Scribd Logo
Upload

Welcome to Scribd!

  • Modern Day Next-Gen Firewall For Every Office

    Uploaded by

    T V Ramprakash
    31 views2 pages
    NG25+ Datasheet

    Original Title

    NG25+_Datasheet

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    NG25+ Datasheet

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    31 views2 pages

    Modern Day Next-Gen Firewall For Every Office

    Uploaded by

    T V Ramprakash
    NG25+ Datasheet

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    Datasheet

    NG25+

    MODERN DAY NEXT-GEN FIREWALL FOR EVERY OFFICE

    PRODUCT HIGHLIGHT

    UNIQUE GATEWAY ARCHITECTURE


    Combine digital security with productivity
    and improve your network’s protection level.
    Its Policy based ISP Failover & Load Balancing
    to distribute important applications over more
    robust Internet links and less imp. App. over
    backup connections and also to provide In today’s world, Cyber threats are same for all types of modern
    redundancy. business. Hence, the firewall used in SMB & Corporate segments
    should also support features like enterprise class firewall to
    SIMPLICITY, SECURITY & SCALABILITY protect the network and need to be available at an affordable
    The Next-Generation Firewall allows for the price.
    creation of policies for applications, users,
    groups, programming, and other features that
    Its GbE interfaces are user configurable as WAN-1, LAN & WAN-2
    are not available in conventional firewalls.
    or DMZ as per the network requirements. It also supports 4G LTE
    Cellular WAN connectivity (SIM* |USB Modem | USB tethering) to
    COMPLETE VISIBILITY (BYOD) provide load balanced secondary connectivity and ensure 100%
    UTM enabled HotSPOT Gateway Management uptime to the network.
    engine feature enhance the in NG-Series to
    inspect, detect and monitor the traffic and Its built in AAA User Management Hotspot functionalities for
    control the devices being used by employees or both Fixed & Wireless users .It also helps to provide secure
    guest. Internet access to guest along lawful Tracking & Filtering
    with detailed in-built logs and reports on every configured
    MODERNITY & FLEXIBILITY
    Secure Access Gateway is the core engine of
    features.
    NG-Smart VPN technology. It is ideal for
    establishing a secure tunnel over any WAN link.
    FEATURES HARDWARE SPECIFICATIONS
    Result- reductions in cost, optimization of time
    Interfaces 04 GbE
    and easy management, alternative to costly
    MPLS. Internal 4G SIM Module Optional *
    Firewall Throughput 4.0 Gbps
    3G |4G LTE EXTENSION Firewall IMIX 2250 Mbps
    NG25+ includes built-in 4G Modem* that allows Concurrent Sessions 6,000,000
    additional WAN connectivity or a redundant link
    New Sessions / Sec. 40,000
    for maximum reliability.
    VPN Throughput 500 Mbps
    NGFW Throughput 1000 Mbps
    AV Throughput 600 Mbps
    IPS Throughput 1250 Mbps
    Storage-SSD 32 GB
    Memory /Max 2 /4 GB
    Firewall Policies Unrestricted
    Maximum Connections Unrestricted
    Inbound NAT Connection Unrestricted
    Local User Database Unlimited
    Suggested concurrent Users 50~55
    /Devices
    SPECIFICATIONS
    NETWORK Services LOGS | REPORTING |MONITERING
     Multi-Link Auto Failover. VIRTUAL PRIVATE NETWORK
     Virtual private network  Real-time traffic statistic and analytics
     4G LTE Support : SIM* |USB Dongle |Tethering  User Management & Account Expiry Report
     Operating modes: NAT/route, transparent  SSL VPN - TCP/UDP tunnelling with failover
    (bridge), and mixed mode  Encryption – 3DES,DES,AES, Blowfish  Bandwidth ,Data usages & Session Report
     Configurable LAN/WAN/DMZ Ports  Hash algorithms - MD5, SHA-1, SHA-2  Web Browsing & Records surfing logs of each user
     NAT & ALG Support - DNAT ,SNAT , PAT  Authentication – pre-shared key, certificates  Search logs based on User, IP, Site ,Time & File Type
     Routing - Static, Source , Destination & Policy  Supports IKEv1 and IKEv2.  Change Log Report / Activity Timeline
    based  DH groups - 1, 2, 5, 14, 15, 16, 17…  Comprehensive event logs: system & admin activity
     Policy Rule : predefined, custom & Grouping  NAT traversal & PFS support audits, routing & networking, VPN, user
     Authentication, Authorization & Accounting.  SSL authentication – AD, LDAP, radius, local authentications,
     Support Multicast Forwarding , VLAN Tagging  Multi-layer client authentication - certificate,  User & System based overall and user wise analytics
     Static, DHCP, PAP/CHAP Support username/password ,mac address , OTP*  Real Time monitoring Tools to get visibility into
     Network access - Split and Full tunnelling network Traffic & Bandwidth consumption
     Granular access control to all network resources  On-Appliance (Local) Logging and reporting facilities
    NETWORK SECURITY  Administrative controls - session timeout, DPD  Reports can be exported in PDF, Word and via Email
     Stateful & Deep Packet Inspection Firewall  User and group policy enforcement  System information such as concurrent session, CPU,
     Application Visibility & Control.  Multicast support over SSL VPN Memory and temperature
     Demilitarized Zone (DMZ)  SSL VPN deployment modes: Client to site , Site to  Support traffic information collection and forwarding
     Zone - based access control list. Site via Net-flow
     Access scheduling  View and manage IPSEC and SSL VPN connections
     Flooding detection and protection  Supports SSL VPN clients that run Windows, Linux,
     Stops all types of DoS; Prevents DNS Spoofing & iOS & Android ALERT MANAGEMENT
    Flooding, Bypass Websites, Packet Capturing  Real-time alerts to user on data consumption limit,
     IP-Mac bind, MAC Whitelist / Blacklist. CAPTIVE PORTAL CAPABILITIES
     Comprehensive DNS policy  voucher expiry etc.
     Intuitive self-service portals for users.  Real-time alerts to admin on link failure & Speed,
      Customise captive form input fields Remote Access etc.
    LINK LOAD BALANCING  Mobile/desktop responsive login page  Schedule Alerts for specific reports
     Bi-directional link load balancing  Social media based login, mac based auto login
     Outbound link load balancing includes policy 
     Create hourly and day based plans with FUP
    based routing and weighted, and dynamic  Accounting based on hours, days, data transfer SMS GATEWAY
    detection  Pre-configured SMS gateway*
     Inbound link load balancing supports Smart DNS  Click –n-configure custom gateway
    & dynamic detection INTRUSION PREVENTION  Facilitates different message templates
     Automatic link switching based on Traffic,  Protocol anomaly detection, rate-based detection, 
    latency, jitter, connectivity etc. custom signatures, manual, automatic push or pull
     Link health inspection with ARP, PING, and DNS signature updates, integrated threat encyclopaedia
      IPS Actions: default, monitor, block, reset (attackers VULNERABILITY ASSESSMENT
    URL FILTERING IP or victim IP, incoming interface) with expiry time
     IDS sniffer mode   Scans LAN Devices for vulnerability
     Web or URL / IP / Geography / Keyword /  Predefined prevention configuration  Generates summary and detailed reports of found
    Port / Application Filter possible threats
     Block predefined categories on specific time 
     Create | Edit | Delete Manual Categories & Add ANTI-VIRUS & ADVANCE THREAT
    exception PROTECTION CUSTOM DEVELOPMENT
     Manually defined web filtering based on URL,  Virus, Worms, Trojan detection & removal
    web content. Key word and MIME header  Spyware, Malware, Phishing, Bot & Pharming  Personalized development on request*
     Web filtering profile override: allows admin to protection  Third party application Integration*
