Loren Data's SAM Daily™

FBO DAILY ISSUE OF JULY 30, 2011 FBO #3535
SOURCES SOUGHT

70 -- SSA-Wide Enterprise Firewall Hardware, Software, and Support

Notice Date

7/28/2011
 

Notice Type

Sources Sought
 

NAICS

334210 — Telephone Apparatus Manufacturing
 

Contracting Office

Social Security Administration, Office of Budget, Finance, and Management, Office of Acquisition and Grants, 1st Floor, Rear Entrance, 7111 Security Blvd., Baltimore, Maryland, 21244
 

ZIP Code

21244
 

Solicitation Number

SSA-RFI-11-FWRP1
 

Point of Contact

Christopher D Mettee, Phone: 410-965-9486
 

E-Mail Address

christopher.mettee@ssa.gov
(christopher.mettee@ssa.gov)
 

Small Business Set-Aside

N/A
 

Description

The Social Security Administration (SSA), Office of Acquisition and Grants (OAG), in conjunction with its customer, the Office of Telecommunications and Systems Operations (OTSO), is currently performing market research to determine the availability of sources that can provide 1) new firewall hardware and software; and 2) maintain SSA's current Internet/Disability Determination Services firewall infrastructure. SSA will consider any new firewall solution that is comparable or better than the existing infrastructure. SSA has successfully used Nokia firewall appliances and Check Point firewall software-based solutions for years. SSA's current firewall infrastructure consists of 171 Check Point firewall appliances running Check Point firewall software and two Provider-1 central servers. The Account ID for Check Point hardware is #0006474760, software is #0005267083, and Provider-1's is #0006653590. SSA currently uses Check Point hardware models IP290, IP560 and IP690. All solutions must use a centralized management console that is capable of allowing users from different data centers to update security policies. In case of failures at any data center, such as a loss of power or natural disaster, the management server must be able to failover and support firewalls at all locations. Due to current security policy, SSA will not consider a Microsoft-based operating system (OS). In addition, SSA will not consider hardware blade technology because of Social Security's diverse network topology across the United States. SSA's current architecture requires, at a minimum, 8x5 support with direct call into the manufacturer's technical line. Hardware and parts replacement are required within 24 hours of determining the fault. Firewall Appliances: SSA desires three classifications of firewall appliances. Each classification must meet the general specifications below and detailed requirements attributed to each classification. The detailed requirements include only high-end and low-end information, so a model that falls somewhere in between would fulfill the third classification. General Specifications • Internet Protocol Version 4 (IPv4) and Internet Protocol Version 6 (IPv6) compliant • Ability to run dual stack • Hardened UNIX OS • Minimum of four built-in Ethernet ports 100/1000 megabits per second (mbs) • Expandable to eight Ethernet ports 100/1000 mbs • Rack mountable in a standard 19" rack • Remote management capability through a centralized manager • Function as hypertext transfer protocol (HTTP) proxy security device and file transfer protocol (FTP) security server High -End Application Firewall Appliance (Hardware Specifications) • Intel-based rack-mountable system • UNIX-based hardened secure OS • Minimum of 6 billions of bits per second (Gbps) firewall throughput • Minimum of 1.8 Gbps virtual private network (VPN) throughput • Minimum of 125,000 concurrent sessions • At least one hard drive with a minimum formatted capacity of 40 gigabytes (GB) for logging • One console port • One auxiliary port • Support Ipsilon Networks Operating System (IPSO) Software Strong Encryption • Ability to support Radius for Authentication and Authorization • Routing capabilities including Routing Information Protocol (RIP), Interior Gateway Routing Protocol (IGRP), and Border Gateway Protocol (BGP) • Ability to run dual stack • Operate in a Proxy Address Resolution Protocol (ARP) environment • Support Virtual Routing Redundancy Protocol (VRRP) with the built in option for clustering • Secure Shell (SSH) 2 support built into the operating kernel • Certificate authority generator built into the OS for Secure Socket Layer (SSL) certificates • Logging and reporting capabilities • Log internet protocol (IP) packets and system information and either store them locally or send them to another machine • Logs capable of producing usable reports • Ability to send alert e-mails Low-End Firewall Appliance (Hardware Specifications) • Intel-based rack-mountable system • Minimum of 1.5 Gbps firewall throughput • Minimum of 1Gbps VPN throughput • Minimum of 40,000 concurrent connections • Based hard drive with a minimum formatted capacity of 30 GB • One console port • One auxiliary port • Support IPSO Software Strong Encryption • Ability to support Radius for Authentication and Authorization • Support VRRP with the built-in option for clustering If a standalone device cannot innately meet all requirements, SSA is interested in devices that can provide equivalent facilitation or other innovative approaches. ************************************************************************************************************** SSA intends to use any information provided in response to this notice to develop an acquisition strategy. Specifically, respondents must submit, at a minimum, the following information: 1) Corporate experience, including socioeconomic and business size status; 2) Brief summary on the strategy you recommend for firewall delivery and support; 3) Technical details of device(s) recommended to meet SSA anticipated requirement; and 4) Availability of supplies and services through existing Government-Wide Acquisition Contracts (i.e., GSA Federal Supply Schedules, NASA SEWP, etc.). Interested sources that believe they have the bona fide capability to provide high-speed scanners should submit a detailed statement of their solution, in writing, to Christopher Mettee, Contract Specialist, Division of Information Technology and Maintenance, 7111 Security Boulevard, First Floor Rear Entrance, Baltimore, MD 21244. SSA will accept responses submitted electronically via email at Christopher.Mettee@ssa.gov. You may fax information to (410) 965-9486. Please reference SSA-RFI-11-FWRP1 in the email subject line. SSA must receive all responses by 5:00 p.m. Eastern Time on August 26, 2010. *** Synopsis Terms and Conditions *** • This is a sources sought announcement, a market survey for written information only. • This is not a solicitation announcement for proposals and the Government will not award a contract from this announcement. • The Government will not reimburse for any costs associated with providing information in response to this announcement or any follow-up information requests. • The Government will not accept any telephone calls, or requests for a bid package or solicitation. There is no bid package or solicitation. • In order to protect the procurement integrity of any future procurement, if any, that may arise from this announcement; the Government will not give information regarding the technical point of contact. • The Government will not make appointments for presentations. This synopsis is for planning purposes only, not a commitment by the Government. • The Government will use responses to this sources sought/market research notice to make appropriate acquisition decisions.
 

Web Link

FBO.gov Permalink
(https://www.fbo.gov/spg/SSA/DCFIAM/OAG/SSA-RFI-11-FWRP1/listing.html)
 

Place of Performance

Address: National Computer Center, Baltimore, Maryland, 21235, United States

Zip Code: 21235
 

Record

SN02513411-W 20110730/110728235000-0d4e9208b930a8136eea560032832184 (fbodaily.com)
 

Source

FedBizOpps Link to This Notice
(may not be valid after Archive Date)

---

| FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |