Viettel Cloud Firewall
Viettel Cloud Firewall is a next-generation firewall service that integrates advanced AI/ML technologies (AI/ML-Powered NGFW) on a cloud computing platform, offering security features that help detect, control, and prevent malware and other threats.
Viettel Cloud Firewall is a next-generation firewall service designed to protect customer data in cloud computing environments using the latest global technologies, such as Application Control, User Identification, Deep Packet Inspection, Advanced Threat Protection, AI/ML-based Threat Prevention, Advanced URL Filtering, DNS Security, Advanced VPN, Data Loss Prevention, and IoT Security.
With diverse and flexible sales policies, customers can easily select Viettel Cloud Firewall service packages tailored to their needs.
Operational diagram of Viettel High Availability Cloud Firewall
Smart recognition ability
Ability to control traffic and packets based on identification technologies by application (App-ID), user (User-ID), and content (Content-ID).
Ability to proactively prevent threats
Provides proactive anti-virus, anti-spyware, and vulnerability protection capabilities, preventing attacks that exploit security vulnerabilities.
Powerful malware detection capabilities with Sandbox
Malware Analysis service with real-time malware defense and APT attack capabilities. Inline ML Prevention helps detect unknown types of malware that are not yet in the database using environmental analysis technology
Ability to connect to IPSec VPN, SSL VPN
Provides strong connection capacity on demand with IPSec VPN, SSL VPN between DC-DR or between branches.
Control & protect secure web access
Advanced URL Filtering feature helps control and protect safe web access. Helps classify web indexes and protect web sessions against real-time threats.
Protection with DNS Security
DNS Security provides real-time protection, blocking attacks using DNS, and detecting and preventing data loss through DNS Tunneling.
Next-generation firewall in the cloud environment
Make application management and authentication decisions in cloud environments based on user, content, and application context - not just on the ports or protocols used.
Avanced security
The firewall is powered by inline machine learning, with algorithms embedded in the firewall code to prevent malware from entering the cloud computing environment. It provides proactive, zero-day, and inline protection.
Access Privilege
Decide who can use the app and grant permissions based on needs and credentials.
Easy management
Simplify management and minimize security policy latency when adding, removing, or moving VMs in a cloud environment.
VCF is the service that Viettel IDC collaborates with the big cybersecurity firms such as Fortinet and Palo Alto, etc. to develop a virtualized firewall system and provide an in-depth security solution for customers who are currently using Viettel IDC's VVPC and VDPC. The deployment model can be found in the manual of this service.
VCF service packages only include the licensee for rent, not including the VM virtual server for installation. Customers can choose existing infrastructure or rent more VMs to install VCF. To get more details, contact Viettel IDC for support.
This service is actually a type of virtualized firewall (Virtual Machine) with full features as hardware devices of those companies.
Customers are granted full rights to manage VCF service. Viettel IDC does not administer the customer service. We will only deploy service, provide licenses, and support customers in need.
Deployment Models
The redundant firewall model protects Server/Virtualized Server systems for customers renting Viettel Virtual Private Cloud (VPC) or Viettel Dedicated Private Cloud (DPC) services on Viettel IDC's VMware platform.
.svg)
The redundant firewall model protects server and virtualized server systems for customers renting Viettel Cloud Server services on Viettel IDC's VMware platform.
.svg)
The redundant firewall model protects server and virtualized server systems for customers renting Viettel Cloud Server services on Viettel IDC's OpenStack platform.
.svg)
The redundant firewall model protects Kubernetes (K8S) clusters for customers renting the Viettel Open Kubernetes service.
.svg)
Technology Partners
Firewall Palo Alto Networks WildFire is the industry's most advanced prevention and analysis tool for exploitation and non-evasive malware. This service uses a unique multi-engineering approach that combines dynamic and static analysis, innovative engineering and a groundbreaking bare metal analysis environment to detect and prevent even elusive threats. Best.
Fortinet is an American multinational corporation headquartered in Sunnyvale, California. It develops and markets network security products and services, such as firewalls, anti-virus, intrusion prevention, and endpoint security. Fortinet was founded in 2000 by brothers Ken Xie and Michael Xie
The service package
The price does not include VAT (if any)
VCF1-BASIC
6,600,000
vnđ/Month7 GB Minimum memory
60 GB Minimum hard drive space
3,000 Mbps Firewall throughput (App-ID)
1,500 Mbps Threat Prevention Throughput
2 vCPU Number of vCPUs supported
1,000 Mbps IPsec VPN Throughput
250 Number of Firewall policies
250,000 Maximum number of sessions
15,000 Number of new sessions/second
1,000 Number of IPsec VPN
500 Number of SSL VPN
100 Number of Clientless VPN
5,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
40 Security Zone
VCF2-BASIC
9,350,000
vnđ/Month3 vCPU Number of vCPUs supported
7 GB Minimum memory
60 GB Minimum hard drive space
4,500 Mbps Firewall throughput (App-ID)
2,250 Mbps Threat Prevention Throughput
1,000 Mbps IPsec VPN Throughput
1,500 Number of Firewall policies
250,000 Maximum number of sessions
15,000 Number of new sessions/second
1,000 Number of IPsec VPN
500 Number of SSL VPN
100 Number of Clientless VPN
5,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
40 Security Zone
VCF3-BASIC
12,100,000
vnđ/Month4 vCPU Number of vCPUs supported
9 GB Minimum memory
60 GB Minimum hard drive space
6,000 Mbps Firewall throughput (App-ID)
3,000 Mbps Threat Prevention Throughput
1,800 Mbps IPsec VPN Throughput
10,000 Number of Firewall policies
819,200 Maximum number of sessions
30,000 Number of new sessions/second
2,000 Number of IPsec VPN
2,000 Number of SSL VPN
400 Number of Clientless VPN
10,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
40 Security Zone
6,600,000 USD /Month
9,350,000 USD /Month
12,100,000 USD /Month
|
Minimum memory
|
Minimum hard drive space
|
Firewall throughput (App-ID)
|
Threat Prevention Throughput
|
Number of vCPUs supported
|
IPsec VPN Throughput
|
Number of Firewall policies
|
Maximum number of sessions
|
Number of new sessions/second
|
Number of IPsec VPN
|
Number of SSL VPN
|
Number of Clientless VPN
|
Number of maximum route in IPv4 forwarding table
|
Machine Learning Powered Next-Generation Firewall
|
Application identification
|
User identification
|
Network, routing features
|
Support IPSec VPN Site-to-Site
|
Support Remote Access/VPN Client (basic)
|
File and data filtering
|
Security Zone
|
Service fee (USD)
|
||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
VCF1-BASIC
|
7 GB
|
60 GB
|
3,000 Mbps
|
1,500 Mbps
|
2 vCPU
|
1,000 Mbps
|
250
|
250,000
|
15,000
|
1,000
|
500
|
100
|
5,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
6,600,000
|
|
|
VCF2-BASIC
|
7 GB
|
60 GB
|
4,500 Mbps
|
2,250 Mbps
|
3 vCPU
|
1,000 Mbps
|
1,500
|
250,000
|
15,000
|
1,000
|
500
|
100
|
5,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
9,350,000
|
|
|
VCF3-BASIC
|
9 GB
|
60 GB
|
6,000 Mbps
|
3,000 Mbps
|
4 vCPU
|
1,800 Mbps
|
10,000
|
819,200
|
30,000
|
2,000
|
2,000
|
400
|
10,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
12,100,000
|
VCF1-Gold
7,700,000
vnđ/Month2 vCPU Number of vCPUs supported
7 GB Minimum memory
60 GB Minimum hard drive space
3,000 Mbps Firewall throughput (App-ID)
1,500 Mbps Threat Prevention Throughput
1,000 Mbps IPsec VPN Throughput
