Specification
• Wireless

- IEEE 802.11n draft 2.0 spec, 2.4 GHz and 5.0 GHz
- IEEE 802.11a 5.0 GHz
- IEEE 802.11g, IEEE 802.11b, 2.4 GHz
- Wi-Fi Protected AccessTM (WPA, WPA2) with TKIP and AES
- Wired Equivalent Prviacy (WEP) 64 bit, 128-biy encryptions for IEEE 802.11b and 802.11g
- IEEE 802.1x RADIUS authentication with EAP TLS, TTLS, PEAP
- 2 dipole antennas
- 1 patch antenna
- Three (3) reverse SMA antenna connectors

• SPI Firewall

Stateful packet inspection
- prevents DoS attacks
- stealth mode
- user support: unrestricted
Keyword filtering on:
- address
- service (FTP, SMTP, HTTP, RPL, SNMP, DNS, ICMP, NNTP, POP3, SSH)
- protocol
- Web UTL port / service blocking
- ActiveX, Java, Javascript
- Port/Service Blocking

• IPsec VPN Functionality

- 5 dedicated IPsec VPN tunnels
Manual and Internet Key Exchange Security Association (IKE SA) assignment
- preshared key signature
- RSA/DSA signature
- Key life & IKE lifetimes time settings
- Perfect forward secrecy
- Diffie-Hellman groups 1 and 2
- Oakley Support
Operating modes
- main
- aggressive
Fully qualified domain name (FQDN support) for dynamic IP address VPN connections

• IPsec Support

- DES (56 bit), 3DES(168 bit), AES (256 bit) encryption algorithm
- MD5 or SHA-1 hashing algorithm
- ESP support
- PKI features with x.509 v.3 certificate support
- Remote access VPN (client-to-site), site-to-site VPN
- IPsec NAT traversal (VPN pass-through)

• SSL VPN Functionality

- 5 dedicated SSL VPN tunnels
- SSL version support: SSLv3 and TLS1.0
- SSL encryption support: DES, 3DES, ARC4, AES (ECB, CBC, XCBC, CNTR) 128/256 bit
- SSL message integrity: MD5, SHA-1, MAC-MDS/SHA-1, HMAC-MD5/SHA-1
Certificate Support:
- RSA
- Diffie-Hellman
- Self-signed

• Routing Modes of Operation

- Many-to-one Multi-network Address Translation (NAT)
- Classical routing

• IP Address Assignment

- Static IP address assignment
- Internal DHCP server of LAN
- DHCP client on WAN
- PPoE client support

• Throughput

- LAN-to-WAN: 60 Mbps
- Connections: 20,000 concurrent sessions
- VPN throughput: 20 Mbps

• Physical Interfaces

- 1 Gigabit Ethernet RJ45 WAN
- 4 Gigabit Ethernet RJ45 LAN
- Management Features

• Administration Interface

- SNMP (v2c) support
- Web graphic user interface
- Secure Sockets Layer (SSL) remote management
- User name and password protected
- Secure remote management support authenticated through IP address (or IP address range) and password
- Configuration changes/upgrades through Web GUI

• Logging

- SYSLOG
- Email alerts

• Functions

- VPN Wizard to simplify configuration of IPsec VPNs
- Auto Detect to automatically detect ISP address type (static, dynamic, PPPoE)
- Port range forwarding
- Port triggering
- Enable/disable WAN ping
- DNS proxy
- MAC address cloning/spoofing
- Network Time Protocol NTP support
- Diagnostic tools (ping, DNS lookup, trace route, other)
- Port/service
- Auto-Uplink on switch ports
- L3 Quality of Service (QoS)
- LAN-to-WAN and WAN-to-LAN (ToS)

• Limited lifetime warranty