တॠ΂‫ޤັ᜔֧۝‬ხ
൐ᄂࣕͦ‫۝‬ଟბັဨࠦ
Palo Alto Networks ັʹ΂֧ͪᒑ
ཱིжф٩Ьᕓ
Ɣ
ௌ҆໸‫ޣ‬ၾ‫ޟ‬ඁӇ‫ٱ‬
ȶཱིжф٩Ьᕓ - Next-Generation FirewallȷΙຠȂᓍ๿ Gartner
Inc. ӵ 2009 ԑඪюϞࡣȂ໠ۖю౪ӵӨᆍၥԊႢၾΰȂӨড়ኅ୦
િિՌᆎ‫ڏ‬೩ര࣏ȶཱིжф٩ЬᕓȷȄณՄȂ࿋໠ۖຟեᇄกၐ೻
᜸೩രϞࡣȂ‫܁܁‬σѶ‫ܚ‬ఖȂІՄᄇȶཱིжф٩ЬᕓȷԤΟᝒ१‫ޟ‬
ᇲ၌Ȅ
࣏٘ȶཱིжф٩Ьᕓȷ‫ޟ‬ሴᏲࠢถȂPalo Alto Networks ໌Ι؏ࡾ
юȂઍғ‫ޟ‬ȶཱིжф٩Ьᕓȷ҆໸᏿ԤήӖ‫ޟ‬ђ૖ᇄ੫‫ܒ‬Ȉ
ᔖҢแԒ‫ޟ‬ᜋտ
ฒ፣‫ٺ‬Ңӈդ TCP/UDP PortȂࣥՍ࢐ฒࣨᘲ។ (Ultrasurf)ȃՌҥ
ߞ (Freegate) ้‫ڎ‬Ԥೣᗗ՗࣏‫ޟ‬ᔖҢȂ഍૖ғጂᜋտᇄ᝝ߢȄ
‫ٺ‬Ң‫٘ޱ‬Ϸ‫ޟ‬ᜋտ
Gartner Inc. ( ៫૖ϴѧ ) ӵ 2009 ԑ࣏ၥ
ϚᆓҢИ‫ٺ‬Ңӈդ IP ՝֭Ȃ഍૖ആႆᐌӫ‫ٺ‬Ң‫ޱ‬ၥਟ৲ ( ཌ೺
ଉԊӒ٩៖ሴ୿Ȃ‫׹‬ήΟΙᗻᎪᐂኆȄ࣏
ADȃႫυ໏ӇழИ้ )Ȃғጂฒᇲ‫ޟ‬ጂᇯҢИ٘ϷȄ
ΟୢϷᇄȶ༈ಛ٩Ьᕓȷ৯౴ȂGartner
Inc. ඪюΟȶNext-Generation Firewall -
ၥԊࢇ๊૖ӣਢоᔖҢแԒᇄ‫ٺ‬Ң‫٘ޱ‬Ϸୈ࣏௡ᆓనӇ
ཱིжф٩Ьᕓȷ೻এᄉཱིӪຠȄ
ሆᚬ‫ޟ‬ୈ‫ٷڗ‬ᐃഋߞЅ‫ٺ‬Ң‫٘ޱ‬ϷȂ๝ϠϚӣ‫ޟ‬ᆩၯ‫ٺ‬Ң᠌३Ȃ‫ׇ‬
๡‫ޟ‬௡ᆓᆩၯ‫ٺ‬Ң՗࣏Ȅ
ઍғ‫ཱིޟ‬жф٩Ьᕓᔖ၎‫ڎ‬ര
ήӖ੫ՓȈ
ᔖҢแԒᜋտ૖Ψ
‫ٺ‬Ң‫٘ޱ‬Ϸᜋտ૖Ψ
ᐌӫΣ߭୎ก‫ف‬ಛ , ࣥՍ࢐
‫ں‬Ӓ‫ࡄޟ‬૏٩៖૖Ψ
ᐌӫΣ߭୎ก٩ᑕȃ੾ࢳ٩៖ᇄඌཎแԒ௡ᆓ้ђ૖Ȃџоᄇ‫ܚ‬Ԥ
ᆩၯࢺ໔Ȃ໌՗ၥԊࡄ૏‫୎ޟ‬กᇄߢᔬȄӣਢȂ‫؁‬૖஠ᗴᙠӵᔖҢ
แԒϱ‫ޟ‬ඌཎࡄ૏Ȃғጂ‫ޟ‬ёо᝝ߢȂୈ‫ڗ‬ശᝒ஝‫ޟ‬ၥԊ٩៖Ȅ
٩ࢳᕓђ૖
ၥԊ‫ٱ‬Ӈ‫ޟ‬ᜰᖒԒϷ‫ݙ‬૖ΨȄ
ၥԊ‫ٱ‬Ӈ‫ޟ‬ᜰᖒԒϷ‫ݙ‬૖Ψ
ցҢᜰᖒԒϷ‫ݙ‬ЕᔝȂџоٞഀ‫ޟ‬஠Ө᜸ၥԊ‫ٱ‬ӇȂᐌ౩ԝᔧ఼࣏
ཿ‫ޟ‬ၥԊ‫ٱ‬ӇϷ‫ݙ‬ൢ֙Ȃ݂ጂࡾюၥԊ‫ٱ‬Ӈ‫ޟ‬ȶᄢौఄक़ȃ‫׾‬ᔞ‫ޱ‬ȃ
Palo Alto Network ‫ׇ‬Ӓಒӫ
Gartner Inc. ᄇཱིжф٩Ьᕓ‫ޟ‬Ө
ᆍ੫ՓौؑȄ
‫ڧ‬৛‫ޱ‬ȷ้ၥଉȂё‫פ‬၌‫ؚ‬୰ᚠ‫ޟ‬ഀ࡙Ȅ
ᓺ౴‫ޟ‬ਝ૖ߒ౪
༈ಛ٩ЬᕓശᡱΡѶఖ‫ޟ‬ӴПȂ൷࢐ӵంҢΣ߭୎กȃ੾ࢳ٩៖้
ђ૖ࡣȂਝ૖ོ૾෵ு‫ۉ‬৯ฒШȂலல࢐ѫ഻ήনԤਝ૖‫ޟ‬ΪϷϞ
ΙϚ‫ڗ‬Ȅཱིжф٩Ьᕓ҆໸‫ڎ‬Ԥᓺ౴άᛧۡ‫ޟ‬ਝ૖Ȃϗ૖ᅖٗᄂሬ
ᔖҢ‫ޟ‬ሯؑȄ
1
ᆓ౩ Web 2.0
Ɣ
ௌ࢐֏ཐ‫ڗ‬
ΨϚ௃Ж
٩Ϛഽ٩‫ཱིޟ‬ᑹᔖҢᇄࡄ૏
ӵӨᆍᆩၯᔖҢϚᘞ௰ങюཱི‫ޟ‬௑‫ל‬ήȂཕ‫پ‬ཕӻ‫ޟ‬
‫ޥ‬တᆩၯȃጣΰኇॱ݈୛Ѕ P2P ༈ᒯ้ᔖҢȂϐင
ԙ࣏ശкौ‫ޟ‬ᆩၯ‫ٺ‬Ң՗࣏Ȅ
೻ ᜸ ࠮ ‫ ޟ‬ᔖ Ң ݈ ୛Ȃ σ ӻ ኵ ࢐ ց Ң ‫ ܚ‬ᒝ ‫ ޟ‬TCP
80/443 Port ୈ࣏༈ᒯᆓၾȂՄ༈ಛ٩Ьᕓᄇܻ೻ᆍ༈
ᒯᆓၾȂ‫ׇ‬Ӓ‫؂‬Йฒ๊Ȃѫ૖ܹӈҢИ‫ٺ‬ҢȄ‫؁‬տᇳȂ
ᄇܻ೻᜸ᔖҢ‫ܚ‬ॊҡ‫ޟ‬ၥԊࡄ૏Ȃਲ਼ҏ‫ؠ‬Ԥ᝝ߢ૖ΨȄ
᠒‫ޟࡐ࢜ח‬٩៖ೣგ
༈ಛ٩Ьᕓ഍࢐௴Ңȶ‫ޑ‬ᄘᔮกԒ‫׬‬೚ - Stateful Inspectionȷ‫پ‬௡ᆓᆩၯ՗࣏Ȃ೻໶‫׬‬೚ϐင୰ж຺ႆ
ΪϤԑΟȄӵंี೻໶‫׬‬೚‫ޟ‬ԑфȂ‫ؠٮ‬Ԥ‫ܚ‬ᒝ‫ޥޟ‬တᆩၯȃጣΰኇॱ݈୛Ѕ P2P ༈ᒯ้ᔖҢȂ։‫࢐ٺ‬
ᡱΡ౏ཐ֨ᘙ‫ޟ‬ȶऎᕓ೺ᡝ - ฒࣨᘲ។ȃՌҥߞȃTorȷ้݈୛Ȃζ࢐ശߖඁԑϗ໠ۖӵᆩၯΰ౾՗ȄӰԪȂ
༈ಛ٩Ьᕓฒ‫ݲ‬௡ᆓཱིᑹᔖҢ݈୛Ȃϐင࢐ಀ‫ٱޟޣ໊ܚ‬ᄂȄ
ӻኵ IT ഋߞ࣏Οպ݈༈ಛ٩Ьᕓ‫ޟ‬౭ᓛȂѫԁ௴ᗊ‫ڏ‬тၥԊ೩രȂ჋࢐ȈΣ߭୎ก٩ᑕ (IPS)ȃ٩ࢳᕓ (AV)
Ѕᓜቶᆓ౩Ꮲ (QoS) ้Ȃ‫ה‬ఖ૖၌‫ؚ‬ಁࠉ‫ޟ‬ᆓ౩ᜲᚠȄ
ณՄ‫ٱ‬ᇄ᜹ႂ‫ޟ‬௑‫࢐ݷ‬Ȃ௴ҢӻᆍၥԊ೩രࡣȂϚ༉ฒ‫ݲ‬Ԥਝ၌‫ؚ‬୰ᚠȂІՄഅԙ‫؁‬ӻ‫֨ޟ‬ᘙȄ
߆າσ๋ߜᓀӵ௴ᗊᇄᆰ៖೩രȄ
‫׹‬Σσ໔ਢ໢Ᏸಬᐇհᇄᆓ౩ӻᆍኅถ೩രȄ
Өᆍ೩ര‫ޟ‬ၥԊРᇬ (Log) ਿԒϚΙȂϚܾ၌᠞Ȅ
‫ؠ‬ԤᐗөᜰᖒԒϷ‫ݙ‬૖ΨȂഅԙ੏າσ໔ਢ໢ӵ௶ଶၥԊࡄ૏Ȅ
2
௴Ң Palo Alto Networks ཱིжф٩Ьᕓ Ɣ ௃Ԫ
ଽ‫݌‬ฒ኏
Palo Alto Networks ‫׬‬೚ღ໥Ȃ౏‫ړ‬Ο၌‫ڗ‬༈ಛ٩Ьᕓᇄ‫ڏ‬тၥԊ೩ര‫ޟ‬౭ᓛȂंีюᄉཱི‫ޟ‬೺฽ᡝҁѮ
Ѕგਢф‫ޟ‬ԊӒ٩៖ཱིࡦᆰȂᡱௌᕕுࠉ‫ܚ‬Ґَ‫ޟ‬ᆩၯ՗࣏௡ᆓ૖ΨȄᙤҥᐿ؏Ӓ౨‫ ޟ‬App-IDȃUser-ID
Ѕ Content-ID ‫׬‬೚Ȃёΰ๘‫ޟٹ‬ኆ‫ܒ‬շဍ૖ΨЅхΡᢚნ‫ޟ‬ᜰᖒԒϷ‫ݙ‬ЕᔝȂϚ༉‫ׇ‬Ӓಒӫ Gartner Inc.
ᄇܻȶཱིжф٩Ьᕓȷ‫ޟ‬ौؑȂ‫؁‬ᕕு‫ޣ‬Ӫ‫ ޟ‬NSS Lab ࡾӪ௰ᙨȄ
ɆPalo Alto Networks generated the most ¿rewall
inquiries among Gartner customers.ɇ
Greg Young, Research VP, Gartner Inc.
"NSS Labs commends Palo Alto Networks
for taking the steps to protect their customers,"
"We are impressed with Palo Alto Networks' responsiveness
and collaboration during the retesting process and are happy
to recommend them."
Vik Phatak, CTO, NSS Labs.
