Categories |
Details |
Firewall |
- Individual policy applied by each security zone and log and statistical control function provided
- Function to search unsearched and unused security policy and object provided
- Duplication policy search function supported
- Stateful Firewall system inspection
- Filtering function per packet filtering and IP / Port provided
- Various NAT functions supported
- Various static policy based and dynamic routing (STATIC, RIP, and OSFP, etc.) functions supported
- Various external authentication servers are connected and user based security policy is developed to strengthen security
- Statistical information (for each traffic volume, session volume, and service, etc.) for each zone and user provided
|
VPN |
- Standard IPSec Protocol supported and IKE v1 and v2 are all supported
- Various encryption algorithm supported
- NAT-Traversal and Dead Peer Detection function supported
- Multi tunnel supported to enable the function of Active-Active configuration without L4 switch
- L2 bridge VPN function
|
IPS |
- Signature based rule provided
- Signature based, protocol based, and traffic based abnormal actions detection and blockage
- Snort based, Worm / Virus and Backdoor, Spyware and Malware block via Web
- Precision detection and block executed by applying own IPS and Anti-Virus signature
- Real time pattern and policy update function provided
- User defined rule and Snort Rule system supported
|
Anti-DDoS |
- TCP / UDP / ICMP / HTTP / DNS Flooding attack defended
- SIP Flooding attach defended, and SCAN / SWEEP attack defended
- Block function provided against Protocal Anomaly and Traffic Anomaly attacks
- Traffic Anomaly automatic learning function supported
- Filtering function supported via Black / White List
|
Anti-Virus |
- File based detection
- Supports FTP, HTTP, SMTP, and POP3
|
Anti-Spam |
- Filtering function for subject, keywords entered in main text and sentences
- PCRE based keyword matching
|
Application /
Web filtering
|
- Filtering technique of Kennel Level packet processing system
- Korea Communications Commission’s Safenet DB connection enables provision of the function for blocking harmful websites
- User defined URL block function provided
- FTP filtering and Telnet filtering : file upload and download control function provided
- Control by each application phase (user block / file transmission block / user bandwidth restriction)
|
Virtualization |
- Support Virtual Domain
- Allocation for optional Virtual Domain of physical and logical and diverse interfaces
- Provides a static and dynamic (OSPF) routing independent of tradename by domain
|
Network |
- Transparent, Router Mode
- Static, RIP, OSPF Routing
- Policy-based Routing/User-based Routing
- Supports multicast routing (PIM-SM, PIM-DM, and IGMP)
- VRRP, IP Backup
- 802.1q VLAN
- 802.3ad Link Aggregation
|
IPv6 |
- IPv6 Firewall/IPS/Anti-DDoS/NAT/IPSec/Routing/DHCP/RA
- IPv4/IPv6 Transition(Dual Stack, NAT-PT, Tunneling, 6 to 4, ISATAP)
|
QoS |
- Rule based bandwidth guarantee / restriction policy
- PPS control
|
HA |
- Active-Active, Active-Standby
- Session synchronization / policy synchronization (automatic and manual)
- Virtual MAC supported
|
Management |
- Dashboard typed monitoring
- Object and policy import / export function
- Automatic / manual signature update
- Real time session monitoring
|