DOKUMEN SEBUTHARGA - Yayasan Melakayayasanmelaka.gov.my/webres_eng/tender/FULL_SEBUTHARGA_FIREWALL(17...serta menyelenggara peralatan untuk ... penyebutharga-penyebutharga dikehendaki

DOKUMEN SEBUTHARGA

SEBUTHARGA MEMBEKAL, MENGHANTAR, MEMASANG, MENGAWAL (24 JAM X 7 HARI) , MENGUJI, MENTAULIAH

PERKHIDMATAN BESERTA LESEN FIREWALL (MODEL UTM+) SERTA MENYELENGGARA PERALATAN UNTUK KESELAMATAN

RANGKAIAN

BAGI

YAYASAN MELAKA

NO. SPESIFIKASI : YM/S/40/14 JLD 9 ( 17 )

YAYASAN MELAKA NO 40-48 & 52, JALAN BKD 27,

TAMAN BUKIT KATIL DAMAI 2, 75450 BUKIT KATIL, MELAKA

(U.P.: BAHAGIAN TEKNOLOGI MAKLUMAT)

PERINGATAN PENTING:

1. PENYEBUTHARGA-PENYEBUTHARGA DIKEHENDAKI MEMBACA DAN MEMAHAMI KESELURUHAN BUTIRAN YANG TERKANDUNG DI DALAM DOKUMEN SEBUTHARGA INI SEBELUM MENYEMPURNAKANNYA.

2. PENYEBUTHARGA YANG MEMBUAT KESILAPAN DAN TIDAK

MEMATUHI MANA-MANA PERUNTUKAN DI DALAM DOKUMEN SEBUTHARGA INI TIDAK AKAN DIPERTIMBANGKAN.

2

CONTENTS

NO.

CONTENTS

PAGES

1.

PART I

GENERAL TERMS AND CONDITIONS OF QUOTATION

3

2.

PART II

HARDWARE SPECIFICATION

13

3.

PART IV

MAINTENANCE AND SUPPORT SERVICES

26

4.

PART V

SCHEDULE OF INFORMATION

31

3

PART 1- GENERAL TERMS DAN CONDITIONS OF QUOTATION

NO. CONTENTS PAGE 1. Proposal……………………………………………………………. . …….

4

2. Selection Procedures……………………………………………………….

4

3. Criteria for Selection……………………………………………………….

5

4. Compilation of Quotation…………………………………………………..

5

5. Amendments………………………………………………………………..

7

6. Language Of Quotation Submission………………………………………

7

7. Notification of Acceptance…………………………………………………

7

8. Basis and Conditions of Quotation…………………………………………

7

9. Price and Charges…………………………………………………………..

7

10. Acceptance of Quotations…………………………………………………

8

11. Delivery and Installation of the Proposed Equipment ………………………………………………………………..

9

12.

Payment………………………………………………………..................... 12

13. Warranty……………………………………………………………………

12

4

PART 1 – GENERAL TERMS DAN CONDITIONS OF QUOTATION 1. PROPOSAL

1.1 To propose the following equipment :-

i) Next Generation Firewall - 1 Unit

2. SELECTIONS PROCEDURES

2.1 Satisfy Quotation Procedures

Vendor is required to comply strictly with the quotation procedures stated below. Non-compliance with any of the procedures will result in disqualification. a) All Vendors MUST be registered with the Ministry of Finance under

210100 and sub-heading 210105 or 210106. b) Quotation proposals must be submitted before or at the latest by 12.00

Noon on Monday, 25th October 2016. Late proposal will not be considered.

c) Quotation proposals must be submitted in three (3) sets and must be in

accordance to specification listed in paragraph 4. d) Vendor are required to submit with their quotation proposals a letter from

the manufacturer/distributor of the network equipment proposed confirming their right as distributor/authorised dealer/agent.

2.2 Satisfy Specification Requisites

Proposals that comply to the quotation procedures will have to meet all specification requisites as described in Part II. Proposals not complying with specification requisites will be disqualified.

2.3 Testing of Equipment

Yayasan Melaka reserves the right to conduct testing on all proposals which meet the specification requisites to ensure compliance with specifications stated. The equipment sent must be equivalent to that proposed in the quotation.

5

2.4 Final Shortlist

The Final short listed quotation will be subjected to further detailed evaluation in both technical excellence and cost effectiveness. Separate technical and cost rankings will then be conducted after which the most effective solution will be recommended for acceptance.

3. CRITERIA FOR SELECTION 3.1 Hardware and Reliability

The hardware proposed shall be new, durable, high quality, reliable and be able to operate under normal office environment.

3.2 Support

Utmost consideration will be given to hardware support that will be provided by the vendor, the policy of the company, the relationship with their principals, their standing as supplies of the equipment required by the vendor and their after-sales services will be highly placed upon. The vendor is required to supply YAYASAN MELAKA with a list of all installation having the same proposed equipments in Malaysia for public and private sector.

4. COMPILATION OF QUOTATION

4.1 Content Quotation proposal must be submitted in three (3) sets, with the original clearly marked “ASAL” or “ORIGINAL” and it shall consist of :-

i) FINANCIAL PROPOSAL

a) Lampiran Q. b) Vendor’s Profile (APPENDIX 1).

c) Schedule Of Price (APPENDIX 2).

d) A copy of Letter or Certificate of Registration with the Ministry of

Finance.

e) A Copy of Bank Statement for the latest 3 months

6

ii) TECHNICAL PROPOSAL

f) Schedule of Equipment in accordance with the Schedule of Prices (APPENDIX 2) but without the prices including full details of Type and Model No. and Manufacturer's Name and the accessories to be supplied.(APPENDIX 3).

g) Record of Experience (APPENDIX 4). h) Technical Information and compliance for Hardware (APPENDIX 5). i) Technical Information and compliance for Maintenances and support

service (APPENDIX 6). j) Brochure/Full technical information on the equipment proposed. k) A letter from the manufacturer/distributor of the Network Equipment

proposed confirming vendors rights as distributor/authorised dealer/agent.

All quotation documents shall be duly signed or initialed and schedules with all items filled in by the vendor. Non-compliance with any of the above will result in the proposals being disqualified. The vendor is required to answer every question asked. In answering the questions, the vendor must at all time answer accurately and in accordance with the intents and formats of the questionnaires. The answers should be precise with references made to relevant parts of the main proposal.

4.2 Submission

Each quotation proposal must be well sealed duly marked as “SULIT – SEBUTHARGA MEMBEKAL, MENGHANTAR, MEMASANG, MENGAWAL (24 JAM X 7 HARI), MENGUJI, MENTAULIAH PERKHIDMATAN BESERTA LESEN FIREWALL (MODEL UTM+) SERTA MENYELENGGARA PERALATAN UNTUK KESELAMATAN RANGKAIAN YAYASAN MELAKA at the top left hand corner and addressed clearly to :- PENGURUS BESAR YAYASAN MELAKA NO 40-48 & 52, JALAN BKD 27 TAMAN BUKIT KATIL DAMAI 2, 75450 BUKIT KATIL, MELAKA. (u.p. : Bahagian Teknologi Maklumat)

7

5. AMENDMENTS 5.1 YAYASAN MELAKA reserves the right to amend or delete any documents

forming part of this Invitation to vendor, at any time without prior notice in order to give effect to a change in policy or to correct any error, omission, ambiguity or inconsistency that may arise after the issue of this Invitation to quotation.

5.2 In the event of any re-issue of this Invitation to quotation all vendor will be

notified accordingly. 6. LANGUAGE OF QUOTATION SUBMISSION

6.1 All documents submitted by the vendor, including technical manuals should be in

the Bahasa Malaysia or English Language. 7. NOTIFICATION OF ACCEPTANCE

7.1 Notice of Acceptance will be given in writing to the successful vendor once his

quotation is accepted by YAYASAN MELAKA.

7.2 The notice may include any additional conditions or alterations to the conditions accompanying this document and if so, the quotation cannot be deemed to have been agreed unless and until there is a written confirmation from the vendor accepting the additional condition(s)/alteration(s).

7.3 When agreed upon, a contract is considered to have been made between the

Government and the vendor in accordance with the accompanying conditions (inclusive of the additional and altered conditions) and no other agreement or conditions shall be deem to have been included in this contract.

8. BASIS AND CONDITIONS OF QUOTATION

8.1 The quotation should be based on the specifications and conditions contained in

this document.

8.2 In no case will any claim of expenses incurred by the vendor in the preparation and submission of this quotation be allowed.

8.3 The scope of work for this project shall include but not limited to the following:

supply, deliver, install, testing, configure, integrate, commissioning, support firewall to protect local area networks YAYASAN MELAKA and make good upon completion and proper hand-over the as-mention-below equipment to be placed in the respective designated area / server room of YAYASAN MELAKA.

8

8.4 The equipment and services should be new, original and have acceptable and high quality for the normal production use. No demonstration or used equipment will be accepted.

8.5 The equipment and services should be able to operate without any difficulty after

it has been installed and commission and it is expected to do so as warranted by the overall manufacturer and vendor's guarantee.

8.6 The vendor's competency for executing the job successfully is expected. As such

the vendor's is required to submit the company’s past experience in handling similar kind of job.

8.7 The vendor's MUST abide and follow all Malaysian government regulations, laws

pertaining to the importation, supply and delivery of the equipment. 8.8 All insurance cost pertaining to the tender should be borne by the vendor's during

the course of this project. 9. PRICE AND CHARGES

9.1 Prices shall be quoted in Malaysian Ringgit and on the basis on CIF or FOB

where is applicable. 9.2 Prices quoted in the proposal should be valid for a period of not less than 90 days

from the date of the closing of this quotation. 9.3 Prices must be broken down on a per item basis and according to the format

provided under the schedule of price as given in APPENDIX 2. The schedule of price shall be quoted on the basis of Outright Purchase where the Unit Price and Total Price (both inclusive of delivery and installation inclusive of GST but excluding customs duties and monthly maintenance).

9.4 Quotation should include separate prices for all optional and alternative features

available for the equipment. 9.5 The brand name and the model number where applicable must be stated in all

cases. 10. ACCEPTANCE OF QUOTATION

YAYASAN MELAKA shall not be bound to accept the lowest of any quotation. YAYASAN MELAKA reserves the right, regardless of the quotation submitted, to accept bids for the entire schedule, or combination of schedule or for individual items at its own discretion unless the vendor has stipulated specific limitations.

9

11. DELIVERY AND INSTALLATION OF THE PROPOSED EQUIPMENT

11.1 Delivery Programmed

The delivery programmed is thus as follows:-

Programmed Date Award of LA To Successful Quotation

Return of LA and Performance Bond

1 week after issuance of LA

Equipment deliver and install at site

Within 4 weeks after Notification

Provisional Acceptance

Within 4 weeks after date of installation

Final Acceptance

Within 4 weeks after date of Provisional Acceptance

A critical selection criterion would be the installation time frame. Vendors are required to conform to the above schedule, and to elaborate on the details of delivery and installation in their quotation submission. YAYASAN MELAKA reserves the right to determine the date of installation.

11.2 Delivery and Installation

11.2.1 The successful vendor shall have the delivers and install the proposed equipments at site as requested by YAYASAN MELAKA within 4 weeks from the date when an official acceptance is given to the successful vendor. YAYASAN MELAKA shall take all reasonable measure that site preparation and provision for electricity supply be effected before the physical installation of the proposed equipment. 11.2.2 Installation site will be specified by YAYASAN MELAKA. Any cost incurred due to unfamiliar circumstances of power (e.g. 3 Phase electrical wiring and cabling work scopes) and water supply or any other required services that result in installation and commissioning delay will be borne by the vendor's. The successful vendor's is advised to visit installation site. Please specify any other required services. 11.2.3 Commissioning report should be submitted upon successful completion of the work within fourteen (14) working days. 11.2.4 The certificate for the basic system of the specified equipment and its attachment shall be provided. Any deviation from the certified results, the

10

equipment shall be replaced or corrected by the vendor's at vendor's own expenses. 11.2.5 Installation, testing and commissioning of the equipment on site shall be done by qualified and experienced product personnel/ engineer. Cost of this project will be borne by the vendor's and should be done to the best and accepted engineering practice. 11.2.6 The testing of hardware, system software and application proposed by the vendor's shall be conducted by YAYASAN MELAKA together with the vendor's within the time frame and duration of the testing and commissioning. 11.2.7 The testing shall also apply to substitute, replacement and conversation of any component parts that are acquired by the YAYASAN MELAKA in relation to this contract should the component fails to function as per specification. The vendor's shall provide all consumable, tools and testing equipment for the testing. 11.2.8 The vendor's shall also provide YAYASAN MELAKA with the test specifications, test scripts, test logs and the test analysis reports for inspection and review 11.2.9 The acceptance of the proposed system to YAYASAN MELAKA shall be carried out in two phases:

i. Provisional Acceptance Testing ii. Final Acceptance Testing

11.3 Provisional Acceptance

11.3.1 The successful vendor’s shall allow YAYASAN MELAKA to operate the equipments on a test basis for a period within 4 weeks after delivery and installation. If during such period, the equipments perform in accordance to specifications and with a system down time of not greater than 5 per cent, the equipments will be given final acceptance.

11.3.2 If, in the opinion of YAYASAN MELAKA, the testing are reasonably delayed, YAYASAN MELAKA may by notice in writing require the vendor’s to conduct the test within seven (7) days from receipt of such notice and the vendor’s shall make the test on such date or dates within the said seven (7) days as the vendor’s may fix and of which he shall give reasonable notice to YAYASAN MELAKA. If the vendor’s fails to conduct such test within the time, YAYASAN MELAKA may itself proceed to conduct by YAYASAN MELAKA shall be at risk and expense of the vendor’s.

11

11.3.3 In the testing, the vendor's shall after installing the system subject to test

procedure set out or agreed by YAYASAN MELAKA, if any, and the manufacturer standard test procedures to ensure that the system and every part thereof is in full working order, is compatible and connectable to all other items in the Hardware and System Software and shall demonstrate to the satisfaction of YAYASAN MELAKA that the system is operating in accordance with the manufacturer’s or manufacturer’s published specifications and the specifications in this contract

11.3.4 YAYASAN MELAKA reserves the right to extent the test period if any

major fault in the equipments due to defective workmanship, materials or design is detected; or if recurrent fault indicates the likelihood of some inherent weaknesses.

11.3.5 The date of final acceptance will be acknowledge by YAYASAN

MELAKA in writing 11.4 Final Acceptance

11.3.6 The successful Vendor’s shall allow YAYASAN MELAKA to operate the

equipments on a test basis for a period within 4 weeks after Provisional Acceptance. If during such period, the equipments perform in accordance to specifications and with a system down time of not greater than 5 per cent, the equipments will be given final acceptance.

11.3.7 YAYASAN MELAKA reserves the right to extent the test period if any

major fault in the equipments due to defective workmanship, materials or design is detected; or if recurrent fault indicates the likelihood of some inherent weaknesses.

11.3.8 The date of final acceptance will be acknowledge by YAYASAN

MELAKA in writing. 11.5 If the successful Vendor’s shall have not completed supply, installation, testing

and eventually handing over of the equipment within the said time and if YAYASAN MELAKA shall not have cancelled the contract under the power conferred on it by the General terms and conditions of this specification, the successful Vendor’s shall pay as liquidated damages the sum amounting to 1 per cent of the total on site cost of the equipment for every week or part of the week in which the delivery and/or completion of work has been delayed. The amount so calculated may be deducted from any money payable to the successful Vendor’s under the contract or any other contract with YAYASAN MELAKA. YAYASAN MELAKA reserves the right to accept or reject any extension of the period required for the delivery and/or completion of work.

12

12. PAYMENT (*Contract (3+1) years)

12.1 Contract service agreement for a period of three (3) years commencing 1 Disember 2016 to 30 November 2019 together with the bid of one (1) year for continued until November 30, 2020 with an annual price of the services offered here. The proposed payment schedule is as indicated below :

Item Description (3+1) Years Quantity First Year Charges

Second Year Onwards

1. Firewall Equipment & Accessories (one time) 1 lot √

2. Firewall Cabling Works & Accessories (one time) 1 lot √

3. Firewall Managed Services 1 lot √ √

13. WARRANTY 13.1 The Vendor’s shall provided a warranty period of (3+1) years for the proper

working of proposed Network Equipment and life time warranty for Network Equipment. The warranty period shall commence from the date of final acceptance. The Vendor’s shall provide all necessary services including on-site remedial, the supply and replacement of defective parts due to defects in material, design, manufacture, workmanship and installation during the said period at no cost to YAYASAN MELAKA.

13.2 The Vendor’s are welcomed to submit their warranty proposals and terms.

13.3 Vendor’s shall include the necessary cost of warranty upon installation of the supplied equipment prior to the Final Acceptance date. The Vendor’s shall provide full details of any warranties which apply to the equipment.

13.4 If during the warranty period, there is a defect in any of the equipment, which arises from the faulty material, design or workmanship, the vendor’s shall repair or at his option to replace the defective equipment at his own expenses

13

PART II – HARDWARE SPECIFICATION

NO. CONTENTS PAGE

1. General………………………………………………………..……………….. 1.1 System Preferences ………………………………………………………... 14 1.2 Technical requirement ……………………………………………………. 14

2. Scope Of Works ……………………………………………………………… 20

3. General Requirement ……………………………………………………….. 21

4. Hardware Specification : 4.1 Next Generation Firewall………………………………………………….. 22

14

PART II - HARDWARE SPECIFICATIONS

1.0 General

1.1 System Preferences

Preference shall also be given to vendor which proposed next generation firewall originating from the latest revision of the Sophos. Equipments proposed shell compatible and ease of integration, maintenance and day to day operation with the current existing network equipments of the YAYASAN MELAKA network infrastructure. The Next Generation Firewall proposed shall have the capacity, capability, system performance, component performance, application assurance and meet with the current and future data processing and security requirements for the YAYASAN MELAKA Networks.

1.2 Technical requirement

1.2.1 Vendor’s are advised to seek clarifications and conduct investigations to better understand the environment and requirements before submitting proposal. Vendor’s are also invited to visit the site, where the security system will be implemented.

1.2.2 All network devices, software and tools such as connectors; transceivers,

patch cords, interface cable etc. that are needed to establish, implement and integrate the network system but are not specified in this document must be provided and included in the proposal.

1.2.3 Internet and Intranet Solutions 1.2.3.1 The solution should cater the increasing numbers of users in

YAYASAN MELAKA for the next 2 to 5 years.

1.2.3.2 Able to handle the development portal and web based system, the requirements of searching research materials.

1.2.3.3 The connection between Internet and Intranet communication services must be segregated physically to avoid bottleneck. (Independent Link) for each sites.

1.2.3.4 The security and integrity of the connection is intact and guaranteed at all times.

15

1.2.3.5 If the event of intranet or internet access failure in any of the building, the solution must be able to automatically re-route the connection through any means possible without any additional cost at the most minimum time possible.

1.2.3.6 The cost of the proposed solution must be inclusive of works, services and leasing of appliances.

1.2.4 Internet Access Manager.

1.2.4.1 Hardened OS that provide high performance, utilization and security.

1.2.4.2 Deployment mode i. By-pass Mode: The proposed system can be deployed

without changing any configuration of the original network structure.

ii. Gateway Mode: The proposed system must supports static/dynamic routing protocol and NAT

1.2.4.3 Authentication exception: Accounts can be renamed (in the

IP/MAC/computer name formats) based on new users' IP segments; authentication exception-handling includes conflict detection, privileged control after authentication failure and page forward control after successful authentication.

1.2.4.4 Online access authorization i. Multi-level user account management to align with

organizational structure, allowing access control based on account, IP, application, behavior, content, period, etc.;

ii. Monitoring of accumulated duration and maximum traffic for specified user applications.

1.2.4.5 HTTP caching: The duplicated data is cached in RAM or disks

of the appliance. When users access these data, appliance gets the data from its cache and returns the data to the user, significantly enhancing the access speed (Webpage, files, HTTP online videos, images, etc.)

1.2.4.6 Web filtering: Support Webpage filtering based on URL/search word/keyword contained in Webpage; Support keyword-based filtering of outbound Webmail and Web post.

1.2.4.7 Advanced control: Encrypted SSL URL filtering; identifies and filters attempts to avoid management via public network proxies or encrypted proxy software; Capable to control

16

behavior of sharing web access privileges with others via installed proxy software.