    temporarily assign different profiles to User/IP  Manual, automatic push or pull signature updates
     Web filter local categories and category rating  Scans HTTP/S, FTP, SMTP/S, POP3, IMAP 
    override  Block files based on their type. HIGH AVAILABILITY
     Additional web filtering features:  Threat logs with action.  Active-Passive with state synchronizations
    • Force Google Safe search  Compressed file virus scanning  Stateful Failover to Keep-Alive Sessions
    • Force educational YouTube  Spam filtering   Redundant heartbeat interfaces
    • Exempt scanning encrypted connections on
    certain categories for privacy
    ATTACK DEFENCE
    HARDWARE
    USER| GUEST MANAGEMENT |AAA  Abnormal protocol attack defence  From factor- Desktop
     ID & Password login – fixed users  Anti DoS / DDoS, including SYN Flood, UDP Flood,
    DNS Query Flood defence, TCP fragment, ICMP  Memory - 2GB
     Approval-based Login. fragment etc.  SSD - 32 GB
     Social Media & OTP based login  ARP attack defence  Gbps Ethernet Ports - 4.
     BYOD Self & Voucher Registration with OTP  2 USB Ports, 1 VGA, 1HDMI
     Create users with auto-expiry, Renew & Block  Dimension-(mm)-(HxWxD)- 33x135x125
     Seamless connectivity from Wired to W-LAN DATA
     LEAKAGE PREVENTION
     Auto Login /No Authentication after First Login  Restricts file upload over HTTP, FTP, P2P and other POWER AND RELIABILITY
     Auto login based on IP & MAC or combination file sharing applications.  12V/ 5A Power Supply / Adapter 
     Concurrent logins, auto MAC binding  Blocks file transfer (upload & Download) over IM like  Operating Temperature - ( 0°C ~ 40°C)
     Easy migration - import/export data Facebook, Whats-app & other Social Sites .  Storage Temperature - (-20°C ~+70°C)
     Controls file upload /download over HTTPS/SSL  Relative humidity - 10% - 90%, no condensing
     Restrictions based on Device & OS websites.
     Create user groups & apply policies 
     Logging & Reporting in accordance to HIPAA, CIPA
    Allow login only when user comes from specific compliance. OTHER ADD-ON OPTIONS*
    segments  4G LTE SIM module
     Wi-Fi Module
    SYSTEM MANAGEMENT
    BANDWIDTH MANAGEMENT | QoS  System Configuration Backup / Restore 
     Define enhanced quality of service (QoS)  Auto/ Manual backup of User & Threat Logs
     Max/Guaranteed bandwidth tunnels or  Enable appliance & PMS remote access
    IP/User basis  Set auto/manual firmware updates
     Bandwidth allocated by time, priority, or  Create Child Admins and check logs
    equal bandwidth sharing  Set NTP , SMTP Email
     Integrate Syslog, SNMP, Net-flow
     Restrict users based on data, b/w &time  Three levels of users: Admin | Operator | Monitor
     Individual and shared bandwidth quota 
     Dynamic real-time dashboard status and drill-in 
     Contention ratio based bandwidth allocation. monitoring widgets
     Schedule based committed & burstable b/w.
     Configure multiple b/w policy on a user
    at different hours of day

    # All specification and photos are subject to change without prior notice
    1. Maximum throughput performance is measured under ideal test conditions using industry standard performance test tools. 2. Firewall UDP throughput performance is
    based on RFC 2544 guidelines. 3. All Performance values are upto or rough guideline only and vary depending on system configuration. 3. IPS throughput (http) measured
    using default IPS rule set and 512KB object size. 4. VPN throughput measured using multiple tunnels with 512KB response size. 5.Testing done with multiple flows through
    multiple port pairs. +if all slot populated

    www.netxgate.com | 9891@netxgate.com | +91-9891-412158


    #628 ,Signature Global Mall , Sec-3 , Vaishali , | # 6/1 , 1st Main , Vasanth Nagar
    GZB , Delhi /NCR – 201012 (INDIA) Bangalore – 560 052 (INDIA)

    You might also like