Categories

Already have a quote?

Challenge us to...

...beat any equivalent competitor or SonicWall price!

Click here to get in touch and ask us for a better price.

SonicWall Partner

Picture of SonicWall TZ380 TotalSecure Advanced Edition
Appliance
Max Protection
Reporting

SonicWall TZ380 TotalSecure Advanced Edition

SonicWall TZ380 hardware with Advanced Protection Security Suite (APSS) including Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Services, Comprehensive Anti-Spam, DNS filtering, 24x7 support with firmware updates and cloud management with 7-day alerting, advanced reporting & analytics.
SKU: 03-SSC-6945
£1,294.77
£1,016.91

SonicWall TZ Series are designed for small and mid-sized organisations, and distributed enterprises with SD-Branch locations. The latest series deliver best-in-class performance at a low TCO.

These NGFWs address the growing trends in web encryption, connected devices and high-speed mobility by delivering a solution in desktop form-factor that meets the need for automated, real-time breach detection and prevention.

The Gen 8 TZ series are highly scalable, with high port density of up to 10 ports. It features both in-built and an expandable storage of up to 512 GB, that enables various features including logging, reporting, caching, firmware backup and more. An optional second power supply provides added redundancy in case of failure on select models.

Deployment of Gen 8 TZs are further simplified by Zero-Touch Deployment, with the ability to simultaneously roll out these devices across multiple locations with minimal IT support. Built on next-gen hardware, it integrates firewalling, switching and wireless capabilities, plus provides single-pane-of-glass management for SonicWall Switches and SonicWave Access Points. It allows tight integration with Capture Client for seamless endpoint security.

Download

 Gen 8 Architecture Datasheet

 TZ Gen 8 Datasheet

SonicWall Gen 8 TZ-380

Highlights:
  1. Up to 10/5/2.5/1 GbE interfaces in a desktop form factor (see specification tab)
  2. SD-Branch ready
  3. Secure SD-WAN capability
  4. SonicExpress App onboarding
  5. Zero-Touch Deployment
  6. SonicWall Unified Management ready
  7. Centralised, simplified management via Network Security Manager (NSM)
  8. SonicWall Switch, SonicWave Access Point and Capture Client integration
  9. TBuilt-in and expandable storage
  10. Redundant power
  11. DNS security
  12. Reputation-based Content Filtering Service (CFS 5.0)
  13. Wi-Fi 6 firewall management
  14. Network access control integration with Aruba ClearPass
  15. High port density
  16. Cellular failover
  17. TLS 1.3 support
  18. Groundbreaking performance
  19. High connection count
  20. Fast DPI performance
  21. Low TCO
  22. Cloud Secure Edge Connector support
  23. Embedded cyber warranty

SonicOS and Security Services

The SonicOS architecture is at the core of TZ NGFWs. Gen 8 TZs are powered by the feature rich SonicOS 8 operating system with new modern looking UX/UI, advanced security, networking and management capabilities. Gen 8 TZ features integrated SD-WAN, TLS 1.3 support, real-time visualisation, high-speed virtual private networking (VPN) and other robust security features.

Unknown threats are sent to SonicWall’s cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our patented Real-Time Deep Memory Inspection (RTDMI™) technology. As one of Capture ATP’s engines, RTDMI detects & blocks malware and zero-day threats by inspecting directly in memory.

By leveraging Capture ATP with RTDMI technology, inaddition to security services such as Reassembly-Free Deep Packet Inspection (RFDPI), Anti-virus and Anti-spyware Protection, intrusion prevention system, Application Intelligence and Control, Content Filtering Services, DPI-SSL, TZ series firewalls stop malware, ransomware and other advanced threats at the gateway

Security suites offered with Gen 8 NGFWs have an embedded warranty by Cysurance, of up to $200,000, included at no additional cost.

Users can leverage the new Cloud Secure Edge Connector integration to provide a centralised and easy-to-manage option to provide secure access to their private applications. This approach ensures that user and device trust are repeatedly verified before granting access to specific applications, regardless of location and endpoint type.

