Secure Computing naujas gaminys- SG-720 pakeičia buvusiąją SG-710 seriją. Žemiau pateikta informacija apie šį gaminį. Taip pat daugiau informacijos yra šiame puslapyje: Recommended for: Mid to large-sized enterprise branch offices requiring a fully integrated firewall/VPN/IDS solution Sites requiring a DMZ or the capability to segment a network into separate workgroup or departmental security zones Sites needing an ICSA-certified stateful inspection firewall supporting xDSL, T-1, T-3, OC-1 & OC-3 network configurations High bandwidth Internet and remote intranet environments Mid-sized, multi-site networks needing a central VPN appliance to connect branch offices and mobile workers Features - 1RU rack mount case for server room/wiring closet
- Secure IPsec VPN with DES, 3DES and AES
- IDS for proactive detection and mitigation of network threats
- Session load balancing and Web proxy cache to optimise Internet traffic
- DMZ support to implement a public server infrastructure
- Unrestricted, unlimited user license
- No third-party client software required
- Web console for configuration and management
- Central management with Global Command Center
- Fully interoperable with Secure Computing Corporation appliances and other standards-based security devices
- IPsec VPN
- VPNC-certified interoperability
- Peer-to-peer (initiate and terminate)
- ESP and AH payloads
- Supports aggressive mode
- Dead peer detection
- Compression (deflate/gzip type algorithm)
- DES 56-bit, 3DES 168-bit, AES 256-bit encryption
- Hashes HMAC - MD5 and SHA-1 authentication
- IKE/ISAKMP Diffie-Hellman key exchange
- Diffie-Hellman Groups (1,2,5) and Oakley Groups (14,15,16) to 4096-bits
- X.509 certificates DER, PEM formats
- Pre-shared secrets
- Dynamic IP address end-points
- Dynamic DNS IPsec support
- Authentication up to 2048-bit for RSA key signatures
Multiple subnets - NAT traversal
- VPN - L2TP
- IPsec config Wizard
- L2TP over IPsec
- Autonomous L2TP
- Client: NAT, default route via L2TP
- Server: specify client IP address range
- VPN - PPTP
- v2 client and server
- Pass-through mode also
- MPPE 40 to 128-bit RC4 encryption
- PAP/CHAP/MS CHAPv2 authentication
- L2TP & GRE tunnelling extensions
- VPN – PPTP Tunnels = 100
- VPN – IPSec Tunnels = 400
- Stateful Inspection Throughput = 140 Mbps
- VPN – PPTP RC4 (128 bit) performance = 9 Mbps
- VPN – IPSec 3DES (168 bit) performance = 30 Mbps
- VPN – IPSec AES (256 bit) performance = 32 Mbps
- ICSA-certified dynamic firewall
- Routing
- DHCP - client and server
- PPPoE (for ADSL support)
- NAT - static and dynamic
- NAPT/PAT - port forwarding
- Connection sharing
- Anti-intrusion
- Logging (local and remote)
- Traffic shaping (QoS)
- IP aliases
- NTP client and server
- Web management
- CLI (Telnet) management
- Initial set-up via either static IP address or dynamic IP address (DHCP client)
- Bridging (802.1d)
- Administration user accounts
- RADIUS/TACACS+
- DNS enhanced caching, masquerading, proxy, multiple DNS server proxying
- RAS (dial-in)
- Failover/high availability
- Dial on demand
- RIP, RIPv2
- BGP, OSPF
- SSL/HTTPS web management
- SSH server & client
- Failover
- Load balancing
- Intrusion Detection System (IDS) based on Snort Web proxy
- Cache/Accelerator based on Squid
- Status LEDs
- Three 10/100BaseT FE ports (All configurable for DMZ, LAN, WAN…)
- Two 10/100/1000 GbE ports (All configurable for DMZ, LAN, WAN…)
- Serial ports - one (console, dial-in, or dial-on-demand)
- Cryptographic acceleration
- Memory - 256Mb Flash, 256Mb RAM
- Real-time clock
- Intel Xscale IXP465 Processor
- Power - Mains AC (100 - 240 Volts)
- Weight - 4lb (2 Kg)
- Dimensions – 19” rack unit, 1RU
- Operating temperature 0C to 40C
- Storage temperature -20C to 70C
- Humidity 5 to 95%, non-condensing
- Certification - Office Use
- RoHS Compliant
- Warranty - 1 year* in base product with 3 years available
*Except where required to be 2 years by law
|
