ALL CATEGORIES

Seller Center
- Product Management
  
  Post Product
  
  Manage Products
  
  Featured Products
- Blog Management
  
  Post Blog Article
  
  Manage Blog Articles
  
  Manage Blog Categories
- Inquiry Management
  
  My Inquiries
  
  Buying Requests
- Analytics Center
  
  Performance Dashboard
  
  Product Analytics
  
  Visitor Analytics
Connect Your Store to WeChat

Follow Our Official Service Account
Manage Products & Inquiries Anywhere
Seller Services

Seller Services

Goldsupplier.com: 20 years of Global Trade Expertise, Empowering Your Business to Go Global!

Join GoldSupplier.com

Free & Instant Registration

Showcase Company & Products

Access Global Buying Requests

Register Now

Activate Verified Supplier Membership

Priority Verified Visibility

Claim Exclusive Buying Requests

Automated Multi-language Store

Verified Now

Launch Your EasyOcean Website

Full-Service Website Management

Google Page 1 Guarantee

Enhanced Brand Credibility

Launch Now
Buyer Services
Post Buying Request

Browse Product Categories

Featured Suppliers
Contact Platform Support

Help Center

Home > Computer Products > Network Hardware & Parts > Router > Hillstone E-Series Next-Generation Firewall SG-6000-E2300

Hillstone E-Series Next-Generation Firewall SG-6000-E2300

Name: Hillstone E-Series Next-Generation Firewall SG-6000-E2300
Brand: Hillstone
SKU: 101652829
Availability: InStock

Hillstone E-Series Next-Generation Firewall SG-6000-E2300 thumbnail-1

Hillstone E-Series Next-Generation Firewall SG-6000-E2300 photo-1

US$ 1 - 1,000 MOQ: 1 Set

Key Specifications

Get Latest Price

Products Status:

Stock

Type:

Wired

VPN Support:

Yes

Contact Supplier Request Quote Chat Now

Shanghai Chu Cheng Information Technology Co., Ltd.

Payment & Shipping

Payment Methods:

Port of Shipment:

Shanghai

Delivery Detail:

Delivery time depends on order quantity.

Product Details
Company Profile
Contact Us

Products Status Stock

Type Wired

VPN Support Yes

Throughput 2.5Gbps / 4Gbps

Simultaneous Sessions 600K/1M

Certification CE

Brand Name Hillstone

Model Number SG-6000-E2300

Place of Origin Beijing, China

Hillstone E-Series Next-Generation Firewall SG-6000-E2300

Product Overview

Hillstone E-Series next generation firewalls provide visibility and control of web applications regardless of port,protocol, or evasive action. It can identify and prevent potential threats associated with high-risk applications while providing policy-based control over applications, users, and user-groups. Policies can be defined that guarantee bandwidth to mission-critical applications while restricting or blocking inappropriate or malicious applications. Hillstone E-Series firewalls incorporate comprehensive network security and advanced firewall features. They provide superior price performance, excellent energy efficiency, and a smaller size when compared to competing products.

Product Highlights

Granular Application Control

Hillstone E-Series firewalls provide fine-grained control of web applications regardless of port, protocol, or evasive action. It can identify and prevent potential threats associated with high-risk applications while providing policy-based control over applications, users, and user-groups. Policies can be defined that guarantee bandwidth to mission-critical applications while restricting or blocking inappropriate or
malicious applications. Applications are classified by: name, category, subcategory, technology and risk. Policies can be created using one or more of these classifications to fine-tune permissible applications for selected users and groups. Policy based routing and bandwidth management can also be created for users/groups based on time of day and application attributes. In addition, selected features within an application (e.g., games, file sharing) can be blocked or bandwidth managed by user/group, time of day, and other criteria.

Proactive Threat Protection

Hillstone E-Series firewalls provide real-time protection for application and network attacks including viruses, spyware, worms, botnets, ARP spoofing, DoS/DDoS, Trojans, buffer overflows, and SQL injections. It incorporates a unified malware detection engine that shares packet details with multiple security defenses (IPS, URL filtering, and Anti-Virus), which significantly reduces latency.

Visibility and Control

Hillstone E-Series provides visibility and control of network traffic. An intuitive user interface displays all applications traversing the network along with application categories and bandwidth. An administrator can
quickly choose an application and see all the users who are accessing that application along with bandwidth consumption. If a particular user is of interest the administrator can see all the applications that user is using - now and in the past. Inappropriate applications can be blocked or limited by bandwidth or time of day. Multiple reports show top applications, top users, top URLs, top URL categories, top threats, etc.

Key Features

Network Services
- Dynamic routing (OSPF, BGP, RIPv2)
- Static and Policy routing
- Route controlled by application
- Built-in DHCP, NTP, DNS Server and DNS proxy
- Tap mode – connect to SPAN port
- IPv6 Support: Mgt. over IPv6, IPv6 routing protocols, IPv6 tunneling, IPv6 logging and HA
- Interface modes: sniffer, port aggregated, loopback, VLANS (802.1Q and Trunking)
- L2/L3 switching & routing
- Virtual wire (Layer 1) transparent inline deployment

Firewall
- Operating modes: NAT/route, transparent (bridge), and mixed mode
- Policy objects: predefined, custom, and object grouping
- Application Level Gateways and session support: MSRCP, PPTP, RAS, RSH, SIP, FTP, TFTP, HTTP, dcerpc, dns-tcp, dns-udp, H.245 0, H.245 1, H.323
- NAT support: NAT46, NAT64, NAT444, SNAT, DNAT, PAT, Full Cone NAT, STUN
- NAT configuration: per policy and central NAT table
- VoIP: SIP/H.323/SCCP NAT traversal, RTP pin holing
- Global policy management view
- Schedules: one-time and recurring
- QoS Traffic Shaping:
  - Max/guaranteed bandwidth tunnels or IP/user basis
  - Tunnel allocation based on security domain, interface, address, user/user group, server/server group, application/app group, TOS,VLAN
  - Bandwidth allocated by time, priority, or equal bandwidth sharing
  - Type of Service (TOS) and Differentiated Services (DiffServ) support
  - Prioritized allocation of remaining bandwidth
  - Maximum concurrent connections per IP
- Virtual Firewall: Up to 250 vSYS load balanced firewalls
- Load balancing:
  - Weighted hashing, weighted least-connection, and weighted round-robin
  - Session protection, session persistence and session status monitoring
  - Bidirectional link load balancing
  - Outbound link load balancing includes policy based routing, ECMP and weighted, embedded ISP routing and dynamic detection
  - Inbound link load balancing supports SmartDNS and dynamic detection
  - Automatic link switching based on bandwidth and latency
  - Link health inspection with ARP, PING, and DNS

VPN
- IPSec VPN:
  - IPSEC Phase 1 mode: aggressive and main ID protection mode
  - Peer acceptance options: any ID, specific ID, ID in dialup user group
  - Supports IKEv1 and IKEv2 (RFC 4306)
  - Authentication method: certificate and pre-shared key
  - IKE mode configuration support (as server or client)
  - DHCP over IPSEC
  - Configurable IKE encryption key expiry, NAT traversal keep alive frequency
  - Phase 1/Phase 2 Proposal encryption: DES, 3DES, AES128, AES192,AES256
  - Phase 1/Phase 2 Proposal authentication: MD5, SHA1, SHA256,SHA384, SHA512
  - Phase 1/Phase 2 Diffie-Hellman support: 1,2,5
  - XAuth as server mode and for dialup users
  - Dead peer detection
  - Replay detection
  - Autokey keep-alive for Phase 2 SA
- IPSEC VPN realm support: allows multiple custom SSL VPN logins associated with user groups (URL paths, design)
- IPSEC VPN configuration options: route-based or policy based
- IPSEC VPN deployment modes: gateway-to-gateway, full mesh,hub-and-spoke, redundant tunnel, VPN termination in transparent mode
- One time login prevents concurrent logins with the same username
- SSL portal concurrent users limiting
- SSL VPN port forwarding module encrypts client data and sends the data to the application server
- Supports clients that run iOS, Android, and Windows XP/Vista including 64-bit Windows OS
- Host integrity checking and OS checking prior to SSL tunnel connections
- MAC host check per portal
- Cache cleaning option prior to ending SSL VPN session
- L2TP client and server mode, L2TP over IPSEC, and GRE over IPSEC
- View and manage IPSEC and SSL VPN connections User and Device Identity
- Local user database
- Remote user authentication: LDAP, Radius, Active Directory
- Single-sign-on: Windows AD
- 2-factor authentication: 3rd party support, integrated token server with physical and SMS
- User and device-based policies

IPS
- 7,000+ signatures, protocol anomaly detection, rate-based detection, custom signatures, manual, automatic push or pull signature updates, integrated threat encyclopedia
- IPS Actions: default, monitor, block, reset (attackers IP or victim IP, incoming interface) with expiry time
- Packet logging option
- Filter Based Selection: severity, target, OS, application or protocol
- IP exemption from specific IPS signatures
- IDS sniffer mode
- IPv4 and IPv6 rate based DoS protection with threshold settings against TCP Syn flood, TCP/UDP/SCTP port scan, ICMP sweep, TCP/UDP/SCIP/ICMP session flooding (source/destination)
- Active bypass with bypass interfaces
- Predefined prevention configuration

Threat Protection
- Over 1.3 million AV signatures
- Botnet server IP blocking with global IP reputation database
- Flow-based Antivirus: protocols include HTTP, SMTP, POP3, IMAP

FTP/SFTP
- Flow-based web filtering inspection
- Manually defined web filtering based on URL, web content and MIME header
- Dynamic web filtering with cloud-based real-time categorization database: over 140 million URLs with 64 categories (8 of which are security related)
- Additional web filtering features:
  - Filter Java Applet, ActiveX or cookie
  - Block HTTP Post
  - Log search keywords
  - Exempt scanning encrypted connections on certain categories for privacy
- Web filtering profile override: allows administrator to temporarily assign different profiles to user/group/IP
- Web filter local categories and category rating override
- Proxy avoidance prevention: proxy site category blocking, rate URLs by domain and IP address, block redirects from cache & translation sites, proxy avoidance application blocking, proxy behavior blocking (IPS)
- Inspect SSL encryption traffic