250 Number of Firewall policies
250,000 Maximum number of sessions
15,000 Number of new sessions/second
1,000 Number of IPsec VPN
500 Number of SSL VPN
100 Number of Clientless VPN
5,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
Anti-Virus
Anti-Spyware
Vulnerability Protection (IPS layer 7)
40 Security Zone
VCF2-Gold
12,100,000
vnđ/Month7 GB Minimum memory
60 GB Minimum hard drive space
4,500 Mbps Firewall throughput (App-ID)
2,250 Mbps Threat Prevention Throughput
3 vCPU Number of vCPUs supported
1,000 Mbps IPsec VPN Throughput
1,500 Number of Firewall policies
250,000 Maximum number of sessions
15,000 Number of new sessions/second
1,000 Number of IPsec VPN
500 Number of SSL VPN
100 Number of Clientless VPN
5,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
Anti-Virus
Anti-Spyware
Vulnerability Protection (IPS layer 7)
40 Security Zone
VCF3-Gold
14,575,000
vnđ/Month9 GB Minimum memory
60 GB Minimum hard drive space
6,000 Mbps Firewall throughput (App-ID)
3,000 Mbps Threat Prevention Throughput
4 vCPU Number of vCPUs supported
1,800 Mbps IPsec VPN Throughput
10,000 Number of Firewall policies
819,200 Maximum number of sessions
30,000 Number of new sessions/second
2,000 Number of IPsec VPN
2,000 Number of SSL VPN
400 Number of Clientless VPN
10,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
Anti-Virus
Anti-Spyware
Vulnerability Protection (IPS layer 7)
40 Security Zone
7,700,000 USD /Month
12,100,000 USD /Month
14,575,000 USD /Month
|
Number of vCPUs supported
|
Minimum memory
|
Minimum hard drive space
|
Firewall throughput (App-ID)
|
Threat Prevention Throughput
|
IPsec VPN Throughput
|
Number of Firewall policies
|
Maximum number of sessions
|
Number of new sessions/second
|
Number of IPsec VPN
|
Number of SSL VPN
|
Number of Clientless VPN
|
Number of maximum route in IPv4 forwarding table
|
Machine Learning Powered Next-Generation Firewall
|
Application identification
|
User identification
|
Network, routing features
|
Support IPSec VPN Site-to-Site
|
Support Remote Access/VPN Client (basic)
|
File and data filtering
|
Anti-Virus
|
Anti-Spyware
|
Vulnerability Protection (IPS layer 7)
|
Security Zone
|
Service fee (USD)
|
||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
VCF1-Gold
|
2 vCPU
|
7 GB
|
60 GB
|
3,000 Mbps
|
1,500 Mbps
|
1,000 Mbps
|
250
|
250,000
|
15,000
|
1,000
|
500
|
100
|
5,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
7,700,000
|
|
|
VCF2-Gold
|
3 vCPU
|
7 GB
|
60 GB
|
4,500 Mbps
|
2,250 Mbps
|
1,000 Mbps
|
1,500
|
250,000
|
15,000
|
1,000
|
500
|
100
|
5,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
12,100,000
|
|
|
VCF3-Gold
|
4 vCPU
|
9 GB
|
60 GB
|
6,000 Mbps
|
3,000 Mbps
|
1,800 Mbps
|
10,000
|
819,200
|
30,000
|
2,000
|
2,000
|
400
|
10,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
14,575,000
|
VCF1-Platinum
15,400,000
vnđ/Month7 GB Minimum memory
60 GB Minimum hard drive space
3,000 Mbps Firewall throughput (App-ID)
2 vCPU Number of vCPUs supported
1,500 Mbps Threat Prevention Throughput
1,000 Mbps IPsec VPN Throughput
250 Number of Firewall policies
250,000 Maximum number of sessions
15,000 Number of new sessions/second
1,000 Number of IPsec VPN
500 Number of SSL VPN
100 Number of Clientless VPN
5,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
Anti-Virus
Anti-Spyware
Vulnerability Protection (IPS layer 7)
