Huawei USG6300 Series Cloud Management Firewalls

USG6300 Series Cloud Management Firewalls

Product characteristics

The Huawei cloud management network solution, supported by SDN technologies, consists of the cloud management platform and a full range of cloud-based network devices. The solution highlights cloud-based network management, plug-and-play network devices, service configuration automation, O&M automation and visualization, and Big Data analytics. It can significantly reduce the high management cost in traditional networks.

The cloud management platform is operated by Huawei public cloud or constructed and operated by MSPs and carriers. Tenants can enjoy the services provided by the cloud management platform after they buy the firewall hardware and cloud management licenses. The operator of the cloud management platform is responsible for network construction and maintenance, which greatly reduces the manpower and investment.

Huawei USG6300 series applies to Huawei cloud management solution. It supports traditional firewall management and cloud management and provides cloud management-based secure Internet access services for small enterprises, enterprise branches, and chain organizations.

Device plug-and-play

  • The USG6300 is deployed at the tenant side. Tenants only need to power on their devices and connect to the Internet. After the USG6300 of a tenant is started, it initiates authentication and registration to the cloud management platform, totally plug-and-play.
  • After registration, the USG6300 establishes a NETCONF security channel with the cloud platform. The cloud management platform automatically delivers configurations in batches by device group, which greatly increases the network configuration efficiency and shortens the deployment duration.

Internet-level management and O&M experience

  • The cloud management network solution introduces the GIS. The GIS marks device locations based on indoor and outdoor maps, intuitively displaying device distribution in each region. When a device becomes faulty, the location of the device can be captured immediately, increasing the troubleshooting efficiency.
  • The O&M personnel carry the mobile App client to understand the network operating status at any time and from any place. They monitor important network indicators, such as device health, access users, and service traffic and process network faults in time to provide zero-distance O&M.

Dual-stack management mode for smooth network evolution

  • The USG6300 series firewall supports both traditional and cloud management modes, shortening network reconstruction and upgrade duration, minimizing the impact of network reconstruction and upgrade on user services, and guaranteeing good user experience.

Networking and applications

Providing professional cloud management solution for small and medium-sized enterprises

  • The cloud platform is deployed in Huawei public cloud or MSP public cloud and provides a firewall O&M UI for users. Firewalls are deployed on the SMB, branch, and campus egress to provide wired and wireless Internet access for users. Users only need to purchase firewall and cloud management licenses. The cloud management platform implements network device planning and O&M. The cloud management network solution applies to small and medium-sized enterprises that have a small amount of concurrent user access and sparse sites but do not have professional network technical competence.

 

Product appearance

Model Interfaces

USG6305


1. USB Port
2. Micro-SD Card Slot
3. Console Port
4. 4 x GE (RJ45) Ports

USG6310S


1. USB Port
2. Micro-SD Card Slot
3. Console Port
4. 8 x GE (RJ45) Ports

USG6320


1. USB Port
2. Console Port
3. 8 x GE (RJ45) Ports

USG6330/USG6350/USG6360


1. USB Port
2. Console Port
3. 1 x GE (RJ45) Management Port
4. 4 x GE (RJ45) Ports
5. 2 x GE (Combo) Ports

USG6370/USG6380/USG6390


1. 2 x USB Ports
2. Console Port
3. 1 x GE (RJ45) Management Port
4. 8 x GE (RJ45) Ports
5. 4 x GE (SFP) Ports

Product specifications

Software Features

Function Description
Management Allows the firewall to automatically register and establish a NETCONF connection with the cloud management platform. Through the NETCONF channel, the cloud management manages the firewall, and the firewall reports alarms.
Supports remote network device monitoring through the mobile App client.
Supports only basic configuration and configuration restoration. The switchover between the traditional management mode and cloud management mode can be configured through the CLI.
Supports Deployment using a USB disk, facilitating deployment and improving the efficiency.
Implements two-way certificate authentication between the firewall and cloud management platform, ensuring management security.
Policy Supports the security policy, NAT policy, application identification-based traffic policy, and whitelist/blacklist
Network Supports NAT (easy IP), DHCP Server, DHCP relay, DNS proxy, VLAN, PPPoE, and static route
VPN Supports IPsec VPN
Intrusion Prevention Supports the IPS and obtains the latest threat information in a timely manner for accurate detection and defense against vulnerability exploits

