50 VPN Tunnels for Encrypted Remote Access
NETGEAR’s ProSafe® VPN Firewall with dial back-up is an SNMP-manageable, high-performance network solution that furnishes multidimensional security. Fully equipped and broadband-capable,this virtual private network (VPN) firewall comes with connection insurance: a built-in serial port for dial-up access. This practical feature means your business can maintain operation if your broadband Internet connection fails. It lets you retain an analog modem for emergency backup and also provides a migration path from analog to broadband, making the transition effortless.
High on security, this true firewall provides denial-of-service (DoS) protection using stateful packet inspection (SPI), URL keyword filtering, logging, reporting, and real-time alerts. It supports up to 50 IPsec VPN tunnels simultaneously using public key infrastructure (PKI), reducing your operating costs and improving the security of your network. With 8 auto-sensing, Auto Uplink™ switched LAN ports and Network Address Translation (NAT) routing, it allows the network a great foundation for growth.
Thoroughly Protected
The FV338 takes care of all your security needs, with support up to 50 IPsec VPN tunnels simultaneously, SPI firewall, denial-of-service (DoS) attack protection and multiple VPN pass-through for extra security. SYSLOG and email reporting enable thorough network monitoring. IKE authentication provides peace of mind against unauthorized VPN network access. The ProSafe VPN Firewall provides optimal value and defense against network security threats.
Easy to Use
Auto Detect connects to your ISP quickly; the user-friendly Web-based configuration screen and install assistant reduce setup time. The VPN Wizard automates VPN configuration and secure remote administration via Secure Sockets Layer (SSL) making it simple to connect to multiple sites. Support for DHCP (client and server) as well as PPPoE allows for easy, widespread deployment. This well-built firewall has an integrated 8-port 10/100 Mbps switch and is compatible with Windows®, UNIX®, Macintosh®, and Linux® O/S. It comes with an Ethernet cable, and Auto Uplink on the LAN ports eliminates the need for crossover cables. Support for DHCP (client and server) as well as PPPoE allows for easy, widespread deployment.
Flexible and Durable
Make a VPN connection to other VPN devices or connect through NETGEAR’s ProSafe VPN Client software, sold separately in single and five-user licenses. VPN05L – supports popular Microsoft® Windows platforms and is easy to configure, cost-effective and provides broad security support. The rugged metal unit houses advanced, high quality electronics, and NETGEAR’s tested and proven technology is backed by a NETGEAR Lifetime Warranty. DHCP (Dynamic Host Configuration Protocol)
A protocol for assigning dynamic IP address automatically to devices when they connect to the network. Dynamic addressing simplifies network administration because the software keeps track of IP address rather than requiring an administrator to manage the task. This is particularly helpful for laptops or other "visiting" devices when they want to connect to the Internet. Multiple DHCP Hosts is a common problem to troubleshoot on your LAN. For instance if you have a LAN set up and running a DHCP Host and you add a Wi-Fi router solely for the purpose of wireless access, you've just set up a conflict because these devices by default have DHCP Host enabled. Firewall
A set of related programs, located at a network gateway server that protects the resources of a private network from users from other networks. Basically, a firewall, working closely with a router program, examines each network packet to determine whether to forward it toward its destination. A firewall also includes or works with a proxy server that makes network requests on behalf of workstation users. A firewall is often installed in a specially designated computer separate from the rest of the network so that no incoming request can get directly at private network resources. LAN (Local Area Network)
The components that make up the data transfer mechanism for your office. The components include the cabling, the switches or hubs, routers, gateways, WiFi and servers. Value
The true measure of the overall worth of a product. Value encompasses not only price, but quality of product, quality of service and quality of support. At Telco Depot the partnership you form with us over the years contributes greatly to the overall value. Want cheap; keep looking, want value; you're in the right place. VPN (Virtual Private Network)
Private data network that makes use of the internet, maintaining privacy through the use of a tunneling protocol and security procedures. This is often used in conjunction with VoIP as a more cost-effective alternative to a dedicated bandwidth connection.