Unknown/APT malware analysis & defense with sandbox and advanced (WildFire)
Advanced URL Filtering
DNS Security
40 Security Zone
VCF2-Platinum
15,950,000
vnđ/Month7 GB Minimum memory
60 GB Minimum hard drive space
4,500 Mbps Firewall throughput (App-ID)
3 vCPU Number of vCPUs supported
2,250 Mbps Threat Prevention Throughput
1,000 Mbps IPsec VPN Throughput
1,500 Number of Firewall policies
250,000 Maximum number of sessions
15,000 Number of new sessions/second
1,000 Number of IPsec VPN
500 Number of SSL VPN
100 Number of Clientless VPN
5,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
Anti-Virus
Anti-Spyware
Vulnerability Protection (IPS layer 7)
Unknown/APT malware analysis & defense with sandbox and advanced (WildFire)
Advanced URL Filtering
DNS Security
40 Security Zone
VCF3-Platinum
21,175,000
vnđ/Month9 GB Minimum memory
60 GB Minimum hard drive space
6,000 Mbps Firewall throughput (App-ID)
4 vCPU Number of vCPUs supported
3,000 Mbps Threat Prevention Throughput
1,800 Mbps IPsec VPN Throughput
10,000 Number of Firewall policies
819,200 Maximum number of sessions
30,000 Number of new sessions/second
2,000 Number of IPsec VPN
2,000 Number of SSL VPN
400 Number of Clientless VPN
10,000 Number of maximum route in IPv4 forwarding table
Machine Learning Powered Next-Generation Firewall
Application identification
User identification
Network, routing features
Support IPSec VPN Site-to-Site
Support Remote Access/VPN Client (basic)
File and data filtering
Anti-Virus
Anti-Spyware
Vulnerability Protection (IPS layer 7)
Unknown/APT malware analysis & defense with sandbox and advanced (WildFire)
Advanced URL Filtering
DNS Security
40 Security Zone
15,400,000 USD /Month
15,950,000 USD /Month
21,175,000 USD /Month
|
Minimum memory
|
Minimum hard drive space
|
Firewall throughput (App-ID)
|
Number of vCPUs supported
|
Threat Prevention Throughput
|
IPsec VPN Throughput
|
Number of Firewall policies
|
Maximum number of sessions
|
Number of new sessions/second
|
Number of IPsec VPN
|
Number of SSL VPN
|
Number of Clientless VPN
|
Number of maximum route in IPv4 forwarding table
|
Machine Learning Powered Next-Generation Firewall
|
Application identification
|
User identification
|
Network, routing features
|
Support IPSec VPN Site-to-Site
|
Support Remote Access/VPN Client (basic)
|
File and data filtering
|
Anti-Virus
|
Anti-Spyware
|
Vulnerability Protection (IPS layer 7)
|
Unknown/APT malware analysis & defense with sandbox and advanced (WildFire)
|
Advanced URL Filtering
|
DNS Security
|
Security Zone
|
Service fee (USD)
|
||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
VCF1-Platinum
|
7 GB
|
60 GB
|
3,000 Mbps
|
2 vCPU
|
1,500 Mbps
|
1,000 Mbps
|
250
|
250,000
|
15,000
|
1,000
|
500
|
100
|
5,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
15,400,000
|
|
|
VCF2-Platinum
|
7 GB
|
60 GB
|
4,500 Mbps
|
3 vCPU
|
2,250 Mbps
|
1,000 Mbps
|
1,500
|
250,000
|
15,000
|
1,000
|
500
|
100
|
5,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
15,950,000
|
|
|
VCF3-Platinum
|
9 GB
|
60 GB
|
6,000 Mbps
|
4 vCPU
|
3,000 Mbps
|
1,800 Mbps
|
10,000
|
819,200
|
30,000
|
2,000
|
2,000
|
400
|
10,000
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
1
|
40
|
21,175,000
|
Need support?
Please contact Viettel IDC immediately for support and advice on the Viettel Cloud Firewall solution that best suits your needs!