General
Operating system SonicOS 8
Interfaces 8 x 1GbE, 2 x 5G/2.5G/1G SFP, 1 console (Micro-USB), 1 USB (type-C)
Wireless (TZ380W) 2x2 802.11ax
Redundant power Yes
Storage expansion Optional up to 512 Gb
Management Network Security Manager (NSM), CLI, SSH, Web UI, GMS, REST APIs
SAML Single Sign-On (SSO) Users 1000
VLAN interfaces 128
Access points supported (maximum) 16
 
Firewall/VPN Performance
Firewall inspection throughput 3.5 Gbps
Threat Prevention throughput 1.5 Gbps
Application inspection throughput 2.0 Gbps
IPS throughput 2.0 Gbps
Anti-malware inspection throughput 2.0 Gbps
TLS/SSL decryption and inspection throughput 600 Mbps
IPSec VPN throughput 1.6 Gbps
Connections per second 15000
Maximum connections (SPI) 1 100 000
Maximum connections (DPI) 250 000
Maximum connections (TLS) 40 000
VPN
Site-to-site VPN tunnels 200
IPSec VPN clients (maximum) 5 (200)
SSL VPN licenses (maximum) 2 (100)
Encryption/authentication AES (128, 192, 256-bit)/MD5, SHA-256, SHA-384, Suite B Cryptography
Key exchange Diffie Hellman Groups 1, 2, 5, 14v
Route-based VPN RIP, OSPF, BGP
Certificate support Verisign, Thawte, Cybertrust, RSA Keon, Entrust and Microsoft CA for SonicWall-toSonicWall VPN, SCEP
VPN features Dead Peer Detection, DHCP Over VPN, IPSec NAT Traversal, Redundant VPN Gateway, Route-based VPN
Global VPN client platforms supported Microsoft® Windows 10/11
NetExtender Microsoft® Windows 10/11, Linux
Mobile Connect Apple® iOS, Mac OS X, Google® Android™
 
Security Services (with subscription APSS or MPSS)
Deep Packet Inspection services Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, TLS Decryption
Content Filtering Service (CFS) HTTP URL, HTTPS IP, keyword and content scanning, Comprehensive filtering based on file types such as ActiveX, Java, Cookies for privacy, allow/forbid lists
Comprehensive Anti-Spam Service Yes
Application Visualization Yes
Application Control Yes
Capture Advanced Threat Protection Yes
Advanced DNS Filtering Yes
 
Networking
IP address assignment Static, (DHCP, PPPoE, L2TP and PPTP client), Internal DHCP server, DHCP relay
NAT modes 1:1, 1:many, many:1, many:many, flexible NAT (overlapping IPs), PAT, transparent mode
Routing protocols BGP4, OSPF, RIPv1/v2, static routes, policy-based routing
QoS Bandwidth priority, max bandwidth, guaranteed bandwidth, DSCP marking, 802.1e (WMM)
Authentication LDAP (multiple domains), XAUTH/RADIUS,TACACS+, SAML SSO1, Radius accounting NTLM, internal user database, 2FA, Terminal Services, Citrix, Common Access Card (CAC)
Local user database 1000
VoIP Full H.323v1-5, SIP
Standards TCP/IP, UDP, ICMP, HTTP, HTTPS, IPSec, ISAKMP/IKE, SNMP, DHCP, PPPoE, L2TP, PPTP, RADIUS, IEEE 802.3
Certifications IPv6
Certifications pending FIPS 140-2 (with Suite B) Level 2, IPv6 (Phase 2), ICSA Network Firewall, ICSA Anti-virus, Common Criteria NDPP (Firewall and IPS)
High availability Active/Standby with stateful synchronization
 
