D ATA S H E E T

Thunder ADC
Application Delivery Controller and Advanced Load Balancer

Platforms

Offering a complete application solution, A10 Thunder®

Application Delivery Controller (ADC) ensures server availability, Cloud

protects vulnerable applications and accelerates content

delivery. It masters multi-cloud and hybrid cloud deployments
Container
with a holistic approach that reduces complexity and cost for
IT operations, providing better business outcomes.
Virtual Appliance

Thunder ADC delivers the capacity,

Agile Application scalability, multi-tenancy and
Bare Metal

Delivery and Security programmability to adjust to an ever-

changing environment. Consolidate point
From SMBs and large enterprises to Physical and SPE
products, reduce network complexity and Appliances
service providers and cloud operators,
achieve a substantial reduction in TCO.
organizations are managing a large
and rapidly growing set of mission- Related Products
Thunder ADC delivers L4-7 load balancing
critical applications. and multiple layers of security via web and
DNS app firewalls, single sign-on (SSO)
A purpose-built solution,
authentication and in-depth support
A10 Thunder ADC ensures these
for advanced encryption, including Harmony Controller
applications are highly available, Centralized Analytics
high-performance PFS/ECC. Built upon and Management
accelerated and secure. It helps reduce
A10’s Advanced Core Operating System
downtime, ensure business continuity
(ACOS®) platform, Thunder ADC delivers
and build highly available applications
application performance and security for
across global data centers and/or
any environment. FlexPool
multiple clouds. Capacity Pooling License

Talk with A10

©️2023 A10 Networks, Inc. All rights reserved. A10networks.com/adc
 A10 THUNDER ADC | DATA SHEET

Benefits
Enhance Secure
APP
Application Availability Communications
Organizations must guarantee their applications are Internet sessions are rapidly adopting encryption to secure
constantly accessible. Thunder ADC utilizes multiple load online data transport. Clients and servers, meanwhile,
balancing techniques to efficiently distribute workloads negotiate the most secure and complex methods mutually
across all servers while constantly evaluating application supported. Thunder ADC front-ends servers and offloads
health. Client requests are forwarded to servers that cumbersome, processing-intensive tasks associated
host the proper content and can best respond to ensure with the latest cryptographic standards. This maximizes
application and content delivery. content protection, speeds delivery and lowers
infrastructure expenses.

Ensure
Business Continuity
Protect
With data centers proliferating worldwide, administrators Vulnerable Applications
must maintain around-the-clock global operational Software development and testing can catch most, but
integrity. To guarantee cohesion and optimize app delivery typically not all, coding flaws. The resulting applications are
among diverse sites or clouds, Thunder ADC includes susceptible to attacks that cannot be blocked by intrusion
advanced global server load balancing (GSLB) working prevention systems (IPS), next-generation firewalls or
with other application delivery features. GSLB expands sandboxing. Businesses lose revenue, suffer damaged
functionality across global data centers for high availability, brand reputation and loss of confidential data. Thunder ADC
fault tolerance, and the best user experience. provides protection against ‘zero day’ and other emerging
application layer threats with DNS and web
application firewalls.

Accelerate
Content Delivery
Applications must be responsive —­no matter the location —
to ensure a superior end-user experience, enhance remote
employee productivity and exceed SLA mandates.
Thunder ADC overcomes the inherent WAN latencies,
inefficient software programs and chatty protocols to
provide fast and responsive service. End users receive
a superior user experience while organizations gain a
competitive advantage.

©️2023 A10 Networks, Inc. All rights reserved. 2

 A10 THUNDER ADC | DATA SHEET

Benefits (cont.)
Optimize Polynimbus
Applications via Multi-Tenancy Operational Efficiency
To optimize the delivery and security for potentially In a multi-cloud, or hybrid cloud environment, it’s essential
hundreds of apps in a given data center, IT administrators for IT operations to have a standardized ADC and service
need a multi-tenant methodology. visibility from a business and OPEX planning perspective.
Thunder ADC can be deployed in a virtual and container
Thunder ADC provides the ability to granularly program
environment with flexible and portable licensing, yet deliver
more than 1,000 individual partitions on a single appliance
feature parity regardless of the form factor. A10 Harmony®
for tailor-made policies by application, service, or user,
Controller enables effective operation by providing deeper
while consolidating appliances.
secure application service analytics, easy troubleshooting
tools and centralized policy enforcement control.

Consolidate
Access Control
Organizations must allow external clients access to
web portals, internal resources and mobile/BYOD apps.
At the same time, security must be maintained with
authentication and be transparent to the user.

Thunder ADC centrally manages multiple facets of

authentication, authorization and accounting (AAA)
with a system-wide perspective, while eliminating
separate authentication points, for a true single
sign-on (SSO) experience.

Thunder
370/340 Gbps 100 12M
7655S ADC L4/L7 Application
Throughput
GE Interfaces L4 Connections
Per Second
by the Numbers

1,023 145 Gbps

Application SSL Bulk
Delivery
Partitions (L3V)

Industry-leading Performance Thunder ADC delivers industry-leading performance – 370 Gbps of application
throughput and 145 Gbps of TLS/SSL bulk throughput – in a single 1.5U
appliance, rich ADC features (all-inclusive) in the broadest range of form factors,
including physical, virtual, bare metal, containers for multi-tenancy and cloud.

©️2023 A10 Networks, Inc. All rights reserved. 3

 A10 THUNDER ADC | DATA SHEET

Reference Architectures

Public/Private Cloud Enterprise Deployment

Offering industry-leading performance — up to
Harmony 370 Gbps in a single hardware and 100 Gbps in a
Controller
virtual appliance, Thunder ADC may be deployed
Availability Security
GSLB • • WAF at the core of an environment to deliver high-
High Availability • • DAF
Health Checks • • AAM (SSO) performance application delivery, load balancing
Server Load Balancing • • DDoS Mitigation
and security. In multi-cloud environments,
Acceleration
Thunder ADC • SSL Offload Thunder ADC can be deployed in any private or
• TCP Reuse
• RAM Caching public cloud in a virtual or container form factor,
• Compression
• Recursive DNS with consistent features across clouds.

Web Apps DNS Enterprise Apps

Remote A10 Threat Intelligence Authenticate via

Services Downloads Third-Party IdP Service

Service Provider Deployment

Harmony Controller Remote Data Center
Proven in large-scale service provider
environments, Thunder ADC may be deployed
Thunder ADC DNS Servers
Thunder ADC
Traffic Steering DNS SLB to optimize network efficiency and services via
Mobile Users
DNS Application Firewall
SLB
Service Chaining Recursive DNS traffic steering and service chaining to multiple
value-added services, such as video optimization.
Thunder ADC Web and The solution includes carrier-grade networking
Personalized Video Other SLB/GSLB Application
Content Services Optimization Services SSL Offload Servers (CGN) support for IPv4 address expansion and IPv6
DDoS Mitigation
migration.

Traffic Steering & ADC Functionality ADC Features

In a Mobile Service Provider Space For Service Providers

Application Delivery Partitions

A10 Thunder ADC supports multi-tenant
environments with application delivery partitions
Internal Users
(ADP). Configure more than 1,000 ADC tenant
partitions on a single appliance that also enables
ADP 1 ADP 2 ADP N
Layer 3 virtualization. Each partition may be
configured for a unique set of policies and offers
Thunder ADC
Microsoft Oracle SAP
sufficient resource isolation for most application-
Environment Environment Environment oriented use cases.

©️2023 A10 Networks, Inc. All rights reserved. 4

 A10 THUNDER ADC | DATA SHEET

Features
Application Delivery and Performance

Advanced Global
Server Load Balancing Server Load Balancing (GSLB)
Thunder ADC is a full-proxy, load-balancing and content- Extend load balancing on a global basis. Thunder ADCs,
switching solution. With aFleX® scripting, deep packet distributed worldwide, continuously update each other on
inspection, comprehensive load-balancing algorithms and their respective individual nodes for optimal site selection
persistence support, Thunder ADC enables application layer and status to ensure disaster recovery.
visibility to optimally route inbound requests.
Geographic and network proximity policy metrics
Customizable server health checks ensure only fully optimize multi-site deployments. DNS proxy or DNS server
functional servers are used to service client needs. The methods further improve implementation flexibility and
server best able to respond is selected and total servers deployment simplicity.
required can be substantially reduced for lower TCO.

High Density
Broad
Application Delivery Partitions
Acceleration Methodologies
Provide support for multi-tenant environments with
Leverage numerous techniques to overcome inherent
application delivery partitions (ADP). They allow the
distance-related latency, inefficient internet protocols
configuration of more than 1,000 partitions on a
and application design limitations. Acceleration methods,
single Thunder ADC appliance, which enables Layer 3
including TCP connection multiplexing, RAM caching, GZIP
virtualization. Each partition may be configured for a
compression and SSL-offload, expedite content transfer.
unique set of policies and offers resource isolation for most
The solution supports TCP optimization standards such as
application-oriented use cases.
selective acknowledgment, client keep-alive and window
scaling, to further speed delivery.

Recursive DNS
DNS
Ultra-low Latency For Consolidation
Thunder ADC provides powerful recursive DNS capability
For Financial Applications
enabling a one-stop DNS solution that leverages the high
The Thunder ADC family also offers solutions for low
performance of ACOS DNS cache service, the scalability
latency applications, featuring specialized Thunder
of DNS load balancing and the security of DNS application
appliances with custom software, to meet the low latency
firewall (DAF). This makes the ADC recursive DNS feature a
and jitter requirements of financial applications. Featuring
perfect solution for any enterprise or service provider
ultra-low latency hardware, these appliances offer near
seeking to consolidate DNS services and drive higher
instantaneous execution times and provide granular
customer satisfaction.
program policies for efficient packet forwarding, while
also consolidating multiple network functions, thus
reducing hops.

©️2023 A10 Networks, Inc. All rights reserved. 5

 A10 THUNDER ADC | DATA SHEET

Application Security

Extensive SSO
Cipher Suite Support and Application Authentication
Hardware-based SSL offload engines support advanced The integrated application access management (AAM)
cryptographic methods at ultra-high capacity. Thunder module optimizes and enforces authentication and
ADC can manage session security, such as perfect forward authorization to applications.
secrecy (PFS), with an advanced cipher suite, including
The module integrates with authentication servers, identity
elliptic curve cryptography (ECC).
data stores, identity providers (IdPs) and applications to
Appliances can process TLS/SSL encryption and decryption authenticate users and enforce access privileges. Common
at rates 145 Gbps—and up to 140,000 connections per AAA and single sign-on (SSO) methods include LDAP,
second—when using ECC with 256-bit keys. RADIUS, RSA SecurID, TDS SQL, SAML and Kerberos.

AAM interfaces to OCSP responders to validate client

Zero-day certificate status, as well as to Microsoft Active Directory

for SharePoint and Outlook Web Access users.
Application Protection
An ICSA-certified web application firewall (WAF) guards
Powerful
vulnerable software from dozens of application layer
DNS
attacks, including the Open Web Application Security
DNS LB and Firewall
Project (OWASP) Top 10 threats. These attacks include
cross-site request forgery, SQL injection and buffer Thunder ADC enables scalable DNS services by load-

overflows that target coding flaws. Integrated into balancing multiple DNS servers and with cache DNS

Thunder ADC, the WAF blocks these and other application capabilities, while supporting recursive DNS lookup. To

behavior anomaly attacks, and prevents unauthorized secure DNS services, the ADC incorporates a sophisticated

data leakage. DNS application firewall (DAF), DNS RPZ and integrated
DDoS protection to filter unwanted and malformed
requests, stop buffer overflows and head off DNS
amplification-based DDoS attacks. It delivers validated
DNSSEC pass-through support to prevent threats such as
DNS cache-poisoning and spoofing.

©️2023 A10 Networks, Inc. All rights reserved. 6

 A10 THUNDER ADC | DATA SHEET

Application Security (cont.)

DDoS Protection Threat Intelligence

for App Services Service
DDoS protection is standard in all Thunder ADC An optional subscription, the A10 Threat Intelligence
appliances. With FTA-based hardware models, using Service provides data from more than three-dozen security
field-programmable gate arrays (FPGA), protection may sources, including DShield and Shadowserver. The service
be enabled for high-volume attacks against application enables Thunder ADC to instantly recognize and block
servers. FPGAs mitigate common volumetric attacks, while traffic to and from known malicious IP address sources.
general-purpose CPUs mitigate more sophisticated low- The service protects networks from future threats, blocks
and-slow and application attacks, such as Slowloris and threats such as spam and phishing, and greatly increases
HTTP floods. Additional methods to limit unwarranted data Thunder ADC efficiency.
floods include connection rate limiting and bandwidth rate
limiting per source IP.

Certified By The integrated Thunder ADC web application firewall has achieved WAF
ICSA Labs certification from ICSA Labs. ICSA Labs testing and certification ensures
that Thunder ADC performs as intended to secure application services
from exploitation and attack.

SEE ALL CERTIFICATIONS

©️2023 A10 Networks, Inc. All rights reserved. 7

 A10 THUNDER ADC | DATA SHEET

Application Visibility and Management

Analytics API
Visibility and Logging
>_ Full Programmability
When deployed in conjunction with the A10 Harmony The Thunder ADC platform leverages A10’s REST-based
Controller, Thunder ADC provides access to dozens of aXAPIs to configure all features with 100 percent API
aggregate and per-request metrics in real time. These coverage. This interface is used to integrate with third-
include end-to-end response times, latency, popular URLs, party or custom management consoles, such as SDN
and error and health indicators. The data is analyzed to platforms (e.g., VMware) and cloud orchestration systems
provide per-app reporting and alerts on availability, security (e.g., OpenStack and Microsoft SCVMM). A software
and performance. plug-in is available for private clouds leveraging vRealize
Orchestrator from VMware.
Detailed Layer 4 based analytics information is separately
provided by individual clients, ADC (single appliance or as a
cluster) and per server. Comprehensive
Management Tools

DevOps Thunder ADC is supported by the A10 Harmony Controller,

which is available in software and software-as-a-service
Automation
(SaaS). This controller is a centralized management
Recognizing the need for effective operation for multi- platform that coordinates and distributes application-
cloud deployment, Thunder ADC has tight integration with centric service policies and configuration files to hundreds
many automation, cloud orchestration and DevOps tools. of Thunder appliances and device cluster infrastructures

• Supports various cloud platform and technologies across multi-cloud environments. Administrators can

including OpenStack, OpenShift, Kubernetes and more. automatically discover, track and monitor each appliance
including key operational metrics such as CPU and disk
• Provides native integration with Infrastructure as Code
usage as well as device partitions and users. The controller
(IaC) for provisioning and configuration automation, such
performs configuration backup and restore operations and
as Terraform and Ansible.
schedules software upgrades.
• Automates network operation with dynamic ADC
configuration update using Thunder Kubernetes
Connector (TKC), HashiCorp Consul and network
infrastructure automation (NIA).
• Monitors application network with common open-source
tools such as Prometheus, Grafana and Fluentd.
• Provides quick and easy deployment using resource
manager template in public cloud, including Azure
Resource Manager (ARM) and AWS CloudFormation
templates.

©️2023 A10 Networks, Inc. All rights reserved. 8

 A10 THUNDER ADC | DATA SHEET

ADC Service View

Thunder ADC with Harmony Controller provides
granular real-time analytics of the ADC services.
Information available for each application
service port includes user traffic throughput and
connection rate, load distribution, ADC service
latency, RAM cache utilization, compression
statistics, SSL connection rates and error traffic
rate.

Applications View
Get a real-time status report of the application
services, including application response time and
latency, top URL analytics, top domains analytics
for global usage visualization, response type
analytics by port number and slow transaction
analytics per page under
the application.

©️2023 A10 Networks, Inc. All rights reserved. 9

 A10 THUNDER ADC | DATA SHEET

Client and WAF View

This can help visualize end-user analytics including
characteristics such as locations, device, OS
and browser types and top clients per request
and throughput. It also provides service quality
analytics using request method, response code
and granular end-to-end latency reporting. In
addition, WAF security analytics provide real-time
request handling and transaction for better and
more secure operation.

Response Time Details

This information is useful for troubleshooting
delayed application response times. The screen
details the time taken in various portions of a HTTP
transaction. These graphs also help distinguish
application vs. infrastructure related issues.

©️2023 A10 Networks, Inc. All rights reserved. 10

 A10 THUNDER ADC | DATA SHEET

Thunder ADC Physical Appliance Specifications

Thunder Thunder Thunder Thunder
Performance
940 ADC 1040 ADC 3350-E ADC 3350 ADC
Application Throughput (L4/L7) 10 Gbps / 7.5 Gbps 20 Gbps / 20 Gbps 30 Gbps / 30 Gbps 40 Gbps / 40 Gbps

Layer 4 CPS 240k 500K 800K 1 Million

Layer 4 Concurrent Sessions 16 Million 32 Million 64 Million 96 Million

Layer 7 CPS (1:1)*1 75k  180K 330K 500K

SSL Bulk Throughput*2 1 Gbps 9 Gbps 13 Gbps 18 Gbps

RSA: 1K RSA: 15K RSA: 28K RSA: 28K

SSL CPS*2
ECDSA: 800 ECDSA: 8K ECDSA: 15K ECDSA: 15K

DDoS Protection (SYN flood) SYN/sec 2 Million 4 Million 8 Million 8 Million

Application Delivery Partitions (ADP) 32 32 64 127

Network Interfaces Model F

1 GE (BASE-T) 5 5 5 6 6

1 GE Fiber (SFP) 0 0 4 2 2

1/10 GE Fiber (SFP+) 4 *8

4*8
4 *8
8+4 *8
4*8

25 GE Fiber (SFP28) 0 0 0 0 4

40 GE Fiber (QSFP+) 0 0 0 4

100 GE Fiber (QSFP28) 0 0 0 0

Management Ports Ethernet Mgmt Port, RJ-45 Console Port

Hardware Specifications
Intel Intel Intel Xeon Intel Xeon
Processor
Communications Processor Communications Processor 8-core 8-core

Memory (ECC RAM) 8 GB 8 GB / 16 GB*4|*7 16 GB 32 GB

Storage SSD SSD SSD SSD

Hardware Acceleration Software Software Software Software

Hardware on S models
TLS/SSL Security Acceleration Software Hardware Hardware
(2 options)*7

