653SecurityIPS Firewalls

IPS Firewalls

Model

 

DFL-210

 

DFL-800

 

DFL-1600

 

DFL-2500

 

Ethernet WAN Port

1

 

2

 

-

 

 

Ethernet DMZ Port

1

 

1

 

-

 

 

(User-Configurable)

 

 

 

 

 

 

 

 

 

 

 

Port Interface

Ethernet LAN Port

4

 

7

 

-

 

 

User-Configurable

-

 

 

6

 

8

 

Gigabit Port

 

 

 

 

 

 

 

 

 

 

 

 

DB-9 RS-232 Console

 

 

1

 

 

 

 

Firewall Throughput

80Mbps

 

150Mpbs

 

320Mbps

 

600Mbps

 

VPN Throughput

25Mbps

 

45Mbps

 

120Mbps

 

300Mbps

 

IPS Throughput

20Mbps

 

40Mbps

 

150Mbps

 

400Mbps

System

Anti-Virus Throughput

10Mbps**

 

20Mbps**

 

-

 

Performance

Concurrent Sessions

10,000**

 

20,000**

 

400,000

 

1,000,000

 

New Sessions

2,000

 

4,000

 

10,000

 

15,000

 

(per second)

 

 

 

 

 

 

 

 

 

 

 

 

Policies

500

 

1,000

 

2,500

 

4,000

 

 

Transparent Mode; Network Address Translation (NAT), Port Address Translation (PAT);

 

Firewall System

 

Dynamic Routing Protocol: Open Shortest Path First (OSPF) (Not applicable for DFL-210);

 

 

H.323 NAT Traversal; Time-Scheduled Policies; Application Layer Gateway (ALG);

 

 

 

 

 

 

Proactive Network Security: ZoneDefense (Not applicable on DFL-210)

 

Networking

 

DHCP Server/Client; DHCP Relay; Policy-based Routing; IP Multicast: IGMPv3

 

Virtual LAN (VLAN)

8

 

16

 

128

 

1,024

 

 

Encryption Methods: DES/3DES/AES/Twofish/Browfish/CAST-128; IPSec NAT Traversal;

 

Virtual Private Network (VPN)

Dedicated VPN Tunnels: 100 (DFL-210), 200** (DFL-800), 1,200 (DFL-1600), 2,500 (DFL-2500);

 

 

 

Point-to-Point Tunneling Protocol (PPTP) / Layer 2 Tunneling Protocol (L2TP) Server; Hub and Spoke

System Management

RS-232 Console Interface; Web-based User Interface: HTTP, HTTPS;

 

Command Line/Secure Shell (SSH); Firmware Upgrade; Configuration Backup/Restoration

 

 

 

 

 

 

Built-in Database; Remote Authentication Dial In User Service (RADIUS);

 

User Authentication

Lightweight Directory Access Protocol (LDAP): Microsoft AD 2003/2008 OpenLDAP 2.2.26;

 

 

 

Microsoft Internet Authentication Service (IAS); XAUTH for IPSec Authentication

 

Logging and Monitoring

Internal Log; External Log: Syslog Server; E-Mail Notification; Event Log and Alarm;

 

Simple Network Management Protocol (SNMP) v1/v2c, SNMP Traps

 

 

 

 

 

 

Outbound Load Balancing;

 

 

 

 

 

Traffic Load Balancing

Server Load Balancing (Not applicable for DFL-210); Traffic Redirect at Fail-Over;

 

Outbound Load Balance Algorithms: Round-Robin, Weight-based Round-Robin,

 

 

 

 

 

 

Destination-based, Spill-over

 

 

 

 

 

Bandwidth Management

Policy-based Traffic Shaping; Guaranteed Bandwidth; Maximum Bandwidth;

 

Priority Bandwidth; Dynamic Bandwidth Balancing

 

 

 

 

 

 

 

 

 

 

WAN Fail-Over (DFL-210: When DMZ Port is Configured as WAN Port);

 

 

 

Active/Passive Modes (Not applicable on DFL-210/800);

 

 

 

High Availability (HA)

Device Failure Detection (Not applicable on DFL-210/800);

 

 

 

 

 

Link Failure Detection (Not applicable on DFL-210/800);

 

 

 

 

 

Firmware / Virtual Private Network (VPN) Session Synchronization (Not applicable on DFL-210/800)