Hardware
Form factor Desktop
Power supply 12V/1.14A (TZ380), 12V/1.45A (TZ380W)
Maximum power consumption (W) 13.77 (TZ380), 17.4 (TZ380W)
Input power 100 - 240 VAC, 50-60 Hz, 0.27A
Total heat dissipation 46.95 (TZ380), 59.33 (TZ380W)
Dimensions 3.5 x 13.5 x 19 (cm)
1.8 x 5.3 x 7.5 (in)
Weight 0.82 kg (TZ380), 0.85 kg (TZ380W)
WEEE weight 1.18 kg (TZ380), 1.24 kg (TZ380W)
Shipping weight 1.41 kg (TZ380), 1.47 kg (TZ380W)
MTBF (years) 46.4 (TZ380), 24.9 (TZ380W)
Environment (Operating/Storage) 0°to 40°/-40°C / -40° to 70° C
Humidity 5-95% non-condensing
 
Integrated Wireless (TZ380))
Standards 802.11a/b/g/n/ac/ax WPA,WPA2, WPA3, 802.11i, EAP-PEAP, EAP-TTLS
Frequency bands 802.11a: 5.180-5.825 GHz; 802.11b/g: 2.412-2.472 GHz; 802.11n: 2.412-2.472 GHz, 5.180-5.825 GHz;
802.11ac: 5.180-5.825 GHz; 802.11ax: 5.180-5.85 GHz
Operating channels 802.11a: US and Canada 12, Europe 11, Japan 4, Singapore4, Taiwan 4; 802.11b/g: US and Canada 1-11, Europe 1-13, Japan (14-802.11b only); 802.11n (2.4 GHz): US and Canada 1-11, Europe 1-13, Japan 1-13; 802.11n (5 GHz): US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64; 802.11ac: US and Canada 36-48/149-165, Europe 36-48, Japan 36-48, Spain 36-48/52-64
Transmit output power Based on the regulatory domain specified by the system administrator
Transmit power control Yes
Data rates supported 802.11a: 6,9,12,18,24,36,48,54 Mbps per channel; 802.11b: 1,2,5.5,11 Mbps per channel ; 802.11g: 6,9,12,18,24,36,48,54 Mbps per channel; 802.11n: 15,30,45,60,90,120,135,150,30,60,90,120,180,240,270, 300Mbps per channel; 802.11ac: 32.5,65,97.5,130,195,260,292.5,325,390,433.3,65,130,195,260,390,520, 585,650,780,866.6Mbps per channel; 802.11ax: 36,72,106,144,216,288,324,360,432,480,540,600,72,144, 216,288,432,576,648,720,864,960,1201 Mbps per channel
Modulation technology spectrum 802.11a: Orthogonal Frequency Division Multiplexing (OFDM)/64QAM; 802.11b:Direct Sequence Spread Spectrum (DSSS); 802.11g:Orthogonal Frequency Division Multiplexing (OFDM)/64QAM/Direct Sequence Spread Spectrum (DSSS); 802.11n:Orthogonal Frequency Division Multiplexing (OFDM)/64QAM; 802.11AC:Orthogonal Frequency Division Multiplexing (OFDM)/256QAM; 802.11ax: Orthogonal Frequency Division Multiplexing Access(OFDMA)/1024QAM
 
Regulatory
Regulatory model numbers APL72-120 (TZ380) APL72-121 (TZ380W)
Major regulatory compliance (TZ380) FCC Class B, ICES Class B, CE (EMC, LVD, RoHS), UL, cUL, Mexico DGN Notice by UL, ANATEL, WEEE, REACH, SCIP, RCM, MIC Terminal, VCCI Class B, KCC/MSIP, BSMI, MTCTE/TEC, CB
Major regulatory compliance (TZ380W) CC Class B, ICES Class B, CE (EMC, LVD, RoHS), UL, cUL, Mexico DGN Notice by UL, ANATEL, WEEE, REACH, SCIP, RCM, MIC Terminal & Radio, VCCI Class B, KCC/MSIP, BSMI, NCC SRRC MTCTE/TEC, CB
Advanced Protection Service Suite
Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, anti-spam, 24x7 support, cloud management and reporting in a single integrated package.