ϴѧᙏϭ
Palo Alto Networks ࢐Ιড়ᆩၯԊӒϴѧȂӵ 2005 ԑҥഺᒲΡ Nir Zuk ԙҳܻछ୽ёԎȄѺ‫ཱིޟ‬жф٩
Ьᕓ૖‫ٺྱٷ‬Ң‫٘ޱ‬Ϸᆓ௡Մߨѫ࢐ IP ՝֭Ȃ࣏ᔖҢแԒ‫ڷ‬ϱৠඪ‫ܚࠉټ‬ҐԤ‫ޟ‬џຜ‫ڷܒ‬Ϸ઻᠌३௡ᆓȂ
೎౩ਝ૖ശଽџႀ 20GbpsȄPalo Alto Networks ཱིжф٩Ьᕓ࢐о App-ID ‫׬‬೚࣏அᙃȂ૖ғጂᒱᜋ‫ڷ‬
ᆓ‫ڙ‬ᔖҢแԒȂϚ‫ڧ‬೿௥ஃȃ‫ۡڞ‬ȃೣᗗ‫׬‬೚Ѕ SSL ё஝३‫ڙ‬Ȃ‫ٮ‬и௭ජϱৠоߢᘞࡄ૏‫ڷ‬Ⴑ٩ၥਟѴࣉȄ
೻ᡱௌॶ࡙૖ஊܹЖ᏿ܲ Web 2.0Ȃά૖ᆰࡻ‫ׇ‬ᐌ‫ޟ‬џຜ‫ܒ‬ᇄ௡‫ڙ‬Ȃӣਢᡗ๿६ճᐌᡝ᏿ԤԙҏȄ
3
ᐿ؏Ӓ౨‫׬ޟ‬೚૖Ψ
ӒП՝‫ޟ‬ᔖҢแԒᜋտ (App-ID)
ᐿড়‫ޟ‬ᔖҢแԒᜋտ‫׬‬೚ȂџоྥጂӴϷ‫ݙ‬юҢИ‫ޟ‬ᆩၯ՗࣏Ȃᡱௌӵᆓ౩ΰᆩ՗࣏ਢ‫؁‬ுЖᔖЙȄ
ғጂ‫ޟ‬ᜋտᇄ௡ᆓᔖҢแԒȂӻႀ 1,300 ᎷᆍȂᔖԤᅾԤȄ
᝝ߢฒࣨᘲ។ (Ultrasurf)ȃՌҥߞ (Freegate)ȃTor ้ೣᗗ՗࣏‫ޟ‬ᔖҢȂӔ਌ЙϚႆȄ
໊ཱིؐቨᔖҢแԒᜋտ૖ΨȂЅ‫ࢋཱི؁‬Ԥ‫ޟ‬ᔖҢแԒ੫኉ጆȂԁᗙौ‫؁‬ԁȄ
‫ޣ‬ၾձ࢐።‫ٺޟ‬Ң‫ޱ‬ᜋտ (User-ID)
೻࢐಑ΙԩȂௌџоሆᚬ‫ޟ‬ၭӨᆍ‫ٺ‬Ң‫ޱ‬ၥਟ৲ ( ԃȈཌ೺ AD ழဴȃႫυ໏Ӈழဴ ) ᆧ஝ᐌӫȂ։ਢ‫ޟ‬
஠ IP ՝֭ᇄ‫ٺ‬Ң‫ޱ‬ၥଉ໌՗೿๖Ȅ
ҢИ٘ϷΙ఼ΠཿȂฒ‫֏ݲ‬ᇯȄ
‫ྱٷ‬ҢИ٘ϷᇄഋߞȂ๝ϠϚӣ‫ٺޟ‬Ң᠌Ȃᡱௌདࡩቄᆓ౩ȃ൷ࡩቄᆓ౩Ȅ
IP ՝֭ᇄ MAC ՝֭‫ٮ‬Ϛ૖ு‫ޣ‬ઍғҢИ٘ϷȄ
ฒ‫ܚ‬ႊ‫ޟל‬ϱৠᜋտ (Content-ID)
᏿Ԥȶ։ਢࡄ૏٩ᑕȷȃȶϚ‫ي‬ᆩમႆᘮȷЅȶ༈ᒯᔬਰ᜸࠮ᜋտȷ้૖ΨȂᡱௌϚ‫ࢳ੾ڧ‬ȃඌཎ೺ᡝᇄ
ᓧࡊΣ߭‫ޟ‬ϓᘙȂџоࢋԊЖάடЖ‫ޟ‬ώհȄ
NSS Lab ࡾӪ௰ᙨ‫ޟ‬Σ߭٩ᑕ૖ΨȂ൷ᆗԤᓧࡊ‫׾‬ᔞȂௌζϚҢᐊЖȄ
։‫࢐ٺ‬ዖӅӵᆩॲȃPDF МӇЅᔆᕻᔬਰ၇‫ࢳ੾ޟ‬ȂΙኺ૖࣏ௌනю‫پ‬Ȃ٩៖ฒ‫ܚ‬ϚӵȄ
ᔓօௌᝒਿᆓ‫ڙ‬ᔬਰѴࣉ‫ޟ‬ᆓၾȂᡱௌ‫ޟ‬ᐠ஝ၥਟ߳៖‫؁‬ё‫ׇ‬๡Ȅ
4
Ϛџࡦដ‫ޟ‬ਝ૖ᇄᛧۡ‫ܒ‬
ҥܻ฽ᡝᇄհཾ‫ف‬ಛ PAN-OSȂ഍࢐ Palo Alto Networks
೩ॎ҈അȄ‫ܚ‬оȂѺ‫ڎ‬Ԥଽഀ‫ޟ‬ਝ૖ᇄ஀ᄂ‫ޟ‬ᛧۡ‫ܒ‬Ȃᡱ
‫ܚ‬Ԥ‫ޟ‬Ιϸ഍૖໷ᄱά‫ׇ‬छ‫֕ޟ‬౪Ȅ
PAN-OS ཾࣨശӑ໌‫ޟ‬հཾ‫ف‬ಛ
PAN-OS ࢐ Palo Alto Networks ཱི ж ф ٩ Ь ᕓ ‫ ޟ‬հ ཾ ‫ف‬
ಛȂ‫ڎ‬Ԥᙏ൐ܾҢ‫ޟ‬ϭ७ȃ๘‫ޟٹ‬ђ૖੫ՓоЅ஀ᄂ‫ޟ‬ᛧ
ۡ‫ܒ‬Ȃ։‫ڏٺ‬тᄇЙғၐ๿ଡሂȂPAN-OS ϱ࡚‫׬ޟ‬೚ᇄ
ђ૖ȂϫᡱѺልልሴӑᝯ‫ތ‬ᄇЙȄ
ௌ࢐֏ෆငདႆӣਢ᏿ԤȈΟ၌ҢИ՗࣏ЅᕕுΣ߭୎กȃ੾ࢳᇄඌཎ೺ᡝ٩៖ȂࠓάᐊЖܴ࠳ਝ૖ȄԤΟ
PAN-OS ᐿ੫‫ޟ‬൐೽ၾ೎౩૖Ψ (Single Pass)Ȃ೻ᆍ௑‫ݷ‬൷ϚོีҡȄ
хΡᐭ፬‫ޟ‬շဍ૖Ψ
ᡱௌӣਢᕕுȈਠ௥዁Ԓȃആ೽዁ԒЅၯҥ዁Ԓ้շဍ૖ΨȂϚሯϸസюຎᔣ٩ЬᕓȂϚོഅԙ᚞Ѵ‫॒ޟ‬ᐊȂ
ΙᐠӻҢȂ൷࢐೻ቄᙏ൐Ȅ
ਠ௥዁Ԓ (TAP ModeȃSPAN Mode)
