or 1x12 MPO for QSFP+ SR4 and SFP28 SR).
Ethernet copper transceivers (SN710 and upwards, SNi20 and SNi40)
For 1 Gbps transmissions, such RJ45 over SFP transceivers (1000/100/10Base-T) require
copper Ethernet RJ45 cables. These must be Category 5e cables, for running in 10 Mbps, 100
Mbps or 1 Gbps. Check the compatibility of your devices.
Stormshield Network-approved Ethernet transceivers
Cable/fiber Color of Wavelength Typical SN-S- SN710 SN2100 SN-L-
type extraction maximum Series- SN910 SN3100 Series-
lever/Usual distance 220 SN-M- 2200
color of supported* SN-S- Series-520 SN-L-
connection plug Series- SN-M- Series-
320 Series-720 3200
SNi20 SN-M- SN6100
SNi40 Series-920 SN-XL-
SN1100 Series-
5200
SN-XL-
Series-
6200
FIBER CONNECTOR
1Gbe Base T multimode black/orange 850nm 550m
SFP • • • •
SFP 1000Base-SX multimode black/orange 850nm 550m
• • • •
SFP 1000Base-LX single mode blue/yellow 1310nm. 10km
Ethernet 1000Base-LX • • • •
10Gbe Base T multimode beige/orange 850nm 300m
SFP+ at 10Gbps
550m • • •
at 1Gbps
SFP+ 10GBASE-SR/ multimode beige/orange 850nm 300m
1000Base-SX
Ethernet 10GBASE-SR/
at 10Gbps
550m • • •
1000Base-SX at 1Gbps
SFP+ 10GBASE-LR/ single mode blue/yellow 1310nm 10km
1000Base-LX
Ethernet 10GBASE-LR • • •
/2500Base-LX
25Gbe SFP28 25GBASE-SR/ multimode beige/orange 850nm 100m
10GBASE-SR
SFP28
Ethernet 25GBASE-SR/
with 1x12
MPO female • •
10GBASE-SR connector
SFP28 25GBASE-LR single mode blue/yellow 1310nm 10km
Ethernet 25GBASE-LR • •
40Gbe QSFP+ 40GBASE-SR4 multimode beige/- 850nm 150m
QSFP+ Ethernet 40GBASE-SR4 with 1x12
MPO female
with multi-
mode fiber • •
connector
QSFP+ 40GBASE-LR single mode blue/yellow 1310nm 10km
Ethernet 40GBASE-LR4 with single-
mode fiber
• •
COPPER CONNECTOR
1Gbe RJ45 over SFP Category 5e - 100m
SFP 1000/100/10Base-T RJ45 Ethernet
cable
/- • • • •
Page 62/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Extension modules (SN710 and upwards)
The process of removing an extension module on SN-M-Series-520, SN710, SN910, SN-M-
Series-720, SN-M-Series-920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200,
SN6100, SN-XL-Series-5200 and SN-XL-Series-6200 models takes place in three main steps:
l Step 1: Shut down firewall,
l Step 2: Remove or insert the module,
l Step 3: Restart the firewall.
SFP/SFP+/SFP28/QSFP+ transceivers for fiber extension modules have to be ordered
separately.
SFP/SFP+/SFP28/QSFP+ transceivers are hot-swappable (they can be inserted and removed
while the appliance is powered on).
Description of extension modules for SN710 models and upwards
SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-Series-920, SN1100, SN2100, SN3100, SN-
L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200 and SN-XL-Series-6200 models accept
the following extension modules:
l 8-port 1Gbe copper module
o RJ45 connectors
o 1000/100/10Base-T
l 8-port 2.5Gbe copper module (SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-
Series-920, SN1100, SN2100, SN31000, SN-L-Series-2200, SN-L-Series-3200, SN-XL-
Series-5200 and SN-XL-Series-6200 models)
o RJ45 connectors
o 2500/1000/100/10Base-T
l 4-port 10Gbe copper module (SN-M-Series-520, SN-M-Series-720, SN-M-Series-920,
SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-
5200 and SN-XL-Series-6200 models)
o RJ45 connectors
o 10G/1000/100Base-T
l 4-port 10Gbe fiber module (not available for SN-M-Series-520, SN-M-Series-720, SN-M-
Series-920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-
XL-Series-5200 and SN-XL-Series-6200 models)
4 SFP+ sockets, supporting the following transceivers:
o SFP fiber transceiver, 1000Base-SX (1Gbps Ethernet, short distance),
o SFP fiber transceiver, 1000Base-LX (1Gbps Ethernet, long distance),
o RJ45 over SFP copper transceiver, 1000/100/10Base-T.
l 8-port 1Gbe fiber module
8 SFP+ sockets, supporting the following transceivers:
o SFP fiber transceiver, 1000Base-SX (1Gbps Ethernet, short distance),
o SFP fiber transceiver, 1000Base-LX (1Gbps Ethernet, long distance),
o RJ45 over SFP copper transceiver, 1000/100/10Base-T.
Page 63/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
l 2-port 10Gbe fiber module (not available for SN-M-Series-520, SN-M-Series-720, SN-M-Series-
920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-
5200 and SN-XL-Series-6200 models)
2 SFP+ sockets, supporting the following transceivers:
o SFP+ fiber transceiver, 10GBase-SR (10Gbps Ethernet, short distance)/1000BASE-SX
(1Gbps Ethernet, short distance),
o SFP+ fiber transceiver, 10GBase-LR (10Gbps Ethernet, long distance) / 1000BASE-LX
(1Gbps Ethernet, long distance).
l 4-port 10Gbe fiber module
4 SFP+ sockets, supporting the following transceivers:
o SFP+ fiber transceiver, 10GBase-SR (10Gbps Ethernet, short distance)/1000BASE-SX
(1Gbps Ethernet, short distance),
o SFP+ fiber transceiver, 10GBase-LR (10Gbps Ethernet, long distance) / 1000BASE-LX
(1Gbps Ethernet, long distance).
l 2-port 25Gbe fiber module (SN-M-Series-520, SN-M-Series-720, SN-M-Series-920, SN1100,
SN2100 and SN3100 models)
2 SFP28, sockets, supporting the following transceivers:
o SFP28 fiber transceiver, 25GBase-SR (25Gbps Ethernet, short distance)/10GBASE-SR
(10Gbps Ethernet, short distance),
o SFP28 fiber transceiver, 25GBase-LR (25Gbps Ethernet, long distance).
l 2-port 40Gbe fiber module (SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200,
SN6100, SN-XL-Series-5200 and SN-XL-Series-6200 models)
2 QSFP+ sockets, supporting the following transceivers:
o QSFP+ fiber transceiver, 40GBASE-SR4 (40Gbps Ethernet, short distance),
o QSFP+ fiber transceiver, 40GBASE-LR4 (40Gbps Ethernet, long distance).
