HP A-F1000-E Getting Started Manual page 9

A firewall module can be installed in the HP A5800/A7500/A9500/A12500 Switch Series or an
A6608/A8800 router. A switch or router can be installed with multiple firewall modules to expand the
firewall processing capability for future use. The main network device (switch or router) and the firewall
modules together provide highly integrated network and security functions for large networks.
The firewall modules support the following functions and features:
Traditional firewall functions
•
• Virtual firewall, security zone, attack protection, URL filtering
Application Specific Packet Filter (ASPF), which can monitor connection processes and user
•
operations and provide dynamic packet filtering together with ACLs.
Multiple types of VPN services, such as IPsec VPN
•
RIP/OSPF/BGP routing
•
A firewall module provides two GE ports and two GE combo interfaces. It is connected to the main
network device through the internal 10GE port. The HP main network device's rear card has the
line-speed forwarding capability, ensuring fast data forwarding with the firewall module. The firewall
modules are equipped with dedicated, multi-core processors and high-speed caches. They can process
security services without impacting performances of the main network devices.
Figure 3 Firewall module for A5800 series switches
Figure 4 Firewall module for A7500/A9500/A12500 series switches
3