ௌџоᓍਢᄇีҡ୰ᚠ‫ޟ‬ᆩၯ໌՗ᅿ᠙Ȃ଻ΰ൷૖‫ޣ‬ၾีҡϧቄ୰ᚠȂ࢈ራ௶ଶ೻Ӈ‫ٱ‬Ȃ௃ԪϚӔ࢐ௌ‫ޟ‬ඌჲȄ
ആ೽዁Ԓ (Transparent Mode)
ଶΟலَ‫ ޟ‬L2 Transparent ആ೽዁ԒϞѴȂᗙԤ໌໦‫ ޟގ‬ȶVirtual Wire ዁ԒȷȂᡱௌϚҢও‫׽‬ӈդ౪Ԥ೩
ര‫ޟ‬೩ۡȂζϚҢ‫׽‬ᡐᆩၯ࢜ᄺȂ൷૖ሆᚬ‫ׇ‬ԙշဍȄ
ၯҥ዁Ԓ (Route ModeȃNAT Mode)
ցҢၯҥᇄᙽ้֭ώհ዁ԒȂᡱௌ૖஠ Palo Alto Networks ཱིжф٩Ьᕓհ࣏ᄇѴ‫ޟ‬ԊӒႢၾȂඪ‫ټ‬ϱഋᆩၯ
ശ‫ׇ‬๡‫ޟ‬٩៖Ȅ
5
ᙏዓ‫ޢ‬ឈ‫ٺޟ‬Ңငᡛ
࿋ௌ಑Ιԩ‫ٺ‬Ң Palo Alto Networks ཱིжф٩ЬᕓਢȂௌ࡞‫פ‬൷૖Ᏸོԃդ‫ٺ‬ҢѺȄ೻࢐Ӱ࣏ PAN-OS
‫ޟ‬೩ॎ۠ԟ൷࢐ौள๝ௌശ෕‫ޟ‬ȶཱིжф٩Ьᕓȷ‫ٺ‬ҢငᡛȂฒ፣࢐೩ۡၥԊࢇ๊ȃࢥ‫ײ‬ၥԊࡄ૏‫ีޟ‬ҡ
ྛȃ‫࢐ܖ‬౰ҡሯौ‫ޟ‬ൢߒȂؐӇ‫ٱ‬഍ᡐு‫؁‬ᙏ൐‫ޢ‬ឈȂᡱௌᡙ൉ϚϐȄ
‫؁‬ᙏ൐‫ޟ‬ၥԊࢇ๊ᆓ౩
೩ۡၥԊࢇ๊ശፒᚕ‫ޟ‬ӴПȂ൷࢐҆໸७ᄇΙஂᜲо౩၌‫ ޟ‬IP ՝֭ȂՄиᗙौ૖ஊ‫ྱٷ‬ഋߞᇄҢИȂ๝
ϠϚӣ‫ٺޟ‬Ң᠌३Ȃӎ࢐ौୈ‫ڗ‬೻‫ٲ‬൷ϐငᡱΡࠓ؏Ȅ‫؁‬դ‫ݷ‬ᗙԤᆍᆍ‫ޟ‬ၥԊࡄ૏Ȃζ഍҆໸ઽΣՃ໔Ȅ
Palo Alto Networks ཱིжф٩Ьᕓ᏿Ԥ‫ޟ‬ᆩॲᆓ౩ϭ७Ȃ૖ᡱௌ‫פ‬ഀӴዣொᐇհᇄᆓ౩Ȃሆᚬ‫ׇޟ‬ԙၥԊ
ࢇ๊‫ޟ‬೩ۡȄฒ፣࢐ҢИ‫᠌ޟ‬३ȃᆩၯ՗࣏‫ޟ‬௡ᆓȃᓧࡊΣ߭ȃ੾ࢳȃ໢ᒘ೺ᡝ‫ޟ‬٩៖Ȃ഍૖ӵ೩ۡॲ७
ϛȂኆࡾ໢ཤۡȄ
๖ӫ‫ٺ‬Ң‫ޱ‬ၥਟ৲Ȃџоሆᚬ‫ྱٷޟ‬ҢИ٘ϷᇄഋߞտȂୈ‫ڗ‬৯౴Ͻ‫᠌ޟ‬३௡ᆓȄ჋࢐Ȉϰ೨ཾ
୛ᇄ՗᎛ഋߞ‫ٺ‬Ң FacebookȂՄོॎᇄ‫ݲ‬୛ഋߞϚ૖‫ٺ‬ҢȄ
‫ܢ‬๘ᔖҢแԒ‫ٺޟ‬ҢȄ‫ٽ‬ԃȈPeer-to-Peer(P2P) ‫ ܖ‬ऎᕓ೺ᡝ ( ฒࣨᘲ។ȃՌҥߞ้ )Ȅ
౏ΣᔖҢแԒϛȂᔮࢥ࢐֏Ԥ੾ࢳȃ໢ᒘ೺ᡝ‫ڷ‬џೝΣ߭‫ޟ‬৵ᘈȄ‫ٽ‬ԃȈҢИᘲ។ᆩॲਢϚབᘲ
។‫ڗ‬ඌཎᆩॲȂՄೝේΣУ଻แԒȃなࡏ੾ࢳ้໢ᒘ೺ᡝȂ഍૖ೝ Palo Alto Networks ཱིжф٩
Ьᕓ୎ก‫ٮڗ‬иҳ։ߢ᐀Ȅ
߳៖ௌ‫ޟ‬এၥᇄᐠ஝ᔬਰȄցҢᆩၯџоሆܾ‫ޟ‬஠ᔬਰѴࣉȂ჋࢐Ȉջາ໏Ӈ݈୛ȃջາᆩၯ฽
ᆅȃ։ਢ೽ଉ༈ᔬЅ P2P ༈ᒯȂ೻‫ٲ‬ഊ৷‫܁܁‬ೝ‫܇‬౱Մ‫ؠ‬Ԥёоᆓ‫ڙ‬ȄPalo Alto Networks ཱིж
ф٩Ьᕓ૖ࡌᚇ೻‫ٲ‬ᆓၾȂ‫ٮ‬и੼ή՗࣏଄ᓃȂᡱௌ߳៖ᐠ஝ၥਟ‫؁‬࿲ฒΙѶȄ
ყ‫ל‬Ͻ‫ޟ‬ᐇհϭ७Ȃᡱௌሆᚬ‫ٷ‬ᐃ‫ٺ‬Ң‫ޱ‬ЅᔖҢแԒȂ‫ۡڙ‬௡ᆓПԒ
6
хΡᢚნ‫ޟ‬ᜰᖒԒϷ‫ݙ‬૖Ψ
Palo Alto Networks Ӓཱི҈അ‫ޟ‬८‫ܒڼ‬Ϸ‫ݙ‬Еᔝ (ACC – Application Command Center)Ȃᡱௌฒ፣࢐དौ
Ο၌ᐌᡝᆩၯ՗࣏‫࢐ܖ‬फ़ϸ‫ޟ‬ौ௶ଶၥԊࡄ૏Ȃ഍஠ឈுਿѴሆᚬȂӰ࣏ፒᚕ‫ޟ‬Ϸ‫ݙ‬ώհȂ഍஠ҥ ACC
Ϸ‫ݙ‬Еᔝ࣏ௌ‫ׇ‬ԙȂ‫ٮ‬и࡬ԃ‫ڏ‬Ϸ‫֕ޟ‬౪๝ௌȄ
ད‫ޣ‬ၾ࢐ȶ።ȷӵ‫ٺ‬ҢȶYahoo-Mailȷ஠ϧቄȶᔬਰѴࣉȷ༝ȉ౪ӵȂௌџоցҢ ACC Ϸ‫ݙ‬Еᔝሆᚬ‫ײ‬
ю‫پ‬ȂϚາ֚ԸϞΨȄ
።ӵ‫ٺ‬Ң ?
ೝ঺ΙనၥԊࢇ๊ี౪ ?
ӵࣉᅓϧቄᔬਰ ?
7
ள‫ࡄٲ঺پ‬૏ ?
‫໌ܚޣ‬ю‫ࢺޟ‬໔Ӵყ
ᆠЖ೩ॎ‫ࢺޟ‬໔Ӵყ (Traf¿c Map)Ȃ‫ٺ‬Ңശ‫ޢ‬ឈ‫ޟ‬ПԒ஠‫ܚ‬Ԥࢺ໔֕౪ӵжࣨӴყΰȂᡱௌ૖఼ཿඡණϱ
ഋҢИ࢐֏Ԥᇄ‫ڏ‬т୽ড়ҺࢺȄौ࢐ད࿱ХҢИ೿๖‫ڗ‬੫ۡ୽ড়ȂѫሯौӵၥԊࢇ๊ϛȂ೩ۡ୽ড়տ‫ޟ‬Ԇ
‫ڥ‬௡ᆓᐠ‫ڙ‬Ȃ൷૖ሆᚬཤۡȂϚҢ୅ЙтΡȄ
ࢺ໔Ӵყᡱ‫ܚ‬Ԥᆩၯ՗࣏Ȃ៚ณყΰȂΙϸ఼඾џَȄ
དΟ၌೿๖‫ڗ‬এտ୽ড়‫ޟ‬՗࣏Ȃ༉ሯᘈᔞࢺ໔Ӵყϛ၎୽ড়‫ޟ‬༫୼Ȃ൷ོᡗҰюᔖҢแԒӪᆎȃ‫ٺ‬Ң‫ޱ‬Ӫ
ᆎЅ༈ᒯ໔้ၥଉȂ႞ಠ᜵ᒸȄ
8
ܾܻᐇհ‫ޟ‬Рᇬᔮຜ
དࢥϧቄȂ଻ΰࢥ‫ڗ‬ϧቄȄӵ Palo Alto Networks ཱིжф٩Ьᕓϛौࢥ‫ײ‬Өᆍ‫ف‬ಛРᇬȂ൷࢐೻ቄৠܾȄ
ѫौӵௌདᑢᒵ‫ួޟ‬՝ΰᘈΙήȂ҆ौਢও‫׽‬ौᑢᒵ‫ޟ‬ᜰᗤԅȂ൷૖೩ۡԁᑢᒵనӇȂ௥๿൷Ռଢ଼஠ᑢᒵ
ԁ‫ޟ‬Рᇬ֕౪๝ձȂԃԪᙏ൐ȃΙᘈζϚᜲȄ
ϚሯौእቸፒᚕࡾхȂ൷૖ሆᚬ໌՗ၥਟ‫ޟ‬ᑢᒵᇄཪ൶ȂՄиҳ։఼ཿ֕౪Ȅ
хΡ༊Ж‫ޟ‬ӻኺൢߒ
൷ᆗௌ௃Ґ௥ញႆ Palo Alto Networks ཱིжф٩ЬᕓȂѫौၐႆΙԩȂ൷ΙོۡೝѺᙴ൲‫ޟ‬ൢߒ‫ܚ‬ཐଢ଼Ȅ
ϱ࡚ӻႀ 30 Ꮇᆍ‫ޟ‬ൢߒȂϐငٗоᔖпӨᆍώհΰ‫ޟ‬ሯؑȄϚ༉ԃԪȂѺᗙඪ‫ׇټ‬๡‫ޟ‬Ռۡൢߒђ૖Ȃ
ᡱௌ૖ᇧհ‫؁‬ӻ‫ޟ‬டཾൢߒȂࠓϚҢӔӻ߆ΙЩᓀȄ
஼σ‫ޟ‬ൢߒώ‫ڎ‬Ȃᡱௌ‫ޟ‬ᆓ౩ൢ֙ਿѴᓺ౴ȂՄи‫ڎ؁‬ᇳ݈ΨȄ
9
ᐣᐣӵҬ‫ޟ‬೩ۡᔬ‫ގ‬ҏᆓ౩
ၥԊࢇ๊ᓍ๿ᄂሬሯؑȂওও‫׽׽‬ȂӔғலϚႆȄծ࢐Ȃ‫ٺ‬ҢΙࢲਢ໢ࡣ‫࢐ܖ‬ԤΡষҺ௥ਢȂौ‫఼י‬ཿ೻
‫ٲ‬Ϛӣ‫ގ‬ҏ‫๊ࢇޟ‬Ȃও‫׽‬Ο঺‫ٲ‬ӴПȂ൷ᡐԙхΡ֨ᘙ‫ٱޟ‬௑Ȅ
Palo Alto Networks ཱིжф٩ЬᕓȂོՌଢ଼ᔓௌᓽԆ‫ܚ‬Ԥ‫ޟ‬೩ۡᔬȂᡱௌᓍਢ഍૖ඡණϚӣ‫ގ‬ҏ‫ޟ‬৯౴Ȃ
‫ᜲ؁‬૖џິ‫࢐ޟ‬ȂѺᗙ૖ᡱௌ஠೩ۡᔬӱඈ‫ڗ‬ௌࡾۡ‫ގޟ‬ҏȄ೻ኺΙ‫پ‬Ȃ൷ᆗ೩ۡᒿᇲζϚᐊЖȂӰ࣏ௌ
‫ޣ‬ၾՌϏџоᓍਢ௃ᓞ‫پ‬ႆȄ
ቨёΟϧቄȃও‫׽‬ΟϧቄȂ൷࢐೻ቄ఼ཿ݂ҩȄ
ሴӑတগ‫ޟ‬ၥਟϛЖ٩៖
ߝδо‫پ‬ȂၥਟϛЖ഍࢐‫ٷ‬Ꭼ༈ಛ٩Ьᕓ‫߳پ‬៖Ȃࡣ‫پ‬Ȃ࣏ΟӰᔖቹюϚጏ‫ޟ‬ၥԊࡄ૏Ȃϗ໌Մ఺ᗊӨ᜸
࠮‫ޟ‬٩៖೩രȄ‫ؠ‬ਟད‫࢐ޟڗ‬Ȃ೻ኺ‫ޟ‬ೣგȂІՄഅԙ‫؁‬ӻ‫ޟ‬୰ᚠȂ჋࢐ȈᔖҢแԒᜋտ૖Ψ৯ȃ‫ؠ‬ԤҢ
И᠌३௡ᆓ૖Ψȃࡄ૏٩៖ਝ૖Ϛٗȃ༈ᒯ‫۽‬ᒶ‫ޟ‬ቨёȄᡱၥਟϛЖ‫ޟ‬ԊӒ٩៖ȂΙ‫࢐ޢ‬ശሯौ஼Ͻ‫ޟ‬ΙᕗȄ
Palo Alto Networks ౥ӑඪюȶཱིжфၥਟϛЖȷԊӒ٩៖ཱིࡦᆰȂएક‫௴ޟܒ‬ҢӨᆍхΡᡙნ‫ޟ‬௡ᆓᐠ
‫ڙ‬Ȃ஠ၥਟϛЖ‫ޟ‬ԊӒȂඪ݇Սࠉ‫ܚ‬Ґَ‫ޟ‬ЫҁȄ
ᅎЫϚᅓ‫ࢺޟ‬໔௡ᆓ
໌юၥਟϛЖ‫ޟ‬՗࣏Ȃ഍҆໸࢐ၥਟϛЖ‫ܚ‬ඪ‫݈ޟټ‬
୛Ȃ‫ڏ‬тϚ݂‫ࢺޟ‬໔Ȃ഍ོೝߢ᐀Ȃ೻൷࢐ Palo Alto
Networks ॶഺ‫ޟ‬ғө௡ᆓᐠ‫ڙ‬Ȅ೻ኺȂџоσൽ෵
ЍඌཎᔖҢ݈୛‫ޟ‬ϓᘙȄ
ҢИ٘Ϸ‫᠌ޟ‬३ᆓ౩
‫ؠ‬Ԥ᠌३‫ޟ‬ҢИȂ։‫࢐ٺ‬Ԇ‫ڥ‬ӫ‫ݲ‬ᔖҢ݈୛Ȃζོೝ‫ܢ‬๘ӵѴȄ೻൷࢐ӨᆍၥԊೣጒᝒਿौؑ‫ޟ‬ȂϚӣ‫ޟ‬
ҢИȂ๝ϠϚӣ‫᠌ޟ‬३ȂΙϸ࡬ԃ‫ڏ‬ϷȄ
७७঍‫ࡄޟڗ‬૏٩ᑕ
ؐ࿋ԤᗴᙠӵᔖҢ݈୛ϛ‫ޟ‬ԊӒࡄ૏ю౪Ȃ‫࢐ܖ‬Ԥඌཎ‫׾‬ᔞ՗࣏ีҡਢȂPalo Alto Networks ཱིжф٩Ь
ᕓོ߯ҳ‫ړ‬ӱᔖȂ࣏ௌ᝝ߢ೻‫ࡄٲ‬૏ȂӣਢՌଢ଼சଚ֙ឌ໏Ӈ๝ௌȄ
10
੫Փᇄਝઉ
੫Փ
ਝઉ
Ɣ ғጂᜋտᇄ௡ᆓ຺ႆ 1,300 ᆍоΰᔖҢแԒȄ
ᔖҢแԒᜋտ
Ɣ ໊ؐۡ෈ཱིቨᇄ‫ཱི؁‬ᔖҢแԒᜋտ૖ΨȄ
Ɣ ‫ٺ‬Ң‫ޱ‬Ռ՗ۡဎᔖҢแԒᜋտ૖ΨȄ
᏿ԤΟӒП՝‫ޟ‬ᔖҢแԒᜋտ૖ΨȂᆓ౩Ө
ᆍཱིᑹ݈୛Ȃ஠ᡐுฒШᙏ൐Ȅᗙ૖ցҢՌ
՗ۡဎᔖҢแԒᜋտђ૖Ȃୈ‫ڗ‬ᄇՌ՗໠ี
ᔖҢ݈୛‫ޟ‬௡ᆓȂΙϸᅾӵඡණϞϛȄ
Ɣ ௃Ԫᘛಳ IP ՝֭ᇄ MAC ՝֭ȂጂᇯҢИ
‫ٺ‬Ң‫ޱ‬ᜋտ
Ɣ џоၭலَ‫ٺޟ‬Ң‫ޱ‬ၥਟ৲ᆧ஝ᐌӫȄ
ȞMS-AD , LDAP , RADIUSȟ
٘Ϸ‫࣏؁‬ᙏ൐Ȅ
Ɣ ௌџо‫ޢ‬௥ӵၥԊࢇ๊ϛȂցҢ‫ٺ‬Ң‫ޱ‬ழ
ИЅတಢ‫໌پ‬՗ᆓ‫ڙ‬Ȃᡱௌ‫ޟ‬ԊӒ௡ᆓ‫؁‬
ё‫ں‬ӒȄ
Ɣ ‫ڎ‬രӻႀ 100 ࿲๋оΰ੾ࢳ੫኉ጆȄ
Ɣ ଽႀ 6,100 ӻ๋ IPS ੫኉ጆȄ
ࡄ૏٩ᑕ
( ѓࢂȈ3,800 Ꮇ๋ Vulnerability ᅓࢾ‫׾‬ᔞ੫
኉ᔮกᇄ 2,300 Ꮇ๋ Spyware ඌཎแԒᔮก )
Ɣ ໊ؐۡ෈ีշ੫኉ጆ‫ཱི؁‬Ȅ
Ɣ NSS Lab ࡾӪ௰ᙨȂ᏿Ԥᓺܻ࠮ᓃၷ݂‫ޟ‬٩
៖ਝ૖Ȅᄇܻ NSS Lab กၐ‫ޟ‬Өᆍೣᗗ՗
࣏ (Evasion)Ȃ‫࢐؁‬૖ஊ‫ׇ‬Ӓ୎กᇄߢ᐀Ȅ
Ɣ ं‫ـ‬ღ໥ӻԩкଢ଼ี౪ Microsoft Windows
‫ف‬ಛ१σᅓࢾȂ૖Ψര‫ۡ޻ڧ‬Ȅ
Ɣ ᗴᙠӵᔖҢ݈୛ϛ‫ࢳ੾ޟ‬ȃឆᙫȃ໢ᒘแԒȂ
Ιኺ૖యϚາΨ‫ޟ‬නю‫پ‬ȂᡱௌϚӔᐇЖȄ
Ɣ ᐌӫ Bright Cloud ၥਟ৲Ȅ
ඌཎᆩ֭ႆᘮ
Ɣ ӔζϚҢᐊЖҢИᘲ។Փ௑ȃ፰ി้ᆩॲȄ
Ɣ ඪ‫ټ‬ӻႀ 76 ᆍоΰ‫ޟ‬ᆩॲ᜸տЅ຺ႆ 2,000 Ɣ ջଶҢИϚငཎᘲ។ඌཎᆩમ‫ܚ‬౰ҡ‫ޟ‬ၥ
࿲๋‫ޟ‬ᆩમӪ൐Ȅ
ԊॳᓎȂ٩௉ҐณȄ
Ɣ ᙤҥ௡ᆓջາ໏Ӈ݈୛ Web mailȃջາ฽ᆅ
ᔬਰ༈ᒯ௡ᆓ
ު໢ȃIM ༈ᔬЅ P2P ༈ᔬ้՗࣏Ȃёΰϱ
ᔖҢแԒ௡ᆓᇄᔬਰ༈ᒯ௡ᆓȂࣺሄࣺԙȂ
࡚ᔬਰ᜸࠮ᜋտ૖ΨȂџሆܾ߳៖ᐠ஝ᔬਰ
ᡱௌᅾ‫ٴ‬ᆩၯ‫߯ޟ‬ցȂάϚ҆ᐊЖᐠ஝ѴࣉȄ
ϚѴࢺȄ
ᗴᙠӵҐ‫ࢺޣ‬໔ϛ‫ޟ‬ඌཎ೿ጣȂ჋࢐Ȉなࡏ
ዖӵॳᓎϷ‫ݙ‬
Ɣ ବᄇҐ‫ࢺޟޣ‬໔ȂџоցҢȶ՗࣏Ϸ‫ݙ‬዁
ಢȷȂΟ၌࢐֏Ԥዖӵ‫ޟ‬ၥԊࡄ૏Ȅ
ᆩၯ੾ࢳ (Botnet) ้Ȃ೽ல࢐ശᜲо୎กЅ
᝝ߢȄᙤҥᐿ‫ޟڗ‬՗࣏Ϸ‫ݙ‬዁ಢȂᡱௌ૖ሆ
ܾඡණѺȂϚӔᓞฮϚϐȄ
҆໸࢐ၥਟϛЖඪ‫݈ޟټ‬୛Ȃϗܹ՗၎݈୛‫ޟ‬
ၥਟϛЖ٩៖
Ɣ ցҢॶഺ‫ޟ‬ȶғө௡ᆓᐠ‫ڙ‬ȷȂඪ‫ټ‬१ौк
ᐠശᝒ஝‫߳ޟ‬៖Ȅ
೿ጣ՗࣏Ȃ‫ٽ‬ԃȈཌ೺ ExchangeȄ೻ኺ‫ޟ‬ғ
ө௡ᆓᐠ‫ڙ‬Ȃџо஠‫ܚ‬ԤϚࣺϓ‫ࢺޟ‬໔഍ёо
ߢ᐀Ȃᔓௌᝒਿ‫װ‬ᜰȂၥଉԊӒ‫؁‬ᑸ‫ׇ‬छȄ
11
੫Փ
ਝઉ
ӻኺϽ‫ޟ‬ώհ዁ԒԤօܻௌᔖҢӵӨᆍᕗცȂ
ώհ዁Ԓ
Ɣ ӣਢշဍਠ௥ȃആ೽ȃၯҥȃᙽ้֭ώհ዁ԒȄ ჋࢐ȈᄇѴԊӒႢၾȃၥਟϛЖЅᔮกᆩၯ
୰ᚠȂ೽೽ΙѮཤۡȄ
‫ܚ‬ԤРᇬ഍၏ᄂ଄ᓃӨᆍၥଉȂ‫ٽ‬ԃȈҢИ
‫ف‬ಛРᇬ
Ɣ ඪ‫ټ‬ၥਟࢺȃࡄ૏‫ٱ‬Ӈȃᆩॲᘲ។ȃᔬਰ
༈ᒯЅ೩ۡᔬᡐ‫้؁‬Рᇬ଄ᓃȄ
ழဴӪᆎȃIP ՝֭ȃР෈ᇄਢ໢ȃᔖҢแԒ
Ӫᆎȃᘲ។‫ޟ‬ᆩ֭ȃᔬਰӪᆎ้Ȃጂ߳‫ܚ‬Ԥ
՗࣏഍ԤၬџඉȄ
Ɣ ցҢᜰᖒԒϷ‫ݙ‬Еᔝᐌ౩࣏ኵᛁσ‫فޟ‬ಛ
РᇬࡣȂᡱௌӵ൐Ιห७ࣼ‫ܚڗ‬ԤᔖҢแ
ԒӪᆎȃॳᓎ้઻ȃ༈ᒯၥਟ໔Ѕ Session
ኵ໔Ȅ
ᜰᖒԒϷ‫ݙ‬
Ɣ ‫ׇ‬๡‫ޟ‬ᜰᖒԒϷ‫ݙ‬૖ΨȂџоҳ։Ϸ‫ܚݙ‬Ԥ
РᇬၥਟȂ‫פ‬ഀ‫ײ‬ю୰ᚠีҡনӰȄ
Ɣ ས଩ࡄ૏٩ᑕђ૖Ȃᗙ૖ᡗҰ‫ܚ‬Ԥ੾ࢳࡄ
૏ȃᅓࢾ‫׾‬ᔞᇄඌཎแԒ‫׾‬ᔞ้ၥଉȄџ
о݂ጂࡾю঺Ιএ IP ՝֭‫঺ܖ‬ΙএҢИȂ
Ӱ࣏ҢΟ঺ΙএᔖҢแԒȂཐࢗΟ঺Ιএ
੾ࢳᇄඌཎแԒȄҢИ७ᖝ‫ޟ‬ၥԊࡄ૏Ȃ
ௌϚོᒸᅓΙ๛ΙయȄ
ࢺ໔Ӵყ
ൢߒ‫ف‬ಛ
೩ۡᔬጋਯ
Ɣ ӵжࣨӴყΰȂ఼ཿᡗҰ໌южࣨӨ୽‫ޟ‬
ᆩၯ༈ᒯ໔ᇄॳᓎ้઻Ȅ
Ɣ ϱ࡚ 30 ᆍоΰ‫ޟ‬ᙴ൲ൢߒȂᗙԤ‫ׇ‬๡‫ޟ‬
Ռۡൢߒ૖ΨȄ
Ɣ џо଄ᓃ຺ႆ 100 ࿲Ӌ‫ޟ‬೩ۡᔬȂᗙ૖֕
౪ؐএ‫ގ‬ҏ‫ޟ‬ϚӣȄ
ད‫ޣ‬ၾᆩၯࢺ໔࢐ўΟ঺၇ȂϚӔ࢐Јσ‫ޟ‬
ᜲᚠȄѫौྤჃΙࡸȂ‫ܚ‬Ԥ୽ড়‫ࢺޟ‬໔ᅾӵ
ௌಁࠉȂԃԪሆՄܾᖞȄ
ᡱௌϚӔ࣏ΟᇧհൢߒՄԔுฐᓞេ᚞Ȃց
ҢᔖԤᅾԤ‫ޟ‬ൢߒᇧհђ૖Ȃ֕౪ശடཾ‫ޟ‬
МӇȂՄиȂջາȄ
ၥԊࢇ๊ୈႆ঺‫ٲ‬ও‫׽‬Ȃ௃ԪϚӔయฒᓞᆱȂ
γ‫׽‬ႆ҆੼ή౷ၬȂϗ૖ಒӫၥԊጋਯᇄԊ
Ӓೣጒ‫ޟ‬ौؑȄ
ႆӻ‫ޟ‬ၥԊࢇ๊Ȃலலᡱௌདւଶά‫ڧܐ‬༌
ၥԊࢇ๊ጋਯ
Ɣ ᡗҰ೩ര໠ᐠࡣ‫ؠ‬Ԥஈ՗ႆ‫ޟ‬ၥԊࢇ๊Ȅ
৛ȄຮЖ‫ޟ‬ጋਯђ૖ȂօௌΙᖗϞΨȂᡱௌ
ԤᏵԤᐃ‫ޟ‬ււ෵෵Ȅ
IPv6 ђ૖
Ɣ ‫ٺ‬Ң IPv6 ֭ۡ‫ޟ‬ᆩၯࢺ໔ȂΙኺ᏿Ԥᇄ
IPv4 ‫ׇ‬Ӓࣺӣ‫ޟ‬௡ᆓЅ٩៖૖ΨȄ
ᄇܻӨᆍ IPv6 ֭ۡ‫ޟ‬ᔖҢ՗࣏ᇄၥԊࡄ૏Ȃ
Ιኺџо‫ׇ‬ᐌ‫ޟ‬௡ᆓȂԊӒ‫ؠ‬ԤᒸᅓȄ
12
‫׬‬೚ೣਿ
࠮ဴ
PA-500
ᆩၯϭ७
8 x10/100/1000
PA-2020
PA-2050
12 x10/100/1000+2 x 1000- SFP
(PA-2020)
16 x10/100/1000+4 x 1000- SFP
(PA-2050)
PA-4020
PA-4050
16 x10/100/1000
8 x 1000- SFP
PA-4060
PA-5020
4 x 1000-SFP
4 x 10G-XFP
12 x10/100/1000
8 x 1000- SFP
PA-5050
PA-5060
12 x 10/100/1000
8 x 1000-SFP
4 x 10G-SFP+
Firewall ਝ૖
(Layer 7)
250 Mbps
500 Mbps
1 Gbps
2 Gbps
10 Gbps
10 Gbps
5 Gbps
10 Gbps
20 Gbps
Threat Prevention
ਝ૖ (AV, IPS,
Spyware)
100 Mbps
200 Mbps
500 Mbps
2 Gbps
5 Gbps
5 Gbps
2 Gbps
5 Gbps
10 Gbps
VPN ਝ૖
50 Mbps
200 Mbps
300 Mbps
1 Gbps
2 Gbps
2 Gbps
2 Gbps
4 Gbps
4 Gbps
250
1,000
2,000
2,000
4,000
4,000
2,000
4,000
8,000
New Sessions /
Second
7,500
15,000
15,000
60,000
60,000
60,000
120,000
120,000
120,000
MAX Concurrent
Session
(Layer 7)
64,000
125,000
250000
500,000
2,000,000
2,000,000
1,000,000
2,000,000
4,000,000
Security Policies
1,000
2,500
5,000
10,000
20,000
20,000
10,000
20,000
40,000
Security Zones
20
40
40
80
500
500
80
500
900
Virtual Routers
3
10
10
20
125
125
20
125
225
Virtual Systems
(Base/Max)
N/A
1/6
1/6
10 / 20
25 / 125
25 / 125
10 / 20
25 / 125
25 /225
High Availability
Y
Y
Y
Y
Y
Y
Y
Y
Y
VPN Tunnels
13
ॏᗊၥଉ
౰ࠢ࠮ဴ
౰ࠢఄक़
PAN-PA-500
Palo Alto Networks PA-500
PAN-PA-2020
Palo Alto Networks PA-2020
PAN-PA-2050
Palo Alto Networks PA-2050
PAN-PA-4020