1.75 (H) x 17.5 (W) x

Dimensions (inches) 1.75 (H) x 17.5 (W) x 17.25 (D) 1.75 (H) x 17.5 (W) x 18(D) 1.75 (H) x 17.5 (W) x 18(D)
17.25 (D)

Rack Units (mountable) 1U 1U 1U 1U

14 lbs 14 lbs
Unit Weight*3 18 lbs 18 lbs
16lbs (RPS) 16 lbs (RPS)

Single 750W*6 Single 750W*6 Dual 750W RPS Dual 750W RPS
Power Supply (DC option available)
80 Plus Platinum efficiency, 100 - 240 VAC, 50 – 60 Hz

Power Consumption (typical/max)*3 60W / 80W 80W / 110W 151W / 205W 165W / 238W

Heat in BTU/hour (typical/max)*3 205 / 273 273 / 376 516 / 700 564 / 831

Cooling Fan (front-to-back airflow) Removable Fans Hot Swap Smart Fans

Operating Ranges Temperature 0° - 40° C | Humidity 5% - 95%

FCC Class A, UL, CE, FCC Class A, UL, CE, FCC Class A, UL, CE,
FCC Class A, UL, CE, CB,
Regulatory Certifications CB, VCCI, KCC, BSMI, RCM CB, VCCI, KCC, BSMI, RCM CB, VCCI, KCC, BSMI, RCM
VCCI, BSMI, RCM | RoHS
| RoHS | RoHS | RoHS

Standard Warranty 90-day Hardware and Software

©️2023 A10 Networks, Inc. All rights reserved. 11

 A10 THUNDER ADC | DATA SHEET

Thunder ADC Physical Appliance (cont.)

Thunder Thunder Thunder Thunder
Performance
3350S ADC 4440 ADC 5440 ADC 5840 ADC
Application Throughput (L4/L7) 50 Gbps/ 50 Gbps 78 Gbps / 70 Gbps 100 Gbps / 100 Gbps 115 Gbps / 113 Gbps

Layer 4 CPS 2 Million 2 Million 3.2 Million 4.5 Million

Layer 4 Concurrent Sessions 128 Million 128 Million 256 Million 256 Million

Layer 7 CPS (1:1)*1 750K 750K 950K 1.5 Million

SSL Bulk Throughput*2 30 Gbps 25 Gbps 45 Gbps 55 Gbps

RSA: 60K RSA: 70K RSA: 100K RSA: 150K

SSL CPS*2
ECDSA: 35K ECDSA: 42K ECDSA: 60K ECDSA: 90K

DDoS Protection (SYN flood) SYN/sec 16 Million 110 Million 166 Million 166 Million

Application Delivery Partitions (ADP) 1,023 127 1,023 1,023

Network Interfaces
1 GE (BASE-T) 6 0 0 0

1 GE Fiber (SFP) 2 0 0 0

1/10 GE Fiber (SFP+) 8+4 *8

24 24 24

25 GE Fiber (SFP28) 0 0 0 0

40 GE Fiber (QSFP+) 0 4 4 4

100 GE Fiber (QSFP28) 0 0 0 0

Ethernet Mgmt Port, RJ-45

Management Ports Ethernet Mgmt Port, RJ-45 Console Port, Lights Out Management
Console Port

Hardware Specifications
Intel Xeon Intel Xeon Intel Xeon Intel Xeon
Processor
14-core 6-core 12-core 18-core

Memory (ECC RAM) 64 GB 32 GB 64 GB 64 GB

Storage SSD SSD SSD SSD

Hardware Acceleration Software 2 x FTA-4 2 x FTA-4 2 x FTA-4

TLS/SSL Security Acceleration Hardware Hardware on S model Hardware on S model Hardware on S models

Dimensions (inches) 1.75 (H) x 17.5 (W) x 18(D) 1.75 (H) x 17.5 (W) x 30 (D) 1.75 (H) x 17.5 (W) x 30 (D) 1.75 (H) x 17.5 (W) x 30 (D)

Rack Units (mountable) 1U 1U 1U 1U

Unit Weight*3 18 lbs 32.5 lbs 32.5 lbs 32.5 lbs

Dual 750W RPS Dual 1100W RPS Dual 1100W RPS Dual 1100W RPS
Power Supply (DC option available)
80 Plus Platinum efficiency, 100 - 240 VAC, 50 – 60 Hz

Power Consumption (typical/max)*3 175W / 222W 360W / 445W 360W / 445W 375W / 470W

Heat in BTU/hour (typical/max) *3

598 / 758 1,229 / 1,519 1,229 / 1,519 1,280 / 1,604

Cooling Fan (front-to-back airflow) Hot Swap Smart Fans

Operating Ranges Temperature 0° - 40° C | Humidity 5% - 95%

FCC Class A, UL, CE, CB, FCC Class A, UL, CE, CB, FCC Class A, UL, CE, CB, FCC Class A, UL, CE, CB,
Regulatory Certifications VCCI, KCC, BSMI, VCCI, KCC, BSMI, VCCI, KCC, BSMI, RCM | VCCI, KCC, BSMI, RCM |
RCM | RoHS RCM | RoHS RoHS, FIPS 140-2^|*5 RoHS, FIPS 140-2^|*5

Standard Warranty 90-day Hardware and Software

©️2023 A10 Networks, Inc. All rights reserved. 12

 A10 THUNDER ADC | DATA SHEET

Thunder ADC Physical Appliance (cont.)

