70 -- HARDWARE-BASED INTERNET SECURITY APPLIANCE

Notice Date

August 10, 2001

Contracting Office

Social Security Administration, Deputy Commissioner for Finance, Assessment and Management, Office of Acquisition an d Grants, 1710 Gwynn Oak Avenue, Baltimore, MD, 21207-5279

ZIP Code

21207-5279

Solicitation Number

Reference-Number-SMW080901

Response Due

August 24, 2001

Point of Contact

Stacey Walker, Contract Specialist, Phone 410-965-6269, Fax 410-965-9560, Email stacey.walker@ssa.gov -- Linda Phipp s, Contract Specialist, Phone (410) 965-9493, Fax (410) 965-9560, Email Linda.Phipps@ssa.gov

Description

The Social Security Administration (SSA) is seeking vendors who can supply a hardware-based internet security applianc e to function as an enterprise-wide IPSEC gateway. The device must comply with industry standards in order to provide for s calable, reliable, and Virtual Private Network (VPN) connections with our business partners. The mandatory requirements are as follows: -Must be built utilizing gigascreen ASIC technology. -Must be a security-optimized appliance with full-featured, stateful inspection firewall and IPSEC-based VPN gateway with tr affic shaping features co-existing in the same hardware platform. -Must be ICSA and VPNC certified for IPSEC interoperability with other IPSEC compliant solutions. -Must support up to 700MBps firewall, 250MBps VPN throughput and session ramp rate of up to 22,000 sessions per second while under load. That is, there must be zero percent lost when doing full-duplex IPSEC (DES-3, SHA-1). -Must support up to 10,000 VPN tunnels and 250,000 concurrent sessions. -Must support FastEthernet and Gig-Ethernet connections. -Must provide policy-based traffic shaping, allowing administrators to allocate, monitor, and analyze bandwidth in real time . -Must include critical high availability and redundancy features, automated mirrored configurations, active session and VPN/ Firewall maintenance during failure. -Must support secure gui-based systems administration. -Must be capable of integration with industry standard content filtering solutions if needed. -Must support SNMP. -Must be HIPPA and FIPS-140-1 certified. -Must support PAT (Port Address Translation), NAT (Network Address Translation), and Policy-based NAT. Vendors responding should indicate whether their products are available on GSA Schedule. This is not a request for proposal and the Government does not intend to pay for information submitted. Respondents will not be notified of the results of th e evaluation of the data received. No contract award will be made on the basis of responses received; however, the informat ion will be used in SSAs assessment of capable sources. All responsible sources should visit the Section 508 evaluation tem plate at http://www.ssa.oag/acq/oag_acquisiton.htm and submit it with their response to this announcement. Responses to thi s notice should be submitted in duplicate by 8/24/01 and should refer to SMW080901-Internet Security Appliance. Requests fo r copies of a solicitation will not be honored or acknowledged. Faxed responses are not permitted. Questions concerning th is announcement may be submitted via email ONLY.

Web Link

Visit this URL for the latest information about this (http://www.eps.gov/spg/SSA/DCFIAM/OAG/Reference-Number-SMW080901/listing.html)

Record

Loren Data Corp. 20010814/70SOL019.HTM (A-222 SN50U6X9)