PS-SG4800v1_v1.0
Product Specification of SG-4800
Networking & Communication
Product Specification
Gigabit SSL VPN Security Router
SG-4800
Version 1.0
This document contains confidential proprietary information and is property of PLANET. The contents of
this document should not be disclosed to unauthorized persons without the written consent of PLANET.
Change History:
Revision
Version 1.0
Author
Reviewed by:
Date
2012/5/6
Frank Tsai
Jonas Yang
Author
Frank Tsai
Editor:
Approved by:
Change List
Initial release
Frank Tsai
Tom Shih
Product Specification of SG-4800
Networking & Communication
Confidential
1. PRODUCT DESCRIPTION
As Internet becomes essential for your business, the only way to prevent your Internet connection from
failure is to have more than one connection. PLANET’s Gigabit SSL VPN Security Router, SG-4800,
reduces the risks of potential shutdown if one of the Internet connections fails. Moreover, it allows you to
perform load-balancing by distributing the traffic through three or four WAN connections.
In addition to a multi-homing device, PLANET’s Gigabit SSL VPN Security Router provides a complete
security solution in a box. The policy-based firewall, content filtering function and VPN connectivity
provides SSL, IPSec, and PPTP VPN. The SSL VPN function supports up to 60 SSL VPN connection
tunnels. The IPSec VPN feature provides with 3DES and AES encryption make it a perfect product for your
network security. No more complex connection and settings for integrating different security products on
the network is required.
This product is built-in bandwidth management function which also supported to offers network
administrators an easy yet powerful means to allocate network resources based on business priorities, and
to shape and control bandwidth usage.
2. PRODUCT FEATURES
‹
Multi-WAN Auto Backup: The SG-4800 can monitor each WAN link status and automatically
activate backup links when a failure is detected. The detection is based on the configurable target
Internet addresses.
‹
Outbound Load Balancing: The network sessions are assigned based on the user configurable
load balancing mode, including “Auto Load Balance”, “Unbinding WAN Balance” and “Strategy
Routing”,. User can also configure which IP or TCP/UDP type of traffic use which WAN port to
connect.
‹
Inbound Load Balancing: The SG-4800 provides the Inbound Load Balancing for enterprise’s
internal server. The Inbound Load Balancing can reduce the server loading and system crash risks, in
order to improve the server working efficiency.
‹
Policy-based Firewall: The built-in policy-based firewall prevent many known hacker attack
including Ping of Death, SYN Flooding, Land attack, IP Spoofing, etc. The access rule function
allowed only specified WAN or LAN users to use only allowed network services on specified time.
‹
VPN Connectivity: The security gateway support PPTP, IPSec and the SSL VPN. The SSL VPN
function supports up to 60 SSL VPN connection tunnels. The IPSec VPN with DES, 3DES and AES
encryption and SHA-1 / MD5 authentication, the network traffic over public Internet is secured.
‹
Content Filtering: The security gateway can block network connection based on URLs, Scripts (The
Java Applet, cookies and Active X), Restrict Application (MSN, Yahoo Messenger, QQ, PPSTREAM
and PPTV) and Download/Upload blocking.
Filename: PS-SG4800v1_v1.0
Page 2 of 7
Printed on 5/6/2012
Product Specification of SG-4800
Networking & Communication
Confidential
‹
Multiple DHCP Server: The multi DHCP server support 4 sets of Class C IP address, each server
can allocate up to 253 client IP addresses and distribute them including IP address, subnet mask as
well as DNS IP address to local computers. It provides an easy way to manage the local IP network.
‹
QoS Bandwidth Management: Featured Smart QoS with dynamic bandwidth management to
automatically control P2P and video downloading and other bandwidth hogging to avoid bandwidth
insufficient. Prioritizing different person/group or applications in bandwidth using for a better
reasonable management.
‹
Dynamic Domain Name System (DDNS): The Dynamic DNS service allows users to alias a
dynamic IP address to a static hostname.
‹
Multiple NAT: Multiple NAT allows local port to set multi-subnet and connect to the Internet through
different WAN IP addresses.
‹
Port Range Forwarding (Virtual Server): The Port Forwarding and DMZ function can let you setup
your servers in the Intranet and still provide services to the Internet users.
‹
Easy Management: Embedded Mirror Port to connect with monitoring devices to monitor online
behavior. It also supporting remote management by web browser with user name and password to
realize router management from remote places.
‹
Log Feature: The log and traffic statistic function can helping administrators to record the
change/abnormal of the whole network status and take actions according to the log information.