Download Spec Sheet here
Security Features
- SPI Firewall: Stateful packet inspection (SPI) to prevent notorious denial-of-service (DoS) attacks, including logging, reporting and email alerts, address, service and protocol, Web URL keyword filtering, prevent replay attack (reassembly attack), port/service blocking. Advanced features include block Java/URL/ActiveX based on extension, FTP/SMTP/RPC program filtering
- SIP Application Layer Gateway
- SIP compatibility list:
- Linksys SPA-901
- Linksys SPA-941
- SNOM M3
- Cisco 7940G
- X-Lite 3.0 (software for phones)
- D-Link DPH-140S
- Grandstream GXP-2000
- Polycom SoundStation 6000
- Siemens C450
- Aastra 51i
- VPN Functionality: Fifty (50) dedicated VPN tunnels, Manual Key and Internet Key Exchange Security Association (IKE SA) assignment with pre-shared key and RSA/DSA signatures, key life and IKE lifetime time settings, perfect forward secrecy (Diffie-Hellman groups 1 and 2 and Oakley support), operating modes (main, aggressive), fully qualified domain name (FQDN) support for dynamic IP address VPN connections
- IPsec Support: IPsec-based 56-bit (DES), 168-bit (3DES), or 256-bit (AES) encryption algorithm, MD5 or SHA-1 hashing algorithm, AH/AH-ESP support, PKI features with X.509 v.3 certificate support, remote access VPN (client-to-site), site-to-site VPN, IPsec NAT traversal (VPN pass-through)
- Mode of Operation: One-to-one/many-to-one Multi-network Address Translation (NAT), classical routing, unrestricted users per port
- IP Address Assignment: Static IP address assignment, internal DHCP server on LAN, DHCP client on WAN, PPPoE client support
Performance Features
- Throughput: LAN-to-WAN: up to 75 Mbps 3DES IPsec tunnel: Up to 19 Mbps
Management Features
- Administration interface: SNMP (v1, v2c) support, telnet, web graphic user interface, Secure Sockets Layer (SSL) remote management, user name and password protected; secure remote management support authenticated through IP address or IP address range and password; configuration changes/upgrades through Web GUI
- Configuration and upgrades: Upload and download configuration settings, firmware upgradeable flash memory
- Logging: SYSLOG, email alerts
Functions
- VPN Wizard to simplify configuration of the VPN, auto detect to automatically detect ISP address type (static, dynamic, PPPoE), port range forwarding, port triggering, exposed host (DMZ), hardware DMZ, enable/disable WAN ping, DNS proxy, MAC address cloning/spoofing, Network Time Protocol (NTP) support, keyword content filtering, email alerts, DHCP server (info and display table), PPPoE login client support, WAN DHCP client, diagnostic tools (ping, trace route, other), port/service, Auto Uplink on switch ports and Quality of Service (QoS).
Protocol Support
- Network: IP routing, TCP/IP, UDP, ICMP, PPPoE
- IP addressing: DHCP (client and server)
- Routing: RIP v1, RIP v2 (static routing, dynamic routing)
- VPN/security: IPsec (ESP, AH), MD5, SHA-1, DES, 3DES, IKE, PKI, AES
Maintenance
- Save/restore configuration, restore defaults, upgrades via Web browser, display statistics, logging, SYSLOG support
Hardware Specifications
- Processor speed: 266 MHz
- Memory: 16 MB flash, 32 MB DRAM
- Power adapter: 12V DC, 1.5A -plug is localized to country of sale
- Dimensions: 25.4 x 17.8 x 3.96 cm (10 x 7 x 1.56 in)
- Weight: 1.7 kg (3.7 lb)
Environmental Specifications
- Operating temperature: 0º to 40º C (32º to 104º F)
- Operating humidity: 90% maximum relative humidity, non-condensing
Warranty
- Switch: NETGEAR Lifetime Warranty†
- Power supply: 3-year Warranty
Package Contents
- ProSafe VPN Firewall (FVS338)
- Ethernet cable
- Installation guide
- Resource CD with single user ProSafe VPN Client
- Software license
- Warranty/support information card
System Requirements
- Cable, DSL or wireless broadband modem and Internet service
- Ethernet connectivity from broadband modem
- Network card for each connected PC
- Network software (e.g. Windows)
- Internet Explorer 5.0 or higher or Netscape Navigator 4.7 or higher, MAC, Linux
DHCP (Dynamic Host Configuration Protocol)
A protocol for assigning dynamic IP address automatically to devices when they connect to the network. Dynamic addressing simplifies network administration because the software keeps track of IP address rather than requiring an administrator to manage the task. This is particularly helpful for laptops or other "visiting" devices when they want to connect to the Internet. Multiple DHCP Hosts is a common problem to troubleshoot on your LAN. For instance if you have a LAN set up and running a DHCP Host and you add a Wi-Fi router solely for the purpose of wireless access, you've just set up a conflict because these devices by default have DHCP Host enabled. DSL (Digital Subscriber Line)
A generic name for digital lines that are provided by telephone companies to their local subscribers and that carry voice and high speed data simultaneously. DSL usually features higher download than upload capability since most home and small business use is surfing the web rather than uploading large files. Firewall
A set of related programs, located at a network gateway server that protects the resources of a private network from users from other networks. Basically, a firewall, working closely with a router program, examines each network packet to determine whether to forward it toward its destination. A firewall also includes or works with a proxy server that makes network requests on behalf of workstation users. A firewall is often installed in a specially designated computer separate from the rest of the network so that no incoming request can get directly at private network resources. Gateway
A device that connects to the network and converts a signal to be transmitted via IP. In telephony the classic use of a gateway is to convert POTS or analog lines to IP. As an example, we use a gateway to bring SIP Trunks into an xBlue Key System. IP (Internet Protocol)
A protocol that specifies the way data is broken into packets and the way those packets are addressed for transmission. Unlike traditional telephone lines which create a straight path from caller to recipient; IP uses the best available path at any given moment to move data packets between point A & point B. The beauty of IP is that the sending end and receiving end communicate success in sending and receiving to insure all data packets are delivered. A really great concept of IP is that of self healing. If a route is broken and the data packets cannot be delivered an alternate route is automatically selected. LAN (Local Area Network)
The components that make up the data transfer mechanism for your office. The components include the cabling, the switches or hubs, routers, gateways, WiFi and servers. QOS (Quality of Service)
A feature of routers that prioritize packets for VoIP traffic or other specific applications. This is an essential piece of a VoIP system as the timing of VoIP packets being received is critical to the voice quality. Click here for our preferred routers. Server
The central processor in a network. In our case the server supports the telephony functions in a VoIP network. It manages the connections between the phone lines and the telephones, voicemail, etc. SIP (Session Initiation Protocol)
Internationally recognized IP telephony signaling protocol used for VoIP. This is the most widely used protocol in the market and is a standard meaning anybody who builds a SIP 2.0 compliant product should work with any other SIP 2.0 compliant device. For instance our Talkswitch is compliant so any off the shelf SIP phone will work as an endpoint for a home phone or a remote worker. The trick with SIP 2.0 is that the combined devices will work to the feature set of the lowest common denominator meaning a SIP 2.0 telephone only support 80% of the SIP feature set then even though the telephone system supports a higher set of features, you will only have the base features of the phone. VPN (Virtual Private Network)
Private data network that makes use of the internet, maintaining privacy through the use of a tunneling protocol and security procedures. This is often used in conjunction with VoIP as a more cost-effective alternative to a dedicated bandwidth connection.
|
