Flipbook

5-7 www.mo xa .c o m Industrial Ethernet 5 EDR-810 Series Industrial Network Security and Management > FINALISTS EDR-810 Series The EDR-810 is a highly integrated industrial multiport secure router with firewall/NAT/VPN and managed Layer 2 switch functions. It is designed for Ethernet-based security applications in sensitive remote control or monitoring networks, and it provides an electronic security perimeter for the protection of critical cyber assets such as pumping/ treatment systems in water stations, DCS systems in oil and gas applications, and PLC/SCADA systems in factory automation. The EDS-810 series includes the following cybersecurity features: • Firewall/NAT: Firewall policies control network traffic between different trust zones, and Network Address Translation (NAT) shields the internal LAN from unauthorized activity by outside hosts. • VPN: Virtual Private Networking (VPN) is designed to provide users with secure communication tunnels when accessing a 8+2G multiport industrial secure router with switch/firewall/NAT/VPN Specifications Introduction private network from the public Internet. VPNs use IPSec (IP Security) server or client mode for encryption and authentication of all IP packets at the network layer to ensure confidentiality and sender authentication. The EDR-810’s “WAN Routing Quick Setting” provides an easy way for users to set up WAN and LAN ports to create a routing function in four steps. In addition, the EDR-810’s “Quick Automation Profile” gives engineers a simple way to configure the firewall filtering function with general automation protocols, including EtherNet/IP, Modbus TCP, EtherCAT, FOUNDATION Fieldbus, and PROFINET. Users can easily create a secure Ethernet network from a user-friendly web UI with a single click, and the EDR-810 is capable of performing deep Modbus TCP packet inspection. Wide temperature range models that operate reliably in hazardous, -40 to 75°C environments are also available. Award-winning Product › ›8+2G all-in-one firewall/NAT/VPN/router/switch › ›Build up secure remote access tunnel with VPN › ›Protect critical assets by stateful firewall › ›Inspect industrial protocol with PacketGuard technology › ›Easy network setup with network address translation (NAT) › ›RSTP/Turbo Ring redundant protocol enhances network redundancy › ›-40 to 75°C operating temperature range (T model) › ›ISA99 / IEC 62443 / NERC CIP compliance › ›Check firewall settings with intelligent SettingCheck feature Technology Standards: IEEE 802.3 for 10BaseT IEEE 802.3u for 100BaseT(X) IEEE 802.3ab for 1000BaseT(X) IEEE 802.3z for 1000BaseX IEEE 802.1Q for VLAN tagging IEEE 802.3ad for port trunk Protocols: SNMP v1/v2c/v3, DHCP server/client, TFTP, NTP/SNTP server/client, HTTP, HTTPS, Telnet, SSH, IPSec, L2TP, IGMP v1/v2/v3, QoS/CoS/ToS, Radius, RSTP/STP, LLDP, DDNS, Proxy ARP Routing: Static routing, RIP V1/V2, OSPF Throughput: 10000 packets per second (max. 100 Mbps) Routing Redundancy: VRRP Multicast Routing: Static, DVMRP, PIM-SM/SSM Broadcast Forwarding: IP directed broadcast, broadcast forwarding Redundancy: STP/RSTP, Turbo Ring V2, Ring Coupling, and Dual Homing Flow Control: IEEE 802.3x flow control, back pressure flow control Security Functions Firewall: Features: • Stateful inspection • Router firewall and transparent (bridge) firewall • Filter: IP and MAC address, ports, ICMP, DDoS, Ethernet protocols • Deep Packet Inspection: Modbus TCP/UDP • Quick Automation Profiles: EtherCAT, EtherNet/IP, FOUNDATION Fieldbus, LonWorks, Modbus/TCP, PROFINET, IEC 60870-104, DNP, FTP, SSH, Telnet, HTTP, IPSec, L2TP, PPTP, RADIUS Throughput: Max. 10000 packets per second (Max. 100 Mbps) DoS and DDoS Protection: Null Scan, Xmas Scan, NMAP-Xmas Scan, SYN/FIN Scan, FIN Scan, NMAP-ID Scan, SYN/RST Scan, NEW- Without-SYN Scan, ICMP-Death, SYN-Flood, ARP-Flood NAT: N-to-1, 1-to-1, bidirectional 1-to-1, and port forwarding