3. PRODUCT SPECIFICATION
3.1 MAIN COMPONENT
CPU: Cavium CN3120-500MHz
Flash: 32 M Bytes
SDRAM: 1G DDR2 Module
Filename: PS-SG4800v1_v1.0
Page 3 of 7
Printed on 5/6/2012
Product Specification of SG-4800
Networking & Communication
Confidential
3.2 FUNCTIONAL SPECIFICATIONS
Gigabit SSL VPN Security Router
SG-4800
Product
Model
Hardware
Ethernet
Button
LAN
WAN
DMZ
Reset
Power
8x 10/100/1000 Mbps RJ-45
4 x 10/100/1000 Mbps RJ-45
1 x 10/100/1000 Mbps RJ-45
1 x Reset button for reset to factory default setting
1 x Power on/off Switch
Software
z
z
z
z
Routing
z
z
z
z
System Performance
z
z
z
z
Bandwidth Management
z
z
z
z
z
z
z
z
Firewall Security
z
z
z
z
z
z
z
z
Multi-WAN Function
Networking
z
z
z
z
z
z
z
z
z
z
z
Network Management
z
z
z
Filename: PS-SG4800v1_v1.0
Inbound / Outbound Load Balance: by session and by IP
Protocol Binding
Network Service Detection
Dynamic Route RIP v1/v2
Static Route
Strategy Routing
Concurrent session :50000
Firewall performance :1Gbps
Corporation Size: SMB(clients 200~250)
3DES performance:270Mbps
Guaranteed Bandwidth
Max Bandwidth
Session Limit
Port-based QoS
NAT
One-to-One NAT
Multiple-to-One NAT
Stateful Packet Inspection(SPI) Firewall
Denial of Service (DoS) prevention
IP & Port filtering
Block Website by Keyword, Content Filter
Firewall detection: Ping of Death, SYN Flooding, Land attack, IP Spoofing
Email Alert for Hacker Attack
IP&MAC Binding
Support DMZ to protect your network: DMZ Host
Prevent ARP Attack on LAN
Configurable DMZ
DHCP Server (support class C), client, dynamic IP, static IP,IP Grouping
support
Multiple DHCP Server (support 4 sets of Class C)
PPPoE / Static IP/ DHCP Client
Multiple Subnet
Protocol: TCP /IP, ARP, ICMP, FTP/TFTP, IPv4
NAT with port forwarding(Virtual Server)
DNS Relay
DDNS: Support DynDNS,3322
Password protected configuration or management sessions for web
access
Port Management – Speed/Duplex/Auto Negotiation/VLAN
Transparent Bridge
Support IPv4/IPv6
Comprehensive web based management and policy setting
SNMP v1/v2c
Monitoring, Logging, and Alarms of system activities
Page 4 of 7
Printed on 5/6/2012
Product Specification of SG-4800
Networking & Communication
Confidential
z
PPTP VPNl z
z
z
z
z
z
z
IPSec VPN z
z
z
z
z
z
z
z
z
z
z
z
z
VPN Support
z
SSL VPN
z
z
z
z
z
z
z
z
z
z
z
z
z
VPN Pass z
through
Filename: PS-SG4800v1_v1.0
Firmware upgrade through Web browser
60 PPTP VPN Tunnels
200 IPSec VPN Tunnels
IPSec H/W acceleration
Friendly VPN Tunnel Management
IKE: Pre-Shared keys
IPSec Encryption DES/3DES/AES128/AES192/AES256
IPSec Authentication MD5/SHA1
Support PMTU
NAT Traversal
Connect on Demand
DPD detection
VPN Hub
IP by DNS Resolved
View Log
10 full set SSL VPN tunnel / 50 Virtual Passage SSL VPN Client
SSL H/W acceleration
Remote Desktop Access
HTTP and HTTPs Proxy
FTP and Windows Network File Sharing
Terminal Access: Telnet, SSH
Authentication: Radius, LDAP, Microsoft Active Directory and NT Domain
Name
Platform support Windows / Linux / MAC
SSL Encryptions: 128bit SHA1 (DES-CBC-SHA)
Encrypted cookies
Web cache cleaner
Certificate Server: RSA, PKI, Digital Certificate
Host Check: Virus Scan, Personal Firewalls, OS Patch
Role based management
Access Policy Management
Logging and monitoring: Syslog logging of SSL VPN events by user,
service and type of event
Customized User Portal: Allows Portal Layout, Available Services to be
customized
Single sign-on: Allows Single Sign-On for accessing multiple private
network resources
Group and Global Bookmark Support: Enables users to access resources
without needing to remember hostnames or IP addresses
Tunnel quantity upgrade mechanism
IPSec, PPTP ,L2TP Pass through
Page 5 of 7
Printed on 5/6/2012
Product Specification of SG-4800
Networking & Communication
3.3 PHYSICAL SPECIFICATION
Dimensions
19” 440 x 254 x 43.5 mm (W x D x H)
Weight
3.4 kg
Front View
LED definition
LED
PWR
Color
Green
Off
DIAG
Orange
WAN/ DMZ:
Link/Act
Green
LAN: Link/Act
Green
LAN/WAN/DMZ:
Speed
Green
Yellow
Off
Status
Steady
Off
Steady on
Blinking
Off
Steady on
Blinking
Off
Steady on
Blinking
Steady On
Steady On
Off
Description
Power On
Power Off
System is crashed.
System is on self-test after power on the device.
System is ready.
Port has been connected & Get IP
Transmit data.
Not get the IP address, even the port has been connected.
LAN port has been connected.
Transmit data.
Works on 1000M
Works on 100M.
Works on 10M.
Button definition
Button
Reset
Power
Description
Push 5 seconds for “Warm Start”, and push 10 seconds for Factory Default.
Internal 5V/12A
3.4 ENVIRONMENTAL SPECIFICATION
Operating
Temperature:
0ºC to 50ºC
Relative Humidity: 10%~85% (non-condensing)
Storage
Temperature:
-20 ~ 70°C
Relative Humidity: 5%~ 90% (non-condensing)
Filename: PS-SG4800v1_v1.0
Page 6 of 7
Printed on 5/6/2012
Product Specification of SG-4800
Networking & Communication
Confidential
3.5 POWER SPECIFICATION
Power Requirement:
100~240V AC, 50~60 Hz, max 0.8A
Power Consumption: Maximum 60 Watts
3.6 REGULATORY COMPLIANCE
FCC Class A, CE
3.7 BASIC PACKAGING
SG-4800 x 1
Power Cord x 1
Quick Installation Guide x 1
User’s Manual CD x 1
Cat5 Cable x 1
Screw Packer x1
Rack-mount ear x 2
3.8 PACKAGING INFORMATION
‧ Dimension
555 x 379 x 110 mm (L x W x H)
‧ Weight
4.6 kg
Filename: PS-SG4800v1_v1.0
Page 7 of 7
Printed on 5/6/2012
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertisement