Simplified Network

Building efficient, intelligent, and open telecom clouds

ZXSG SVFW-S Introduction

Based on traditional security architecture, ZXSG SVFW-S enables firewall abstraction and the pooling technology. Featuring elastic expanding and automatic on-demand deployment, ZXSG SVFW-S can be extensively used to protect core networks, medium and large private clouds, and NBIoT networks.

Products Advantages

High performance/low latency
Latency of transferring < 100us
Latency for HA switchover <2s

Rich security services

Multiple sorts of protocol messages
Provide rich precaution services
Carrier-grade NAT

Easy operation and maintenance

Automatic Deployment
Elastic Scale-In/Out
Easy to Integrate

Latest Function

If you want to know the latest functions, please send email to to apply for VIP user.

Major Function

  • High Performance/Low Latency

    • Employs many technologies including SR-IOV, DPDK and separated control and forwarding to improve performance and reduce latency.
    • By using the SR-IOV technology to share one PCI device with multiple VMs, the vFW enhances the utilization rate of I/O devices and shortens the network latency. The SR-IOV can work on GE/10GE/40GE interfaces.
    • Employs the DPDK technology to enable more powerful system processing.
    • Using different paths to separate control plane services (for example, protocol processing and dynamic generation of policy information) and user plane services (for instance data packet filtering, forwarding and processing), making data forwarding more efficient.
  • High Reliability

    • Employs the enhanced VRRP protocol running on the HA path between the active and standby OMPs to ensure the firewall capable of working in the hot redundant mode.
    • To keep the system reliable and away from data blocking, the vFW implements data synchronization and backup via multiple HA paths.
  • Easy operation and maintenance

    • Automatic Deployment: The vFW can be deployed on a universal server automatically. When maintenance engineers finish making the vFW deployment blueprint, the entire deployment can be done rapidly, flexibly and automatically, which obviously makes the O&M much easier.
    • Elastic Scale-In/Out: To enable simplified deployment and management, as well as more efficient resource utilization, the vFW enables user-defined Scale-In/Out policies.
    • Easy to Integrate: The vFW can be easily integrated to different security protection scenarios. Related cloud management centers are responsible for the orchestration and management.
  • Rich Security Services

    • Supporting status protection, inter-zone policies, ASPF, carrier-grade NAT, DPI, DoS/DDos and SSL VPN.
    • Carrier-grade security protection: anti-overbilling, GTP and SCTP protocol protection.