Palo Alto Networks PA-4020
PAN-PA-4050
Palo Alto Networks PA-4050
PAN-PA-4060
Palo Alto Networks PA-4060
PAN-PA-5020
Palo Alto Networks PA-5020
PAN-PA-5050
Palo Alto Networks PA-5050
PAN-PA-5060
Palo Alto Networks PA-5060
Threat Prevention ‫ٺ‬Ң௲᠌ ( ֤ Anti-VirusȃIPSȃAnti-Spyware)
PAN-PA-500-TP
Threat prevention subscription year 1, PA-500
PAN-PA-2020-TP
Threat prevention subscription year 1, PA-2020
PAN-PA-2050-TP
Threat prevention subscription year 1, PA-2050
PAN-PA-4020-TP
Threat prevention subscription year 1, PA-4020
PAN-PA-4050-TP
Threat prevention subscription year 1, PA-4050
PAN-PA-4060-TP
Threat prevention subscription year 1, PA-4060
PAN-PA-5020-TP
Threat prevention subscription year 1, PA-5020
PAN-PA-5050-TP
Threat prevention subscription year 1, PA-5050
PAN-PA-5060-TP
Threat prevention subscription year 1, PA-5060
URL filtering ‫ٺ‬Ң௲᠌
PAN-PA-500-URL2
URL filtering subscription year 1, PA-500
PAN-PA-2020-URL2
URL filtering subscription year 1, PA-2020
PAN-PA-2050-URL2
URL filtering subscription year 1, PA-2050
PAN-PA-4020-URL2
URL filtering subscription year 1, PA-4020
PAN-PA-4050-URL2
URL filtering subscription year 1, PA-4050
PAN-PA-4060-URL2
URL filtering subscription year 1, PA-4060
PAN-PA-5020-URL2
URL filtering subscription year 1, PA-5020
PAN-PA-5050-URL2
URL filtering subscription year 1, PA-5050
PAN-PA-5060-URL2
URL filtering subscription year 1, PA-5060
Panorama ϛѵᆓ౩‫ف‬ಛ
PAN-PRA-25
Panorama central management software, 25 devices
PAN-PRA-100
Panorama central management software, 100 devices
PAN-PRA-UPG-100
Panorama upgrade, 25 to 100 devices
ശ঄ுௌ߬ᒦ‫ޟ‬
Ѯᢊф౩୦
င᎛୦
๼⟬ၥଉ޶ӋԤ३ϴѧ
eTruServe Co., Ltd. ġġ
݈୛டጣȈıijġĴĴĺĴĮĹķķĴ
ŸŸŸįŦŕųŶŔŦųŷŦįŤŰŮįŵŸ
14