Preview only show first 10 pages with watermark. For full document please download

описание Esr-1000

Rating
Date

October 2018
Size

274KB
Views

4,765
Categories

Computers & electronics Networking Hardware firewalls

Transcript

FIBER OPTIC TECHNOLOGY CALIBRATION LABORATORY ESR-1000 Service router Description: The family of routers ESR - this device is a universal hardware platform and capable of performing a wide range of tasks, related to network security. The line presents model, application-oriented networks various sizes - from small business networks, to carrier networks and data centers. - Scalable solution for different areas applications Developed a command line interface for controls Flexible configuration services The possibility of interfacing with hardware leading manufacturers Hardware acceleration of data Bandwidth up to 10 Gbit/s The functions of L2/L3 at the hardware level Model devices with high reliability and redundant critical nodes Functional purpose: Typical tasks performed by the service routers: - Provision of services NAT, Firewall - Organization of secure network of tunnels in union offices of the companies (IPsec VPN) - The organization of remote access to the local resources on enterprise networks (L2TP, PPTP) - Means for the gradual transition from addressing IPv4 to IPv6 (6to4, 4to6) - Filtering of network data in various criteria - Detecting and preventing of attempts intrusion to network, protection against data loss - Analysis of network traffic and network activity relation to applications and users - Reservation of the backup connections to Internet-providers network - Number of other tasks, the list of which is constantly expanded with the development of data networks and the emergence of new network services The listed features are combined with traditional services. Your device supports L2 switch and L3 the router. CZECH MADE products, produced under ELTEX license in the Czech Republic is registered trademark of OPTOKON, a.s. and ELTEX Enterprise, Ltd. Other names and trademarks mentioned herein may be the trademarks of their respective owners. OPTOKON, a.s. reserves the right to make changes, without notice, to the products described in this document, in the interest of improving design, operational function and/or reliability. OPTOKON, a.s., Cerveny Kriz 250, 586 01 Jihlava, Czech Republic tel. +420 564 040 111, fax +420 564 040 134, WWW.OPTOKON.COM, [email protected] 1 ELT_15-14_EN 7/12/2015 FIBER OPTIC TECHNOLOGY CALIBRATION LABORATORY Performance: The key elements of ESR-1000 is a means of hardware acceleration data, allowing to achieve high performance levels. Hardware and software processing is distributed between device nodes. Performance depending on the operating mode the device is shown in the table below: ESR-1000 Performance Firewall (large packets) Performance NAT (large packets) Performance IPsec VPN (large packets) VPN tunnels Static routes Number of competitive sessions L2 switch performance (large packets) Gbit/s L3 switch performance (large packets) Gbit/s BGP routing OSPF routing RIP routing FIB size 7,2 Gbit/s 6,1 Gbit/s 3,7 Gbit/s (aes128bit-sha1) 500 11K 512K 86,9 8,2 2,6M 500K 10K 1,7M Product specifications of hardware: ESR-1000 Interfaces Random access memory (RAM) Built-in Flash-memory Power supplies Power supply voltage Power consumption Dimensions Weight 24x 10/100/1000Base-T (RJ-45) 2x 10GBase-R (SFP+) 2x USB 2.0 SD card slot up to 4 GB 1 GB 220V AC / 48V DC Duplication of power supply modules, hot-swappable Removable ventilation modules 220 V ± 20%, 50 Hz max 75 W 430x352x44 mm, 1U size no more than 3.6 kg Hardware encryption acceleration Hardware acceleration DPI Hardware support for L2 and L3 functions CZECH MADE products, produced under ELTEX license in the Czech Republic is registered trademark of OPTOKON, a.s. and ELTEX Enterprise, Ltd. Other names and trademarks mentioned herein may be the trademarks of their respective owners. OPTOKON, a.s. reserves the right to make changes, without notice, to the products described in this document, in the interest of improving design, operational function and/or reliability. OPTOKON, a.s., Cerveny Kriz 250, 586 01 Jihlava, Czech Republic tel. +420 564 040 111, fax +420 564 040 134, WWW.OPTOKON.COM, [email protected] 2 ELT_15-14_EN 7/12/2015 FIBER OPTIC TECHNOLOGY CALIBRATION LABORATORY Technical specifications: Functions L2: - BRAS function:* Packet switching (bridging) STP, RSTP, MSTP 802.1d, 802.1Q LAG/LACP 802.3ad VLAN 802.1Q, Q-in-Q 802.1ad* Port Isolation Private VLAN Edge (PVE) Dynamic VLAN, GVRP* Selective Q-in-Q* - PPoE server* - IPoE server (aggregation of users)* Network security features: Functions L3: - Static routes Dynamic routing protocols RIPv2, OSPFv2/OSPFv3, BGP, IS-IS* Distance Vector Multicast Routing Protocol (DVMRP)* VRF Lite PBR (to work with the attributes of BGP) Prefix-List Management of IP-address: Means of ensuring network security: - Static addresses - DHCP client, PPPoE client* - Built-in DHCP server - DHCP Relay - Static addresses Static routes The dynamic routing protocol OSPF v3 Prefix-List Up to 8 priority queues per port L2 and L3 traffic prioritization (802.1p, DSCP, IP Precedence) Congestion management Queue RED, GRED Prioritization by port, VLAN Resources for relabeling of priorities Policy enforcement (policing) Bandwidth management (shaping) Hierarchical QoS Tunneling/encryption/address translation: - VRRP Monitoring and control: NTP Syslog Ping, traceroute Telnet client/server SSH client/server DHCP Server/Relay/Client Quality of Service (QoS): - Integrity control connections (OAM 802.3ah)* Dual homing Load balancing WAN interfaces, redirect data streams Backup WAN connections (including using a 3G/4G wireless modems) - High availability: reservations configurations*, operational data*, connections IPv6: - - Separation of area network interfaces - Isolation zones, Firewall, data filtering rules - Filtering network traffic in accordance with the data registry banned sites Federal Service for Supervision - Protection against DoS and DDoS attacks* - Intrusion Prevention System (IPS)* - Event registration of security protection* - Automatic updating of information bases* - Support for custom signature* - Anti-virus protection (mail scanning, web-pages, files (POP3, SMTP, FTP, HTTP)* - Data Loss Prevention (DLP)* Address Translation SNAT, DNAT, Static NAT, NAT64 Tunneling (IPsec, GRE, IP-IP, SSTP) Encryption compounds (DES, 3DES, AES) Message authentication MD5, SHA1, SHA256, SHA384, SHA512 PPTP, L2TP, L2TPv3 PPPoE Client, PPPoE IA - Support for standard SNMP MIB - Management of access level - Authentication on the local user database, RADIUS, TACACS+, LDAP - Access control lists (ACL) on the base of MAC, IP - Upload and download configuration via TFTP, FTP, SCP - Firmware update over the network via USB-drive*, SD card - Protection against configuration errors, restoration configuration - Reset configuration to factory defaults - Remote and local management (RS-232 Console/telnet/SSH) - Management Interfaces CLI/SNMP*/Web GUI* - Syslog - Monitor the use of system resources - Ping, traceroute - Journal of network activity, system event log - Log analyzer network activity (Firewall Analizer)* - Service Level Agreements (SLA)* Physical characteristics and envir.conditions: - Power supply: AC 220V ± 20%, 50 Hz Power consumption max. 75 W Weight no more than 3.6 kg Operating temperature range from -10 to +45 °C Storage temperature range -40 to +70 °C * This functionality in the current version of the software is not implemented. CZECH MADE products, produced under ELTEX license in the Czech Republic is registered trademark of OPTOKON, a.s. and ELTEX Enterprise, Ltd. Other names and trademarks mentioned herein may be the trademarks of their respective owners. OPTOKON, a.s. reserves the right to make changes, without notice, to the products described in this document, in the interest of improving design, operational function and/or reliability. OPTOKON, a.s., Cerveny Kriz 250, 586 01 Jihlava, Czech Republic tel. +420 564 040 111, fax +420 564 040 134, WWW.OPTOKON.COM, [email protected] 3 ELT_15-14_EN 7/12/2015 FIBER OPTIC TECHNOLOGY CALIBRATION LABORATORY Schema of connection Ordering Code: Part number ESR-1000-AC ESR-1000-DC Examples: Code ESR-1000-AC/AC ESR-1000-DC/DC Configuration Picture Service router 24x ports 10/100/1000Base-T 2x 10GBase-R (SFP+) 2x USB 2.0, SD card slot, 4GB RAM, 1GB Flash, 220V AC Service router 24x ports 10/100/1000Base-T 2x 10GBase-R (SFP+) 2x USB 2.0, SD card slot, 4GB RAM, 1GB Flash, 48V DC Description ESR-1000 with 2x 220V AC-power module ESR-1000 with 2x 48V DC-power module CZECH MADE products, produced under ELTEX license in the Czech Republic is registered trademark of OPTOKON, a.s. and ELTEX Enterprise, Ltd. Other names and trademarks mentioned herein may be the trademarks of their respective owners. OPTOKON, a.s. reserves the right to make changes, without notice, to the products described in this document, in the interest of improving design, operational function and/or reliability. OPTOKON, a.s., Cerveny Kriz 250, 586 01 Jihlava, Czech Republic tel. +420 564 040 111, fax +420 564 040 134, WWW.OPTOKON.COM, [email protected] 4 ELT_15-14_EN 7/12/2015

описание Esr-1000

Rating

Date

Size

Views

Categories

Share

Transcript

Forgot your password?.