NOTE
A bandwidth restriction of 40Gbps has been imposed on the 2-port 40Gbe fiber module.
Sequence of modules
When extension modules are added or removed, ports will be reordered according to the order
shown below.
SN-M-Series-520 model
SN710 model
Page 64/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
SN910 model
SN-M-Series-720 and SN-M-Series-920 models
SN1100 model
SN2100 and SN3100 models
SN-L-Series-2200 and SN-L-Series-3200 models
SN6100 model
SN-XL-Series-5200 and SN-XL-Series-6200 models
Page 65/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Procedure for inserting or removing extension modules
No specific licenses are required for adding extension modules.
IMPORTANT
Extension modules must only be removed or inserted on appliances that have fully shut down
and which are necessarily unplugged from any electrical power supply.
On SN6100 models, spreading out network modules between both areas is recommended in
order to enhance your product's performance. This makes it possible to balance the loads of
both CPUs. The first set of modules and the 2 network ports located on the front of the
appliance are managed as a priority by the first CPU and the second set by the second CPU.
IMPORTANT
The theoretical bandwidth available for each network slot is:
l SN710 models: 30Gbps, full-duplex,
l SN2100 and SN3100 models: 30Gbps, full-duplex on slots 1 and 3,
l SN-M-Series-520, SN910, SN-M-Series-720, SN-M-Series-920, SN1100 and SN6100
models: 60Gbps, full-duplex
l SN-L-Series-2200 and SN-L-Series-3200 models: 60Gbps, full-duplex on slot 1.
REMINDER
In cases where modules are added subsequently in row 1, the interfaces of the modules in row 2
will be automatically re-ordered.
Inserting an extension module on SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-
Series-920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-
Series-5200 and SN-XL-Series-6200 models
1. Shut down the firewall:
l With the button on the front panel on SN1100, SN2100 and SN3100 models,
l With the button on the rear panel on SN6100 models,
l From the administration interface on SN710, SN-M-Series-520, SN910, SN-M-Series-720
and SN-M-Series-920 models.
2. Once the firewall has fully shut down, ensure that you unplug it from any electrical power
supply.
3. Remove the filler panel by unscrewing the 2 knurled screws and extract it by pulling on
both screws.
4. Present the module to be inserted, push it all the way in (push harder towards the end),
then screw in the 2 knurled screws,
5. Reconnect the firewall to the power supply.
6. Start the firewall using the power button on the front panel.
Page 66/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
NETWORK CONNECTORS
Removing an extension module on SN-M-Series-520, SN710, SN910, SN-M-Series-720, SN-M-
Series-920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-
Series-5200 and SN-XL-Series-6200 models
1. Shut down the firewall:
l With the button on the front panel on SN1100, SN2100 and SN3100 models,
l With the button on the rear panel on SN6100 models,
l From the administration interface on SN710, SN-M-Series-520, SN910, SN-M-Series-720
and SN-M-Series-920 models.
2. Once the firewall has fully shut down, ensure that you unplug it from any electrical power
supply.
3. Unscrew the 2 knurled screws and extract the extension module by pulling on both screws.
4. Put back the filler panel by screwing in the 2 knurled screws.
5. Reconnect the firewall to the power supply.
6. Start the firewall using the power button on the front panel.
Page 67/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
Initial connection to the product
By default, the product is managed through its INTERNAL interface. On all models, this interface
is identified by the number 2 (IN).
For the description of the interfaces, refer to the section Presentation of the SNS range.
Requirements
Lowest configuration to manage a Stormshield Network Security firewall
Lowest configuration
To find out the lowest OS version (firmware) required on your model, refer to the Product life
cycle guide.
Web administration interface
In order for the firewall administration interface to operate optimally, you are advised to use the
latest versions of Microsoft Edge, Google Chrome and Mozilla Firefox (ESR version - Extended
Support Release). For further information on these versions, please refer to the relevant
vendors for the life cycles of their products.
Preparing the Internet access
Before installing the SNS firewall, ensure that the devices that connect to the Internet (if the
firewall has to be connected to the Internet) have been appropriately installed and configured.
Connections
Connect the network ports as follows:
l INTERNAL interface 2 (IN): Workstation,
l EXTERNAL interface 1 (OUT): Internet access device.
The client workstation can either be linked directly to the firewall’s internal interface or connected
to the local network, which is itself connected to the firewall’s internal interface. For a direct
connection of the workstation to the firewall, use the crossover Ethernet cable provided with the
product. Details on how to connect SNxr1200 model firewalls are given in the section Cabling on
the SNxr1200 model below.
Page 68/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
SN510 and SN710 models
SN160, SN160W, SN210, SN210W, SN310 and SN-S-Series models SN910 model
SNi20 model
SN-M-Series-520, SN-M-Series-720, SN-M-Series-920, SN1100, SN2100, SN3100, SN-L-
Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200 and SN-XL-Series-6200
models SNi40 model
Page 69/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
IMPORTANT
In factory settings, the network port 1 is reserved for the modem or Internet router. In this case,
you cannot access the configuration interface from this port.
Cabling on the SNxr1200 model
WARNING
To access your firewall from a client workstation, you will need to connect on the IN 2 or
“Internal” port, or on another port (except port 1). Refer to the section on Network connectors,
under IN/OUT definition.
Port Signal Pin Port Signal Pin
OUT 1 ETH1_MDI0+ J2.32 IN 2 ETH2_MDI0+ J4.1
ETH1_MDI0- J2.33 ETH2_MDI0- J4.2
ETH1_MDI1+ J2.34 ETH2_MDI1+ J4.3
ETH1_MDI1- J2.35 ETH2_MDI1- J4.4
ETH1_MDI2+ J2.36 ETH2_MDI2+ J4.11
ETH1_MDI2- J2.37 ETH2_MDI2- J4.10
ETH1_MDI3+ J2.38 ETH2_MDI3+ J4.9
ETH1_MDI3- J2.39 ETH2_MDI3- J4.8
Configuration
When you first receive your firewall, it will run in transparent (bridge) mode and will have the IP
address [Link] with a subnetwork mask [Link]. These parameters might not match
your network configuration, but they are however necessary for the pre-configuration phase.
To connect to the firewall, you will need to use a workstation on which DHCP has been enabled, or
its IP address has to be in the same address range as your firewall ([Link]/8). DHCP is enabled
by default on Windows platforms If this is not the case, refer to the section Network configuration
of your client workstation. If you do not know what these parameters mean, we strongly advise
you to read up on TCP/IP as it would be very difficult for you to configure your Stormshield
Network firewall without some of the basics.