1.2.4.8 File control: Capable to control outbound file transmission via HTTP/FTP/email attachments, supports identification and blocking of outbound files based on file extensions and file types (to identify encrypted, compressed, extension name modified files).

1.2.4.9 Application identification: Has application identification rules conveniently built-in to identify and control popular network protocols, including IM chat, network games, Web-based stock trading, P2P, streaming media, remote control, and proxy software.

1.2.4.10 Intelligent P2P identification: Identifies popular P2P application protocols with deep packet inspection (DPI).

1.2.4.11 Email control: Supports complete blocking of email reception and sending, and filtering of outbound and inbound junk mail; filtering can be based on multiple conditions such as keyword, sender and receiver addresses.

1.2.4.12 Traffic Prioritization, Shaping and Quality of Service (QoS): The appliance should be able to do traffic prioritization in managing the bandwidth by enforcing the rules based on priority, partition and rate control technology. Able to perform traffic shaping with prioritization for critical applications (e.g. maximum and minimum bandwidth per application, user or flow) and limit or block recreational and malicious traffic.

1.2.4.13 Bandwidth management: Bandwidth management based on wide range of criteria, including application type/Website type/file type, user, time, target IP, etc.; extranet-to-intranet access flow control and bandwidth management.

1.2.4.14 Multiplexing and Intelligent Routing: Allocate the best output for multi-lines Internet access provided by different ISP operators.

1.2.4.15 Virtual line/pipe: Virtualizes link into multiples virtual links and each link can be applied with independent traffic shaping policy.

17

1.2.4.16 Dynamic bandwidth control: Allows dynamic bandwidth controlling to optimize the bandwidth usage for uplink as well as downlink line.

1.2.4.17 Real-time monitor: Real-time monitoring of CPU/hard disk/traffic/connection/session status, as well as online user information, traffic ranking and connection ranking; real-time utilization visibility of bandwidth channels.

1.2.4.18 Access audit: Records a wide variety of audit information including: URL, Webpage title and content accessed (can record only Webpage content containing specific keywords), outbound file transmissions via HTTP and FTP and file content, names and behavior of files downloaded, plain text thread posting and emails, chat sessions on MSN, MSN Shell, Skype, Yahoo! Messenger, Google Talk, etc.; also records application behavior such as network gaming, stock trading, entertainment, P2P downloads and Telnet; tallies user traffic and access duration and audits Webpage/file/email access of extranet users on intranet servers.

1.2.4.19 Reporting: Supports various kinds of reports, including scheduled reporting of statistics, behaviors, trend, comparison, plus customized reporting of traffic statistics, queries, ranking, times and behavior of users and user groups.

1.2.4.20 Data center features: Massed log storage with built-in and independent data center support; administrators can easily manage users based on a hierarchical permissions structure.

1.2.4.21 Content search: Google-like log search tool to enable the manager to locate logs quickly by entering multiple keywords, including the search and location of the content of the log attachments; supports the title subscription, and supports automatically sending the search results to designated mailbox.

1.2.4.22 Supports single sign-on for without installing plug in the authentication servers.

1.2.4.23 Supports multi-sessions or multiple login with a single User ID.

1.2.4.24 Supports the time base or volume based usage restriction

18

1.2.5 Managed Security Service 1.2.5.1 Vendor's will need to propose “on premise” firewall device as

the Manage Security Service. Vendor's must factor in the yearly subscription renewal service and maintenance service costs during the contract period.

1.2.5.2 The proposed device as part of this service has to be hardened O/S device based and not server based software system.

1.2.5.3 The proposed device as part of this service must be able to be controlled centrally through a dedicated device for policy management; this is to standardize the management of the firewalls throughout the YM building.

1.2.5.4 The proposed device as part of this service must be able to be controlled centrally through a dedicated device for policy management; this is to standardize the management of the firewalls throughout the YM building.

1.2.5.5 The proposed service must be able to provide Web Content Filtering protection for YM building.

1.2.5.6 The proposed service must be able to provide intrusion protection against hackers and port sniffing YM building.

1.2.5.7 The proposed service must be able to provide Layer 7 Application control protection for YM building.

1.2.5.8 The propose service must be able to provide Anti-Virus protection over the internet gateway for YM building.

1.2.5.9 The service has to be linked and integrate seamlessly to the Reporting System in order to extract the authenticated username for Reporting purpose.

1.2.5.10 Any users who wants to access to the internet must be authenticated through this service or through Active Directory/LDAP Group Policy Object Sync.

1.2.5.11 The authentication service is available through http web service.

1.2.6 Reporting System Service (RSS)

1.2.6.1 The proposed device as part of the service needs to be a dedicated standalone device.

19

1.2.6.2 The proposed service must have built-in reporting tools that can store the log. The reporting mechanism must be able to display application utilization base on Days, Months and Year capabilities.

1.2.6.3 The reporting mechanism must be able to generate daily, monthly report and distribute via email in PDF, or HTML.

1.2.6.4 The reporting format must be able to show the login ID of the users that violates the security policy.

1.2.6.5 The reporting mechanism must also be able to generate user base-ID (not IP based) linked to LDAP/RADIUS report.

1.2.6.6 The reporting mechanism must be able to classify web pages category.

1.2.6.7 The proposed service is an independent dedicated system running on its own resources to generate the data

1.2.6.8 The reporting mechanism must also be able to generate virus attack report from either internal or external network.

1.2.6.9 The reporting mechanism must also be able to generate type of file infected by the virus report.

1.2.7 Network Operations Center Monitoring Service 1.2.7.1 The proposed solution shall provide performance monitoring

and statistics in a graphical way like MRTG.

1.2.7.2 Monitoring stats for today, last month and whole year (trending).

1.2.7.3 The proposed service shall able to keep the history log and statistic up to one (1) year.

1.2.7.4 The proposed service is able to provide connection uptime and downtime information.

1.2.7.5 The monitoring system will have true mobile apps such as Android and IOS capability for monitoring through smartphones.

1.2.8 Before work begins, the successful Vendor’s must consult BTMYM

regarding procedures and technical aspects of work. Please note that BTMYM will not tolerate any interruption and/or damage caused by this

20

exercise. The Vendor’s must be able to accommodate the job needed for this exercise that suits to the existing environment.

1.2.9 The Vendor’s must provide a thorough test plan for all proposed solutions.

1.2.10 The successful Vendor’s must ensure that the entire project is successfully

completed within the required time frame. The Vendor’s must submit the proposed schedule for the entire project.

1.2.11 All hardware and software must be of latest technology version and not

nearing the age of obsolete. The Vendor’s must include support letter from the Principal.

1.2.12 A warranty period of (3+1) years from the commissioning date for all

hardware and system software supplied.

1.2.13 BTMYM reserves the rights to request changes on the proposed network design. The successful Vendor’s must submit comprehensive and complete system documentation before the project end. Documentation must come in hardcopy and softcopy form.

1.2.14 Product catalogues and brochures for the proposed hardware and software

must also be provided.

2. Scope Of Works

The firewall upgrade includes design review, supply and delivers the proposed solution to fit into the requirements. The Vendor’s shall fulfill any deliverable not specifically mentioned in the quotation document but is necessarily required for the success of the Project.

The firewall upgrade shall include, but not limited to, the following: 2.1 Supply, configure, install, integrate, testing and commissioning for Yayasan

Melaka Firewall.

2.2 Plan and execute all relevant configuration elements during the works of installation, integration, testing and commissioning of the network infrastructure based on the approved design solution.

2.3 Provide competent personnel for the Project implementation. The Project team

structure and details shall be provided.

2.4 Provide transfer of technology to BTMYM’s Support Team.

21

2.4.1 Provide all manuals and necessary documentation related to the Project. 2.4.2 Provide project plan and implementation schedule as per required

detailing specified milestones in this quotation document.

2.5 The Vendor’s is required to provide maintenance, support and warranty services for all proposed hardware and software components during the warranty period of twelve (12) months. This warranty is to be provided by Principal and service/support by Vendor’s.

2.6 The Vendor’s is required to commence the maintenance, support and warranty

services for all hardware components upon full completion of Provisional Acceptance Test (FAT) and Final Acceptance Test (FAT).

2.7 The Vendor’s shall make good and supply any equipment, devices, software,

device drivers, configuration know-how services and other integration related services, facilities and devices in order to deliver all the functionality requirements needed under the scope of this project.

3. General Requirement

The system design shall not only optimize the existing network and security implementation, but must also take into consideration the cost efficiencies, manageability, scalability and maintainability of the proposed solution. The Project common requirements shall include the followings, but not necessarily be limited to:

3.1 The Vendor’s are to provide design to achieve highest inter-operability with the

existing network infrastructure.

3.2 The proposed solutions must provide sufficient ports stated below (hardware specifications) to support different network segments.

3.3 The same vendor solutions are also required to provide protection against

“unknown threats” using SandBoxing Technology that can compliment to the proposed solutions.

3.4 The offered equipments shall be fully hardened and secured Operating System

(please include the supporting document)

3.5 The offered equipment ethernet interfaces shall support VLAN tagging (IEEE 802.1Q)

3.6 The offered equipment shall come with 3-pin power plug (UK standard)

22

3.7 The offered equipment shall be able to operate simutanesouly (combination) of Layer 2 mode, Layer 3 mode, inline mode or tap mode.

4.0 Hardware Specification

4.1 Hardware Specification For Next Generation Firewall

The next generation firewall shall be at least with minimum mandatory configuration as follows:

4.1.1 General Specification

NO SPECIFICATION SPECIFICATION COMPLIANCE 1.1.1 GENERAL

1 Quantity 1 Unit 2 Brand / Manufacture Please Specify 3 Model Please Specify

4 Brochure/Full technical information on the equipment proposed must be provide

Must comply

5 Device Type Next Generation Firewall 6 Enclosure Type rack-mountable - 1U

7 Ports 6 x 10/100/1000 1 x RJ-45 console port and 1 Flexi Modules Port

8 Performance

Firewall Throughput (up to 14 Gbps) Intrustion Prevention throughput (up to 2.7 Gbps) VPN throughput ( 1.35 Gbps) AntiVirus throughput ( 2.3 Gbps) New sessions per second (up to 135,000 sessions) Max sessions ( up to 8.2 million )

9 Storage Capacity 120 GB SSD

10 Features

The proposed solution shall: Prevents wide range of threats including networks and applications . Able to identify and control applications, applications usage policies, and graphically visibility tool to enable simple and intuitive view into application traffic.

23

NO SPECIFICATION SPECIFICATION COMPLIANCE Policy base visibility and control over who is using the applications, seamless integration with LDPA if required. Block and control non-work related web surfing Policy-based control by application, application category, subcategory, technology, risk factor or characteristic

Control unauthorized data transfer ( data patterns and file types) Support Active Directory, LDAP, eDirectory, Radius, Citrix and Microsoft Terminal Services, Xenworks, XML API and TACACS+ for user integration Denial of Service ( Dos/Distributed Denial of Services ( DDos ) protection Support Decryption : SSL (inbound and outbound) , SSH Special built hardware architecture with low latency in line scanning capabilities, scan protection and Fragmented packet protection Single pass architecture with low latency in line scanning capabilities, scan protection and Fragmented packet protection

10 APT Solution

Identify and analyze targeted and unknown files for more than 100 malicious behaviors Generate and automatically deliver protection for newly discovered malware via signature updates

Signature update delivery in less than 1 hour, integrated logging/ reporting; access to WildFire API for programmatic submission of up to 100 samples per day and up to 1,000 report queries by file hash per day

11 Intrusion Prevention Systems

Application, operating system vulnerability exploit protection Stream-based protection against viruses (including those embedded in HTML, Javascript, PDF and compressed), spyware, worms

12 URL FILTERING Pre-defined and custom URL categories Device cache for most recently accessed URLs

24

NO SPECIFICATION SPECIFICATION COMPLIANCE URL category as part of match criteria for security policies Browse time information

13 High Availability

Support Active/Active and Active/Passive HA State Synchronization VPN Synchronization Device Failure Detection Dead Link, Gateway and Interface Detection

14 IPv6 Dual-stack

15 MANAGEMENT, REPORTING, VISIBILITY TOOLS

Integrated web interface, CLI or central management and Multi-language user interface Syslog, Netflow v9 and SNMP v2/v3 Graphical summary of applications, URL categories, threats and data (ACC) View, filter and export traffic, threat, URL, and data filtering logs Fully customizable reporting

16 AUTHENTICATION METHOD (USER BASED)

Microsoft Active Directory, Linux and other LDAP-based directories

Microsoft Windows Server 2003/2008/2008r2, 2012

17 QUALITY OF SERVICE (QOS)

Policy-based traffic shaping by application, user, source, destination, interface, IPSec VPN tunnel and more

8 traffic classes with guaranteed, maximum and priority bandwidth parameters Real-time bandwidth monitor Per policy diffserv marking Physical interfaces supported for QoS: 6

1.1.4 MISCELLANEOUS 26 Width 17.24 in 27 Depth 11.5 in 28 Height 1.75 in 29 Weight 11.02 lbs

1.1.5 MANUFACTURED WARRANTY

30 Waranty 1 year warranty or According to License Subcription

25

NO SPECIFICATION SPECIFICATION COMPLIANCE 1.1.6 Environmental Parameters

31 Operating Temperature 0° to 40° C 32 Non Operating Temperature -20° to 70° C

1.1.7 Power Device 34 Input Voltage 100-240VAC (50-60Hz)

35 POWER SUPPLY (idle/fullload) 19W / 29W

1.1.8 Optional Services 37 Optional Services Please Specify

26

PART III - MAINTENANCE AND SUPPORT SERVICES

NO. CONTENT PAGE

1. General……………………………………………………………...

27

2. Conditions of Maintenance…………………………………………

27

3. Response Time For Curative Maintenance………………………

28

4. Maintenance Records………………………………………………

29

5. Maintenance Personnel…………………………………………….

29

6. Hardware Preventive Maintenance…………………………………

30

27

PART III - MAINTENANCE AND SUPPORT SERVICES 1. GENERAL

1.1 YAYASAN MELAKA places strong emphasis on the adequate and ready

availability of the maintenance and support services from the Vendor to maintain the proposed equipments in good working order and condition with high availability as well as to assist YAYASAN MELAKA’s staff in exploiting to the fullest possible extent, the capabilities and features of the Equipments.

1.2 Preference shall be given to the Vendor who is able to provide a high level of

maintenance and support services for the proposed equipments and technical advice as well as assistance in operating and maintaining the Equipments effectively and efficiently.

1.3 The maintenance and support services and facilities specified herein are deemed

by YAYASAN MELAKA to be necessary to meet YAYASAN MELAKA’s requirements. Hence, Vendors shall meet these requirements in order to merit favorable consideration of their offers.

1.4 Vendors shall provide details, as well as any replies where applicable, of the

maintenance and support services available for the purpose of YAYASAN MELAKA’s evaluation.

1.5 Subject to further negotiation, the following clauses will serve as the minimum

requirements for maintenance and support services. 2. CONDITIONS OF MAINTENANCE

2.1 The successful Vendor shall immediately commence preventive maintenance and curative maintenance, which include on-site remedial, replacement of detective parts and all engineering services, after the issue of Certificate of Acceptance at no extra cost of such maintenance to the YAYASAN MELAKA during the validity of the Warranty Period.

2.2 The successful Vendor shall undertake to maintain the capacity to fulfill

maintenance obligations for at least one (1) year from the expiry date of Warranty Period if so required by the YAYASAN MELAKA.

2.3 Full maintenance support of the equipment MUST be available locally. Competent personnel should provide the engineering and /or maintenance support. The company will have to indicate how it intends to meet this requirement, including naming facilities available at their locations.

28

2.4 The company shall provide the outline of the total preventive maintenance schedule.

2.5 Please specify and/or clarify any calibration schedule as per necessary and compulsory equipment items offered

2.6 Maintenance requirements for proposed solutions should meet the following minimum: a. Service Level Agreement Onsite 24 hours X 7 days X 4 hours response

time with 99.7% uptime b. On-site trouble-shooting and replacement of hardware where required c. Able to provide and reinstalled spare provisioning for products covered

under the contract

2.7 Any schedule maintenance/downtime either inside or outside Yayasan Melaka facility which will directly affect the services shall be informed 7 days prior to the activity.

2.8 The successful Vendor shall have a well-established maintenance support services and facilities. The personnel and facilities shall include :

2.8.1 Sufficiently trained, skilled and experience personnel who are proficient in

undertaking the maintenance and support tasks called for;

2.8.2 Availability of an adequate support service and facilities, to provide consultation or repair.

2.9 Maintenance and support personnel shall be able to do maintenance visits either

on a scheduled or non-scheduled basis.

2.10 The completion of any maintenance work by the successful Vendor’s representative on-site shall be followed by the agreed Equipments tests to be run on the Equipments to ensure it is operating correctly.

3. RESPONSE TIME FOR CURATIVE MAINTENANCE

3.1 Maintenance calls may be made at any time between 8:00 am and 5:30 pm of a working day. The successful Vendor shall be required to respond to any call within four (4) hours upon the receipt of notification.

3.2 For Remedial Maintenance the vendor's must be able to response within two (2) hours through phone call and rectify the problem within four (4) hours from the time is notified. In the event the equipment has to be removed or be made inoperable, the vendor's shall provide a replacement unit with the equivalent

29

configuration for the duration of repair at no additional cost. Vendor's shall be prepared to carry out the Remedial Maintenance after normal working hours.

3.3 The vendor's will be required to maintain continuous and complete records for all services which may include faults, remedial action taken and replacement parts and make copies of such records to Yayasan Melaka where Preventive or Remedial Maintenance is done.

3.4 The Vendor's must describe details of the mode of customer service. It is mandatory that customer support must be provided directly by vendor's. Any other means of support, e.g. through an appointed agent or third parties are NOT acceptable

4. MAINTENANCE RECORDS

4.1 The successful Vendor shall keep records of all maintenance under the Contract in a manner required by YAYASAN MELAKA.

4.2 The successful vendor shall at all times make his records available for inspection

by the YAYASAN MELAKA.

4.3 The successful Vendor shall record the commencement and completion of all maintenance and repair and where necessary, details of the entire fault that caused the maintenance or repair in the manner required by the YAYASAN MELAKA. Faults defected during preventive maintenance shall be recorded separately from the faults detected or reported outside those periods.

5. MAINTENANCE PERSONNEL

5.1 The successful Vendor shall provide maintenance team(s) which has had experienced on the proposed Equipments. The training and competence of the team(s) shall be as such to ensure that all that are required and maintain can be restored to and kept in the operating condition required by the YAYASAN MELAKA.

5.2 The Vendor is to state the number of persons who are, or will be employed by

him in Malaysia, who are qualified maintenance personnel for the type of the equipments proposed and state profiles of their relevant experience.

5.3 Vendor 's is required to provide training during the project implementation. The Vendor's must submit a detail training syllabus or training brochure.

30

6. HARDWARE PREVENTIVE MAINTENANCE

6.1 The Vendor shall provide details of the recommended preventive maintenance schedule for all items of the Equipments proposed.

31

PART IV – SCHEDULE OF INFORMATION

NO.

CONTENTS

PAGES

1.

General

32

2.

Appendix

33

32

PART IV - SCHEDULE OF INFORMATION 1. GENERAL 1.1 The Vendor’s are required to provided the following :

Quotation proposal must be submitted in three (3) sets, with the original clearly marked “ASAL” or “ORIGINAL” and it shall consist of :-

i) FINANCIAL PROPOSAL

a) Lampiran Q.

b) Vendor’s Profile (APPENDIX 1).

c) Schedule Of Price (APPENDIX 2).

d) A copy of Letter or Certificate of Registration with the Ministry of Finance.

e) A Copy of Bank Statement for the latest 3 months

ii) TECHNICAL PROPOSAL

a) Schedule of Equipment in accordance with the Schedule of Prices (APPENDIX 2) but without the prices including full details of Type and Model No. and Manufacturer's Name and the accessories to be supplied.(APPENDIX 3).

b) Record of Experience (APPENDIX 4).

c) Technical Information and compliance for Hardware (APPENDIX 5).

d) Technical Information and compliance for Maintenances and support service (APPENDIX 6).

e) Brochure/Full technical information on the equipment proposed.

f) A letter from the manufacturer/distributor of the Network Equipment proposed

confirming Vendor’s rights as distributor/authorised dealer/agent. 1.2 In answering questions listed in Appendix as mentioned above herein, the vendor’s must

always answer accurately and in accordance with the intents and format of the questionnaire rather than in a format to suit their own conveniences and tastes. The answers should be precise and with references, where necessary, to relevant parts of submission on details.

33

2. APPENDIX

APPENDIX CONTENTS

2.1 …………………………………………………… Lampiran Q

2.2 Appendix 1……………………………………… Vendor’s Profile

2.3 Appendix 2………………………………………. Schedule of Prices For Hardware

2.4 Appendix 3………………………………………….Schedule of Equipment

2.5 Appendix 4 ………………………………………….Record of Experience 2.6 Appendix 5 ………………………………………….Technical Information and

Compliance For Hardware 2.6 Appendix 6………………………………………… Technical Information

And Compliance for Maintenance And Support Service

2.7 Appendix 7 …………………………………..............Location for installation Hardware

34

LAMPIRAN Q

35

Bila menjawab, sila nyatakan nombor ini

YAYASAN MELAKA MALAYSIA (ARAHAN PERBENDAHARAAN 170)

NEGERI MELAKA

SEBUTHARGA UNTUK BEKALAN BARANG-BARANG / PERKHIDMATAN

Kepada (Nama Syarikat) Pelawaan Sebutharga dikeluarkan oleh Jabatan (Alamat Lengkap) PENGURUS BESAR No. Telefon YAYASAN MELAKA, NO 40-48 & 52, JALAN BKD 27, No. Pendaftaran dengan Kementerian TAMAN BUKIT KATIL DAMAI 2, Kewangan 75450, BUKIT KATIL, MELAKA. …………………………………………. (u/p: BAHAGIAN TEKNOLOGI MAKLUMAT) No. Telefon 06-2311822 Kod Bidang Pendaftaran yang relevan Tarikh : 11 Oktober 2016 dengan pembelian ini 210105 atau 210106 1. Sila beri sebutharga untuk bekalan barang-barang / Perkhidmatan yang disenaraikan di bawah tertakluk

kepada syarat-syarat yang ditetapkan.

1.1 Syarat Penyerahan / Penyempurnaan seperti di LAMPIRAN A

1.2 Tarikh Penyerahan / Penyempurnaan dikehendaki seperti di LAMPIRAN A

1.3 Arahan Pengirim …………………………………………………………………………

1.4 Sebutharga hendaklah dimasukkan ke dalam satu sampul surat berlakri dan bertanda “No.

Sebutharga YM/S/40/14 JLD 9 ( 17 )”

1.5 Sebutharga hendaklah dimasukkan ke dalam peti tawaran yang berkenaan di alamat di atas tidak lewat pada jam 12.00 tengahari 25 Oktober 2016

1.6 Tempoh sahlaku sebutharga hendaklah 90 hari selepas tarikh tutup.

Tarikh 11 Oktober 2016 Tandatangan ………………….......……… Nama Pegawai ..................................................................... Jawatan .....................................................................

No. Sebutharga : YM/S/40/14 JLD 9 ( 17 )

(Kew . 284 ---Pin. 2/94)

Lampiran Q

36

Bil

Perihal barang-barang/perkhidmatan dan Syarat-syarat Khas

Unit Ukuran

Kuantiti/ Kekerapan

Kadar (RM)

Harga (RM)

Untuk diisi oleh Jabatan

Untuk diisi oleh Penyebutharga

SEPERTI DI LAMPIRAN

Tarikh Penyerahan/Penyempurnaan

Ditawarkan seperti di LAMPIRAN A dan sertakan Surat Akuan Pembida seperti di LAMPIRAN B

* Sila sertakan sesalinan Sijil

Pendaftaran dengan Kementerian

Kewangan

Jumlah

(i) Harga yang ditawarkan adalah harga bersih ; dan

(ii) Tarikh penyerahan /penyempurnaan ialah seperti di LAMPIRAN A dan sertakan Surat Akuan Pembida seperti di LAMPIRAN B

Saya/Kami dengan ini menawarkan untuk membekalkan barang-barang/perkhidmatan di atas dengan harga dan syarat-syarat yang ditunjukkan di atas dengan tertakluk kepada syarat-syarat di atas dan di belakang ini.

Tandatangan

Penyebutharga …….……………………...........

Nama dan K/P…….…………………................

Alamat Syarikat ……………………….……….

………...………………………

Tarikh ……………………………….

Mustahak – Lihat Syarat-syarat Am Di Belakang

37

SYARAT-SYARAT AM

Tertakluk kepada apa-apa syarat khas yang ditetapkan di tempat lain dalam pelawaan ini, syarat-syarat am yang berikut hendaklah dipakai, melainkan setakat mana syarat-syarat am itu ditolak atau diubah dengan khususnya oleh penyebut harga.

1. KEADAAN BARANG

Semua barang hendaklah tulin, baru dan belum digunakan.

2. HARGA

Harga yang ditawarkan hendaklah harga bersih termasuk semua diskaun dan kos tambahan yang berkaitan.

3. SEBUTHARGA SEBAHAGIAN

Sebutharga boleh ditawarkan bagi barang-barang setara yang sesuai dengan syarat butir-butir penuh diberi.

4. BARANG-BARANG SETARA

Sebutharga boleh ditawarkan bagi barang-barang setara yang sesuai dengan syarat butir-butir penuh diberi.

5. PENYETUJUAN

(i) Yayasan Melaka tidak terikat untuk menyetuju terima sebutharga yang terendah atau mana-mana sebutharga.

(ii) Tiap-tiap satu butiran akan ditimbangkan sebagai suatu sebutharga yang berasingan.

6. PEMERIKSAAN

(i) Yayasan Melaka adalah sentiasa berhak menghendaki barang-barang itu diperiksa atau diuji oleh seseorang pegawai yang dilantik olehnya dalam masa pembuatan atau pada bila-bila masa lain sebelum penyerahan.

(ii) Penyebutharga hendaklah memberi kemudahan pemeriksaan atau pengujian apabila dikehendaki.

7. PERAKUAN MENYATAKAN PENENTUAN TELAH DIPATUHI

Barang-barang Penyebutharga dikehendaki memperakui bahawa ―――――― yang perkhidmatan dibekalkan oleh mereka adalah mengikut penentuan atau piawai (jika ada) yang dinyatakan di dalam pelawaan ini.

38

8. PENOLAKAN

(i) Barang-barang yang rendah mutunya atau yang berlainan daripada barang-barang yang telah dipersetujui sebutharganya boleh ditolak.

(ii) Apabila diminta penyebutharga hendaklah menyebabkan barang-barang yang ditolak itu dipindahkan atas tanggungan dan perbelanjaannya sendiri, dan ia hendaklah membayar balik kepada Yayasan Melaka segala perbelanjaan yang telah dilakukan mengenai barang-barang yang ditolak itu.

(iii) Fasa-kecil (i) dan (ii) di atas ini tidaklah memudaratkan apa-apa hak Yayasan

Melaka untuk mendapatkan gantirugi kerana kemungkinan kontrak.

9. PENGIKLANAN

Tiada apa-apa iklan mengenai persetujuan terhadap mana-mana sebutharga boleh disiarkan dalam mana-mana akhbar, majalah, atau lain-lain saluran iklan tanpa kelulusan Ketua Setiausaha Perbendaharaan atau Akauntan Jabatan terlebih dahulu.

10. TAFSIRAN

Sebutharga ini dan apa-apa kontrak yang timbul daripadanya hendaklah diertikan mengikut dan dikawal oleh undang-undang Malaysia, dan penyebutharga bersetuju tertakluk hanya kepada bidangkuasa Mahkamah Malaysia sahaja dalam apa-apa pertikaian atau perselisihan jua pun yang mungkin timbul mengenai sebutharga ini atau apa-apa kontrak yang timbul daripadanya.

11. INSURAN

Tiada apa-apa insurans atas barang-barang dalam perjalanan daripada negeri pembekal atau dalam Malaysia dikehendaki dimasukkan ke dalam sebutharga.

BARANG-BARANG EK-STOK ATAU KELUARAN MALAYSIA

12. CUKAI

Harga yang ditawarkan adalah diertikan sebagai termasuk cukai jika berkenaan.

13. PEMBUNGKUSAN

(i) Harga yang ditawarkan adalah diertikan sebagai termasuk belanja bungkusan dan belanja pembungkusan.

(ii) Apa-apa kerugian atau kerosakan akibat bungkusan atau pembungkusan yang tidak mencukupi atau yang cacat, hendaklah diganti oleh penjual.

14. PENGENALAN

Nama pembuat, jenama, nombor perniagaan atau nombor katalog dan negeri tempat asal barang-barang itu, jika berkenaan, hendaklah ditunjukkan.

39

BARANG-BARANG DIPESAN DARI LUAR MALAYSIA

15. CUKAI

Harga tawaran hendaklah diertikan sebagai termasuk semua cukai, unsur-unsur cukai adalah dikehendaki ditunjukkan berasingan

16. MATAWANG

Sebutharga hendaklah dinyatakan dalam Ringgit Malaysia (RM)

17. PEMBUNGKUSAN

(i) Barang-barang hendaklah dibungkus dengan sesuai untuk dieksport ke Malaysia melainkan jika mengikut norma perdagangan barang-barang itu dieksport dengan tidak dibungkus.

(ii) Harga yang ditawarkan adalah diertikan sebagai termasuk belanja bungkusan dan belanja pembungkusan.

(iii) Apa-apa kerugian atau kerosakan akibat bungkusan atau pembungkusan yang tidak mencukupi atau cacat hendaklah diganti oleh penyebutharga.

40

LAMPIRAN A

1. Program Penghantaran 1.1 Penghantaran dan pemasangan untuk semua Peralatan mesti dibuat selepas pemulangan

Surat Setuju Terima (Letter of Acceptence (L.O.A.)). 1.2 Program penghantaran adalah seperti berikut :

Program

Jangkamasa

Penganugerahan dan penyerahan L.O.A. kepada Penyebutharga.

Pengembalian L.O.A.

1 minggu selepas penerimaan L.O.A.

Penghantaran dan pemasangan Peralatan di lokasi yang ditetapkan.

Dalam jangkamasa 4 minggu selepas pengembalian L.O.A.

Penerimaan Sementara (Provisionall Acceptence).

Dalam jangkamasa 4 minggu selepas tarikh penghantaran dan pemasangan

Penerimaan Muktamad (Final Acceptence).

