Softcat Limited

SonicWall NSv SERIES VIRTUAL FIREWALL

The SonicWall NSv Series virtual firewall offers you all the security advantages of a physical firewall with the operational and economic benefits of virtualization.

NSv shields all critical components of your private/public cloud environments from resource misuse attacks, cross-virtual-machine attacks, side-channel attacks and common network-based exploits and threats.

Features

• Next-gen firewall with automated real-time breach detection and prevention capabilities
• Patent-pending Real-Time Deep Memory Inspection (RTDMI) technology
• Patented Reassembly-Free Deep Packet Inspection (RFDPI) technology
• Complete end-to-end visibility and streamlined management with Unified Policy
• Application intelligence and control
• Segmentation security and security zoning
• Support across private cloud and public cloud platforms

Benefits

• Detection and prevention of malwares
• Detection and prevention of zer day threats and ransomwares
• Effective security analysis of traffic in real-time, no size limit
• With NSM a unified policy created and pushed to firewalls
• Application level visibility and control
• Control and secure traffic between the different VLANs/Segments
• Support over different platforms

£265.79 a device

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at psitq@softcat.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

369514976411908

Contact

Charles Harrison
01628 403403
psitq@softcat.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: SonicWall Network Security Manger - NSM - Establish an easy path to comprehensive security management, analytics, and reporting to unify your network security defence program. Automate and correlate workflows to form a fully coordinated security governance, compliance and risk management strategy.
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: No
• System requirements:
  • Requirements depend on the virtual firewall model and the platform
  • All required system resources are available in our documentations
  • Private Cloud: (ESXi, Hyper-V, KVM, Nutanix)
  • Public cloud (AWS, Azure) platforms

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Depends on the severity of the case, with additional Support contract you can prioritize a specific case.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 A
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Onsite support
• Support levels: SonicWall Manufacturer Support: Decades of expertise, delivered through multiple support options.; ; Premier Service; Dedicated service account management, pin-activated emergency phone support for critical issues, serviced by SonicWall-approved subject matter experts, monthly newsletter & reporting; Online Self-Service; Online collaboration forums, interactive knowledge base, technical documentation, how-to video libraries; Professional Services; Remote installation assistance. Project-based deployment & project management services; Health check services; Remote & onsite technical assistance; Standard Service; Break fix support for Q&A. Follow-the-sun support, globally serviced
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Partner Support and SonicWall online support. Knowledge base articles, SonicWall University on Sonicwall.com is also available along with technical documentation.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Configuration can be exported. Virtual appliance can be wiped clean if desired.
• End-of-contract process: Security services and support functions cease to be updated.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems: Other
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Full GUI & CLI are available for configuration, management and monitoring purposes
• Accessibility standards: WCAG 2.1 A
• Accessibility testing: SonicWall NSv is accessed and configured using a web browser or CLI client
• API: Yes
• What users can and can't do using the API: There is a fully restful API available for the SonicWall NSv. It allows comands to be sent to configure the appliance (all web UI configuration is support in API). The API also allows for information to be retrieved from the appliance - such as status of a policy, if a rule has been consumed, event details etc.
• API documentation: Yes
• API documentation formats: Other
• API sandbox or test environment: Yes
• Customisation available: No

Scaling

• Independence of resources: There is no users number limit, it depends on the traffic size and number of connections, the client can scale up and select the higher models if more resourcses are required

Analytics

• Service usage metrics: Yes
• Metrics types: The NSv supports onboard reporting and system health metrics. Reporting can also be exported to SonicWall Analytics a part of SonicWall Network Security Manager in SonicWall SaaS or in public cloud.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller (no extras)
• Organisation whose services are being resold: SonicWall

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Never
• Protecting data at rest: Other
• Other data at rest protection approach: Only the devices specified system administrators can log into the appliance in order to access the Syslog and Netflow/IPFIX data.
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Configuration, Netflow/IPFIX and logs can be exported from the appliance.
• Data export formats: Other
• Other data export formats: Configuration is exported in a proprietary format.
• Data import formats: Other
• Other data import formats: Configuration can be imported. It is in a proprietary format.

Data-in-transit protection

• Data protection between buyer and supplier networks: Other
• Other protection between networks: None
• Data protection within supplier network:
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: Security service and ACLs will ensure that on The appropriate and non-malicious data traverse between your network and the buyers network.

Availability and resilience

• Guaranteed availability: Impossible to guarantee due to the reliance of the underlying Platform/Server
• Approach to resilience: A High Availability configuration is available.
• Outage reporting: Yes, there is an email alerting settings in the NSv also; If you are optionally using Network Security manager email alerting is provided if the Virtual appliance goes offline. Also your Platform of choice, such as Microsoft Azure, will offer alerting.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
  • Other
• Other user authentication: Users can be authenticed via LDAP, RADIUS, TACACS+ and local user database. Third party MFA solutions are optionally supported.
• Access restrictions in management interfaces and support channels: The management infercae can be restricted by only giving access to specified acccounts of your choosing. Further more access can be limited by public IP to your chosen address. For access to support channels this would be acheieved via mysonicwall.com. An account is needed in order to register the device. Mysonicwall.com requires a username and password as well as optional MFA.
• Access restriction testing frequency: Less than once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password
  • Other
• Description of management access authentication: The Administrator would go to the web UI of the NSv Virtual appliance. Here they would input their username and password in order to gain access to the appliance. SonicWall NSv also can integrate with third party MFA solutions for an additional layer of authentication.

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: Between 6 months and 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Between 6 months and 12 months
• How long system logs are stored for: Between 6 months and 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • FIPS 140-2
  • Common Criteria
  • DoDIN APL
  • CSfC
  • USGv6
  • IPv6
  • NDAA section 889 compliance
  • TAA Compliance

Security governance

• Named board-level person responsible for service security: No
• Security governance certified: No
• Security governance approach: N/A
• Information security policies and processes: N/A

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: N/A
• Vulnerability management type: Undisclosed
• Vulnerability management approach: N/A
• Protective monitoring type: Undisclosed
• Protective monitoring approach: N/A
• Incident management type: Undisclosed
• Incident management approach: N/A

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Softcat are dedicated to reducing our environmental impact and actively promoting sustainability. Our commitment to sustainability is a core aspect of our business strategy, driving us to innovate and lead in the creation of a more sustainable future for our company and the communities we serve. This commitment is embedded in our policies, operating procedures, and training programs.; ; We are proud to be the first FTSE 250 company to be awarded 5-star status in relation to the United Nations Sustainable Development Goals. ; ; We aim to achieve a Carbon Net-Zero Value Circle by 2040 by prioritising renewable energy, reducing natural resource use, minimising waste, and safeguarding biodiversity in compliance with environmental legislation.; ; At Softcat, we have taken significant steps towards securing renewable energy across our organisation, reducing our scope 1 & 2 emissions. We had the target of using 100% Renewable Energy across all our locations by 2024. We successfully delivered against this target ~2 years early.; ; In May 2023 we took delivery of 15 electric vehicles, replacing all existing fossil-fuelled company cars used by employees for business means. The implementation of the EV pool fleet will see a saving of over 80 tons of CO2e per year. A huge impact on our Net Zero targets.

  Tackling economic inequality

  As a value-add reseller, Softcat outsources the products, services, and solutions through our extensive network of partners, to best suit the needs of our broad client base. We always consider and promote SMEs and local providers where appropriate, particularly for the products and services we offer via the G Cloud framework.; ; We remain dedicated to improving employability and educational awareness across schools, colleges, and universities to help break down the barriers to joining technology organisations.; ; We work collaboratively with many schools that are close in proximity to our offices, to ensure we are actively supporting the community as well as schools from lower socio-economic backgrounds. ; ; We visit the schools to talk about the IT sector and the roles in our organisation, as well as promoting work-experience opportunities during the summer. In particular, we actively encourage students from diverse backgrounds to engage in work experience to appreciate the roles available in our sector.; ; For ambitious school and college leavers, a Softcat Apprenticeship is a great first step into the world of work, with 94% of our apprentices offered a permanent position at Softcat post apprenticeships, which goes to show the amazing opportunity available with us.; ; We were ranked 1st in IT & Consultancy, and 10th overall in by RateMyApprenticeship.com - Best 100 Apprenticeship Employers 2023-2024 list.; ; Softcat now also offer 12 month paid internships to University students looking to complete a year in industry as part of their undergraduate studies.

  Equal opportunity

  Our approach to diversity and inclusion is introduced first during our induction training, as part of our Softcat values, outlining responsibility to uphold our principles. This message is reinforced by our process and policies, networks, Allyship Training and Inclusion Awareness campaigns.; ; Softcat supports diversity and inclusion through various networks including:; - Supporting Women in Business (SWIB); - The Ethnic and Cultural Network; - The Pride Network; - The Family Network; - The Empowering Disability and Neurodiversity Network (EDN); - The Faith at Work Network; - Armed Forces & Veterans Network; These networks aim to create a supportive and inclusive work environment for all employees, regardless of gender, ethnicity, sexual orientation, disability, or family commitments.; ; Our allyship programme, Stronger Together, is a mixture of event and workshop-based training available to all staff. Programme topics include, bias, power, privilege, and being a greater ally. ; ; Inclusion Awareness campaigns include race, disability, sexual orientation, gender, faith, and caring responsibilities. These sessions highlight and celebrate minority groups, through panel sessions, Q&A sessions and training, providing an opportunity to discuss and understand ways to be more inclusive. ; ; Our efforts to improve diversity and inclusion have been incredibly successful. Since 2020, the number of female employees below management level has increased to 35%, and the number of ethnic minority employees rose to 17%.

  Wellbeing

  At Softcat, all employees are provided with access to our multidimensional wellbeing programme which includes flexible work arrangements, free nutritious breakfast, mental health support, employee benefits scheme, health and wellbeing week activities, and online workshops.; ; Giving back to the community is an innate part of who we are as a company. All Softcat employees are therefore given two volunteer days per year to support a charitable or community cause. ; ; Each of our 10 regional offices also support local charities through fundraising, donations and events. For example, our Manchester office has raised over £30,000 for the WeLoveMCR charity. This funding has supported young, disadvantaged Manchester citizens in gaining qualifications to broaden their work opportunities and supporting local groups in delivering indispensable services that enable community cohesion.

Pricing

• Price: £265.79 a device
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at psitq@softcat.com. Tell them what format you need. It will help if you say what assistive technology you use.