NOTE
For a manual configuration, we suggest that you use the IP address [Link] and the subnet
mask [Link].
Network configuration of your client workstation
If DHCP has not been enabled on your client workstation, or for manual configurations, modify
the Network connection parameters of your operating system.
In Windows, you generally need to select “Internet Protocol (TCP/IP)” from the list, then
“Properties”, and select the option Obtain an IP address automatically.
To manually configure this network, enter the necessary address information. During the initial
connection, the IP address of this workstation will need to belong to the same address range as
the firewall, [Link]/8 by default.
Page 70/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
Startup
WARNING
You must not unplug the product when it is starting, shutting down or being upgraded.
Except for SN910 appliances, these phases are indicated when the following LEDs are lit:
l Power 3 and Status 2 LEDs on SN160, SN160W, SN210, SN210W, SN310, SN-XS-Series-170,
SN-S-Series-220, SN-S-Series-320, SN510, SN-M-Series-520, SN710, SN-M-Series-720, SN-M-
Series-920, SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-
5200, SN-XL-Series-6200 and SNi10 models.
l Power 3 LED for SN6100, SNi20, SNi40 and SNxr1200 models.
On SN160, SN160W, SN210, SN210W, SN310, SN-XS-Series-170, SN-S-Series-220, SN-S-Series-
320, SN510, SN-M-Series-520, SN710, SN-M-Series-720, SN-M-Series-920, SN1100, SN2100,
SN3100, SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200, SN-XL-Series-6200 and
SNi10 models, upon startup, the LEDs light up in the following order:
Power 3 + Status 2 → Online 1
The Power and Status LEDs will light up first.
After a few minutes, the Online LED will light up, followed by a beep (on SN510, SN-M-Series-
520, SN-M-Series-720, SN-M-Series-920, SN1100, SN2100 and SN3100 models) once your
product is up and running.
For SNi20, SNi40 and SN6100 models, upon startup, the LEDs light up in the following order:
Power 2 → Run 1
The Power LED lights up first. After a few minutes, the Online LED will light up, followed by a
beep on SN6100 models once your product is up and running.
Starting up SN160, SN160W, SN210, SN210W, SN310, SN-XS-Series-170, SN-S-Series-
220, SN-S-Series-320 and SNi10 models
Plug your firewall into its power supply; it will start automatically. Wait a few minutes for all 3
LEDs – Online, Status and Power (2 Power LEDs on SN-S-Series-220 and SN-S-Series-320
models) to light up.
NOTE
If necessary during startup, you can insert a USB key containing a configuration. Console mode
will display the following message: “Please insert your USB token to continue”.
The lit Online LED will indicate the end of the product’s startup phase.
Page 71/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
SN160 and SN160W models
SN210 and SN210W models
SN310 model
SN-XS-Series-170 and SNi10 models
Page 72/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
SN-S-Series models
Starting up SN510 and SN710 models
Plug your Stormshield Network Security firewall into the mains power supply. Ensure that the
power supply switch is ON. Your firewall will then automatically start running. Wait a few
minutes for all 3 LEDs – Online, Status and Power to light up.
NOTE
When you hear 8 consecutive beeps, you will be able to insert a USB key containing a
configuration if necessary. Console mode will display the following message: “Please insert your
USB token to continue”.
Two consecutive beeps and the lighted up Online LED indicate the end of the product’s startup
sequence.
Starting up SN910 models
Plug your Stormshield Network Security firewall into the mains power supply. Ensure that the power
supply switch is ON. Your firewall will then start running automatically, the Power LED will light up.
Then wait several minutes.
NOTE
When you hear 8 consecutive beeps, you will be able to insert a USB key containing a
configuration if necessary. Console mode will display the following message: “Please insert your
USB token to continue”.
Two consecutive beeps indicate the end of the product’s startup sequence.
Page 73/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
Starting SN-M-Series-520, SN-M-Series-720 and SN-M-Series-920 models
Plug your Stormshield Network firewall into the mains power supply. Ensure that both power supply
switches are ON. Your firewall will then start running automatically, the Power LED will light up. Wait a
few minutes for all 4 LEDs – Online, Status, Power 1 and Power 2 to light up.
NOTE
When you hear 8 consecutive beeps, you will be able to insert a USB key containing a
configuration if necessary. Console mode will display the following message: “Please insert your
USB token to continue”.
A beep indicates the end of the product’s startup sequence.
Page 74/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
Starting up SN1100, SN2100 and SN3100 models
As soon as the appliance is powered up, press once on the power button (rear panel). Wait a
few minutes for all 3 LEDs – Online, Status and Power to light up.
NOTE
When you hear 8 consecutive beeps, you will be able to insert a USB key containing a
configuration if necessary. Console mode will display the following message: “Please insert your
USB token to continue”.
Two consecutive beeps and the lighted up Online LED indicate the end of sequence..
Page 75/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
SN1100 model
SN2100 and SN3100 models
Starting SN-L-Series-2200 and SN-L-Series-3200 models
Plug your Stormshield Network firewall into the mains power supply. As soon as the appliance is
powered up, press once on the Power button (rear panel). Wait a few minutes for all 4 LEDs – Online,
Status, Power 1 and Power 2 to light up.
NOTE
When you hear 8 consecutive beeps, you will be able to insert a USB key containing a
configuration if necessary. Console mode will display the following message: “Please insert your
USB token to continue”.
A beep indicates the end of the product’s startup sequence.
Page 76/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
Starting up SN6100 models
As soon as the appliance is powered up, press once on the Power button (rear panel). Wait a
few minutes for both LEDs – Power and Run to light up.
NOTE
When you hear 8 consecutive beeps, you will be able to insert a USB key containing a
configuration if necessary. Console mode will display the following message: “Please insert your
USB token to continue”.
Two consecutive beeps indicate the end of the product’s startup sequence.
Starting SN-XL-Series-5200 and SN-XL-Series-6200 models
Plug your Stormshield Network firewall into the mains power supply. As soon as the appliance is
powered up, press once on the Power button (rear panel). Wait a few minutes for all 4 LEDs – Online,
Status, Power 1 and Power 2 to light up.
NOTE
When you hear 8 consecutive beeps, you will be able to insert a USB key containing a
configuration if necessary. Console mode will display the following message: “Please insert your
USB token to continue”.
A beep indicates the end of the product’s startup sequence.
Page 77/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
Starting up SNi20 and SNi40 models
Once your firewall has been powered up, it will automatically start up. Wait a few minutes for
both LEDs – Power and Run to light up.
NOTE
If necessary during startup, you can insert a USB key containing a configuration. Console mode
will display the following message: “Please insert your USB token to continue”.
The lit Run LED will indicate the end of the product’s startup phase.
