WatchGuard Firebox M500 Firewall
Comprehensive Protection with High Port Density

Features:

Highest UTM Performance in the Industry:

• Firewall throughput of up to 8 Gbps to keep traffic moving.
• Best UTM throughput in its class - up to 1.7 Gbps - even with strong security enabled.
• No need to compromise protection for strong performance or vice versa. Multi-layered, interlocking security protects the network while throughput remains high.
• Gigabit Ethernet ports support high-speed LAN backbone infrastructures & gigabit WAN connections, including 2 SFP ports for fiber or copper.

Best-of-Breed Security:

• Application-layer content inspection recognizes & blocks threats that stateful packet firewalls cannot detect.
• Powerful subscription-based security services boost protection in critical attack areas for multiple layers of defense. By partnering with leading technology providers, WatchGuard is able to integrate best-of-breed security components into one platform for stronger security at big cost savings.
  • APT Blocker is a cloud-based service that uses a combination of sandboxing and full system emulation to detect and block highly sophisticated Advanced Persistent Threats (APTs).
  • Application Control keeps unproductive, inappropriate, and dangerous applications off-limits.
  • Intrusion Prevention Service (IPS) delivers in-line protection from malicious exploits, including buffer overflows, SQL injections, and cross-site scripting attacks.
  • WebBlocker controls access to sites that host objectionable material or pose network security risks.
  • Gateway AntiVirus (GAV) scans traffic on all major protocols to stop threats.
  • spamBlocker delivers continuous protection from unwanted and dangerous email.
  • Reputation Enabled Defense ensures faster, safer web surfing with cloud-based reputation look-up.
  • Data Loss Prevention automatically inspects data in motion for corporate policy violations.
• Advanced networking features, such as dynamic routing and link aggregation, allow you to add security without needing to change existing network infrastructure.
• Multiple VPN choices (IPSec, SSL, L2TP) for secure remote access include support for Android and Apple iOS devices.

Easy To Manage:

• WatchGuard Dimension™, a public and private cloud-ready visibility solution, instantly turns raw data into security intelligence.
• Interactive, real-time monitoring and reporting - at no additional charge - give an unprecedented view into network security activity so you can take immediate preventive or corrective actions.
• RapidDeploy™ enables quick, secure configuration at remote locations without technical staff.
• Intuitive management console centrally manages all security functions.
• WAN and VPN failover provide redundancy for increased reliability.
• Extend best-in-class UTM security to the WLAN by adding WatchGuard's Wireless Access Points.
• Drag-and-drop Branch Office VPN setup - three clicks and your remote office is connected.

Specifications:

Options & Upgrades:

WatchGuard Security Services

WatchGuard offers the most comprehensive portfolio of network security services, from traditional IPS, GAV, application control, spam blocking, and web filtering to more advanced services for protecting against advanced malware, ransomware, and the loss of sensitive data. WatchGuard also offers a full suite of network visibility and management services.

Fundamental Security Services

Intrusion Prevention Service (IPS)
IPS uses continually updated signatures to scan traffic on all major protocols to provide realtime protection against network threats, including spyware, SQL injections, cross-site scripting, and buffer overflows.

Reputation Enabled Defense Service (RED)
A powerful, cloud-based reputation lookup service that protects web users from malicious sites and botnets, while dramatically improving web processing overhead.

Network Discovery
A subscription-based service for Firebox appliances that generates a visual map of all nodes on your network so you can easily see where you may be at risk.

WebBlocker URL Filtering
In addition to automatically blocking known malicious sites, WebBlocker’s granular content and URL filtering tools enable you to block inappropriate content, conserve network bandwidth, and increase employee productivity.

Application Control
Selectively allow, block, or restrict access to applications based on a user’s department, job function, and time of day and to then see, in real-time, what’s being accessed on your network and by whom.

Gateway Antivirus (GAV)
Leverage our continuously updated signatures to identify and block known spyware, viruses, trojans, worms, rogueware and blended threats - including new variants of known viruses. At the same time, heuristic analysis tracks down suspicious data constructions and actions to make sure unknown viruses don’t slip by.

spamBlocker
Real-time spam detection for protection from outbreaks. Our spamBlocker is so fast and effective, it can review up to 4 billion messages per day.

Advanced Security Services

APT Blocker - Advanced Malware Protection
APT Blocker uses an awardwinning next-gen sandbox to detect and stop the most sophisticated attacks including ransomware, zero day threats and other advanced malware.

Data Loss Prevention
This service prevents accidental or malicious data loss by scanning text and common file types to detect sensitive information attempting to leave the network.

Access Portal
Access Portal provides central location for access to cloud-hosted applications, and secure, clientless access to internal resources with RDP and SSH.

Threat Detection and Response
Correlate network and endpoint security events with enterprise-grade threat intelligence to detect, prioritize and enable immediate action to stop malware attacks. Improve visibility by evolving your existing security model to extend past prevention, to now include correlation, detection and response.

DNSWatch
Reduce malware infections by detecting and blocking malicious DNS requests, redirecting users to a safe page with information to reinforce security best practices.

Dimension Command
Dimension translates data collected from all appliances across your network into actionable network and threat intelligence. Dimension Command gives you the power to take action to mitigate those threats instantly, from one central console.

One Appliance, One Package, Total Security

Simplicity is our mission at WatchGuard and that mission extends beyond how the product is built to how it is packaged. While all of our services are offered à la carte, we have worked to develop two packages that simplify the decision-making process. The Total and Basic Security Suite packages are available on our Firebox T and M Series appliances, as well as our Firebox Cloud and FireboxV virtual models.

• The Basic Security Suite includes all of the traditional network security services typical to a UTM appliance: IPS, GAV, URL filtering, application control, spam blocking and reputation lookup. It also includes our centralized management and network visibility capabilities, as well as, our standard 24x7 support.
• The Total Security Suite includes all services offered with the Basic Security Suite plus advanced malware protection, data loss protection, enhanced network visibility capabilities, a secure access portal, and the ability to take action against threats right from Dimension, our network visibility platform.

Documentation:

Download the WatchGuard Firebox M400 & M500 Datasheet (PDF).