Version 6.6 999 Mediant 800 MSBR
User's Manual 68. Technical Specifications
Extensive list of ALG-modules combined with SPI for error-free
configuration and maximum security
Port-forwarding and DMZ support for local applications and hosts
Website Restriction allows static URL-based blocking of public/extranet
websites
Advanced Filtering allows full control on Inbound/Outbound Rules per
interface/device
Site-to-Site VPN:
Supports two IPSec use-cases: Site-to-Site Gateway-to-Gateway)
VPN; Teleworker (User-to-Gateway) VPN
Fully compliant with IPSec RFCs: RFC 2401 - Security Architecture
for IP; RFC 2402 - IP Authentication Header; RFC 2406 – ESP;
RFC 2403 and RFC 2404 for Authentication
L2TP Client-Server VPN:
Supports two VPN use-cases: Server support for remote
Teleworker VPN access; Client-to-Gateway support with L2TP
Layer Two Tunneling Protocol - RFC 2661 (with L2TP/IPSec)
Support all WiN OS versions as well as Linux
DoS and IDS/IPS:
Denial of Service (DoS) protection: TCP RST, Ping Flood, ICMP
Echo storm, UDP snork attack, ICMP Smurf, UDP fraggle and more
IP spoofing attacks: FTP bounce, Broadcast/multicast source IP
attack
Intrusion and scanning attacks: IP source route, ICMP Echo reply
without request, ICMP Ping sweep, TCP Stealth; Scan (FIN, XMAS,
NULL), UDP port, FTP passive attack, loopback / Echo chargen,
Block security hazard ICMP messages
IP fragment overlap, Ping of Death, Fragmentation attacks and
Supported RFCs
IP/Routing:
RFC 2822 Internet Message Format
IEEE 802.1p Priority Tagging
RFC 2401 Security Architecture for IP
RFC 2402 AH - IP Authentication Header
RFC 2403 IPsec Authentication - MD5
RFC 2404 IPsec Authentication - SHA-1
RFC 2405 IPsec Encryption - DES
To Next Page
Loading...