Thunder Thunder Thunder Thunder
Performance
5840-11 ADC 6440 ADC 7440 ADC 7440-11 ADC
Application Throughput (L4/L7) 115 Gbps / 113 Gbps 150 Gbps / 140 Gbps 220 Gbps / 200 Gbps 220 Gbps / 200 Gbps

Layer 4 CPS 4.5 Million 4.5 Million 8.3 Million 8.3 Million

Layer 4 Concurrent Sessions 256 Million 256 Million 256 Million 256 Million

Layer 7 CPS (1:1)*1 1.5 Million 1.4 Million 2.8 Million 2.8 Million

SSL Bulk Throughput*2 55 Gbps 60 Gbps 75 Gbps 75 Gbps

RSA: 150K RSA: 150K RSA: 200K RSA: 200K

SSL CPS*2
ECDSA: 90K ECDSA: 70K ECDSA: 70K ECDSA: 70K

DDoS Protection (SYN flood) SYN/sec 166 Million 238 Million 332 Million 332 Million

Application Delivery Partitions (ADP) 1,023 1,023 1,023 1,023

Network Interfaces
1 GE (BASE-T) 0 0 0 0

1 GE Fiber (SFP) 0 0 0 0

1/10 GE Fiber (SFP+) 48 48 48 48

25 GE Fiber (SFP28) 0 0 0 0

40 GE Fiber (QSFP+) 0 4 4 0

100 GE Fiber (QSFP28) 4 0 0 4

Management Ports Ethernet Mgmt Port, RJ-45 Console Port, Lights Out Management

Hardware Specifications
Intel Xeon 2 x Intel Xeon 2 x Intel Xeon 2 x Intel Xeon
Processor
18-core 10-core 18-core 18-core

Memory (ECC RAM) 64 GB / 128 GB*4 128 GB 128 GB 128 GB

Storage SSD SSD SSD SSD

Hardware Acceleration 2 x FTA-4 3 x FTA-4 3 x FTA-4 3 x FTA-4

TLS/SSL Security Acceleration Hardware on S models Hardware on S model Hardware on S model Hardware on S model

Dimensions (inches) 1.75 (H) x 17.5 (W) x 30 (D) 1.75 (H) x 17.5 (W) x 30 (D) 1.75 (H) x 17.5 (W) x 30 (D) 1.75 (H) x 17.5 (W) x 30 (D)

Rack Units (mountable) 1U 1U 1U 1U

Unit Weight*3 34.3 lbs 36 lbs 35.7 lbs 35.7 lbs

Dual 1500W RPS Dual 1100W RPS Dual 1100W RPS Dual 1500W RPS
Power Supply (DC option available)
80 Plus Platinum efficiency, 100 - 240 VAC, 50 – 60 Hz

Power Consumption (typical/max)*3 550W / 760W 480W / 550W 690W / 820W 820W / 950W

Heat in BTU/hour (typical/max) *3

1,877 /2,594 1,638 / 1,877 2,355 / 2,798 2,798 / 3,242

Cooling Fan (front-to-back airflow) Hot Swap Smart Fans

Operating Ranges Temperature 0° - 40° C | Humidity 5% - 95%

FCC Class A, UL, CE, CB, FCC Class A, UL, CE, CB,
FCC Class A, UL, CE, CB, FCC Class A, UL, CE, CB,
Regulatory Certifications VCCI, KCC, BSMI, VCCI, BSMI, RCM | RoHS,
VCCI, BSMI, RCM | RoHS VCCI, KCC, BSMI, RCM | RoHS
RCM | RoHS, FIPS 140-2*5 FIPS 140-2^|*5

Standard Warranty 90-day Hardware and Software

Hardware specifications and performance numbers are subject to change without notice, and may vary depending on configuration and environmental conditions.
As for network interfaces, it’s highly recommended to use A10 Networks’ qualified optics/transceivers to ensure network reliability and stability.

*1 Layer 7 connections per second - measures number of new HTTP connections (1 HTTP request per TCP connection, without TCP connection reuse ) within 1 second |
*2 Tested with maximum SSL option. Cipher “TLS_RSA_WITH_AES_128_CBC_SHA256” with RSA 2K keys, unless noted, are used for RSA cases, “TLS_ECDHE_ECDSA_
WITH_AES_128_CBC_SHA256” with EC P-256 are used for PFS cases. | *3 With base model. Number varies by hardware options (e.g. SSL cards) | *4 With maximum SSL
option | *5 For FIPS 140-2 Level 2 validated, FIPS models must be purchased | *6 Optional RPS available | *7 Thunder 1040-F comes with hardware TLS/SSL acceleration
with 16GB RAM by default | *8 10Gbps speed only | ^ Certification in process

©️2023 A10 Networks, Inc. All rights reserved. 13

 A10 THUNDER ADC | DATA SHEET

Thunder ADC SPE Physical Appliance Specifications

Thunder Thunder
Performance
6655S ADC 7655S ADC
Application Throughput (L4/L7) 185 Gbps / 170 Gbps 370 Gbps / 340 Gbps

Layer 4 CPS 6 Million 12 Million

Layer 4 Concurrent Sessions 384 Million 768 Million*3

Layer 7 CPS (1:1)*1 2.25 Million 4.5 Million

SSL Bulk Throughput*2 72.5 Gbps 145 Gbps

RSA: 100K RSA: 200K

SSL CPS*2
ECDSA: 70K ECDSA: 140K

DDoS Protection (SYN flood) SYN/sec 250 Million 500 Million

Application Delivery Partitions (ADP) 1,023 1,023

Network Interfaces
100 GE Fiber (QSFP28) 16 16

Management Ports Ethernet Mgmt Port, RJ-45 Console Port, Lights Out Management

Hardware Specifications
Processor (Intel Xeon) 28-core 2 x 28-core

Memory (ECC RAM) 192 GB 384 GB

Storage SSD SSD

Hardware Acceleration FTA-5, SPE 2 x FTA-5, SPE

TLS/SSL Security Acceleration Hardware Hardware

Dimensions (Inches) 2.625 (H) x 17.5 (W) x 30 (D) 2.625 (H) x 17.5 (W) x 30 (D)

Rack Units (mountable) 1.5U 1.5U

Unit Weight 39 lbs 44.2 lbs

Dual 1500W RPS Dual 1500W RPS

Power Supply (DC option available)
80 Plus Platinum Efficiency, 100 - 240 VAC, 50 – 60 Hz

Power Consumption (typical/max) 667W / 856W 1,121W / 1,300W

Heat in BTU/hour (typical/max) 2,276 /2,921 3,826 / 4,436

Cooling Fan (front-to-back airflow) Hot Swap Smart Fans

Operating Ranges Temperature 0° - 40° C | Humidity 5% - 95%

Regulatory Certifications FCC Class A, UL, CE, CB, VCCI, BSMI, RCM | RoHS FCC Class A, UL, CE, CB, VCCI, BSMI, RCM | RoHS

Standard Warranty 90-day Hardware and Software

Hardware specifications and performance numbers are subject to change without notice, and may vary depending on configuration and environmental conditions. As for
network interfaces, it’s highly recommended to use A10 Networks’ qualified optics/transceivers to ensure network reliability and stability.
*1 Layer 7 connections per second - measures number of new HTTP connections (1 HTTP request per TCP connection, without TCP connection reuse ) within 1 second |
*2 Tested with Cipher "TLS_RSA_WITH_AES_128_CBC_SHA256" with 2K keys for RSA cases, "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256" with EC P-256 for ECC
cases | *3 Increased to twice its capacity from ACOS 5.2.1-P7/6.0.1 onward

©️2023 A10 Networks, Inc. All rights reserved. 14

 A10 THUNDER ADC | DATA SHEET

Thunder ADC for Low-latency Appliance Specifications

Thunder
Performance
3745
Mean Latency L7 *1
1.901 µs

Max Latency L7 1.945 µs

Concurrent NAT Sessions 32,000

Network Interfaces
10 GE Fiber (SFP+) 4*3

Management Ports Ethernet Mgmt port, RJ-45 console port, Lights Out Management

Hardware Specifications
Processor (Intel Xeon) 2 x 8-core

Memory (ECC RAM) 96 GB

Storage SSD

Hardware Acceleration FPM*2

Dimensions (Inches) 3.5 (H) x 19 (W) x 27.5 (D)

Rack Units (mountable) 2U

Unit Weight 43.8 lbs

Dual 850 W RPS

Power Supply (DC option available)
80 Plus Platinum efficiency, 100 - 240 VAC, 50 – 60 Hz

Power Consumption (typical/max) 450W / 463W

Heat in BTU/hour (typical/max) 1,536 / 1,580

Cooling Fan (front-to-back airflow) Hot Swap Smart Fans

Operating Ranges emperature 0° - 40° C | Humidity 5% - 95%

Regulatory Certifications FCC Class A, CE, VCCI, RCM, UKCA, UL/CB

Standard Warranty 90-day Hardware and Software

Hardware specifications and performance numbers are subject to change without notice, and may vary depending on configuration and environmental conditions.
*1 99th percentile. All the performance numbers are measured using FIX protocol with 670B packet size. | *2 Flow processing module (FPM) consists of FTA-3 (Flexible
Traffic Accelerator) and SPE (Security and Policy Engine). | *3 10Gbps speed only | ^ Certification in process

©️2023 A10 Networks, Inc. All rights reserved. 15

 A10 THUNDER ADC | DATA SHEET

A10 Thunder on Dell Technologies OEM Solution

Bundle Specifications
Single Service Platform (SSP) Specifications
The SSP range consists of A10’s cloud-ready software and purpose-built Dell Technologies hardware, with an inclusive license*3 that has the capabilities of delivering
Application Delivery Controller (ADC), SSL Insight (SSLi), and Carrier Grade Networking (CGN) solutions along with an expanded feature set of A10 capabilities.

Dell Dell Technologies R640 Dell Technologies R740

Thunder ADC Performance Technologies
VEP4600 10GE NIC Model 100GE NIC Model 10GE NIC Model 100GE NIC Model

Application Throughput (L4 / L7) 10 Gbps / 7.5 Gbps 40 Gbps / 40 Gbps 60 Gbps / 60 Gbps 75 Gbps / 75 Gbps 100 Gbps / 100 Gbps

Connections Per Second (L4 / L7) *1

350K / 175K 2 Million / 1 Million 2 Million / 1 Million 2 Million / 1 Million 3 Million / 1 Million
SSL Bulk Throughput 2 Gbps 32 Gbps 38 Gbps 45 Gbps 66 Gbps
SSL CPS (RSA / ECDSA)*2 3.5K / 7K 100K / 45K 107K / 72K 120K / 60K 131K / 85K

Network Interfaces
1 GE (BASE-T) 6 2 2 2 2
1/10 GE Fiber (SFP+) 4 6 2 10 10
100 GE Fiber (QSFP28) 0 0 2 0 4

Hardware Specifications

Processor Intel Xeon 8-core 2 x Intel Xeon 20-core 2 x Intel Xeon 20-core

Memory 16 GB 192 GB 192 GB

Storage SSD 2 x SSD 2 x SSD

TLS/SSL Security Processor Built-in 2 x Security Card (PCIe) 2 x Dual-chip Security Card (PCIe)

Single 230W
Power Supply Dual 750W Power Supply Dual 2000W Power Supply
Power Supply

Multi-tenant Virtual Platform (MVP) Specifications

A10 Thunder Multi-tenant Virtual Platform (MVP) on Dell Technologies is an advanced platform enabling multiple virtual instances or services on a single platform, with
inclusive license that has the capabilities of delivering Application Delivery Controller (ADC), SSL Insight (SSLi), and Carrier Grade Networking (CGN) solutions along with
an expanded feature set of A10 capabilities.

Dell Technologies R640 Dell Technologies R740

Performance with ADC
10GE NIC Model 100GE NIC Model 10GE NIC Model 100GE NIC Model
Appliaction Throughput (L4 / L7) 40 Gbps / 40 Gbps 43 Gbps / 36 Gbps 75 Gbps / 75 Gbps 93 Gbps / 72 Gbps
Connections Per Second (L4 / L7)*1 950K / 700K 1 Million / 850K 1.2 Million / 1 Million 1.7 Million / 1.7 Million
SSL Bulk Throughput 32 Gbps 37 Gbps 40 Gbps 63 Gbps
SSL CPS (RSA / ECDSA)*2 60K / 45K 98.6K / 75K 120K / 90K 164K / 116K

Network Interfaces
1 GE (BASE-T) 2 2 2 2
1/10 GE Fiber (SFP+) 6 2 10 10
100 GE Fiber (QSFP28) 0 2 0 4

Hardware Specifications

Processor 2 x Intel Xeon 20-core 2 x Intel Xeon 20-core

Memory 192 GB 192 GB

Storage 2 x SSD 2 x SSD
TLS/SSL Security Processor 2 x Security Card (PCIe) 2 x Dual-chip Security Card (PCIe)
Power Supply Dual 750W Power Supply Dual 2000W Power Supply

