The DrayTek Vigor 2950 Security Firewall combines cutting edge Internet security, with high capacity VPN capabilities. For remote teleworkers and inter-office links, the Vigor2950 can support up to 200 simultaneous VPN tunnels. Encryption and authentication is all handled by a dedicated VPN co-processor, thus maintaining maximum router performance. The Vigor 2950 also provides high-security firewall options with both IP-layer and content based protection.
For Internet connectivity protection, the Vigor 2950 has two WAN ports which can be used in failover mode (secondary ISP used if the primary ISP fails) or in load-balancing mode, where the two ISPs can share the Internet loading. Specific rules can be set for routing traffic via specific WAN connections, or automatic balancing will make best use of resources.
|
 |
|
Main Features:
- Load Balancing featuring:
- Two dedicated Ethernet WAN Ports (10/100Mb/s)
- WAN Failover or Load-Balanced Connectivity
- Service/IP Based Preference Rules or auto-weight
- Total WAN Throughput up to 90Mb/s
- Five Gigabit Ethernet LAN Ports (10/100/1000 Mb/s)
- High-Security Firewall with Stateful Packet Inspection (SPI)
- Robust TCP/IP Stack with Selectable DoS/DDos Protection
- LAN Mirroring & Monitoring Port (Ethernet Port No. 5)
- High Capacity VPN Concentrator featuring:
- Dedicated VPN Co-Processor for encryption/authentication
- VPN Throughput up to 50Mb/s
- Up to 200 Simultaneous Tunnels
- Dial-in or dial-out, LAN-to-LAN or Teleworker-to-LAN
- Protocol support for PPTP, L2TP, IPSec
- MD-5 & SHA-1 Hardware-Based Authentication
- Encryption : MPPE, DES/3DES & AES
- PFS (Perfect Forward Secrecy) - Adds additional key protection
- Pre-shared/IKE keying & PKI (X.509) certificate support
- IKE Phase 1 Agressive/Standard Modes & Phase 2 Selectable lifetimes
- Dead Peer Detection (DPD) and NAT-Traversal (NAT-T)
- Radius Support for dial-in teleworker profiles
- No additional client or remote site licencing required
- Smart-VPN Software Utility provided for teleworker convenience (Windows)
- Compatible with other leading 3rd party vendor VPN devices
|
 |
|
- Internet CSM (Content Security Management) featuring:
- URL Keyword Filtering - Whitelist or Blacklist specific sites or keywords in URLs
- Surfcontrol Support - Block web sites by category (subject to subscription)
- Prevent accessing of web sites by using their direct IP address (thus URLs only)
- Blocking automatic download of Java applets and ActiveX controls
- Blocking of web site cookies
- Block http downloads of file types (binary, compressed, multimedia):
- Time Schedules & exclusions for enabling/disabling these restrictions
- Block P2P (Peer-to-Peer) file sharing programs (e.g. Kazza, WinMX etc. )
- Block Instant Messaging programs (e.g. IRC, MSN/Yahoo Messenger)
- New DrayOS Version 3 Operating System including new object-based Firewall
- QoS (Quality of Service) Assurance:
- User-Defined Class-Based Rules
- DiffServ Codepoint Classifying
- 4 Priority Levels (Inbound/Outbound)
- Bandwidth Borrowing
- Individual IP Bandwidth/Session Limitation
- VLAN Blocking across LAN Ethernet ports
- Flexible DHCP with 'IP-MAC Binding'
- PPPoE Client and Static/Dynamic WAN IP modes
- NAT, Multi-NAT & Flexible Mapping/Forwarding
- Up to 20,000 simultaneous NAT Sessions supported
- Comprehensive Diagnostics & Reporting
- Real Time Data Flow Monitor, with instant block
- Rack Mountable (Brackets supplied) & Integral Power Supply
|
 |
|
Supply 