Dalam jangkamasa 4 minggu selepas tarikh penerimaan sementara .

1.3 Kriteria pemilihan yang utama adalah bergantung kepada jangkamasa pemasangan.

Penyebutharga adalah digalakkan untuk menetapkan penjadualan dan pengskedulan secara terperinci bagi penghantaran dan pemasangan dan menyertakannya di dalam sebutharga tersebut.

2. Penerimaan Peralatan adalah seperti berikut : 2.1 Penerimaan Sementara Peralatan 2.1.1 Penyebutharga mesti membenarkan Yayasan Melaka menggunakan Peralatan sebagai

percubaan dalam jangkamasa empat (4) minggu selepas tarikh Peralatan dihantar dan dipasang. Jika semasa tempoh percubaan ini Peralatan berfungsi seperti spesifikasi yang ditetapkan dan down time sistem tidak melebihi lima (5) peratus, maka Peralatan ini akan diterima secara SEMENTARA.

2.1.2 Sekiranya Peralatan gagal memenuhi ‘standard of performance’ dalam jangkamasa

empat (4) minggu selepas tarikh Peralatan dihantar dan dipasang, Yayasan Melaka berhak meminta Peralatan gantian atau menamatkan pesanan. Dalam keadaan dimana Peralatan harus dikembalikan kepada Yayasan Melaka, Penyebutharga harus menanggung segala kos terbabit.

41

2.1.3 Yayasan Melaka berhak untuk memanjangkan tempoh percubaan/ujian jika terdapat kerosakan utama pada Peralatan yang berpunca dari hasil kerja yang detektif, rekabentuk atau bahan didapati tidak berfungsi dengan baik. (inherent weakness).

2.1.4 Tarikh PENERIMAAN SEMENTARA akan diberitahu kepada Penyebutharga secara

bertulis (selepas ini dikenali sebagai Tarikh Penerimaan Muktamad Peralatan) dengan mengeluarkan SIJIL PENERIMAAN SEMENTARA.

2.2 Penerimaan Muktamad Peralatan 2.2.1 Penyebutharga mesti membenarkan Yayasan Melaka menggunakan Peralatan sebagai

percubaan dalam jangkamasa empat (4) minggu selepas tarikh penerimaan sementara. Jika semasa tempoh percubaan ini Peralatan berfungsi seperti spesifikasi yang ditetapkan dan down time sistem tidak melebihi lima (5) peratus, maka Peralatan ini akan diterima secara MUKTAMAD.

2.2.2 Sekiranya Peralatan gagal memenuhi ‘standard of performance’ dalam jangkamasa

empat (4) minggu selepas tarikh penerimaan sementara, Yayasan Melaka berhak meminta Peralatan gantian atau menamatkan pesanan. Dalam keadaan dimana Peralatan harus dikembalikan kepada Yayasan Melaka, Penyebutharga harus menanggung segala kos terbabit.

2.2.3 Yayasan Melaka berhak untuk memanjangkan tempoh percubaan/ujian jika terdapat

kerosakan utama pada Peralatan yang berpunca dari hasil kerja yang detektif, rekabentuk atau bahan didapati tidak berfungsi dengan baik. (inherent weakness).

2.2.4 Tarikh PENERIMAAN MUKTAMAD akan diberitahu kepada Penyebutharga secara

bertulis (selepas ini dikenali sebagai Tarikh Penerimaan Muktamad Peralatan) dengan mengeluarkan SIJIL PENERIMAAN MUKTAMAD.

3. Jadual bayaran : 3.1 Semua harga sebutharga mestilah dalam Ringgit Malaysia dan berdasarkan kepada format

yang disediakan. Tawaran Harga yang dikemukakan mestilah dinyatakan dalam angka yang tepat bagi unit harga dan jumlah harga (termasuk Membekal, Menghantar, Memasang, Mengawal (24 Jam X 7 Hari), Menguji, Mentauliah Perkhidmatan Beserta Lesen Firewall Serta Menyelenggara Peralatan) dan kerja-kerja yang berkaitan.

3.2 Pembayaran untuk setiap peringkat kerja-kerja tidak akan dikeluarkan sehingga perkhidmatan

dilaksanakan dengan lengkap dan sempurna serta disahkan oleh Yayasan Melaka.

42

LAMPIRAN B

SURAT AKUAN PEMBIDA Sebutharga: 17/2016

SEBUTHARGA MEMBEKAL, MENGHANTAR, MEMASANG, MENGAWAL (24 JAM

X 7 HARI), MENGUJI, MENTAULIAH PERKHIDMATAN BESERTA LESEN FIREWALL (MODEL UTM+) SERTA MENYELENGGARA PERALATAN UNTUK

KESELAMATAN RANGKAIAN YAYASAN MELAKA

Saya,………..………...………...................... nombor K.P ….……………..................... yang mewakili ………………………….................... nombor Pendaftaran …………………................................ dengan ini mengisytiharkan bahawa saya atau mana-mana individu yang mewakili syarikat ini tidak akan menawar atau memberi rasuah kepada mana-mana individu dalam ……….……...................................... atau mana-mana individu lain, sebagai sogokan untuk dipilih dalam Quotation/sebut harga* seperti di atas. Bersama ini dilampirkan Surat Perwakilan Kuasa bagi saya mewakili syarikat seperti tercatat di atas untuk membuat pengisytiharan ini.

2. Sekiranya saya, atau mana-mana individu yang mewakili syarikat ini didapati cuba menawar atau memberi rasuah kepada mana-mana individu dalam Yayasan Melaka atau mana-mana individu lain sebagai sogokan untuk dipilih dalam Quotation /sebut harga* seperti di atas, maka saya sebagai wakil syarikat bersetuju tindakan-tindakan berikut diambil:

2.1 Penarikan balik tawaran kontrak bagi Quotation/sebutharga* di atas; atau

2.2 Penamatan kontrak bagi Quotation/sebut harga* di atas; dan

2.3 Lain-lain tindakan tatatertib mengikut peraturan perolehan Yayasan Melaka yang berkuat-kuasa

3. Sekiranya terdapat mana-mana individu cuba meminta rasuah daripada saya atau mana- mana individu yang berkaitan dengan syarikat ini sebagai sogokan untuk dipilih dalam Quotation/sebut harga* seperti di atas, maka saya berjanji akan dengan segera melaporkan perbuatan tersebut kepada pejabat Suruhanjaya Pencegahan Rasuah Malaysia (SPRM) atau balai polis yang berhampiran.

Yang Benar,

……….................…………..

(Nama dan No. KP)

Cop Syarikat :

Catatan: i) *Potong mana yang tidak berkenaan.

ii) Surat akuan ini hendaklah dikemukakan bersama Surat Perwakilan Kuasa

43

APPENDIX 1 : Vendor Profile

44

APPENDIX 2 : Schedule of Prices For

Hardware

45

APPENDIX 3 : Schedule of Equipment

46

APPENDIX 4 : Record of Experience

47

APPENDIX 5 : Technical Information and Compliance For Hardware

48

APPENDIX 6 : Technical Information And

Compliance for Maintenance And Support Service

49

APPENDIX 7 :

Location for Delivery and Installation Hardware

43

APPENDIX 1 :

Vendor Profile

APPENDIX 1

KETERANGAN MENGENAI VENDOR

1. NAMA SYARIKAT : 2. ALAMAT SYARIKAT :

i. Ibu Pejabat :

ii. Cawangan :

3. NO. TELEFON :

i. Ibu Pejabat : _______________________

ii. Telefon Bimbit : _______________________

iii. Fax : _______________________

iv. Cawangan : _______________________ 4. TARIKH SYARIKAT DITUBUHKAN : 5. JENIS SYARIKAT : 6. JENIS PERNIAGAAN : 7. NAMA PENGERUSI : 8. KOMPOSISI MODAL (BUMIPUTERA / BUKAN BUMIPUTERA)

(Sila sertakan sijil pengiktirafan yang dikeluarkan oleh Kementerian Kewangan Malaysia)

9. MODAL PENYEBUTHARGA: (Isi mana yang berkenaan sahaja)

9.1. Perseorangan/Perkongsian : RM __________________

9.2. Sendirian Berhad (Sdn. Bhd.) / Berhad (Bhd) :

9.2.1. Modal Dibenar : RM _____________________ 9.2.2. Modal Dibayar : RM _____________________

10. BUTIR-BUTIR PEMILIKAN (OWNERSHIP)

10.1. Perseorangan :

Nama Pemilik: No. K/P :

10.2. Perkongsian :

Nama Pekongsi No. K/Pengenalan % Kongsian

10.3. Sendirian Berhad/Berhad :

Nama Pemegang

Saham No. K/Pengenalan % Bahagian

(Sila guna kertas berasingan jika tidak mencukupi)

11. AHLI LEMBAGA PENGARAH : a. b. c. d. e. f. g. h. i. j.

12. NAMA DAN KEWARGANEGARAAN AHLI LEMBAGA PENGARAH a. b. c. d. e. f. g. h. i. j. 13. STATUS SYARIKAT : a. 100% Kepunyaan Syarikat Tempatan b. Perkongsian Antara Syarikat Tempatan / Luar Negeri c. Syarikat Luar Negeri d. Lain-lain (nyatakan) 14. PENDAFTARAN SYARIKAT DENGAN KEMENTERIAN KEWANGAN a. No. Pendaftaran : b. Tarikh ditubuhkan :

c. Tempoh Pendaftaran Mulai : ______________

(Wajib menyertakan salinan sijil ) Hingga :_______________ 15. PENDAFTARAN PERBENDAHARAAN a. No. Pendaftaran : b. Tarikh mula Pendaftaran : c. Tarikh Tamat Pendaftaran : d. Bidang Pendaftaran : 16. PENYATA KEWANGAN BAGI 3 BULAN TERAKHIR (Berdasarkan kepada bulan tarikh Sebutharga dikeluarkan)

a. Nama Bank : b. No. Akaun Bank : c. Berbayar :

d. Baki Akaun Bank Tertinggi : e. Baki Akaun Bank Terendah :

Penyata Bank mulai : hingga

f. Nilai Aset Semasa : g. Nilai Liabiliti Semasa :

** PENYEBUTHARGA WAJIB menyertakan PENYATA KEWANGAN. Kegagalan menyertakan borang berkenaan akan menyebabkan Sebutharga tidak akan dipertimbangkan.

