Preview only show first 10 pages with watermark. For full document please download

C1550 Serie

   EMBED

Share

Transcript

C1550 Serie Experts in data communication The C1550 VPN Router series is a modularly constructed communications platform, designed for industrial use. Dual SIM support as well as the intelligent backup management guarantee an extremely high reliability and thereby provide an availability of close to 100%. VPN Router Series The fully implemented IPSec standard as well as OpenVPN guarantee the highest security during transmission of data. The authentication can be made either using deposited certificates or pre-shared keys. All modern encryption algorithms such as 3DES or AES with up to 256 bit encryption length are supported.The permanently established VPN tunnel (configurable) enables the integration of the router in a company network and can also be accessed via mobile networks with private IP addressing; therefore DynDNS is no longer necessary. If desired the router can also be reached via DynDNS. The terminal equipment can be connected either by WLAN or ethernet, therefore is a separate ethernet interface and a 4-port ethernet switch available. Depending on the hardware configuration internet connectivity can be established via integrated ADSL2/2+ modem and a module for »radio networks« (LTE/HSPA+/HSPA/UMTS/EDGE/GPRS,optional GSM).The C1550 is also prepared for an optional integrated ISDN S0 interface. With the Connection Manager the router offers a powerful backup management for all connections and significantly increases reliability and availability The configurable high security firewall with the possibility to utilise scripts and rules, render your network secure from attacks. The integrated Perl Scripting Interpreter offers the possibility for your own software implementation which allows you to expend the router‘s features e.g processing provided GPS data. The integrated GPS (optionally product variants with mobile) allows the transmission of the exact geographical position of the router. The router series can be locally or remotely configured, for this reason a convenient user interface is included. In the expert mode the router is configured using a command line interface, and this can even be reached and configured via SMS (e.g. initiating a reset). Host G5000 Lotto Terminal G5000 3G/4G mobile ETH / IP ATM X.25 XOT Siemensstraße 18 Gewerbegebiet Altheim, 84051 Essenbach Tel.: +49 8703 929-00 Fax: +49 8703 929-201 [email protected] www.tdt.de Experts in data communication Hardware Specifications Base System • • • • • • • • • 500Mhz Processor (fanless) / 256 MB RAM main memory 4 GB OS memory (Compact Flash, Dual Boot) 1 10/100 BaseT Ethernet port (Wake on LAN, Power over Ethernet) 1 4Port 10/100 BaseT Ethernet Switch 1 Power LED / 10 LEDs for extended status informations (configurable) 2 USB 2.0 Ports (e.g. for backup or external hardware) 1 RS232 Console Port (for debugging or monitoring) Dual SIM (for backup scenarios with 2 SIM cards) Real Time Clock WiFi Modul (optional) • 2.4 and 5 GHz IEEE 802.11 a/b/g/n standard (up to 300 Mbps) • Access Point mode / Ad-Hoc mode / Client mode • Security Features: WiFi Protected Access Support (WPA, WPA2, WPA-ENT), WEP, AES, TKIP, MAC-Adress filtering • Quality of Service (QoS) support (802.11e draft) • Dynamic Frequency Selection / Transmit Power Control (DFS/TPC) LTE/HSPA+ Modul (optional) • • • • • • LTE 100 Mbps (DL) / 50Mbps (UL) using 20MHz, MIMO (Cat 3) HSDPA 42.2Mbps (DL, Cat 24) MIMO / HSUPA 5.76Mbps (UL, Cat 6) UMTS 384Kbps (DL/UL) EDGE 236.8kbps (DL), 118.4Kbps (UL) multi-slot class 12 GPRS 80kbps (DL), 40kbps (UL) multi-slot class 10 LTE frequency bands: 1 (2100 MHz)/3 (1800 MHz)/7 (2600 MHz)/8 (900 MHz)/20 (800 MHz) • UMTS/HSPA+ frequency bands: 1 (2100 MHz)/2 (1900 MHz)/5 (850 MHz)/6 (800 MHz)/8 (900 MHz) • GSM/GPRS/EDGE frequency bands: GSM 850 (MHz)/EGSM 900 (MHz)/DCS 1800 (MHz)/PCS 1900 (MHz) • SMS transfer GPS position determination (optional) • For product variants with