SYLink
Free diagnostic
Product catalog
Family Réseau

SYLink Pro

10 Gbps · firewall + DPI + IDS / NIDS + IPS + Proxy · 10,000 IPs

High-performance all-in-one appliance for large organizations: NGFW firewall, DPI probe, IDS / NIDS, IPS and TLS decryption proxy combined into a single 1U unit. 10 Gbps SFP+ or RJ45, up to 10,000 IPs, native multi-VLAN, air-gap mode for sensitive zones. Deployable in series, active/passive cluster, or active/active.

Request a demoSee the diagramSpecifications
The product, in plain words

What it does SYLink Pro

High-performance all-in-one appliance for large organizations: NGFW firewall, DPI probe, IDS / NIDS, IPS and TLS decryption proxy combined into a single 1U unit. 10 Gbps SFP+ or RJ45, up to 10,000 IPs, native multi-VLAN, air-gap mode for sensitive zones. Deployable in series, active/passive cluster, or active/active.

Key takeaway

SYLink Pro10 Gbps · firewall + DPI + IDS / NIDS + IPS + Proxy · 10,000 IPs.

The technical playbook

How to use it

High-performance architecture, French design

SYLink Pro repose sur un OS dédié SYLinkOS (durci, lecture seule, secure boot), un pipeline de filtrage en C/Rust, et une accélération matérielle des fonctions cryptographiques (AES-NI, QAT). Le moteur de corrélation IA SYLink AI peut être hébergé en local pour qualifier les alertes sans latence.

L'architecture est modulaire : vous activez ou désactivez les modules (proxy TLS, IPS, threat intel, EDR sondes) selon votre politique. Chaque module est isolé en sandbox, ce qui permet une mise à jour différenciée sans toucher au cœur du firewall.

Key capabilities
  • Hardened SYLinkOS, secure boot, immutable partition
  • AES-NI / QAT crypto acceleration
  • Independent sandboxed modules, differentiated updates
  • Local SYLink AI (option) for triage
Where the product fits in your topology

Network placement

Le SYLink Pro est positionné en cœur de SI 10 G — il combine pare-feu, NDR et sonde DPI inline. Multi-VLAN, il filtre et inspecte simultanément le trafic Internet, OT et inter-sites.

Périmètre InternetInternetSYLink Propare-feu + IDS/IPS + DPILAN entrepriseSwitch / LANpostes + serveurs + Wi-FiPostesEDRWi-Fi↳ Le produit s'insère en coupure entre votre arrivée Internet et votre LAN
Deployment pipeline

Deployment diagram

Rollout led with your CISO and a SYLink architect. 30-day pilot PoC, then progressive cutover. MCO/MCS operated from France.

  1. 01

    Architecture review

    SI mapping, insertion points, dependencies on existing EDR / SIEM / IAM.

    Step 01
  2. 02

    30-day PoC

    Deployed in monitor-only on a pilot perimeter, quality and coverage metrics.

    Step 02
  3. 03

    HA cluster

    Active/passive or active/active setup, failover testing.

    Step 03
  4. 04

    SOC integration

    Logs to SIEM, shared runbooks, escalation to UniSOC or your internal SOC.

    Step 04
  5. 05

    MCO / MCS

    Operational and security maintenance contract, recurring NATO / Armed Forces audits.

    Step 05

↓ Integration pipeline — step by step, from scoping to production ↓

Prerequisites

  • 1U rack with redundant power
  • Link to SIEM (Splunk / QRadar / Elastic / Sentinel)
  • IAM directory (AD / LDAP / Entra ID / Keycloak)
  • Documented reversibility plan (if contractually required)
What you concretely gain

Benefits

  • 01

    10 Gbps multi-VLAN

    Built for large perimeters (CAC40, government, critical operators): 10 Gbps SFP+ or RJ45, up to 10,000 supervised IPs.

  • 02

    Sovereign, on-premise air-gap mode

    No cloud callback required. Air-gap-zone compatible, classified environments (II 901, IGI 1300).

  • 03

    High-availability cluster

    Active/passive or active/active with state sync. Transparent failover on hardware failure.

  • 04

    Native SOC integration

    SIEM logs, runbooks, EDR-friendly. Connectors ready for Splunk, QRadar, Elastic, Sentinel and UniSOC.

The full datasheet

Specifications

Performance

Débit en clair10 Gbps inspection complète (firewall + DPI + IDS/IPS + proxy)
Débit en SD-WAN chiffré5 Gbps en IPsec — l'overhead du chiffrement et de l'encapsulation IPsec consomme environ la moitié de la capacité brute du moteur
CapacityJusqu'à 10 000 IPs supervisées
Concurrent sessions1 M+
VLANs4 094 max

Security

FirewallNGFW + application-aware + identity-based
IDS / IPSSignatures + heuristique IA
Proxy TLSInclus, optionnel selon politique
SD-WAN client VPNIPsec, WireGuard (site-à-site)
VPN télétravail⚠️ Utiliser SYLink VPN ou Protect

Ports

Ports8× SFP+ 10 G + 8× RJ45 10 G + 2× console + 2× management
Form factorRack 1U
PowerAC redondante hot-swap
CoolingVentilation contrôlée, mode silencieux

Compliance

TargetsOTAN / Armées, II 901, IGI 1300, NIS2, LPM
PASSIFormat PASSI
Air-gap modeDisponible
MCO / MCSInclus dans contrat régalien
Built for

Target customers

  • Enterprise: replacing a foreign vendor

    Replacing a foreign cyber layer on the critical perimeter, integrating with the existing SOC.

  • Ministry / critical operator: air-gap LPM

    On-premise air-gap deployment, cleared MCO/MCS, II 901 / IGI 1300 compliance.

  • Regional hospital / CHU

    SI core, patient / medical IoT segmentation, real-time blocking, quarterly audit.

  • Defense industry

    Hardened endpoints, EDR with no outbound telemetry, on-premise DPI for production.

Test SYLink Pro on your infrastructure

30-minute guided demo, PoC on a pilot perimeter, support by our French teams based in Clermont-Ferrand, Marseille and Rennes.

Request a demoFree diagnostic (2 min)Cyber emergency