System Performance and Capacity

Model USG6305 USG6310S USG6320
IPv4 Firewall Throughput1 (1,518/512/64-byte, UDP ) 0.8/0.8/0.12 Gbit/s 1.2/1/0.12 Gbit/s 2/2/0.4 Gbit/s
Firewall Throughput (packets per second) 0.18 Mpps 0.18 Mpps 0.6 Mpps
Firewall Latency (64-byte, UDP) 100 µs 100 µs 35 µs
FW + SA* Throughput2 300 Mbit/s 400 Mbit/s 1.2 Gbit/s
FW + SA + IPS Throughput2 150 Mbit/s 200 Mbit/s 700 Mbit/s
Concurrent Sessions (HTTP1.1)1 200,000 250,000 500,000
New Sessions/Second (HTTP1.1)1 4,000 6,000 20,000
IPsec VPN Throughput1 (AES-128 + SHA1, 1,420-byte) 300 Mbit/s 400 Mbit/s 600 Mbit/s
Maximum IPsec VPN Tunnels (GW to GW) 500 1,000 2,000
Maximum IPsec VPN Tunnels (client to GW) 500 1,000 2,000
Security Policies (maximum) 1,000 1,000 3,000
VLANIF Interfaces (maximum) 256 1,024
VLANs (maximum) 4,094
Model USG6330 USG6350 USG6360 USG6370 USG6380 USG6390
IPv4 Firewall Throughput1 (1,518/512/64-byte, UDP) 1/1/0.4 Gbit/s 2/2/0.4 Gbit/s 3/2.5/0.4 Gbit/s 4/4/1.2 Gbit/s 6/6/1.2 Gbit/s 8/8/1.2 Gbit/s
Firewall Throughput (packets per second) 0.6 Mpps 0.6 Mpps 0.6 Mpps 1.8 Mpps 1.8 Mpps 1.8 Mpps
Firewall Latency (64-byte, UDP) 40 µs 40 µs 40 µs 25 µs 25 µs 25 µs
FW + SA* Throughput2 1 Gbit/s 1.2 Gbit/s 1.4 Gbit/s 4 Gbit/s 5 Gbit/s 6 Gbit/s
FW + SA + IPS Throughput2 500 Mbit/s 950 Mbit/s 1.1 Gbit/s 2 Gbit/s 2 Gbit/s 2 Gbit/s
Concurrent Sessions (HTTP1.1)1 1,500,000 2,000,000 3,000,000 4,000,000 4,000,000 4,000,000
New Sessions/Second (HTTP1.1)1 30,000 30,000 30,000 60,000 70,000 80,000
IPsec VPN Throughput1 (AES-128 + SHA1, 1,420-byte) 700 Mbit/s 800 Mbit/s 900 Mbit/s 3 Gbit/s 3 Gbit/s 3 Gbit/s
Maximum IPsec VPN Tunnels (GW to GW) 4,000 4,000 4,000 4,000 4,000 4,000
Maximum IPsec VPN Tunnels (client to GW) 4,000 4,000 4,000 4,000 4,000 4,000
Security Policies (maximum) 15,000 15,000 15,000 15,000 15,000 15,000
VLANs (maximum) 4,094
VLANIF Interfaces (maximum) 1,024

1. Performance is tested under ideal conditions based on RFC 2544 and RFC 3511. The actual result may vary with deployment environments