Starting up SNxr1200 models
Once your firewall has been powered up, it will automatically start running and the Power LED
will light up. Then wait several minutes.
Initial connection to the appliance
A security procedure must be followed if the initial connection to the appliance takes place
through an untrusted network. This operation is not necessary if the administration workstation
is plugged in directly to the product.
Page 78/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
Access to the administration portal is secured through the SSL/TLS protocol. This protection
allows authenticating the portal via a certificate, thereby assuring the administrator that he is
indeed logged in to the desired appliance. This certificate can either be the appliance’s default
certificate or the certificate entered during the configuration of the appliance (Authentication >
Captive portal). Depending on the model, it is signed by default by the authority with the name:
l NETASQ: CN=serial number of the appliance, O=Secure Internet Connectivity,
OU=NETASQ firewall Certification Authority.
l Stormshield: CN=Stormshield Products Root CA, O=Stormshield, OU=Cloud Services, C=FR,
L=Issy-Les-Moulineaux.
To confirm a secure access, the browser must trust the certification authority that signed the
certificate used, which must belong to the browser’s list of trusted certification authorities.
Therefore, to confirm the integrity of the appliance, before the initial connection, you need to
add the authority to the list of the browser's trusted authorities. Depending on the model, the
corresponding authority is available on these links:
[Link]
[Link]
If a certificate signed by another authority has been configured on the appliance, this authority
will need to be added instead of the default authority.
As a result, the initial connection to the appliance will no longer raise an alert in the browser
regarding the trusted authority. However, a message will continue to warn the user that the
certificate is not valid. This is because the certificate defines the Firewall by its serial number
instead of its IP address. To stop this warning from appearing, you will need to indicate to the
DNS server that the serial number is associated with the IP address of the Firewall.
For further information, refer to the SNS firewall Installation and first-time configuration guide.
Administration graphical interface
On your client workstation, type the following address in your browser:
[Link]
Enter admin as the login and password.
IMPORTANT
If you have connected your client workstation on port 1, you will no longer be able to access the
web administration interface You will need to connect your computer to port 2 (or on another
port), and reboot your firewall.
NOTE
The default password of the “admin” user (super administrator) must be changed the very first
time the product is used. In the web administration interface, this password can be changed in
System > Administrator account > Administrator.
This password must be set in line with the best practices described in the User awareness
section in the SNS user guide. This password must never be saved in the browser.
For further information on downloading and installing your license, refer the section Updating
the license.
Page 79/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
Shutting down
SN160, SN160W, SN210, SN210W, SN310, SN-S-Series-220 and SN-S-Series-320
Log in to the configuration interface. Go to System > Maintenance and click on Shut down the
firewall. Wait for several minutes until the Online and Status LEDs go out. For this model, the
LEDs shut off in the following order:
Online 1 → Status 2
The Power LED will stay lit if the product is powered up.
SN510, SN-XS-Series-170, SN-M-Series-520, SN710, SN-M-Series-720, SN-M-Series-
920 and SNi10 models
Log in to the configuration interface. Go to System > Maintenance and click on Shut down the
firewall. Wait a few minutes for all 3 LEDs – Online, Status and Power to go out. For these
models, upon shutdown, the LEDs shut off in the following order:
Online 1 + Status 2 → Power 3
A beep will indicate that the appliance is in the process of shutting down.
SN910
Log in to the configuration interface. Go to System > Maintenance and click on Shut down the
firewall.
A beep will indicate that the appliance is in the process of shutting down. Wait for several
minutes until the Power LED goes out.
SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200
and SN-XL-Series-6200 models
To shut down your firewall, press once on the power button located on the rear panel. Wait a
few minutes for all 3 LEDs – Online, Status and Power to go out.
For these models, upon shutdown, the LEDs shut off in the following order:
Online 1 + Status 2 → Power 3
A beep will indicate that the appliance is in the process of shutting down (except on SN-L-
Series-3200, SN-XL-Series-5200 and SN-XL-Series-6200 models).
SN6100
To shut down your firewall, press once on the power button located on the rear panel. Wait a
few minutes for the 2 LEDs (Run and Power) to go out. For this model, the LEDs shut off in the
following order:
Run 1 → Power 3
A beep will indicate that the appliance is in the process of shutting down.
Page 80/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
SNi20
Log in to the configuration interface. Go to System > Maintenance and click on Shut down the
firewall. Wait several minutes until the Run LED goes out and the Power LED turns to yellow. For
this model, the LEDs shut off in the following order:
Run 1 → Power 3
The Power LED will stay yellow if the product is powered up.
SNi40
Log in to the configuration interface. Go to System > Maintenance and click on Shut down the
firewall. Wait a few minutes for the 2 LEDs (Run and Power) to go out. For this model, the LEDs
shut off in the following order:
Run 1 → Power 3
SNxr1200
Log in to the configuration interface. Go to System > Maintenance and click on Shut down the
firewall. Wait for several minutes until the Power LED goes out.
ON/OFF switch
Details Pin Signal
ON J2.10 POWER_BUTTON+
OFF J2.11 POWER_BUTTON-
General remarks
l The Status LED 2 (Run for SN6100, SNi20 and SNi40 models) will blink in red (green for
SN510 and SN710 models) in the event of a major failure on the product (hardware
anomaly, faulty network interface, etc.). Contact your reseller in this case.
l During startup, shutdown or upgrading, only the LEDs Status2 and Power3 will light up.
l In High Availability mode, when the firewall is in passive mode, the Online 1 or Run LED on
SN6100, SNi20 and SNi40 models will blink (about 2 seconds off for every 1 second it is
on).
l During the reset phase (defaultconfig), the Online and Status LEDs will blink (Run for
SN6100, SNi20 and SNi40).
l To reboot an SN160, SN160W, SN210, SN210W, SN310 or SNi20 appliance that is still
powered up (only the Power LED is on), you will need to unplug and plug the firewall back
into the mains socket. It is also possible to reboot in console mode by pressing on any key
as suggested.
l To reboot an SN-XS-Series-170 or SNi10 appliance that has been shut down (Status and
Power LEDs off), proceed as follows: unplug it, wait for thirty seconds, then plug the firewall
back into its power supply source.
Page 81/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
INITIAL CONNECTION TO THE PRODUCT
l To reboot an SNi20 appliance that has been shut down (Run LED off and Power LED in
yellow), proceed as follows: unplug it, wait for thirty seconds, then plug the firewall back
into its power supply source.
l To reboot an SNi40 appliance that has been shut down (Power and RunLEDs off), proceed
as follows: unplug it, wait for thirty seconds, then plug the firewall back into its power
supply source.
l To reboot an SN510, SN710, SN910, SN-M-Series-720 or SN-M-Series-920 model (Power
LED is off), proceed as follows: unplug it, wait for thirty seconds, then plug it back into the
mains socket.
l You may also shut down your firewall by logging on in console mode and by typing the
following command: halt
Page 82/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
UPDATING THE LICENSE
Updating the license
Your appliance is delivered with a temporary license that must be updated. If you have acquired
additional options or a security pack, you must update your product with the license that will
allow you to use this option.
