As Internet becomes
essential for your
business, the only way
to prevent your Internet
connection from failure
is to have more than one
connection. PLANET's
Multi-Homing UTM (Uified
Treat Mnagement)
Security Gateways is the
one more than one that
reduces the risks of
potential shutdown if
one of the Internet
connections fails net.
With Built-in fuzzy
intelligence Dynamic
Round-Robin, weighted
Round Robin, it provides
flexible load balancing
function to keep up the
Internet connection.
In addition to a
multi-homing device,
PLANET's Multi-Homing
Security Gateways
provide a complete
security solution in a
box. The rule-based
firewall, Intrusion
detection and
prevention, multiple
content filtering
function, Anti-virus,
Anti-spam and VPN
connectivity with 3DES
and AES encryption make
it a perfect product for
your network security.
No more complex
connection and settings
for integrating
different security
products on the network
are required.
Bandwidth management
function is also
supported on MH-5001 to
offer network
administrators an easy
yet powerful means to
allocate network
resources based on
business priorities, and
to shape and control
bandwidth usage.
Product
Application
Medium enterprises,
branch offices
The MH-5001 is a
highly integrated
device including
most connectivity
and security
features for meeting
medium enterprise
needs. It is not
required to change
the existing network
infrastructure, but
provides a
cost-effective WAN
backup while using
inexpensive,
high-speed
broadband.
Increasing traffic
loading is easily
solved by balancing
over multiple WAN
connections, the
changeable
interfaces provide
more than two WAN
connections, and the
network bandwidth
can be easily
increased by adding
another ISP
connection.
Key
Features
All in one Security Gateway: The MH-5001 integrates the features included Multiple WAN, Multiple NAT, VPN tunneling, IDS/SPI, Content Filtering, Bandwidth Management, Anti-Virus, and Anti-Spam. All the most security features in one powerful device.
Outbound Load Balancing: The outbound WAN load balancer module will intelligently decide whether the new connection will be directed to which WAN link. It has a built-in fuzzy intelligence that will measure the round-trip delay of the traffic and make the best route selection.
Bandwidth Management: Network packets can be classified based on the policies, and given limitation bandwidth with different priority.
IPS: The Intrusion Detection/ Prevention Systems (IPS) will detect more than 2500 application-level attacks, and the logs will be generated and be sent via email.
Rule-based SPI Firewall: The built-in rule-based SPI firewall protects against Denial of Service (DoS) attacks. It allows user to define the specified WAN or LAN users to use only allowed network services.
VPN Connectivity: The security gateway, equipped with SafeNet hardware VPN engine that supports IPSec, PPTP and L2TP VPN. With DES, 3DES and AES encryption and SHA-1 / MD5 authentication, the network traffic over public Internet is secured. MH-5001 offers also site to site, client to site to meet the demands for different VPN connections.
VPN Hub and spoke: To save the effort of branches to branches communication, the VPN Hub and spoke features help to route between branches without create additional / dedicated VPN link between branches. This shall ease he effort to manage all the tunnels toward branches also central mange the whole network from headquarter.
Content Filtering: Varied protocol of content filtering can block specific Internet connection by user's definition, such as Web, Mail and FTP. The Java Applet, cookies and Active X packets can also be blocked by user configuration.
Anti Virus: MH-5001 scans the SMTP/ PoP3 / IMAP mail follow the built-in virus pattern, preventing infected virus mail into the network.
Anti-Spam: It can restrict the commercial mails to send, to be received, and append "[SPAM]" to email subject if recognized as SPAM email. And then email receivers may easily judge his next step while receiving mails.
Automatically database server update by day/hour/minute: You can specify a certain period of time to update MH-5001 database, and to keep your LAN area more safely under the protection.
Multiple NAT: Multiple NAT allows local port to set multiple subnet works and connect to the Internet through different WAN IP addresses.
High Availability: With High Availability (HA) the enterprise can build a pair of MH-5001 as a redundant to keep the device always alive in the network.
Authentication: Up to 2000 local database authentication, or POP3/IMAP/RADIUS authentication server support.
IPSec,
PPTP,
L2TP
support
DES,
3DES
and
AES
encrypting
and
SHA-1
/
MD5
authentication
algorithm
support
IPsec,
PPTP,
L2TP
VPN
pass
through
VPN
client
to
site,
site
to
site
support
Content
Filtering
Policy-Based
content-filtering;
Web,
FTP,
Mail
content
filtering
support;
Blocks
Java
Applet,
cookies,
Active
X,
MSN
over
HTTP;
URL
filter
by
keyword,
URL
IDS
Over
2000
NIDS
pattern
and
on-line
pattern
update;
DDOS
and
DOS
detected;
Attack
alarm
via
E-mail
Anti-Virus
Email
attachment
virus
scanning
by
SMTP,
POP3,
IMAP
Automatic
virus
database
by
day/hour/minute
Alert
by
e-mail
Anti-Spam
User
define
white/black
list
by
file
name,
attachment,
subject,
keyword
Fuzzy
keyword
analysis
Alert
by
e-mail
Logs
E-mail
notify;
Event
logs
and
alarm;
System,
firewall,
IDS,
content
filtering,
VPN
logs
support
Others
Dynamic
DNS;
DNS
Proxy;
DHCP
Relay;
SNMP
Control;
Definable
interface;
Database
update
by
schedule
Product
Application