*1 Layer 7 connections per second - measures number of new HTTP connections (1 HTTP request per TCP connection, without TCP connection reuse ) within 1 second
*2 RSA (2K keys) cipher: “TLS_RSA_WITH_AES_128_CBC_SHA”, ECDSA (EC P-256) cipher: “TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA”
*3 A10 Thunder on Dell Technologies OEM bundle solutions are licensed under the Convergent Firewall (CFW) license. Check with your A10 Networks sales representative for
the latest information on full feature testing and validation.
All Thunder MVP performance specifications are aggregate number that use the following VM profiles:
- R640 10GE NIC model is tested with 4-VM profile (8 vCPUs, 16 GB memory, 30 GB storage, 16 SSL virtual functions (VFs) assigned on each vThunder)
- R640 100GE NIC model is tested with 4-VM profile (16 vCPUs, 32 GB memory, 30 GB storage, 8 SSL VFs assigned on each vThunder)
- R740 10GE and 100GE NIC model are tested with 8-VM profile (8 vCPUs, 16 GB memory, 30 GB storage, 16 SSL VFs assigned on each vThunder)

©️2023 A10 Networks, Inc. All rights reserved. 16

 A10 THUNDER ADC | DATA SHEET

Thunder ADC Software Appliance Specifications

vThunder ADC

Supported Hypervisors VMware ESXi (VMXNET3, SR-IOV, PCI Passthrough), KVM (VirtIO, OvS with DPDK, SR-IOV, PCI Passthrough), Microsoft Hyper-V

Hardware Requirements See Installation Guide

Standard Warranty 90-day Software

Bandwidth Licenses Lab 200 Mbps 1 Gbps 4 Gbps 8 Gbps 10 Gbps 20 Gbps 40 Gbps 100 Gbps FlexPool

VMware ESXi
• • • • • • • *1

• *1 | *2

• *2

•
KVM
• • • • • • • *1

• *1 | *2

• *2

•
Microsoft Hyper-V
• • • • • *3

•
vThunder ADC for Cloud AWS Microsoft Azure Oracle Cloud

Throughput*4 Up to 10 Gbps Up to 10 Gbps Up to 24 Gbps

Image Format Amazon AMI Microsoft VHD QCOW2

Licenses *4
30-day Trial License 30-day Trial License 30-day Trial License
Pre-installed Bandwidth License: Pre-installed Bandwidth License: Pre-installed OCPU based
• 20 Mbps, 100 Mbps, 200 Mbps, • 20 Mbps, 100 Mbps, 200 Mbps, License:
500 Mbps, 1 Gbps, 5 Gbps, 10 500 Mbps, 1 Gbps, 5 Gbps, 10 • 1 OCPU to 24 OCPU
Gbps Gbps BYOL Bandwidth License
BYOL Bandwidth License BYOL Bandwidth License FlexPool License
FlexPool License FlexPool License

Thunder ADC Container

Image Format Docker

Operating System Reference Operating System:

• Ubuntu 16.04.3 LTS (Xenial Xerus)
• RedHat Enterprise Linux version 7.6

System Requirements Minimum Requirement:

• 1 or More Data Interface
• 1 vCPU and 4 GB Memory

Licenses BYOL Bandwidth License

FlexPool License

Trial Details Contact A10 Sales

Thunder ADC for Bare Metal

System Requirements Minimum Hardware Requirement:
Intel x86-based CPUs with minimum of 4 cores, 16 GB RAM, 80 GB of free disk space, 2 Ethernet interfaces
(3 or more are recommended), Intel Network Adapters and drivers including igb, ixgbe, and i40e. For more
details, see Installation Guide.

Reference Platforms Dell PowerEdge, Cisco UCS, Ericsson Hyperscale Datacenter System (HDS), HP ProLiant and more

Bandwidth Licenses *
10 Gbps (4 cores), 20 Gbps (8 cores), 40 Gbps (14 cores) and 60 Gbps (24 cores)
FlexPool (Up to 60 Gbps per Thunder ADC)

Standard Warranty 90-day Software

* 1 SR-IOV | *2 PCI Passthrough | *3 8 Gbps license not recommended for Microsoft Hyper-V | *4 Per-instance maximum throughput varies depending on instance
type and configurations
* Licenses are tied to the maximum number of CPU cores that can be allocated to ACOS

©️2023 A10 Networks, Inc. All rights reserved. 17

 A10 THUNDER ADC | DATA SHEET

Detailed Feature List

Features may vary by appliance.

Application Delivery • IP anomaly detection

• Comprehensive IPv4/IPv6 support • Connection rate limiting/connection limiting
• Advanced Layer 4/Layer 7 server load balancing • Bandwidth rate limiting per source IP
- Fast HTTP, Full HTTP proxy, HTTP/2, HTTP/3 • Dynamically add IPs to black-white lists
- High-performance, template-based Layer 7 switching with header/ • Support for Simple Certificate Enrollment Protocol (SCEP)
URL/domain manipulation • ACME client support for automatic certificate renewal
- Comprehensive Layer 7 application persistence support
- SIP, MQTT, RTSP, SMTP, POP3, FTP, FIX and more
• DNS load balancing
A10 Threat Intelligence Service**
- Layer 4 (UDP/TDP) and Layer 7 (DNS-UDP/DNS-TCP) • Dynamically updated threat intelligence feed
- Recursive DNS lookup
- DNS firewall/RPZ
- DNS cache Scalable, High-performance Platform
• Comprehensive load balancing methods • Advanced Core Operating System (ACOS)
- Round robin, least connections, weighted RR, weighted LC, fastest - Multi-core, multi-CPU support
response, and more - Linear application scaling
• aFleX — Deep packet inspection and transformation for customizable, - ACOS on data plane
application-aware switching • Linux on control plane
• Advanced health monitoring • IPv6 feature parity
- Comprehensive protocol support — ICMP, TCP, UDP, HTTP, HTTPS, FTP, • ADC scale-out for “add-as-you-grow” capability
RTSP, SMTP, POP3, SNMP, DNS, RADIUS, LDAP and more
- Scriptable health check support using TCL, Python, Perl, Bash
• High availability ­— active-active, active-standby configurations Networking
• SIP load balancing for VoIP • Integrated Layer 2/Layer 3
• STARTTLS support for secure email and LDAP • Transparent mode/gateway mode
• Network traffic filtering — high-speed processing of large black/white lists • Virtual wire interface support
• Firewall load balancing (FWLB) • Routing — static routes, IS-IS (v4/v6), RIPv2/ng, OSPF v2/v3, BGP4+
• Global server load balancing (GSLB) • L2 protocols (STP, RSTP, MSTP)
• Traffic steering/service chaining • VLAN (802.1Q)
• Transparent cache switching (TCS) • Link aggregation (802.1AX), LACP
• Next hop load distribution (NHLD) for load balancing multiple links • Access control lists (ACLs)
• Diameter AAA load balancing • Traditional IPv4 NAT/NAPT
• Database load balancing • IPv6 NAPT
• Internet content adaptation protocol (ICAP) support • Jumbo frame support*
• Low latency FIX support • Hardware-accelerated VXLAN*
• NVGRE

Application Acceleration
• HTTP acceleration and optimization IPv6 Migration/IPv4 Preservation
- HTTP connection multiplexing (also called TCP connection reuse) • Full native IPv6 management and feature support
- RAM caching • SLB-PT (Protocol Translation), SLB-64 (IPv4<–>IPv6, IPv6<–>IPv4)
- HTTP compression • Carrier grade NAT (CGN/CGNAT), Large scale NAT (LSN), NAT444, NAT44, NAT46
• SSL offload - Integrated DDoS protection for NAT pools
- SSL termination, SSL bridging • NAT64/DNS64, DS-Lite, 6rd, LW4o6
- SSL proxy • ALG protocol support for protocols with dynamic ports like SIP and FTP
- SSL session ID reuse
• TCP optimization support including selective acknowledgment,
client keep-alive and window scaling Management
• HTTP pipelining • Dedicated on-box management interface (GUI, CLI, SSH, Telnet)
• HTTP/2, SPDY protocol • Web-based AppCentric templates (ACT) intuitive guided configuration tool
• HTTP/3, QUIC protocol • SNMP, syslog, email alerts, NetFlow v9 and v10 (IPFIX), sFlow
• RESTful API (aXAPI)
• LDAP, TACACS+, RADIUS support
Application Security • Configurable control CPUs
• Web application firewall (WAF) • Interoperable with A10 Harmony Controller for centralized management,
• DNS application firewall (DAF) configuration and analytics
• Integrated DDoS protection for application services • Plug-in available for VMware vRealize Orchestrator deployments
• Hardware-based DDoS protection*
• Application Access Management (AAM) — SAML, WIA, Kerberos, NTLM,
TDS SQL Logon, LDAP, RADIUS, Basic, OCSP stapling, HTML Form-based Virtualization
• AAM RADIUS-based audit support • vThunder virtual appliance for VMware vSphere ESXi, Microsoft Hyper-V, KVM,
• Single sign-on (SSO) authentication relay Nutanix AHV, Amazon Web Services (AWS) AMI, Microsoft Azure VHD and
• Authentication for Microsoft SharePoint, Outlook Web Access, and other QCOW2 for Oracle Cloud and others
packaged and custom applications • Thunder ADC for Bare Metal
• Comprehensive SSL/TLS support • Thunder ADC for containers
- TLS 1.2 and TLS 1.3* • Networking acceleration (SR-IOV, DPDK) and management integration
- Perfect Forward Secrecy (PFS) with Elliptic Curve Diffie-Hellman Exchange • A10 Thunder on Dell Technologies OEM solution bundle
(ECDHE) and other Elliptic Curve Cryptography (ECC) ciphers
- AES-NI and GCM ciphers
Extensibility
• aVCS (Virtual Chassis System)
• Multi-tenancy with application delivery partition (ADP) based management
• Layer 3 - 7 virtualization

©️2023 A10 Networks, Inc. All rights reserved. 18

 A10 THUNDER ADC | DATA SHEET

Detailed Feature List (Cont.)

Centralized Management and Analytics with Carrier-grade Hardware*
Harmony Controller • Advanced hardware architecture
• Hardware-based SYN cookies
• Multi-tenant service platform architecture • Hot swap redundant power supplies (AC or DC)
• Device, configuration and certificate management • Smart fans (hot swap)
• Orchestration of Thunder in AWS, Azure, Oracle cloud, VMware and else • Solid-state drive (SSD)
• Metrics for monitoring device health and performance • Tamper detection
• Application traffic insights showing traffic trends based on requests, • Lights out management (LOM/IPMI)
throughput, and connection rates, along with detailed metrics for top clients, • 25 GbE ports, 40 GbE ports, 100 GbE ports
source location, request methods and response codes. • High-performance security processor option
• Performance insights such as average end-to-end latency, server response
time, cache utilization and so on
• Application insights visualizing charts of response time and app latency charts, Security and Capability Assurance Certifications*
and detailed metrics for top domains, URLs
• ICSA Labs WAF certification
• Session logs, error logs, and alert notifications for efficient troubleshooting
• Common Criteria EAL 2+
• On-demand/scheduled per-app service level reports
• FIPS 140-2 Level 2
• Easy integration with popular collaboration platforms like Microsoft Teams and
• Joint Interoperability Test Command (JITC)
Slack
• Network Equipment Building System (NEBS) compliance

DevOps Tools and Integration

• Ansible modules and playbooks
• Terraform Thunder provider
• HashiCorp’s Consul and Network Infrastructure Automation (NIA) integration
• Thunder Kubernetes Connector (TKC)
• Microsoft Azure ARM templates
• AWS CloudFormation templates
• OpenStack Octavia driver
• Cloud-init support for auto-configuration on
- OpenStack
- OCI
- AWS
- Azure
• Prometheus integration for visibility and analytics monitoring
• Automatic certificate renewal with Sectigo, Let's Encrypt, Venafi and more

* Features and certifications may vary by appliance.

** Additional paid service.

Learn More ©2023 A10 Networks, Inc. All rights reserved. A10 Networks, the A10 Networks logo, ACOS, Thunder, Harmony and SSL
Insight are trademarks or registered trademarks of A10 Networks, Inc. in the United States and other countries. All
About A10 Networks other trademarks are property of their respective owners. A10 Networks assumes no responsibility for any inaccuracies
in this document. A10 Networks reserves the right to change, modify, transfer, or otherwise revise this publication
Contact Us without notice. For the full list of trademarks, visit: A10networks.com/a10trademarks.
A10networks.com/contact Part Number: A10-DS-15100-EN-52 Mar 2023