Maintenance packs are valid from the date on which the associated SNS products are registered
on MyStormshield. If the product remains unregistered, this period will begin automatically
three months from the billing date. Reminder: products must be registered to receive updates
and be entitled to technical support.
WARNING
Options that require you to restart the firewall are specified in the License section in the SNS user
guide.
Refer to the procedure below to find out how to update your product license.
Retrieving licenses
1. Go to your personal area at [Link]
During registration, you will obtain the password to access your personal area.
2. Enter your login and password then confirm or register in order to receive them. The client
secure area homepage will appear.
3. Click on Product management. You will then see a list of all the Stormshield Network
Security products registered in this area.
4. Select the product for which you wish to retrieve the license, by clicking on the product’s
serial number. Details of the license will be displayed.
NOTE
Before you download the license, you will need to know your product’s version. If you do not
know it, it is indicated on a label affixed to the product’s cardboard packaging. If you no longer
have the packaging, or if you have since updated your product, connect to your product via the
web administration interface. The product’s version will be indicated in the dashboard of the web
application.
Install license
If you have never installed a license on the product, the details of the license will be of the
temporary license. To install the license that had been downloaded from the client secure area:
1. Log in to the administration interface.
2. Go to License > General.
3. Insert the downloaded license file in the relevant field.
You can also configure settings so that licenses can be automatically searched and installed.
The full process is set out in the License section of the SNS user guide.
Page 83/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
DOCUMENTATION & ASSISTANCE
Documentation & assistance
Documentation
The documentation for SNS multi-function firewalls is available online at
[Link]
This website allows you to look up or download various technical documents such as user
guides, technical notes, etc. The Installation and first-time configuration guide explains how to
configure your firewall. This guide can be found at:
[Link]
MyStormshield personal area
Log in to the following address to access your MyStormshield personal area, or to create one:
[Link] Your personal area allows you to:
l Register your product,
l Activate and manage your user licenses and software options,
l Download the latest updates,
l Subscribe to technical and marketing mailing lists.
Knowledge Base
The technical support department’s Knowledge Base centralizes various technical entries
relating to the use of Stormshield Network products. Its aim is to give a better understanding of
how they work. You can access the Knowledge Base from your personal area or the following
address: [Link]
Help desk
When you encounter hardware issues on your firewall, or if any of the components does not
match its description, contact your certified partner.
For Stormshield Network products, there are different product return procedures called RMAs
(return merchandise authorization). The various types of RMA are as follows:
1. RMA WITH STANDARD EXCHANGE:
If the appliance has a valid Standard maintenance package
2. RMA WITH EXPRESS EXCHANGE:
If the appliance has a valid Express exchange maintenance package
3. RMA WITH DOA EXCHANGE:
If the product was registered less than 30 days before the RMA was activated.
The procedures and documents relating to these exchanges can be found on the
MyStormshield online help website at [Link]
In compliance with Common Criteria assumptions, clients must subscribe to the Secure
Exchange option and follow the procedure for this type of exchange. This option ensures the
confidentiality of the configuration elements imported into the Stormshield Network product
before it is sent for repairs.
Page 84/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX A. RESETTING FIREWALLS
Appendix A. Resetting firewalls
The default factory settings can be restored on a Stormshield Network Security firewall. This
operation will bring the product back to its initial configuration. It does not modify the firmware
version and only affects the active partition.
WARNING
Resetting a firewall will completely erase the settings configured on the product. This operation is
irreversible, so do not apply this procedure unless absolutely necessary. You are therefore
advised to make a backup beforehand.
WARNING
The product must not be unplugged while is it reinitializing.
After a few minutes, the initial settings will be recovered and the firewall will restart. This reset
operation may take up to 10 minutes, so do wait until the end of the restart procedure before
reconnecting to the firewall.
NOTE
The Online and Status (Run on SN6100, SNi20 and SNi40) LEDs will blink throughout the entire
initialization phase. Two consecutive beeps (except on SN160, SN160W, SN210, SN210W,
SN310, SNi20 and SNi40 models) and the lighted up Online (Run on SN6100, SNi20 and SNi40)
LED indicate the end of the product’s startup sequence.
WARNING
This operation will also reinitialize the administrator’s password. The login and password are
admin by default.
All models except SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-
5200, SN-XL-Series-6200, SNi40 and SNxr1200
Use a pointed object to reset your firewall. A small pushbutton is accessible through a hole in
the following locations:
l On SN160, SN160W, SN210, SN210W and SN310 models, on the rear panel of the product,
to the right of the Ethernet interfaces.
l On SN510 models, on the front panel of the product, to the left of the Ethernet interfaces.
l On SN710 and SN910 models, on the front panel of the product, between the extension
module slot and the Ethernet interfaces.
l On SN-M-Series-720, SN-M-Series-920 and SN1100 models, on the front panel of the
product, between the USB ports and the Ethernet interfaces,
l On SN2100 and SN3100 models, on the front panel of the product, between the LEDs and
USB ports,
l On SN-XS-Series-170, SNi10 and SNi20 models, on the front panel of the product, to the
right above the LEDs.
Page 85/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX A. RESETTING FIREWALLS
SN160 and SN160W models SN210 and SN210W models
SN310 model SN-S-Series-220 and SN-S-Series-320
SN510 and SN710 models
SN-XS-series-170 and SNi10 models
SN-M-Series-520 model
SN910 model
SN-M-Series-720 and SN-M-Series-920 models
Page 86/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX A. RESETTING FIREWALLS
SN1100 model
SNi20 model
SN2100 and SN3100 models
Hold down the button for about 5 seconds, until you see the Online and Status (Run on SNi20
models) LEDs blink and/or until you hear an audible signal. The reset procedure will
automatically launch. After a few minutes, the initial settings will be recovered and the firewall
will reboot.
SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200, SN-XL-Series-
6200, SNi40 and SNxr1200 models
Factory settings can be restored on SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-
Series-5200, SN-XL-Series-6200, SNi40 or SNxr1200 models, only in console mode. Type the
following command: defaultconfig -f -r –p
The reset procedure will automatically launch. After a few minutes, the initial settings will be
recovered and the firewall will reboot.
Page 87/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX B. STORING LOGS
Appendix B. Storing logs
For models equipped with a hard disk or SSD, the log storage service is enabled by default,
except on SNi4O models. To enable it, refer to the section Enable log storage below.
