|
| |
 Solution > VForce VPN Series |
|
 |
 |
|
| NexG VForce series offers a centralized VPN solution for a secure network implementation. It supports IPSec, L2TP, PPTP
Protocols, and Statc, BGP, OSPF, RIP routing protocols plus NAT and Firewall functions.
NexG VForce series is a high performance network equipment which supports load-balancing using multiple lines, VRRP,
and HA capabilities.
|
|
 |
VPN Main Functions |
| Category |
Main Funtion |
| VPN connection |
LAN-to-LAN (Gateway-to-Gateway) |
| Remote connection (Client-to-Gateway) |
| Standard IPsec Support |
AH(RFC2402), ESP(RFC2406), IKE(RFC2409) |
| Tunneling Mode |
Transport Mode, Tunnel Mode |
| ESP support Protocol |
DES, 3DES, AES, SEED |
| AH support Protocol |
SHA-1, MD5 |
| ESP Performance |
Applying 3DES can reach Throughput of 30Mbps (depending on product) |
| Key Exchange |
Public Key, Shared Key |
| Manual Key, IKE(ISAKMP/Oakley) Support |
| PKI Support |
x.509 Digital Signature Exchange (RFC3280) Support |
| IKE Mode |
Main Mode, Aggressive Mode, Quick Mode |
| Compatibility |
Compatible with Standard IPSEC protocol supported IPSEC equipments |
| Layer2 Tunnel |
L2TP, PPTP support |
| NAT Traversal |
IPSEC over NAPT support |
|
|
|
|
Firewall functions |
| Category |
Main Functions |
| Filtering |
Packet Filtering : Allow or deny packets according to the Security Policy |
| Stateful Packet Filtering : Recall allowed connection state to apply this rules in Packet filtering |
| Content Filtering : Allowing only approved content access |
| MAC Address Filtering : Filter according the Mac Address |
| Flow Rate Based Filter : Packet Flow and Packet Burst controlled filter |
| Connection Limit per IP Address : Control the number of clients allowed per IP address |
| Time Based Filtering : Allow access according to time frame |
| NAT |
1:1, 1:n, n:n, n:m NAT(Network Address Translator), PAT support |
| Access Control |
Control unauthorized access to the network resources according to permissions |
| Firewall Log |
Packet logging set in Firewall Rules |
|
|
|
|
Connection and Routing Function |
| Category |
Main Funtion |
| Multi ¡© Tunnel |
Active-Active / Active-Standby |
| Multi-Line |
Intranet, internet traffic split between multiple lines |
| Load Balancing |
Per-packet, Per-destination Load Balancing support |
| Multi-Line Fail over |
Automatic fail over when multiple lines structure is used. If one line gets disconnected, the other lines will automatically backup the line |
| Policy Routing |
Based on the rules, can forward packets to a particular port |
| Routing Protocol |
Static, RIP-V1/V2, OSPF, BGP4 support |
| Session Maintenance |
In case of disruption on one of the VPN lines, can maintain the session through the other lines |
| Broadband Support |
PPPOE (ADSL), DHCP(ADSL, HFC) |
| Static IP Address (ADSL, Leased-Line) |
| Broadband management |
Automatic disconnection detection and reconnection for leased lines |
| Reporting tool in case of broadband service disconnection |
| High Speed ADSL modem management |
Remote Web management of ADSL modems, information (Link-Speed, CRC, Attenuation) retrieval, and remote reset |
| Compatibility with other network equipments |
Integration with your current network structure, without changing the implemented network design |
|
|
|
|
Traffic and Equipment management Functions |
| Category |
Main Functions |
| QoS(Quality of Service) |
Bandwidth control based on IP address, Protocol, Port, or Service for VPN and Internet Connection |
| Structured Traffic control |
Traffic control based on Input / Output |
| Avoid traffic control and VPN tunnel disconnection through bandwidth grant/limitation |
| Traffic Throughput report |
Graphic and GUI based monitoring of traffic throughput |
| Traffic control per interface |
Monitoring traffic per Ethernet and VPN interface |
| Traffic Load-Balancing |
Per-packet, Per-destination Load-Balancing support |
| Traffic Account and Log |
Kernel Level Traffic Account and Log support |
| Centralized management |
Remote management support through (ESM) |
| Remote Management |
Centralized remote management using SSH, Telnet, Web Tool(GUI support) |
| Information collection and summary report |
View remote equipment¡¯s performance and status
Analyze and collect information of remote systems using ESM
|
| Encrypted remote connection |
HTTPS Protocol |
| SNMP |
Standard SNMP support |
| Configuration backup |
Remote equipment configuration backup and restore |
| Encrypted configuration file management |
Encrypted equipment config backup and restore |
|
|
|
|
Other Functions |
| Category |
Main Functions |
| Redundancy feature |
Backup between equipments using VRRP(Virtual Router Redundancy Protocol)
IPAT (IP Address Taker over) |
| Tunnel Fail-over |
Automatic detection, report and recovery in case of VPN tunnel interruption |
| VPN Tunnel Fault Report |
Report High speed connection and tunnel fault in MS-Excel format through the centralized management system |
| MTU Flexibility |
IPSEC Fragmentation |
| TCP MSS Resizing |
Easy Upgrade
DHCP Server |
Easy Firmware upgrade in GUI environment |
| DHCP Server function support |
| Equipment Management environment |
CLI(Telnet, SSH) mode and GUI(Web base) mode support |
| Permission per User |
Support permission per user base |
|
|
|