Intrusion Detection & Prevention System

Automatic Pattern Update; Denial of Service (DoS), Distributed DoS (DDoS) Update;

 

Attack Alarm via Email; Advanced IDP/IPS Subscription;

 

 

 

(IDP/IPS)

 

 

 

 

 

IP Blacklist by Threshold or IPS/IDP (Not applicable on DFL-210)

 

 

 

 

Content Filtering

 

HTTP Type: URL Blacklist/Whitelist; Script Type: Java, Cookie, ActiveX, VB;

 

 

Email Type: Email Blacklist/Whitelist; External Database Content Filtering** (Available on DFL-210/800 only)

 

 

Anti-Virus**

 

Real Time AV Scanning; Unlimited File Size; Scans VLAN Tunnels; Support Compressed Files;

 

(Applicable on DFL-210 / DFL-800 only)

Signature Licensor: Kaspersky; Automatic Pattern Update

 

 

 

 

 

Desktop;

 

11-inch Desktop;

 

19-inch Rack-Mount;

 

19-inch Rack-Mount;

 

Dimension (W x D x H)

 

1U Height;

 

1U Height;

 

1U Height;

 

235 x 162 x 36mm

 

 

 

 

 

 

280 x 214 x 44mm

 

440 x 254 x 44mm

 

440 x 454 x 44mm

 

 

 

 

 

 

Physical &

Power Input

External Power Adapter

 

Internal Universal Power Supply

Operating Temperature

 

 

0 to 40 °C

 

Environmental

 

 

 

Storage Temperature

 

 

-20 to 70 °C

 

 

 

 

 

 

Operating Humidity

 

 

5% to 95% Non-Condensing

 

 

Mean Time Before Failure

186,614 hours

 

140,532 hours

 

71,965 hours

 

101,819 hours

 

(MTBF)

 

 

 

 

 

 

 

 

 

 

 

Certification

EMI-EMC Compliance

 

 

FCC Class A; CE Class A; C-Tick; VCCI

 

Safety Compliance

UL; LVD (EN60950-1)

 

 

 

LVD (EN60950-1)

 

 

 

 

 

 

** Available in Firmware 2.26.00 and above; Performance based on Firmware 2.26.00 and above

Page 67
Image 67
D-Link DES-7200 manual IPS Firewalls, Model DFL-210 DFL-800 DFL-1600 DFL-2500, Idp/Ips

DES-7200 specifications

The D-Link DES-7200 is a versatile, high-performance Ethernet switch designed for enterprise networks that require efficient data management and enhanced connectivity. This switch is manufactured to meet the demands of modern networking environments, offering a combination of scalability, reliability, and advanced features.

One of the key features of the DES-7200 is its support for 10/100/1000 Mbps Ethernet speeds, allowing it to easily handle high-bandwidth applications and large-scale data traffic. Its switching capacity, which can support a substantial number of simultaneous connections, ensures that the switch can keep up with the increasing demands of users and devices within a network.

The DES-7200 incorporates advanced Layer 2 and Layer 3 switching capabilities, making it suitable for a wide range of networking scenarios. This includes support for Virtual LANs (VLANs) which allow network administrators to segment networks for improved performance and security. The switch supports up to 4,096 VLANs, enabling efficient traffic management and isolation of sensitive data.

Another notable feature of the DES-7200 is its robust security protocols. It includes IEEE 802.1X port-based authentication, ensuring that only authorized users can access the network. Additionally, it supports Access Control Lists (ACLs) and Denial of Service (DoS) attack prevention measures, further enhancing network security.

D-Link has also integrated quality of service (QoS) functionality into the DES-7200, allowing for better handling of voice, video, and mission-critical data applications. With the ability to prioritize traffic, administrators can ensure a seamless and uninterrupted user experience, minimizing latency and congestion in busy network environments.

The DES-7200 features a user-friendly web-based interface for easy management and monitoring of the switch. This interface allows network administrators to configure settings, monitor performance, and troubleshoot issues quickly and efficiently.

Scalability is another significant characteristic of the D-Link DES-7200. It offers stacking capabilities, which means multiple switches can be managed as a single unit, simplifying network management and expanding network capacity without requiring excessive configuration.

Overall, the D-Link DES-7200 is a reliable choice for organizations looking to enhance their network infrastructure. With its combination of speed, security, and management capabilities, it stands as a robust solution for both small and large-scale enterprise networks.