Specifications
|
Description
|
Standards
|
IEEE, 802.3, 802.3u, 802.1D, 802.1p, 802.11e, 802.11w (Rapid Spanning Tree) 802.1X (security authentication), 802.1Q (VLAN),IPv4 (RFC 791), IPv6 (RFC 2460), Routing Information Protocol (RIP) v1 (RFC 1058), RIP v2 (RFC 1723)
|
Ports
|
LAN, WAN
|
Switch
|
Power button (on/off)
|
Buttons
|
Reset
|
Cabling type
|
Category 5e or better
|
LEDs
|
Power, WAN, LAN (ports 1-4)
|
Operating system
|
Linux
|
Network
|
Network Protocols
|
• Dynamic Host Configuration Protocol (DHCP) server
• Point-to-Point Protocol over Ethernet (PPPoE)
• Point-to-Point Tunneling Protocol (PPTP)
• Layer 2 Tunneling Protocol (L2TP)
• DNS proxy
• DHCP relay agent
• IGMP Proxy and multicast forwarding
• Rapid Spanning Tree Protocol (RSTP)
• Dynamic Domain Name System (TZO, DynDNS, 3322.org)
• Network Address Translation (NAT), Port Address Translation (PAT)
• One-to-One NAT
• Port management
• Port mirroring
• Software configurable DMZ to any LAN IP address
• Session Initiation Protocol (SIP) Application Layer Gateways (ALG)
|
LAN
|
Four (4) 10/100/1000 Mbps Gigabit LAN ports with managed switch
|
WAN
|
One (1) 10/100/1000 Mbps Gigabit WAN port
|
Routing Protocols
|
• Static routing
• Dynamic routing
• RIP v1 and v2
• Inter-VLAN routing
|
Network Address Translation (NAT) Protocol
|
Port Address Translation (PAT), Network Address Port Translation (NAPT)
|
VLAN Support
|
Port-based and 802.1Q tag-based VLANs
|
Number of VLANs
|
4 active VLANs (3-4096 range)
|
IPv6
|
• Dual-stack IPv4 and IPv6
• 6to4 tunneling
• Multicast Listener Discovery (MLD) for IPv6 (RFC2710)
• Stateless address auto-configuration
• DHCPv6 Server for IPv6 Clients on LAN
• DHCP v6 client for WAN connectivity
• Internet Control Message Protocol (ICMP) v6
• Static IPv6 Routing
• Dynamic IPv6 Routing with RIPng
|
Network Edge (DMZ)
|
Software configurable to any LAN IP address
|
Layer 2
|
802.1Q-based VLANS, 4 active VLANS
|
Security
|
Firewall
|
Stateful packet inspection (SPI) firewall, port forwarding and triggering, denial-of-service (DoS) prevention, software-based DMZ
DoS attacks prevented:
• SYN Flood Detect Rate (max/sec)
• Echo Storm (ping pkts/sec)
• ICMP Flood (ICMP pkts/sec)
• Block UDP Flood
• Block TCP Flood
• Block Java, Cookies, Active-C, HTTP Proxy
|
Access Control
|
IP access control lists; MAC-based wireless access control
|
Content Filtering
|
Static URL blocking or keyword blocking
|
Secure Management
|
HTTPS, username/password complexity
|
Certificate Management
|
Self-signed SSL certificate, import/export certificate using Privacy-Enhanced Mail (PEM) format
|
User Privileges
|
2 levels of access: admin and guest
|
VPN
|
IPsec VPN
|
10 gateway-to-gateway IPsec tunnels
|
QuickVPN
|
10 Quick VPN tunnels using Cisco QuickVPN client
|
PPTP VPN
|
10 PPTP tunnels for remote client access
|
|