Application Control
- Over 3,000 applications that can be filtered by name, category, subcategory, technology and risk
- Each application contains a description, risk factors, dependencies, typical ports used, and URLs for additional reference
- Actions: block, reset session, monitor, traffic shaping

High Availability
- Redundant heartbeat interfaces
- Active/Active and Active/Passive
- Standalone session synchronization
- HA reserved management interface
- Failover:
  - Port, local & remote link monitoring
  - Stateful failover
  - Sub-second failover
  - Failure notification
- • Deployment Options:
  - HA with link aggregation
  - Full mesh HA
  - Geographically dispersed HA

Administration
- Management access: HTTP/HTTPS, SSH, telnet, console
- Central Management: Hillstone Security Manager (HSM), web service

APIs
- System Integration: SNMP, syslog, alliance partnerships
- Rapid deployment: USB auto-install, local and remote script execution
- Dynamic real-time dashboard status and drill-in monitoring widgets
- Language support: English

Logs & Reporting
- Logging facilities: local memory and storage (if available), multiple syslog servers and multiple Hillstone Security Audit (HSA) platforms
- Encrypted logging and log integrity with HSA scheduled batch log uploading
- Reliable logging using TCP option (RFC 3195)
- Detailed traffic logs: forwarded, violated sessions, local traffic, invalid packets
- Comprehensive event logs: system and administrative activity audits, routing & networking, VPN, user authentications, WiFi related events
- IP and service port name resolution option

Detailed Images

Specifications

Specification	SG-6000-E2300
FW Throughput (Maximum)	2.5Gbps/4Gbps
IPSec Throughput	1Gbps
Maximum Concurrent Sessions (Standard/Maximum)	1M/1M
AV Throughput	700Mbps
IPS Throughput	1Gbps
New Sessions/s	50,000
IPSec Tunnel Number	1,000
Maximum SSL VPN Users	1,000
Management Ports	1 x Console Port,1×USB port
Fixed I/O Ports	5 x GE, 4XCombo
Available Slots for Extension Modules	No
Expansion Module Option	No
Maximum Power Consumption	45W Redundancy 1+1
Power Supply	AC 100-240V 50/60Hz DC -40~-60V
Dimension (W×D×H, mm)	1U 17.4X9.5X1.7in(442x241x44mm)
Weight	5.5lb (2.5kg)
Temperature	32-104 F (0-40℃ )
Relative Humidity	10-95% (no dew)

Module Options

Specification	IOC-8GE-M	IOC-8SFP-M
Pictures
Name	8GE Extension Module	8SFP Extension Module
I/O Ports	8 x GE	8 x SFP, SFP module not included
Dimension	½ U (Occupies 1 generic slot )	½ U (Occupies 1 generic slot )
Weight	1.8lb(0.8kg)	2.0 lb (0.9kg)

Specification	IOC-4GE-B-M	IOC-2XFP-Lite-M
Pictures
Name	4GE Bypass Extension Module	2XFP Extension Module
I/O Ports	4 x GE Bypass (2 pair bypass ports)	2 x XFP, XFP module not included
Dimension	½ U (Occupies 1 generic slot )	½ U (Occupies 1 generic slot )
Weight	1.8 lb (0.8kg)	2.0 lb (0.9kg)

Specification	IOC-4XFP	IOC-8SFP+
Pictures
Name	4XFP Extension Module	8SFP+ Extension Module
I/O Ports	4 x XFP, XFP module not included	8 x SFP+, SFP+ module not included
Dimension	1 U (Occupies 2 generic slots)	1 U (Occupies 2 generic slots)
Weight	2.0 lb (0.9kg)	1.5 lb (0.7kg)

Specification	IOC-4GE-POE	IOC-4SFP+
Pictures
Name	4GE PoE Extension Module	4SFP+ Extension Module
I/O Ports	4 x GE with PoE	4 x SFP+, SFP+ module not included
Dimension	1 U (Occupies 2 generic slots)	1 U (Occupies 2 generic slots)
Weight	0.9 lb (0.4kg)	1.5 lb (0.7kg)

Packaging & Shipping

Trade terms: FOB,CIF,CFR,etc
Price Terms: L/C,D/P,T/T,Western Union,PAYPAL
Payment Terms: T/T in advance
MOQ: 1 pcs
FOB Price:US $1 - 1,000 / Piece
Port: Shanghai
Lead time: Within 5 working days after receipt payment.
Shipment: Express, Air, Sea
Supply capability: 200 Piece/Pieces per Week
Sample availability: Yes (not free)
Package information: carton package with the original package

Our Services

We can provide detail documents and remote help for device installation and configuration.
Warranty: 1 year. ( After the quality guarantee period began to charge appropriate maintenance service fee.)
Our company promises goods enjoy full return due to quality problem since goods delivered within 7 days or 15 days , returned goods must keep original state and it’s accessories are complete.
For more information please contact me freely.My Skype live:2840781839 , my QQ: 2840781839