 |
 |
VPN Connection Forms
|
LAN to LAN (Gateway to Gateway), Remote
Access (Gateway to Client S/W) |
Standard IPSec Support
|
AH(RFC2402), ESP(RFC2406), IKE(RFC2409) |
| Tunneling Mode |
Transport Mode, Tunnel Mode |
| Encrypted Algorithms |
DES, 3DES, AES, SEED, BLOWFISH, BUD-F, etc. |
| Certification (Hash) Algorithms |
MD5, SHA1, SHA2 |
Key Exchange Methods
|
IKE(ISAKMP/Oakley), PFS |
| Certification Methods |
PSK(Pre-shared Key)
PKI ? RSA Signature Method, Other CA server & Authorized Certification agency compatibility
XAuth(Extended Authentication) ? account management through
Internal DB & external RADIUS serve |
Remote Access Support
|
XAUTH certification for VPN user certification, Virtual IP assignment through
Mode Config. |
Routing Protocol Support
|
Tunneling route static, Dynamic (RIP, OSPF), Multicast (PIM-SM) Routing Protocol support |
| NAT Traversal Support |
IPSec over NAPT support |
Multi-tunnel Support
|
Possible Active-Active / Active-Standby formation |
| Heterogeneous Network Compatibility |
Compatible with all equipments supporting standard IPSec
(Excellent flexibility Between IPSec equipments such as Cosine, Cisco, Nortel, Netscreen) |
|
 |
| Filtering Function |
Stateful Packet Inspection, protection against DoS & DDoS, defense against IP spoofing, Rule validation, log recording, time/day of the week access control |
| NAT Function |
Modify from private NAT to public external NAT (1:1, 1:N, N:1, M:N mapping)
Port Forwarding: mapping from External Address Port to Internal Address Port |
|
 |
| Routing Function |
Static, Dynamic(RIP, OSPF), Multicast(PIM-SM) Routing Protocol support |
Redundancy Function
|
VRRP, supports equipment fail-over through pseudo-HSRP |
Line Fail-over
|
Able to support back-up with other lines when the main line fails in multiple line formation |
| Load Balancing |
Per-packet, Per-Session Load Balancing support
|
| Policy Routing |
Based on the set policy, IP and subnet can provide forwarding to certain interface (source routing) |
Various WAN Connection Function
|
xDSL (PPPoE,DHCP,Static), Cable modem(DHCP), private line |
| xDSL Modem Management Function |
xDSL circuit speed, CRC value estimate & CRC auto/manual reset function offered. |
|
 |
| TCP Rate Shapping |
By controlling the data size being transferred, it can prevent data overload and the safety of sessions can be improved by controlling ACK’s time delay |
| Class Based Queuing |
Bandwidth is controllable by class hierarchy and the queue can be assigned according to its priority order |
|
 |
| Safe Remote Management |
SSL-based CLI & GUI offered |
Central Management Functions
|
Handle up to 5,000 equipments per NMS(control) server
Able to management equipments by groups
Remotely manage policy by groups and equipments |
Data Collection & Stat Management
|
Handle up to 5,000 equipments per NMS(control) server
Able to management equipments by groups
Remotely manage policy by groups and equipments |
Alarm Functions
|
Service: when problems occur, it’s able to warn users via e-mail, SMS and voice (ACS)
When equipments warn users, problems are ranked according to their critical level which can be customized by user |
|
 |
| DHCP |
DHCP-Server, DHCP-Relay |
Convenient Upgrade
|
Able to utilize the newest functions of Soligate VPN by easily upgrading using CLI and GUI |
| Recommended Settings |
User customizable settings |
|
|
 |
|