External log storage on SD cards (SN160, SN160W, SN210, SN210W, SN310, SN-
XS-Series-170, SN-S-Series-220, SN-S-Series-320, SNi10 and SNi20)
NOTE
Logs can only be stored externally on SD cards. This service is not compatible with other media
such as a USB key or an external hard disk.
The recommended type of SD card is at least Class 10 (C10) UHS Class 1 (U1) or App
Performance 2 (A2). The memory card must be in SDHC or SDXC standard. Only adapters
provided with the card must be used. The maximum memory size supported is 2 TB.
Stormshield recommends the use of high-endurance/industrial cards or preferably, those that
have a built-in MLC flash chip developed by major brands (e.g., SanDisk, Western Digital,
Innodisk, Transcend, etc.) and with at least 32 GB.
Insert the SD card, as described in the diagram to
the right, with the connector facing downwards.
IMPORTANT
Specific screwdrivers must be used to remove the screws from the SD card reader cache:
l SN-XS-Series-170, SNi10 and SNi20 models: Phillips PH1,
l SN-S-Series-220 and SN-S-Series-320 models: Phillips PH0.
Insert the SD card, then put back the SD card reader cache to guarantee that the product is
airtight.
SNi20 model SN-S-Series-220 and SN-S-Series-320 models
Page 88/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX B. STORING LOGS
SN-XS-Series-170 and SNi10 models
You must then enable and format the SD card - refer to the following section.
Enabling log storage
Enable the service in Configuration > Notifications > Logs - Syslog - IPFIX > Local storage.
If you wish to save logs on an SD card, hard disk or SSD, click on the option to turn it ON, then
select your medium from the list of storage media. A message will prompt you to format it.
After this operation, your SD card, hard disk or SSD will be ready to receive all logs.
Loading the SD card
IMPORTANT
Before ejecting the SD card from the drive, to change media, for example, you must first shut
down the service by unselecting the option that enables log storage, in the Logs - Syslog module.
To eject the SD card, press lightly and horizontally on it, then let go.
Reading logs
These logs can be read in the SN Activity Reports web interface in the form of reports.
In SN Activity Reports, five reports are enabled by default. The number of reports enabled can
be increased on models that are equipped with hard disks or an SSD or with the help of an SD
card.
Page 89/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX B. STORING LOGS
For more information, refer to the Reports section in the SNS user manual.
Page 90/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX C. MANAGING SSDS
Appendix C. Managing SSDs
An SSD is installed by default on the SN2100 model. A second SSD can be added to it by
subscribing to the RAID option (RAID1).
By default on SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-Series-5200 and
SN-XL-Series-6200 models, both SSDs are installed in RAID (RAID 1). Both of these SSDs are
also hot-swappable.
NOTE
On SN2100 models without the RAID option, the replacement of the SSD would cause logs and
static reports saved on the log partition to be lost, as well as data memorized using the HTTP
Cache option if it has been enabled.
Detecting issues
The SMART (Self-Monitoring, Analysis and Reporting Technology system) status of SSDs can be
monitored. SMART technology monitors and informs about the status of certain reliability
indicators such as the temperature, number of sectors allocated, errors while locating sectors,
etc. It therefore helps to anticipate failures.
On SN910, SN-M-Series-520, SN-M-Series-720, SN-M-Series-920, SN1100 and SN2100 models
without the RAID option, and on SNi20 and SNi40 models, the SMART status of the SSD is
available in the Hardware section of the Hardware widget.
On SN2100 models with the RAID option, and on SN3100, SN-L-Series-2200, SN-L-Series-3200,
SN6100, SN-XL-Series-5200 and SN-XL-Series-6200 models, the RAID section in the Hardware
widget informs you about the SMART status of the SSDs, as well as the RAID status.
You may also log on to the appliance in console mode or via an SSH connection and obtain the
information with the following commands:
l SMART status of the SSDs: smartinfo,
l If SSDs are installed in RAID: nraid -s,
If an issue arises with the log partition, report it using the Properties widget either in console
mode or via an SSH connection, using the command: logdisk –c, the partition can be rebuilt
using the following command: logdisk –f.
IMPORTANT
This command permanently erases data saved earlier on the log partition.
If the SMART status of an SSD shows errors, or if rebuilding your log partition fails, you can
contact your certified partner to replace your SSD.
Replacing an SSD
SN2100, without RAID option
This procedure is to be carried out on an appliance that has been powered off. To remove the
SSD, unlock the rack with the lever, then pull out the canister with the defective SSD. Insert the
Page 91/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX C. MANAGING SSDS
new canister with the replacement SSD obtained from your partner, until you hear a click. Once
you have inserted the new SSD, it will be detected the next time you start the appliance.
SN2100 with RAID option, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-
XL-Series-5200 and SN-XL-Series-6200 (SSD in RAID 1)
This procedure is to be carried out on an appliance that is running. To remove the SSD, unlock
the rack with the lever, then pull out the canister with the defective SSD. Insert the new canister
with the replacement SSD obtained from your partner, until you hear a click. Once you have
inserted the new SSD, type the following command to scan this new SSD: nraid –z.
Next, type the command to rebuild the RAID: nraid -r.
RAID option (SN2100)
On the SN2100 model, the RAID option can be subscribed in order to add a second SSD and
build a RAID1 on it.
On a powered up appliance:
1. In console mode, type the following command to build the RAID: nraid -c.
2. Unlock the rack with the lever, then pull out the empty canister (lower canister, LEDs off).
3. Insert the new canister with the optional SSD obtained from your partner, until you hear a
click.
4. Type the following command to scan this new SSD: nraid –z.
5. type the following command to replicate the data on the RAID: nraid -r.
Big Data option (SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100,
SN-XL-Series-5200 and SN-XL-Series-6200)
If you have subscribed the Big Data option (available on SN2100, SN3100, SN-L-Series-2200,
SN-L-Series-3200, SN6100, SN-XL-Series-5200 and SN-XL-Series-6200 models), the original
SSDs will be replaced with SSDs of greater capacity.
After you have shut down the appliance:
1. Unlock the rack with the levers, then pull out both SSD canisters.
2. Insert the new canisters with the replacement SSDs obtained from your partner, until you
hear a click. They will be detected the next time you start the appliance.
Page 92/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX D. EXCHANGING A POWER SUPPLY MODULE
Appendix D. Exchanging a power supply module
REMINDER
Before plugging any equipment into a -48VDC power supply module, please read the Safety rules
carefully and follow them.
SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN6100, SN-XL-
Series-5200 and SN-XL-Series-6200 models
NOTE
On SN1100 and SN2100 models, a second AC mains supply or -48VDC module can be ordered
separately for redundant power supply. Modules are hot-swappable on products with a
redundant power supply.
SN1100, SN2100, SN3100, SN-L-Series-2200, SN-L-Series-3200, SN-XL-Series-5200 and SN-XL-Series-6200 models
Page 93/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX D. EXCHANGING A POWER SUPPLY MODULE
SN1100, SN2100 and SN3100 models
SN-XL-Series-5200 and SN-XL-Series-6200 models
SN-L-Series-2200 and SN-L-Series-3200 models
1. Disconnect the module from the power supply:
l AC mains supply: disconnect the mains cable.
l - 48VDC supply: first, disconnect the power cord from the 48VDC source. Next, on the
module, remove the protective cover 1, then use a screwdriver to disconnect the three
supply wires.
2. Extract the module: push the release lever sideways toward the extraction handle, and use
the handle to pull the module. Hold the case of the module and remove it completely.
3. Insert the new module with the product label facing upwards. When the module is fully
inserted, push until you hear a “click” that indicates that the module is locked in place.
Check that the module is locked in place by pulling gently on the extraction handle: the
module must not move.
4. Attach the new module to its power supply:
l AC mains supply: connect the mains cable.
l - 48VDC: with the power cord disconnected from the 48VDC supply, use a screwdriver to
attach the three wires of the power cord to the module 1 as shown below:
o a. Phase
o b. Neutral
o c. Grounding
5. Reattach the protective cover. The wires must be connected to the 48VDC module as shown
above. Next, connect the power cord to the power supply source.
Each PSU module is equipped with a light showing its state (two colors: green/red for the AC
mains module, blue/red for the -48VDC module):
Module working correctly
l Module connected to a power source but not installed in a firewall: green (AC mains)/blue (-
48VDC).
SN1100, SN2100, SN3100, SN-L-Series-2200 and SN-L-Series-3200 models halted
l Module installed but not connected to a power source, and the other module is installed and
connected: green (AC mains)/blue (-48VDC), blinking.
l Module installed and connected to a power source: green (AC mains)/blue (-48VDC),
blinking.
SN1100, SN2100, SN3100, SN-L-Series-2200 and SN-L-Series-3200 models running
l Module installed and connected to a power source: green (AC mains)/blue (-48VDC), not
blinking.
l Module installed and not connected to a power source: red, blinking (+ buzzer).
Module not functioning correctly
Page 94/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX D. EXCHANGING A POWER SUPPLY MODULE
l Module connected to a power source: red, not blinking.
SN6100
NOTE
This model is equipped with an internal redundant power supply and its modules are hot-swappable.
SN6100 model
1. Disconnect the module from the power supply:
l AC mains supply: disconnect the mains cable.
l -48VDC supply: unscrew the knurled screw, then unplug the power cord on the module
side.
2. Extract the module: push the release lever sideways toward the extraction handle, and pull
the handle. Hold the case of the module and remove it completely.
WARNING
The module's metal case serves as a heat sink and its temperature can reach +60°C at
full power. It is therefore advisable to use a glove to hold the case.
3. Insert the new module with the product label facing upwards. When the module is fully
inserted, push until you hear a “click” that indicates that the module is locked in place.
Check that the module is locked in place by pulling gently on the extraction handle: the
module must not move.
Page 95/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX D. EXCHANGING A POWER SUPPLY MODULE
4. Attach the new module to its power supply:
l AC mains supply: connect the mains cable.
l -48VDC supply: plug in the supply cable's connector 1. Screw in the knurled screws.
Each PSU module is equipped with a light showing its state (two colors: green/red):
Module working correctly
l Module connected to a power source but not installed in a firewall: green, blinking.
SN6100 halted
l Module installed but not connected to a power source, and the other module is installed and
connected: red, not blinking.
l Module installed and connected to a power source: green, blinking.
SN6100 (running)
l Module installed and connected to a power source: green, not blinking.
l Module installed and not connected to a power source: red, not blinking (+ buzzer).
Module not functioning correctly
l Module connected to a power source: red, not blinking.
Page 96/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX E. MANAGING FIREWALLS VIA IPMI
Appendix E. Managing firewalls via IPMI
IPMI (Intelligent Platform Management Interface) is a network protocol that makes it possible to
obtain hardware information remotely, monitor certain components and control appliances
(control, reboot, interruption, etc.).
SN6100, SN-XL-Series-5200 and SN-XL-Series-6200 models
Configuration
When the product is starting up, once the Stormshield logo appears, press <del> to access the
BIOS. Next, go to the section "BMC network configuration" in the Server Mgmt menu in order to
configure the network interface dedicated to IPMI, then save and quit.
Connection
Plug the network cable into the dedicated network interface on the front of the appliance.
Launch your browser and connect to the dedicated interface by entering the address:
[Link]
l SN6100
If an address has not yet been configured, the default IP address of the IPMI interface will
be [Link]/24
l SN-XL-Series-5200 and SN-XL-Series-6200
If an address has not yet been configured, the IPMI interface will not have an assigned
default IP address; an address has to be entered.
The login and password are admin by default.
Page 97/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
APPENDIX E. MANAGING FIREWALLS VIA IPMI
The dashboard of the web interface will look like this:
IMPORTANT
Change your admin administrator password as soon as you can. You will be asked to change it
during the initial connection. You are also advised to place the IPMI interface on a dedicated
administration network.
Page 98/99 sns-en-SNrange_installation_guide - 09/2024
SNS - PRODUCT PRESENTATION AND INSTALLATION 2024
documentation@[Link]
All images in this document are for representational purposes only, actual products may differ.
Copyright © Stormshield 2024. All rights reserved. All other company and product names
contained in this document are trademarks or registered trademarks of their respective
companies.