2. IPS and SA performances are measured using 100 KB of HTTP files

*SA indicates Service Awareness


Hardware Specifications

Model USG6305 USG6310S USG6320
Dimensions
(H x W x D)
44 mm x 300 mm x 220 mm 44 mm x 300 mm x 220 mm 44.5 mm x 300 mm x 220 mm
Form Factor/Height Desktop Desktop Desktop
Fixed Interfaces 4 x GE (RJ45) 8 x GE (RJ45) 8 x GE (RJ45)
USB 2.0 Port Supported Supported Supported
4G LTE The USB port houses a 4G LTE data card The USB port houses a 4G LTE data card The USB port houses a 4G LTE data card
MTBF 14.08 years 14.08 years 19.06 years
Weight (full configuration) 1.55 kg 1.55 kg 1.58 kg
Power Consumption (average/maximum) 7.5W/11.8W 8.8W/13.1W 23.2W/28.5W
Heat Dissipation 40 BTU/h 45 BTU/h 97 BTU/h
Local Storage Optional 64 GB micro-SD card for expansion -
Noise - 48 dBA
Power Supplies External Power Adapter, 24W External Power Adapter, 36W
AC Power Supply 100V to 240V, 50 Hz/60 Hz
Operating Environment (temperature/humidity) Temperature: 0°C to 45°C
Humidity: 5% to 95%, non-condensing
Non-operating Environment Temperature: –40°C to 70°C
Humidity: 5% to 95%, non-condensing
Operating Altitude (maximum) 5,000 meters
Non-operating Altitude (maximum) 5,000 meters
Model USG6330 USG6350 USG6360 USG6370 USG6380 USG6390
Dimensions (H x W x D) 44.4 mm x 442 mm x 421 mm 44.4 mm x 442 mm x 421 mm
Form Factor/Height 1U 1U
Fixed Interfaces 4 x GE (RJ45) + 2 x GE (Combo) 8 x GE (RJ45) + 4 x GE (SFP)
USB2.0 Port Supported Supported
Expansion Slot 2WSIC* 2 WSIC*
Expansion I/O WSIC: 2 x 10 GE (SFP+) + 8 x GE (RJ45), 8 x GE (RJ45), 8 x GE (SFP), and 4 x GE (RJ45) BYPASS WSIC: 2 x 10 GE (SFP+) + 8 x GE (RJ45), 8 x GE (RJ45), 8 x GE (SFP), and 4 x GE (RJ45) BYPASS
Maximum Number of Interfaces 22 x GE (RJ45) + 4 x 10 GE (SFP+) or 18 x GE (SFP) + 4 x GE (RJ45) 24 x GE (RJ45) + 4 x GE (SFP) + 4 x 10 GE (SFP+) or 20 x GE (SFP) + 8 × GE (RJ45)
MTBF 11.58 years 11.96 years
Weight (full configuration) 7.9 kg 8.6 kg
Local Storage Optional: Supports a 300 GB or 600 GB hard disk (the hard disk is hot-swappable, but the hard disk card is not) Optional: Supports a 300 GB or 600 GB hard disk (the hard disk is hot-swappable, but the hard disk card is not)
AC Power Supply 100V to 240V, 50 Hz/60 Hz 100V to 240V, 50 Hz/60 Hz
Power Consumption (average/maximum) 30.7W/107.83W 56.13W/133.74W
Heat Dissipation 368 BTU/h 456 BTU/h
Power Supplies Single 150W AC power supply; optional 170W AC power supply Single 170W AC power supply; optional dual AC power supplies
Noise 54.1 dBA 63 dBA
Operating Environment (temperature/humidity) Temperature: 0°C to 45°C (without optional HDD);
5°C to 40°C (with optional HDD) Humidity: 5% to 95% (without optional HDD), non-condensing;
5% to 90% (with optional HDD), non-condensing
Non-operating Environment Temperature: –40°C to 70°C
Humidity: 5% to 95% (without optional HDD), non-condensing;
5% to 90% (with optional HDD), non-condensing
Operating Altitude (maximum) 5,000 meters (without optional HDD); 3,000 meters (with optional HDD)
Non-operating Altitude (maximum) 5,000 meters (without optional HDD); 3,000 meters (with optional HDD)

1: The following bands are supported: FDD BAND 1, 2, 3, 4, 5, 7, 8, and 20

*WISC is not hot-swappable


Certifications

Certifications USG6305, USG6310S and USG6320 USG6330 to USG6360 USG6370 to USG6390
Hardware CB, CCC (USG6305/USG6310S/USG6320), CE-SDOC, ROHS, REACH & WEEE (EU), RCM, ETL, FCC & IC, VCCI, and BSMI (USG6320 to USG6390)
Regulatory Compliance Products comply with CE markings per directives 2014/30/EU and 2014/35/EU
Safety UL 60950-1
CSA-C22.2 No. 60950-1
EN 60950-1
IEC 60950-1
GB4943.1
UL 60950-1
CSA-C22.2 No. 60950-1
EN 60950-1
IEC 60950-1
UL 60950-1
CSA-C22.2 No. 60950-1
EN 60950-1
IEC 60950-1
EMC: Emissions AS/NZS CISPR 22
CISPR 22 Class B
EN 55022 Class B
ETSI EN 300 386
ETSI EN 301 489 (USG6305-W/6310S-W/6310S-WL-OVS)
IEC 61000-6-3/EN 61000-6-3
IEC 61000-6-4/EN 61000-6-4
IEC 61000-3-2/EN 61000-3-2
IEC 61000-3-3/EN 61000-3-3
FCC CFR47 Part 15 Subpart B Class B
ICES-003 Class B
VCCI V-3 Class B
CNS 13438 Class B (USG6320)
GB9254 Class B
AS/NZS CISPR 22
CISPR 22 Class A
EN 55022 Class A
ETSI EN 300 386
IEC 61000-6-4/EN 61000-6-4
IEC 61000-3-2/EN 61000-3-2
IEC 61000-3-3/EN 61000-3-3
FCC CFR47 Part 15 Subpart B Class A
ICES-003 Class A
VCCI V-3 Class A
CNS 13438 Class A
EN 55022 Class A
ETSI EN 300 386
IEC 61000-3-2/EN 61000-3-2
IEC 61000-3-3/EN 61000-3-3
FCC CFR47 Part 15 Subpart B Class A
ICES-003 Class A
VCCI V-3 Class A
CNS 13438 Class A
EMC: Immunity EN 55024
CISPR 24
ETSI EN 300 386
ETSI EN 301 489 (USG6305-W/6310S-W/6310S-WL-OVS)
IEC 61000-6-1/EN 61000-6-1
IEC 61000-6-2/EN 61000-6-2
CNS 13438 Class B (USG6320)
YD/T993
EN 55024
CISPR 24
ETSI EN 300 386
IEC 61000-6-2/EN 61000-6-2
CNS 13438 Class A
EN 55024
ETSI EN 300 386
CNS 13438 Class A

Ordering Information

USG6305/USG6310S/USG6320 Series Ordering Guide

Product Model Description
USG6305 USG6305-AC USG6305 AC Host (4 GE(RJ45), 1 GB Memory)
USG6310S USG6310S-AC USG6310S AC Host (8 GE(RJ45), 1 GB Memory)
USG6320 USG6320-AC USG6320 AC Host (8 GE(RJ45), 2 GB Memory)
NGFW License
IPS Update Service LIC-IPS-12-USG6300-01 IPS Update Service Subscription 12 Months (applies to USG6310/USG6320)
LIC-IPS-36-USG6300-01 IPS Update Service Subscription 36 Months (applies to USG6310/USG6320)
Basic License
Content Filtering LIC-CONTENT Content Filtering Function

USG6330 to USG6390 Series Ordering Guide

Product Model Description
USG6330 USG6330-AC USG6330 AC Host (4 GE (RJ45)+ 2 GE Combo, 4 GB Memory, 1 AC Power)
USG6350 USG6350-AC USG6350 AC Host (4 GE (RJ45)+ 2 GE Combo, 4 GB Memory, 1 AC Power)
USG6360 USG6360-AC USG6360 AC Host (4 GE (RJ45)+ 2 GE Combo, 4 GB Memory, 1 AC Power)
USG6370 USG6370-AC USG6370 AC Host (8 GE (RJ45)+4 GE (SFP), 4 GB Memory, 1 AC Power)
USG6380 USG6380-AC USG6380 AC Host (8 GE (RJ45)+4 GE (SFP), 4 GB Memory, 1 AC Power)
USG6390 USG6390-AC USG6390 AC Host (8 GE (RJ45)+4 GE (SFP), 4 GB Memory, 1 AC Power)
Business Module Group
WSIC WSIC-8GE 8 GE Electric Ports Interface Card
WSIC WSIC-4GEBYPASS 4 GE Electric Ports Bypass Card
WSIC WSIC-8GEF 8 GE Optical Ports Interface Card
WSIC WSIC-2XG8GE 2 x 10 GE Optical Ports + 8 GE Electric Ports Interface Card
Hard Disk Group
HDD SM-HDD-SAS300G-B 300 GB 10K RPM SAS Hard Disk for 1U rack Gateway
SM-HDD-SAS600G-B 600 GB 10K RPM SAS Hard Disk for 1U rack Gateway
NGFW License
IPS Update Service LIC-IPS-12-USG6300-02 IPS Update Service Subscription 12 Months (applies to USG6330/USG6350/USG6360)
LIC-IPS-36-USG6300-02 IPS Update Service Subscription 36 Months (applies to USG6330/USG6350/USG6360)
LIC-IPS-12-USG6300-03 IPS Update Service Subscription 12 Months (applies to USG6370/USG6380)
LIC-IPS-36-USG6300-03 IPS Update Service Subscription 36 Months (applies to USG6370/USG6380)
LIC-IPS-12-USG6300-04 IPS Update Service Subscription 12 Months (applies to USG6390)
LIC-IPS-36-USG6300-04 IPS Update Service Subscription 36 Months (applies to USG6390)
Basic License
Content Filtering LIC-CONTENT Content Filtering Function

For more information, visit http://e.huawei.com/en or contact your local Huawei sales office.