N Specifications Compliance

o.

1. Brand: Any international reputed brand Cisco

2. Model: To be mentioned by bidder Cisco ASA 5550

3. Country of Origin To be mentioned by bidder USA

4. Memory: - Min 01 GB 4 GB

5. Flash Memory: - Min 64 MB 64 mbps

6. Firewall Min. 650 mbps Up to 1.2 Gbps

Throughput:

7. Interface: - Min. 03 (Three) 10/100/1000Base-T - 08 (Eight) 10/100/1000Base-T ports,

ports,
- 04 (SFP) Ports
- Console ports for management
- Console ports for management
- 01 (One) AUX Port
- 02 (Two) High speed USB Ports (Type A)
- 01 (One) Ethernet 10Base-T/100Base-TX

8. VLAN Support: Min. 200 secured VLAN Support 200 secured VLAN Support

9. ACL Rules Should support ACL Filters Complied

10 Concurent Session: Min 400 K 650K

.

11 IPS and Content IPS and Content Security should be supported

. Security support: for firewall. (seperate module or appliance or
integrated module with firewall)

12 Features: Routing and Firewall facility: - 3DES/AES VPN Throughput up to 425 mbps
. - New connection per second 25,000 with -
antivirus, web filtering and anti spam -
(integrated or separate appliance or
module) -

- New connection per second 30,000 with -

IPS, antivirus, web filtering and anti spam -
or only IPS (integrated or separate -
appliance or module)
-
- 3DES/AES VPN Throughput should be -
min. 325 mbps and IPS Throughput
should be min. 500 mbps for firewall -

- Onboard operating system and custom -

hardware designed for stateful high-speed -
packet filtering, switching and analysis. -
- Enhanced detection function for TCP -
packet flag validity that is preventing
-
attack analysis behaviors at early stages
of attack. -
- Supports transparent and routed modes -
of operation. -
- Real-time network monitoring methods -
help administrators with network security
-
management.
-
- ASPF detects session information of
application layer protocols that attempt to -
pass firewalls and stop packets not -
matching rules.
N Specifications Compliance
o.

- Denial of Service (DoS) and Distributed -

DoS prevention. -
- Java Blocking protects networks from -
harmful Java Applets.
-
- Port-to-application mapping for
application layer protocol services on -
universal ports. -
- Enhanced session log function records all -
connections. -
- Application layer protocol information -
detection capabilities maintain the status
-
of sessions and check protocol and port
ID of session packets to prevent malicious -
invasion. -
- MAC-to-IP Binding and ARP spoofing -
check for protecting the security of
-
addresses in the internal network.
-
- Supports Network Address Translation
(NAT) to enable internal hosts to access -
the external network resources with -
privacy protected. -
- IPv6 capable (requires future IPv6- -
capable routing software).
-
- Web based UI for configuration
- Web-based management solutions
- UTM, antivirus, anti spam, Web filtering,
and intrusion prevention system. -
- Attack defending technology detects -
multiple types of network attacks and -
takes measures to prevent the internal -
network from disruption.
-
- Protection against Address Resolution
Protocol (ARP) attacks maintains the -
integrity of addresses in the internal -
network. -
- Network Address Translation (NAT) and -
Network Address Port Translation (NAPT)
- Network Address Translation (NAT) and
enable internal hosts to access the
Network Address Port Translation (NAPT)
external network resources with their
enable internal hosts to access the external
privacy protected.
network resources with their privacy
protected.

13 Users: Solution should be capable to manage a large Complied

. network with at least 2500 users.

14 Security Content security, antivirus, anti-spam web

. Subscription filtering and IPS subscription license for 3
license: years.

15 Encryption Support: SHA-1 authentication, 3DES, AES Complied

.

16 Certification: FCC Part 15 Class A, CE marking Complied

.

17 Package Content: Firewall device, Necessary Power Cords, Complied

. Rollover cables for each module with RJ45 to
Serial Converter, User Guide and other
required accessories to install and configure.
N Specifications Compliance
o.

18 Power Supply: Redundant power supply for each device (If

. supported).

19 Training: Basic Configuration training on provided

. solution or devices with details configuration
manuals for at least 10 persons (onsite
training).

20 Configuration and Configuration of the proposed solution should

. Installation be compatible with the existing network of
Bangladesh Secretariat Backbone so that the
whole network remains working without any
further configuration of other part of the core
network and ministry LANs. The configuration
must support at least gigabit internet
connectivity from the BTCL although less that
this amount will be used with this proposed
router for the time being.

21 Warranty: 3 (Three) Years full warranty with spare parts Complied

. & onsite service