Page 99/99 sns-en-SNrange_installation_guide - 09/2024
You might also like
- Sns-En-Installation and First Time Configuration GuideNo ratings yetSns-En-Installation and First Time Configuration Guide32 pages
- Installation Guide NShield Connect 12.80No ratings yetInstallation Guide NShield Connect 12.8073 pages
- Sns-En-Basic Cli Configuration Technical NoteNo ratings yetSns-En-Basic Cli Configuration Technical Note20 pages
- CSNA v4 Training Book With Virtual Labs and Appendices 2020-09-14100% (1)CSNA v4 Training Book With Virtual Labs and Appendices 2020-09-14560 pages
- Stormshield SN510: Business Continuity in Complex ArchitecturesNo ratings yetStormshield SN510: Business Continuity in Complex Architectures4 pages
- CSNA v4 Training Book With Virtual Labs and Appendices 2021-12-21-1No ratings yetCSNA v4 Training Book With Virtual Labs and Appendices 2021-12-21-1578 pages
- User Guide NShield Connect 12.60 WindowsNo ratings yetUser Guide NShield Connect 12.60 Windows464 pages
- Nortel Secure Network Access Switch PDFNo ratings yetNortel Secure Network Access Switch PDF526 pages
- ZYXEL Users-Guide NSG100 Version 1.33 Edition 2No ratings yetZYXEL Users-Guide NSG100 Version 1.33 Edition 258 pages
- Juniper - SRX300 Firewall Hardware GuideNo ratings yetJuniper - SRX300 Firewall Hardware Guide106 pages
- Fireware Essentials Student Guide (En US) v11!10!1100% (1)Fireware Essentials Student Guide (En US) v11!10!1510 pages
- Scope: Configuration Guide: Juniper Networks Branch SRX Series Services GatewaysNo ratings yetScope: Configuration Guide: Juniper Networks Branch SRX Series Services Gateways8 pages
- Day One Deploying SRX Gateways - Juniper NetworkspdfNo ratings yetDay One Deploying SRX Gateways - Juniper Networkspdf110 pages
- Day One: Deploying SRX Series Services GatewaysNo ratings yetDay One: Deploying SRX Series Services Gateways110 pages
- Gsm7224R, Gsm7248R: Prosafe 24-And 48-Port Gigabit L2 Managed Switches With Static Routing Data SheetNo ratings yetGsm7224R, Gsm7248R: Prosafe 24-And 48-Port Gigabit L2 Managed Switches With Static Routing Data Sheet3 pages
- Cisco Switch Security Configuration GuideNo ratings yetCisco Switch Security Configuration Guide86 pages
- A Massively Scalable Approach To Network SecurityNo ratings yetA Massively Scalable Approach To Network Security7 pages
- Nvidia Forceware Networking and Firewall Administrator'S GuideNo ratings yetNvidia Forceware Networking and Firewall Administrator'S Guide149 pages
- Professor Messer Comptia n10 009 Network Plus Course Notes v12100% (20)Professor Messer Comptia n10 009 Network Plus Course Notes v1281 pages
- Downloadable Official CompTIA A+ Core 1 and Core 2 Student Guide99% (75)Downloadable Official CompTIA A+ Core 1 and Core 2 Student Guide1,260 pages
- James Pengelly - Official CompTIA Network+ Student Guide (Exam N10-008) (2021)92% (12)James Pengelly - Official CompTIA Network+ Student Guide (Exam N10-008) (2021)613 pages
- The Hacker Playbook 1 - Practical Guide To Penetration Testing92% (12)The Hacker Playbook 1 - Practical Guide To Penetration Testing308 pages
- Professor Messer - Professor Messer's SY0-701 COMPTIA Security+ Course Notes - Libgen - Li97% (30)Professor Messer - Professor Messer's SY0-701 COMPTIA Security+ Course Notes - Libgen - Li107 pages
- Ethical Hacking - Learn Penetration Testing, Cybersecurity Wi100% (6)Ethical Hacking - Learn Penetration Testing, Cybersecurity Wi112 pages
- Hacking The Art of Exploitation 2nd Edition Jon Erickson100% (21)Hacking The Art of Exploitation 2nd Edition Jon Erickson492 pages
- Kali Linux Advanced Methods and Strategies To Learn Kali Linux (BooxRack)100% (9)Kali Linux Advanced Methods and Strategies To Learn Kali Linux (BooxRack)110 pages
- CompTIA Security+ SY0-701 Practice Tests & PBQs - Exam SY0-701 by Nikolaos Gorgotsias100% (14)CompTIA Security+ SY0-701 Practice Tests & PBQs - Exam SY0-701 by Nikolaos Gorgotsias1,620 pages
- Downloadable Official CompTIA IT Fundamentals (ITF+) Student Guide (Exam FC0-U61)100% (21)Downloadable Official CompTIA IT Fundamentals (ITF+) Student Guide (Exam FC0-U61)550 pages
- The Complete Cyber Security Course, Hacking Exposed94% (34)The Complete Cyber Security Course, Hacking Exposed282 pages
- Windows Server 2019 Administration Lab Book100% (7)Windows Server 2019 Administration Lab Book184 pages
- CCNP Enterprise Advanced Routing ENARSI 300-41085% (27)CCNP Enterprise Advanced Routing ENARSI 300-4101,100 pages
- Cybersecurity by Jordan Genung and Steven Bennett 2023100% (10)Cybersecurity by Jordan Genung and Steven Bennett 2023423 pages
- Google Cybersecurity Coursera Study Materials Notes100% (7)Google Cybersecurity Coursera Study Materials Notes416 pages
- Hacking 3 Books in 1 A Beginners Guide For Hackers (How To Hack Websites, Smartphones, Wireless Networks) + Linux Basic For... (Julian James McKinnon) - English (Z-Library)100% (7)Hacking 3 Books in 1 A Beginners Guide For Hackers (How To Hack Websites, Smartphones, Wireless Networks) + Linux Basic For... (Julian James McKinnon) - English (Z-Library)432 pages
- Hacking - Hacking With Python - The Complete Beginner'Srcises (Hacking Series Book 1)100% (10)Hacking - Hacking With Python - The Complete Beginner'Srcises (Hacking Series Book 1)150 pages
- Technical Requirement CCTV + Cyber SecurityNo ratings yetTechnical Requirement CCTV + Cyber Security8 pages
- Cisco Catalyst IR8300 Rugged Series Router DatasheetNo ratings yetCisco Catalyst IR8300 Rugged Series Router Datasheet21 pages
- 2024 Dbir Data Breach Investigations ReportNo ratings yet2024 Dbir Data Breach Investigations Report100 pages
- Computer Architecture 3rd Edition by Moris Mano CH 08No ratings yetComputer Architecture 3rd Edition by Moris Mano CH 0843 pages
- Oraw The Schematie Diagram of 3-Way Handshaking For Connection Establishment inNo ratings yetOraw The Schematie Diagram of 3-Way Handshaking For Connection Establishment in16 pages
- TCP and Its Algorithms (Slow-Start, Congestion Avoidance, Fast Retransmit and Fast Recovery)No ratings yetTCP and Its Algorithms (Slow-Start, Congestion Avoidance, Fast Retransmit and Fast Recovery)4 pages
- Syllabus For Banking and Insurance: Sem 1 1. Environment and Management of Financial ServicesNo ratings yetSyllabus For Banking and Insurance: Sem 1 1. Environment and Management of Financial Services44 pages
- Four Write Answers in This Quest Paper Itself, Start A New Page For Each QuestionNo ratings yetFour Write Answers in This Quest Paper Itself, Start A New Page For Each Question26 pages