mobile only. ADSL 2/2+ Module (optional) • • • • • Annex B (optional Annex A) ITU-T G.992.1/3/5 (ADSL/2/2+) annexes A, B, I, J, M, and L ITU-T G.992.2 (G.lite) annex A and ANSI T1.413 Issue 2 DTAG UR2 and ETSI standards for ADSL over ISDN DSL Forum service specification TR-048/67 and WT-100 ISDN Module (optional) • • • • 1 BRI (Basic Rate Interface) Port (I.421) TE (optional NT) Multilink PPP (MLPPP) TRB3/TRB3-A1 certified Point-to-Point and Point-to-Multipoint, euroISDN protocol stack Technical Data • • • • • • • • • • • • • Rigit metal housing, optional with DIN rail clip Dimensions: 187x40x157mm (WxHxD, without antenna) Weight: ca. 870g Operating Temperature: -5°C (optional -25°C) - +55°C Humidity: 85% (none condensing) Input power 7-18V DC Power supply 12V 2A Power consumption ~9,5W 3G+ connector for external antenna: SMA female WLAN connector for external antenna: Reverse SMA male GPS connector for external antenna: SMA female (optional) DSL connector: RJ45 socket Vibration tested (DIN EN 60068-2-6:1996) General Router Features • • • • Network Time Protocol (NTP) client/relay/server Dynamic Host Control Protocol (DHCP) client/relay/server Dynamic DNS (DynDNS) Realtime statistic und log function, log rotation, Syslog client/server Routing Protocols • • • • • • • • • • • Protocols e.g. IP, TCP, UDP, ARP, RARP, ICMP Routing Information Protocol (RIPv1 and RIPv2) and RIPng Open Shortest Path First (OSPF) Border Gateway Protocol (BGP, BGPv4+) Intermediate system to intermediate system (IS-IS) Multicast support Spanning Tree Protocol (STP) transparent Bridging Network Address Translation (NAT) Network Address Port Translation (NAPT) PPP over Ethernet (PPPoE) Generic Routing Encapsulation (GRE) Security Features • • • • • • • • • • • • • • • Stateful inspection firewall (expandable via scripts) Demilitarized Zone (DMZ) IPSec (client/server) OpenVPN routed und bridged (client/server) Easy VPN client/server (XAuth) IPSec Passthrough Layer 2 Tunneling Protocol (L2TP), passthrough SSL/TLS Tunnel (client/server) EAP client Radius client Authentification, pap,chap and psk Digital certificates Public-Key-Infrastruktur (PKI) MD5, SHA1, SHA2 256/512 hash algorithms Diffie Hellman Group 1, 2, 5 for key exchange Chiper algorithm, , DES, 3DES, AES 128/192/256, Blowfish, Twofish 128/256, Serpent 128/256 • Simple Certificate Enrolment Protocol (SCEP) • 802.1x • up to 30 VPN tunnels QoS Features • Hierarchical Scheduling for DiffServ Classes (Traffic Shaping) • Dynamic Bandwidth Scheduling DiffServ Classes • Diffserve policing: Class Based Queue (CBQ), Token Bucket Flow (TBF), First In First Out (P/BFIFO), Stochastic Fair Queuing (SFQ), Diff-Serv Marker (DS_MARK), Hierarchical Token Bucket (HTB), Priority-based queuing (PTIO), Class-Based Marking (CBM) High-Availability Features • TDT Connection-Manager with advanced backup configuration features • Multi homed and multilevel backup destination strategies • Optimization of switch latency’s • Suppression of useless switching • Fallback optimization • Suppression of switching instability’s (fluttering) • 3G+/4G provider switching with Dual SIM • Dynamic connection configuration (default route, DNS, Gateway, etc.) • Configurable connection surveillance (Ping, LCP-Echo, etc.) • Emergency reboot/reset if e.g. 3G+/4G connection can not be established • Virtual Router Redundancy Protocol (Multi group VRRP) • Out-of-band management (with optional ISDN/4G modem, SMS) Management Features • • • • • • Access control lists (ACLs) Firmware update via webinterface and command line Simple Network Management Protocol (SNMPv1/2c) Management via Command line Interface (CLI), SSH and HTTPS SMS configuration and command interface (mobile radio models only) Event-Handler, customisable via Scrips (perl, bash) Declaration of Conformity • TDT declares, that our product is in compliance with the essential requirements of the R&TTE Directive. Latest documents can be found at download.tdt.de. Rev. 4.0 SH Copyright by TDT - Changes and errors excepted. )