The SonicOS architecture is at the core of SonicWall physical and virtual firewalls including the TZ, NSa, NSv and NSsp Series. SonicOS leverages our patented, single-pass, lowlatency, Reassembly-Free Deep Packet Inspection® (RFDPI) and patent-pending Real-Time Deep Memory Inspection™ (RTDMI) technologies to deliver industry-validated high security effectiveness, SD-WAN, real-time visualization, high-speed virtual private networking (VPN) and other robust security features.

Through a combination of cloud-based and on-box technologies we deliver protection to our firewalls that’s been validated by independent third party testing for its extremely high security effectiveness. Unknown threats are sent to SonicWall’s cloud-based Capture Advanced Threat Protection (ATP) multiengine sandbox for analysis. Enhancing Capture ATP is our RTDMI™ technology. The RTDMI engine detects and blocks malware and zero-day threats by inspecting directly in memory. RTDMI technology is precise, minimizes false positives, and identifies and mitigates sophisticated attacks where the malware’s weaponry is exposed for less than 100 nanoseconds.

At a Glance
  1. Complete network security solution
    All service licences included.
  2. Capture ATP
    Multi-engine network sandbox to prevent zero-day threats. See Capture Advanced Threat Protection Service (CATPS).
  3. Gateway anti-virus and anti-spyware protection
    Including DPI-SSL and RFDPI.
  4. Cutting-edge IPS technology
    Protects against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns.
  5. Application intelligence and control
    Set of granular, application-specific policies providing application classification and policy enforcement to help administrators control and manage both business and non-business related applications.
  6. Content filtering
    Enforce internet use policies and control internal access to inappropriate, unproductive and potentially illegal web content with comprehensive content filtering. See Content Filtering Service (CFS).
  7. Network Topology View
    Display hosts, access-points in the network based on device name, mac address and IP Address.
  8. 24x7 support with firmware updates and hardware replacement
    Including firmware updates and hardware replacement protects your business and your SonicWall investment.
  9. Management and reporting
    Manage and view reports on firewalls via cloud through Network Security Manager tile of Capture Security Center. See Capture Security Centre (CSC).

Need a proforma invoice?

You can checkout using the purchase order option. For higher value orders (those totalling above £7000) please contact us directly for the best pricing for your requirements.

Need a quote? Have a question?

Fill out the form below and we'll get back to you as soon as possible.

Remote Configuration & Setup

When you purchase a new firewall, SonicWall support does not cover initial configuration.  We can help you fill this gap by offering the optional add-on, “Remote Configuration & Support” when you purchase any of SonicWall TZ and NSa firewalls or from the Secure Mobile Access product sets. 

Our experienced technicians will guide you through the installation and configuration process during an initial telephone consultation, regardless of your level of experience or skill.  All we require is access to the appliance over the internet and a contact phone number for your on-site engineer. The service is for a maximum of 2 hours - additional time can be purchased by prior agreement.

 

The Process

  1. Remember to tick the “REMOTE CONFIGURATION?” checkbox (above) before adding the device to the basket.  Once you’ve completed the purchase, we will contact you to book a scheduled telephone appointment with one of our engineers*.
  2. You will need to ensure that the appliance is available remotely on HTTPS.**
  3. Our engineer will contact you during the scheduled appointment (please provide a valid telephone number) to guide you through the installation and configuration process.
  4. Our service is tailored for any skill level so if you require additional support (or for more advanced configuration assistance), you can request an additional appointment.
  5. Once we are satisfied that your appliance is up and running, we will provide details of the network configuration, including setup and login details for your records.
  6. You can also expect a post-installation health check to ensure that your appliance is functioning at optimum levels.
  7. If you already have your network configuration planned out, we will implement it accordingly. If you do not have these details, we can advise on best practices, network setups, ranges and policies to ensure the most secure and flexible configuration. Full details will be provided at the end of the process.

 

* For multiple appliances, you will need to book a session for each installation.

** Although we can advise you on how to enable this, it is your responsibility to perform the required gateway/router changes. You may need to contact your connectivity provider. By default, the device is available on HTTPS.