17. PERATUSAN KAKITANGAN a. Bumiputera : b. Bukan Bumiputera : c. Pelabur Asing : 18. BILANGAN KAKITANGAN BUMIPUTERA BUKAN LAIN-LAIN BUMIPUTERA a. Pentadbiran/ Pengurusan : b. Teknikal / Professional : c. Lain-lain (nyatakan) : 19. STATUS YANG DIBENARKAN OLEH PEMBUAT / PEMBEKAL BAGI

SETIAP PERALATAN PERALATAN STATUS a. b. c. d. e. f. g. h. i. j. 20. BUATAN DALAM MALAYSIA : (A) Sebutkan sama ada barang-barang yang hendak dibekalkan itu dibuat

dalam Malaysia atau di luar Malaysia (B) Jika barang dibuat dalam Malaysia, sebutkan peratus nilai bahagian

barang yang dibuat di Malaysia 21. SILA NYATAKAN SAMA ADA PENGELUAR UTAMA ATAU AGEN :

22. KONTRAK DENGAN KERAJAAN PADA MASA LALU :

Jika Vendor pernah mengikat kontrak dengan mana-mana Jabatan Kerajaan atau Badan-badan berkanun beritahu sama ada firma tuan mengalami pergantungan dan penamatan kontrak dalam perjalanan kontrak dengan Kerajaan oleh kerana pelanggaran syarat-syarat kontrak.

23. LAIN-LAIN MAKLUMAT BAGI MENYOKONG CADANGAN INI : 24. TAWARAN HARGA SEBUTHARGA SECARA KESELURUHAN : Saya perakui bahawa segala keterangan di atas adalah benar. Tandatangan Vendor : ………………………… Tarikh : Nama : Jawatan Rasmi dalam Syarikat : Tandatangan Saksi : Nama : Jawatan :

44

APPENDIX 2 :

Schedule of Prices For

Hardware

APPENDIX 2

SCHEDULE OF PRICES FOR HARDWARE

(include all emulation, communication and networking equipment required) Hardware Items Country

Origin Model

Number Quantity Unit Price inclusive of

Delivery and Installation (RM)

Other* Charges ( RM )

Total Price (RM)

Maintenance Cost

Per Annum (RM)

Remarks (Port of Loading)

1. Next Generation

Firewall

1

OTHER CHARGES (Please Specify

Total

* Include Government Duties * Warranty period shall be 1 year for support and services

Tandatangan :……………………………… Nama dan Jawatan :…………............................……...................................................… Nama Syarikat :…............................................…………………………......................................................................................................... Tarikh : …………………………... Cop Syarikat : ………………………………….

45

APPENDIX 3 :

Schedule of Equipment

APPENDIX 3

SCHEDULE OF EQUIPMENT

(include all emulation, communication and networking equipment required)

Hardware Item

Country Origin

Model Number

Quantity

Next Generation Firewall

1

* Include Government Duties * Warranty period shall be 1 year for support and services Tandatangan : ……………………………… Nama Syarikat : …………………………… Nama dan Jawatan : ……………………………… Tarikh : …………………………...

46

APPENDIX 4 :

Record of Experience

APPENDIX 4

MULA TAMAT

Tandatangan …………………………..……………………. Nama Syarikat ……………………………………

Nama dan Jawatan …………………………..…………………….. Tarikh …………………………………………………

CATATAN (JENIS PERKHIDMATANYANG DIBERI)

REKOD PENGALAMAN ( BAGI TEMPOH 5 TAHUN TERDAHULU )

NILAIKONTRAK (RM)

TARIKH PERATUSANKERJA SIAP

PROJEK DANPELANGGAN

PEGAWAI YANGBOLEH DIHUBUNGI

47

APPENDIX 5 :

Technical Information and

Compliance For Hardware

APPENDIX 5

NO SPECIFICATION SPECIFICATION COMPLIANCE RESPOND PROPOSED BY VENDOR1.1.1

1 Quantity 1 Unit Must Comply (Yes/No)2 Brand / Manufacture - Please Specify3 Model - Please Specify

4Brochure/Full technical information on the equipment proposed must be provide

- Must Comply (Yes/No)

5 Device Type Next Generation Firewall Must Comply (Yes/No)6 Enclosure Type rack-mountable - 1U Must Comply (Yes/No)

6 x 10/100/1000 Must Comply (Yes/No)1 x RJ-45 console port and 1 Flexi Modules Port Must Comply (Yes/No)Firewall Throughput (up to 14 Gbps) Must Comply (Yes/No)Intrustion Prevention throughput (up to 2.7 Gbps) Must Comply (Yes/No)VPN throughput ( 1.35 Gbps) Must Comply (Yes/No)AntiVirus throughput ( 2.3 Gbps) Must Comply (Yes/No)New sessions per second (up to 135,000 sessions) Must Comply (Yes/No)Max sessions ( up to 8.2 million ) Must Comply (Yes/No)

9 Storage Capacity 120 GB SSD Must Comply (Yes/No)

TECHNICAL INFORMATION FOR EQUIPMENT

8 Performance

Ports7

1.1 HARDWARE SPECIFICATION FOR NEXT GENERATION FIREWALL

GENERAL

NO SPECIFICATION SPECIFICATION COMPLIANCE RESPOND PROPOSED BY VENDORGENERAL Stateful deep packet inspection firewall Must Comply (Yes/No)

FastPath Packet Optimization Must Comply (Yes/No)User, group, time, or network based policies Must Comply (Yes/No)Access time polices per user/group Must Comply (Yes/No)

Enforce policy across zones, networks, or by service type Must Comply (Yes/No)

Zone isolation and zone-based policy support Must Comply (Yes/No)

Default zones for LAN, WAN, DMZ, LOCAL, VPN and WiFi Must Comply (Yes/No)

Custom zones on LAN or DMZ Must Comply (Yes/No)Customizable NAT policies with IP masquerading Must Comply (Yes/No)Flood protection: DoS, DDoS and portscan blocking Must Comply (Yes/No)Country blocking by geo-IP Must Comply (Yes/No)Routing: static, multicast (PIM-SM) and dynamic (BGP, OSPF) Must Comply (Yes/No)

Upstream proxy support Must Comply (Yes/No)

Protocol independent multicast routing with IGMP snooping Must Comply (Yes/No)

Bridging with STP support and ARP broadcast forwarding Must Comply (Yes/No)WAN link balancing: multiple Internet connections, auto-link health check, automatic failover, automatic and weighted balancing and granular multipath rule

Must Comply (Yes/No)

Wireless WAN support (n/a in virtual deployments) Must Comply (Yes/No)802.3ad interface link aggregation Must Comply (Yes/No)Full configuration of DNS, DHCP and NTP Must Comply (Yes/No)Dynamic DNS Must Comply (Yes/No)

Protocol independent multicast routing with IGMP snooping Must Comply (Yes/No)

Bridging with STP support and ARP broadcast forwarding Must Comply (Yes/No)IPv6 support with tunnelling support including 6in4, 6to4, 4in6, and IPv6 rapid deployment (6rd) through IPSec Must Comply (Yes/No)

VLAN DHCP support and tagging Must Comply (Yes/No)Multiple bridge support Must Comply (Yes/No)

Firewall, Networking and Routing10

NO SPECIFICATION SPECIFICATION COMPLIANCE RESPOND PROPOSED BY VENDORGENERAL Advanced Threat Protection (Detect and block network

traffic attempting to contact command and control servers using multi-layered DNS, AFC, and firewall)


Security Heartbeat™ instantly identifies compromised endpoints including the host, user, process, incident count, and time of compromise


Security Heartbeat™ policies can limit access to network resources or completely isolate compromised systems until they are cleaned up


12 Intrusion Prevention SystemsHigh-performance, next-gen IPS deep packet inspection engine with selective IPS patterns for maximum performance and protection


Fully transparent proxy for anti-malware and web-filtering Must Comply (Yes/No)Enhanced Advanced Threat Protection Must Comply (Yes/No)URL Filter database with millions of sites across 92 categories backed by SophosLabs Must Comply (Yes/No)

Surfing quota time policies per user/group Must Comply (Yes/No)Access time polices per user/group Must Comply (Yes/No)

Malware scanning: block all forms of viruses, web malware, trojans and spyware on HTTP/S, FTP and web-based email Must Comply (Yes/No)

Advanced web malware protection with JavaScript emulation Must Comply (Yes/No)

Live Protection real-time in-the-cloud lookups for the latest threat intelligence Must Comply (Yes/No)

Second independent malware detection engine (Avira) for dual-scanning Must Comply (Yes/No)

Real-time or batch mode scanning Must Comply (Yes/No)Pharming Protection Must Comply (Yes/No)HTTP and HTTPS scanning on a per user or network policy basis with customizable rules and exceptions Must Comply (Yes/No)

SSL protocol tunnelling detection and enforcment Must Comply (Yes/No)Certificate validation Must Comply (Yes/No)High performance web content caching Must Comply (Yes/No)Forced caching for Sophos Endpoint updates Must Comply (Yes/No)File type filtering by mime-type, extension and active content types (e.g. Activex, applets, cookies, etc.) Must Comply (Yes/No)

Web Protection Features13

APT Solution and Security Heartbeat11

NO SPECIFICATION SPECIFICATION COMPLIANCE RESPOND PROPOSED BY VENDORGENERAL YouTube for Schools enforcement Must Comply (Yes/No)

SafeSearch enforcement Must Comply (Yes/No)Enhanced application control with signatures and Layer 7 patterns for thousands of applications Must Comply (Yes/No)

Application control based on category, characteristics (e.g. bandwidth and productivity consuming), technology (e.g. P2P) and risk level


Per-user or network rule application control policy enforcement Must Comply (Yes/No)

Custom traffic shaping (QoS) options by web category or application to limit or guarantee upload/download or total traffic priority and bitrate individually or shared


E-mail scanning with SMTP, POP3, and IMAP support Must Comply (Yes/No)Reputation service with spam outbreak monitoring based on patented Recurrent-Pattern-Detection technology Must Comply (Yes/No)

Block spam and malware during the SMTP transaction Must Comply (Yes/No)Second independent malware detection engine (Avira) for dual-scanning Must Comply (Yes/No)

Live Protection real-time in-the-cloud lookups for the latest threat intelligence Must Comply (Yes/No)

Automatic signature and pattern updates Must Comply (Yes/No)File-Type detection/blocking/scanning of attachments Must Comply (Yes/No)Accept, reject or drop over-sized messages Must Comply (Yes/No)Detects phishing URLs within e-mails Must Comply (Yes/No)Use pre-defined content scanning rules or create your own custom rules based on a variety of criteria Must Comply (Yes/No)

TLS Encryption support for SMTP, POP and IMAP Must Comply (Yes/No)

Append signature automatically to all outbound messages Must Comply (Yes/No)

Email archiver Must Comply (Yes/No)Spam quarantine digest and notifications options Must Comply (Yes/No)Malware and spam quarantines with search and filter options by date, sender, recipient, subject, and reason with option to release and delete messages


Self-serve user portal for viewing and releasing quarantined messages Must Comply (Yes/No)

14 Email Protection Features

NO SPECIFICATION SPECIFICATION COMPLIANCE RESPOND PROPOSED BY VENDORGENERAL Patent-pending SPX encryption for oneway message

encryption Must Comply (Yes/No)

Recipient self-registration SPX password management Must Comply (Yes/No)Add attachments to SPX secure replies Must Comply (Yes/No)Completely transparent, no additional software or client required Must Comply (Yes/No)

DLP engine with automatic scanning of emails and attachments for sensitive data Must Comply (Yes/No)

Pre-packaged sensitive data type content control lists (CCLs) for PII, PCI, HIPAA, and more, maintained by SophosLabs


Reverse proxy Must Comply (Yes/No)URL hardening engine with deep-linking and directory traversal prevention Must Comply (Yes/No)

Form hardening engine Must Comply (Yes/No)SQL injection protection Must Comply (Yes/No)Cross-site scripting protection Must Comply (Yes/No)Dual-antivirus engines (Sophos & Avira) Must Comply (Yes/No)HTTPS (SSL) encryption offloading Must Comply (Yes/No)Cookie signing with digital signatures Must Comply (Yes/No)Path-based routing Must Comply (Yes/No)Outlook anywhere protocol support Must Comply (Yes/No)Reverse authentication (offloading) for form-based and basic authentication for server access Must Comply (Yes/No)

Virtual server and physical server abstraction Must Comply (Yes/No)Integrated load balancer spreads visitors across multiple servers Must Comply (Yes/No)

Skip individual checks in a granular fashion as required Must Comply (Yes/No)Match requests from source networks or specified target URLs Must Comply (Yes/No)

Support for logical and/or operators Must Comply (Yes/No)Assists compatibility with various configurations and non-standard deployments Must Comply (Yes/No)

Options to change WAF performance parameters Must Comply (Yes/No)Scan size limit option Must Comply (Yes/No)

15 Web Server Protection Features

NO SPECIFICATION SPECIFICATION COMPLIANCE RESPOND PROPOSED BY VENDORGENERAL Allow/Block IP ranges Must Comply (Yes/No)

Wildcard support for server paths Must Comply (Yes/No)Automatically append a prefix/suffix for authentication Must Comply (Yes/No)

16 High Availability Support Active/Active and Active/Passive HA Must Comply (Yes/No)17 IPv6 Dual-stack Must Comply (Yes/No)

Purpose-built streamlined user interface Must Comply (Yes/No)3-clicks-to-anywhere navigation Must Comply (Yes/No)Self-documenting menu system Must Comply (Yes/No)Advanced trouble-shooting tools in GUI (e.g. Packet Capture) Must Comply (Yes/No)

Full command-line-interface (CLI) accessible from GUI Must Comply (Yes/No)Role-based administration Must Comply (Yes/No)Automated firmware update notification with easy automated update process and roll-back features Must Comply (Yes/No)

Reusable system object definitions for networks, services, hosts, time periods, users and groups, clients and servers Must Comply (Yes/No)

Self-service user portal Must Comply (Yes/No)Configuration change tracking Must Comply (Yes/No)Flexible device access control for services by zones Must Comply (Yes/No)Email or SNMP trap notification options Must Comply (Yes/No)SNMP and Netflow support Must Comply (Yes/No)Central managment support from Sophos Firewall Manager or Sophos Cloud Firewall Manager Must Comply (Yes/No)

Backup and restore configurations: locally, via FTP or email; on-demand, daily, weekly or monthly Must Comply (Yes/No)

API for 3rd party integration Must Comply (Yes/No)Remote access option for Sophos Support Must Comply (Yes/No)Network or user based traffic shaping (QoS) (Web and App based traffic shaping are included with the Web Protection Subscription )


Set user-based traffic quotas on upload/download or total traffic and cyclical or non-cyclical Must Comply (Yes/No)

Real-time VoiP optimization Must Comply (Yes/No)

QUALITY OF SERVICE (QOS)19

MANAGEMENT, REPORTING, VISIBILITY TOOLS

18

NO SPECIFICATION SPECIFICATION COMPLIANCE RESPOND PROPOSED BY VENDORGENERAL1.1.2

1 Width 17.24 in Must Comply (Yes/No)2 Depth 11.5 in Must Comply (Yes/No)3 Height 1.75 in Must Comply (Yes/No)4 Weight 11.02 lbs Must Comply (Yes/No)

1.1.31 Waranty 1 year warranty or According to License Subcription Must Comply (Yes/No)

1.1.41 Operating Temperature 0° to 40° C Must Comply (Yes/No)2 Non Operating Temperature -20° to 70° C Must Comply (Yes/No)

1.1.51 Input Voltage 100-240VAC (50-60Hz)2 POWER SUPPLY (idle/fullload) 19W / 29W

1.1.61 Optional Services - Please Specify

Power Device

Optional Services

MISCELLANEOUS

MANUFACTURED WARRANTY

Environmental Parameters

* Waranty period shall be 1 year for All Equipment* With Instalation and Configuration at site

TANDATANGAN : …………………………………………………………

COP SYARIKAT : ………………………………………………

NAMA SYARIKAT : ……………………………………………………………………..

NAMA DAN JAWATAN : ……………………………………………………………….

TARIKH : …………………………………………

48

APPENDIX 6 :

Technical Information And

Compliance for Maintenance

And Support Service

1

APPENDIX 6

TECHNICAL INFORMATION AND COMPLIANCE FOR

MAINTENANCE AND SUPPORT SERVICE

Specification

Yes

No

Remarks

2.1 The successful Vendor shall immediately commence preventive maintenance and curative maintenance, which include on-site remedial, replacement of detective parts and all engineering services, after the issue of Certificate of Acceptance at no extra cost of such maintenance to the YAYASAN MELAKA during the validity of the Warranty Period.

2.2 A maintenance contract for the proposed equipments shall be drawn up to become effective after the expiry of the Warranty Period. The successful Vendor shall provide maintenance of at least one (1) year from the expiry date of the Warranty Period for all the proposed Equipments facilities including related peripheral devices.

2.3 The YAYASAN MELAKA reserves the right to terminate the arrangements for any maintenance upon giving a formal notice three (3) months in advance to the successful Vendor.

2

APPENDIX 6

TECHNICAL INFORMATION AND COMPLIANCE FOR MAINTENANCE AND SUPPORT SERVICE

Specification

Yes

No

Remarks

2.4 The successful Vendor shall undertake to maintain the capacity to fulfill maintenance obligations for at least one (1) year from the expiry date of Warranty Period if so required by the YAYASAN MELAKA.

2.5 The successful Vendor shall submit details, documentations in method and procedures, forms, formats etc; in order to establish high level of maintenance and support services for the proposed Equipment. The maintenance terms and conditions and the total monthly maintenance charges quoted as specified in APPENDIX 2 shall be valid for a period at least three (3) years after the end of the normal warranty period of the proposed for Personal Computers.

2.6 The successful Vendor shall have a well-established maintenance support services and facilities. The personnel and facilities shall include : 2.6.1 Sufficiently trained, skilled and experience personnel who are proficient in undertaking the maintenance and support tasks called for;

3

APPENDIX 6


Specification

Yes

No

Remarks

2.6.2 Availability of an adequate support service and facilities, to provide consultation or repair.

2.7 Maintenance and support personnel shall be able to do maintenance visits either on a scheduled or non-scheduled basis.

2.8 The completion of any maintenance work by the successful Vendor’s representative on-site shall be followed by the agreed Equipments tests to be run on the Equipments to ensure it is operating correctly.

3.1 Maintenance calls may be made at any time between 8:00 am and 5:30 pm of a working day. The successful Vendor shall be required to respond to any call within four (4) hours upon the receipt of notification.

4.1 The successful Vendor shall keep records of all maintenance under the Contract in a manner required by YAYASAN MELAKA.

4

APPENDIX 6


Specification

Yes

No

Remarks

4.2 The successful vendor shall at all times make his records available for inspection by the YAYASAN MELAKA.

4.3 The successful Vendor shall record the commencement and completion of all maintenance and repair and where necessary, details of the entire fault that caused the maintenance or repair in the manner required by the YAYASAN MELAKA. Faults defected during preventive maintenance shall be recorded separately from the faults detected or reported outside those periods.

5.1 The successful Vendor shall provide maintenance team(s) which has had experienced on the proposed Equipments. The training and competence of the team(s) shall be as such to ensure that all that are required and maintain can be restored to and kept in the operating condition required by the YAYASAN MELAKA.

5

APPENDIX 6


Specification

Yes

No

Remarks

5.2 The Vendor is to state the number of persons who are, or will be employed by him in Malaysia, who are qualified maintenance personnel for the type of the equipments proposed and state profiles of their relevant experience.

6.1 The Vendor shall provide details of the recommended preventive maintenance schedule for all items of the Equipments proposed.

Tandatangan : ……………………………… Nama Syarikat : …………………………… Nama dan Jawatan : ……………………………… Tarikh : …………………………...

49

APPENDIX 7 :

Location for Delivery and

Installation Hardware

APPENDIX 7

LOCATION OF THE DELIVERY, INSTALATION AND CONFIGURATION OF NETWORK EQUIPMENT

No.

Hardware Item

Quantity

Location

1 Next Generation Firewall 1 Bilik Server Yayasan Melaka

Documents

DOKUMEN SEBUTHARGA - Yayasan Melakayayasanmelaka.gov.my/webres_eng/tender/FULL_SEBUTHARGA_FIREWALL(17...serta menyelenggara peralatan untuk ... penyebutharga-penyebutharga dikehendaki