Professional Documents
Culture Documents
Product Description: Huawei Technologies Co., LTD
Product Description: Huawei Technologies Co., LTD
E8080E
E8160E
Product Description
Combining the dedicated multi-core processor and distributed
h a rd w a re p l a t f o r m a n d a d o p t i n g i n n o v a t i v e N P + m u l t i core+distributed architecture, the E8000E breaks through the
performance bottleneck of the CPU. It delivers industry-leading
service processing capability and service expansion capability.
In addition, the full-redundancy technology is applied on all
components. The E8000E provides diversified technical guarantees,
including dual-NP interface module, dual-CPU service processing
module, dual-MPU control module, dual power supplies, and load
balancing. All these ensure the core router-level reliability, which
further guarantees the service continuity in high-speed networking.
The E8000E utilizes the dynamic distributed concurrent processing
technology. Service traffic is forwarded to multiple dedicated
SPUs at the line rate in distributed manner. Additionally, the SPUs
support on-demand configuration, which thoroughly solves the
conflict between the service processing performance and data
forwarding capability in ever-increasing high-speed networking.
This distributed technology uses line-rate intelligent traffic splitting
for data forwarding. All data flows are equally distributed to service
Eudemon8000E Series
10-Gigabits IPS security gateway
Product Features
Advanced NP + multi-system + distributed
architecture breaking traditional performance
bottlenecks
E8000E adopts the architecture of independent control modules,
interface modules, and service processing modules. Based on the
dual NP, the interface module ensures the line-speed forwarding
of interface traffic. Based on the multi-core and multi-thread
architecture, the service processing module ensures the highspeed concurrent processing of multiple services, such as the
Network Address Translation (NAT), Application Specific Packet
Filter (ASPF), Anti-DDoS, and VPN. E8000E adopts the distributed
concurrent processing mechanism, which greatly enhances the
product performance. Thus, users can expand capacities with low
pre-phase investment.
Eudemon8000E Series
10-Gigabits IPS security gateway
Product Specification
Models
Performance
Firewall throughput (Max)
Firewall throughput (IMIX)
Firewall throughput (HTTP)
Firewall packets per second (64bytes)
IPsec VPN performance (3DES)
IPsec VPN performance (AES)
Maximum IPS performance
New sessions per second
Maximum concurrent sessions
Maximum security policies
Maximum users supported
Connectivity
Available slots
Main control slots
SPU options
Interfaces
Firewall basic feature
Working mode
ASPF
Access control
State validation detection
Black/White list
Virtual Firewall
Security zones
Application level recognition
E8080E
E8160E
80Gbps
80Gbps
78Gbps
30Mpps
48Gbps
48Gbps
32Gbps
2M
32M
128K
unrestricted
160Gbps
160Gbps
156Gbps
60Mpps
96Gbps
96Gbps
64Gbps
4M
64M
128K
unrestricted
8 (SPU+LPU)
2
Mother board: 2CPU + 8G memory
Daughter board: 2CPU + 8G memory
ETH: 24GE / 210GE / 110G+12GE
POS: OC192
16 (SPU+LPU)
2
Eudemon8000E Series
10-Gigabits IPS security gateway
Models
Defense of DDoS attack
Bi-directional protection
SYN Flood
SYN-ACK Flood
FIN/RST Flood
UDP Flood
DNS Query Flood
HTTP Flood
ICMP flood
Intrusion Prevention System
Stateful protocol signatures
Simple Configuration IPS
Attack detection mechanisms
Attack response mechanisms
Worm protection
zero Day attack protection
Trojan protection
Adware/keylogger protection
Web Attack Toolkit Attack detection
Web 2.0 Attack protection
Drive by download attack prevention
Botnet Protection
Protection against attack proliferation from
infected systems
Interception protection
Application level DDoS attacks protection
Compound attacks protection
Vulnerability-based signature database
Multi-levels compressed file
Independent PDF detection
Custom attack signatures
Attack editing (port range)
Stream signatures
Overload protection
Approximate number of attacks covered
NAT
Destination NAT/PAT
Destination NAT within same subnet as ingress
interface IP
Destination addresses to one single address
(M:1)
Destination addresses to another range of
addresses (M:M)
NO-PAT
PAT
Source NAT - IP address persistency
Source pool grouping
Source IP outside of the interface subnet
NAT Server
Bi-directional NAT
NAT-ALG
E8080E
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Abnormal protocol / Abnormal traffic / Pattern matching
Drop connection / Close connection / log / email
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
8000+
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
E8160E
Eudemon8000E Series
10-Gigabits IPS security gateway
Models
Unlimited address expansion
Policy-based destination NAT
IPsec VPN
IPsec VPN tunnels
DES/3DES/AES encryption
MD-5 and SHA-1 authentication
Manual key, PKI (X.509), IKEv2
Perfect forward secrecy (DH groups)
Prevent replay attack
Remote access VPN
EAP certification
Redundant VPN gateways
High Availability
Active/passive active/active
Configuration synchronization
Session synchronization for firewall and IPsec
VPN
Device failure detection
Link failure detection
Dual control
User Authentication and Access Control
Built-in (internal) database
RADIUS accounting
Web-based authentication
Public Key Infrastructure (PKI)
PKI certificate requests (PKCS 10)
Certificate authorities
Self-signed certificates
Routing
BGP routes
BGP peers
BGP instances
OSPF routes
OSPF instances
RIP v2 table size
RIP v1/v2 instances
Dynamic routing
Static routing
Source-based routing
Policy-based routing
PBR instances
FIB
Routing iteration
IPv6
State filtering
OSPFv3
BGP4+
ISIS6
IPv6 ACL Standard
IPv6 ACL Extended
IPv6 interface statistic
E8080E
Yes
Yes
320K
Yes
Yes
Yes
1, 2, 5
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
200K
1000
1000
200K
1000
200K
1000
Yes
Yes
Yes
Yes
1024
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
E8160E
Eudemon8000E Series
10-Gigabits IPS security gateway
Models
NATPT (4 to 6, 6 to 4,)
IPv6 ND
Virtualization
Maximum security zones
Maximum virtual firewall
Maximum VLAN supported per interface
Management
WebUI (HTTP and HTTPS)
CLI (console)
CLI (telnet)
CLI (SSH)
U2000/VSM network management
Level-based administrator
Software upgrade
Configuration rollback
Logging/Monitoring
Structured syslog
SNMP (v2)
Binary log
Traceroute
Logging server (eLog)
Dimensions and Power
Dimensions (WDH)
Weight
AC Power supply
DC Power supply
Maximum Power draw
Operating temperature
Humidity
Certification
Safety certification
EMC
CB
Rohs
FCC
MET
C-tick
VCCI
E8080E
E8160E
Yes
Yes
Root firewall: 32
Virtual firewall: 8
1024
4094
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
442669886
100Kg
AC: 180~275V; 50/60Hz
DC: -75~-38V
3000W
0~45C
0~95%
4426691600
150Kg
AC: 180V~264V; 50/60Hz
DC: -75~-38V
5000W
0~45C
0~95%
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes