• |

Thunder CFW

Convergent Firewall

A10 Networks Thunder Convergent Firewall (CFW) is the industry's first security solution that incorporates multiple security functions for enterprise and service provider deployments, including highly scalable and high-performance firewall, IPsec VPN, secure web gateway, application device controller (ADC), DNS over HTTPS (DoH), Carrier-Grade NAT with integrated DDoS protection traffic steering, and other functions in a single, standalone product.

Request Demo Download Data Sheet

Menu

Key benefits of Thunder CFW

5G Ready

  • The ultra-high performance and scale of Thunder CFW enables mobile operators to get ready for the emerging hyperscale demands of 5G and IoT
  • The consolidation of multiple security features ensures protection against 4G/LTE threats as well as emerging 5G threats
  • The consolidation of functions helps achieve lower latency as compared to individual point products

Consolidates Services

  • Consolidates data center firewall, IPsec VPN, load balancer and secure web gateway solutions for enterprise deployments
  • Consolidates Gi/SGi firewall, GTP firewall, IPsec VPN, intelligent traffic steering and Carrier Grade NAT (CGNAT) solutions for service providers

Increases ROI

  • Reduces both CAPEX and OPEX by consolidating functions that typically require deployment of multiple, disparate point products
  • Enables service providers to rapidly provision and deliver new revenue-generating services
White Paper

Modernize Your 4G/LTE Network Now for 5G Success

Unlike previous generational changes, the 5G rollout will be an evolutionary process - think of it not as a destination but a journey. However, mobile operators should not wait until the marketplace shakes out - that just gives competitors the first-mover advantage. The winning strategy is to act now. By carefully investing in upgrades to support specific 5G use cases, network operators can monetize their existing 4G/LTE infrastructure and modernize in preparation for the eventual migration to a full 5G architecture.

Download White Paper

Key Features of Thunder CFW

  • DNS over HTTPS (DoH)

  • Gi/SGi Firewall

  • Intelligent Traffic Steering

  • Secure Web Gateway

  • Data Center Firewall

  • IPsec VPN

  • Analytics and Management

Download Datasheet

  • DNS over HTTPS (DoH)

    • Leverage DNS security capabilities to protect infrastructure from several DNS attack sources

    • Keep existing DNS components unchanged, and ensure secure connectivity and protocol translation

    • Maintain high performance and scale of high volume DoH traffic with providing industry-leading DNS Queries per second (QPS)

  • Gi/SGi Firewall

    • Comprehensively protect mobile infrastructure with a consolidated carrier-class Gi/SGi firewall, CGNAT, application visibility and control, and integrated DDoS protection solution on a single platform
    • The Gi/SGi firewall is an ultra-high performance and hyperscale firewall with a rich set of features to protect subscribers and shield mobile network services
    • Protect investments in existing IPv4-based infrastructure with CGNAT while transitioning to IPv6 with a comprehensive set of IPv6 transition technologies
    • The built-in GTP firewall enables the telecom operators to protect the mobile core infrastructure against threats in GTP and SCTP traffic

  • Intelligent Traffic Steering

    • Route traffic only through selected value-added services that a user has subscribed to, thereby optimizing the utilization of resources
    • Traffic can be steered through different services based on user ID, application ID and other attributes such as radio access type (RAT), IMSI etc.

  • Secure Web Gateway

    • Gain full control and visibility of your traffic with the flexibility to deploy as an explicit or transparent proxy
    • Reduce risks and gain granular user-level control with subscriptions to URL filtering, application visibility and control and threat intelligence
    • Ensure compliance with privacy standards using multi-layered security services and high-speed logging for SIEM integration
    • Leverage SSL Insight technology to decrypt outbound SSL traffic, enabling the “Secure Decrypt Zone” to inspect traffic in clear-text and prevent data exfiltration by integrating with leading security solutions

  • Data Center Firewall

    • Eliminate traditional performance bottlenecks while protecting your data center assets with hundreds of Gbps of firewall throughput along with hundreds of millions of concurrent sessions
    • Consolidate security and application delivery controller functionality in one solution to reduce CAPEX and OPEX
    • Enable multi-tenant environments with A10 Networks’ Application Delivery Partitions (ADPs)

  • IPsec VPN

    • Securely interconnect remote sites over the internet using high-performance, hardware-based IPsec cryptography
    • Securely connect cell towers and central sites in a service provider infrastructure
    • Improve agility and reduce data center footprint and operating costs through consolidation of firewall and IPsec VPN capabilities in a single platform

  • Analytics and Management

    • Gain real-time, actionable insights into application and network service statistics with A10 Harmony Controller for faster troubleshooting
    • Manage multi-site deployments from a central location
    • Simplify management and configuration with on-box AppCentric Templates (ACTs)

Centralized Analytics & Actionable Insights

The Harmony™ Controller delivers centralized management and per-app analytics for different applications. The extensible nature of the platform enables on-demand installation of Harmony apps to better focus on the specific use cases of traffic visibility, security analytics and connected Intelligence.

centrally manage your apps

Additional Options

Additional services, products, solutions in which you may be interested.

How to Buy

Harmony Controller

  • Gain comprehensive, real-time and actionable insights with application-level visibility
  • Simplify operations and increase agility
  • Centrally-manage deployment and security policy implementation

Subscriptions for Enterprises

  • Web categorization for:
    - URL filtering
    - Selective bypass
     -Threat investigator
  • Application visibility and control
  • Threat intelligence

Subscriptions for Service Providers

  • Application visibility and control to granularly identify and categorize application traffic
  • Threat intelligence to identify and block malicious IP addresses on the internet

Featured Resources

SOLUTION BRIEF

Gi/SGi Firewall Protection for Mobile Networks

Secure and Protect DNS Traffic With DNS Over HTTPS (DoH)

Solution Brief

Secure and Protect DNS Traffic With DNS Over HTTPS (DoH)

High-Performance Virtual Network Functions for 5G Mobile Networks Solution Brief

SOLUTION BRIEF

High-Performance Virtual Network Functions for 5G Mobile Networks

A High-Performance Secure Web Gateway and Much More Solution Brief

SOLUTION BRIEF

A High-Performance Secure Web Gateway and Much

View All Thunder CFW Resources