Sales Guide for Network Security
Download
Report
Transcript Sales Guide for Network Security
Network Security
www.planet.com.tw
Copyright © PLANET Technology Corporation. All rights reserved.
Introduction
Advantage of PLANET’s Solution
Product Overview
Product Features & Comparison
Solutions
Roadmap
www.planet.com.tw
2 / 41
PLANET Advantages
Full Range of Security Solutions
All-in-One Security Appliance
Easy integration with existing network
infrastructure
Low Total Cost of Ownership from
integrated security solutions
UTM Content Security Gateway
Multi-Homing Security Gateway
VPN Security Gateway
Bandwidth Management Gateway
www.planet.com.tw
3 / 41
Product Overview
Model
Content Security
Security
Content
Description
Content Security
VPN Security
Security
VPN
Multi-Homing
Security
Bandwidth
Management
UTM Content Security Gateway
CS-1000
UTM Content Security Gateway
CS-2000
(200/1000 SSL/IPSec VPN tunnels, IDP,
Anti-Virus, Anti-Spam)
VPN Security
SG-500
Broadband Router /
Wireless Gateway
SG-1000
Unified
Office Gateway
(200 IPSec VPN tunnels, IDP, Anti-Virus,
Anti-Spam)
VPN Security Gateway
(5 SSL VPN tunnels, 200 IPSEC VPN tunnels)
VPN Security Gateway
(50 SSL VPN tunnels, 200 IPSEC VPN tunnels)
www.planet.com.tw
4 / 41
Product Overview
Content Security
Model
Description
Multi-Homing Security
VPN Security
MH-2001
Multi-Homing
Security
WLS-1280
Bandwidth
Management
Broadband Router /
Wireless Gateway
Multi-Homing Security Gateway
(200 VPN tunnels)
Wireless LAN Switch / Security Gateway
(120 VPN tunnels, 12 Access Points Management)
Bandwidth Management
BM-525
Bandwidth Management Gateway
(25Mbps Bandwidth Control)
Unified
Office Gateway
www.planet.com.tw
5 / 41
Product Overview
Model
Content Security
Description
Broadband Router
VPN Security
VRT-401
Multi-Homing
Security
VRT-311S
VPN Broadband Router
(100 VPN tunnels)
VPN Broadband Router
(10 VPN tunnels)
Wireless Gateway
Bandwidth
Management
WSG-404
Broadband Router
Router /
/
Broadband
Wireless Gateway
Unified
Office Gateway
Hot-Spot Wireless Subscriber Gateway
(50 PnP IP Users, account generate via printer)
Unified Office Gateway
UMG-2000
Unified Office Gateway
(IP PBX / Storage / Email / Security /
WiFi / L2 Switch)
www.planet.com.tw
6 / 41
Features & Comparison
Content Security
VPN Security
www.planet.com.tw
Product Overview
Model
CS-1000
CS-2000
SG-500
SG-1000
Firewall
V
V
V
V
SSL VPN
-
V
V
V
Content Filtering
V
V
V
V
Outbound
Inbound/
Outbound
-
Outbound
Bandwidth
Management
V
V
V
V
IDP
V
V
-
-
Anti-Virus
V
V
-
-
Anti-Spam
V
V
-
-
SME
SME
SME
SME
Function
Load Balancing
Target Market
www.planet.com.tw
8 / 41
Features CS-1000
UTM security Gateway with dual WAN, WAN
backup, load balance
Hardware-based Anti-Virus device
Built-in Clam AV Anti-Virus engine can detect
viruses, worms or other threats from email
transfer
Anti-Spam block over 95% spam mail
SMTP throughput 12,000 mails/ day
Auto-Training system raises identify rate of
spam mails substantially
SPI Firewall, IDP support
Dual WAN, VPN Trunk support
VPN with DES, 3DES, AES encryption
VPN Trunk support
Up to 200 VPN tunnels
QoS and Authentication feature
WAN
DMZ
LAN
CS-1000
Mail Server
CS-1000
DMZ
Internet
LAN
Spa
m
Virus
www.planet.com.tw
9 / 41
Features CS-2000
Anti-Spam Filtering: block over 95% spam mail
Anti-Virus Protection: Built-in double virus scan
engines – Clam and Sophos
Built-in 80GB Hard Disk can store the spam
and Virus mail in Quarantine
Auto-Training system raises identify rate of
spam mails substantially
VPN Connectivity: IPSec, SSL, PPTP Server,
and PPTP Client support
Up to 1000 IPSec VPN tunnels and 200 SSL VPN
tunnels
SPI Firewall
IDP support
Dual WAN, VPN Trunk support
Outbound/Inbound Load Balancing
Content Filter includes URL, Script, P2P, IM, and
Download blocking
QoS and Authentication feature
WAN
CS-2000
LAN
DMZ
www.planet.com.tw
10 / 41
Features SG-500
Supports SSL VPN and IPSec VPN
Up to 5 SSL VPN connection tunnels
VPN with DES, 3DES, AES encryption
SHA-1 / MD5 authentication
Up to 200 IPSec VPN tunnels
SPI Firewall
QoS
Content Filtering
Hacker Alert and Anomaly Flow
Detection
Authentication: User Authentication,
RADIUS, and POP3
SG-500
www.planet.com.tw
11 / 41
Features SG-1000
Supports SSL VPN, IPSec VPN, and
PPTP server/client
Up to 50 SSL VPN connection tunnels
VPN with DES, 3DES, AES encryption
SHA-1 / MD5 authentication
VPN Trunk support
Up to 200 VPN tunnels
SPI Firewall
QoS
Content Filtering
Dual WAN, WAN backup,
load balance
WAN
DMZ
LAN
SG-1000
www.planet.com.tw
12 / 41
Features Brief
SG-1000
SG-500
CS-2000
CS-1000
Description
VPN Security Gateway
VPN Security Gateway
UTM Content Security
Gateway
UTM Content Security
Gateway
Placement
19” Rack Mount
Desktop
19” Rack Mount
19” Rack Mount
LAN x1, WAN x2, DMZ x1
LAN x1, WAN x1, DMZ x1
LAN x1, WAN x2, DMZ x1
LAN x1, WAN x2, DMZ x1
110,000
10,000
20,000
1,000
582,000
20,000
110,000
10,000
100Mbps
70Mbps
100Mbps
100Mbps
17Mbps
10Mbps
30Mbps
17Mbps
-
-
600,000
120,000
WAN Load Balance
Outbound
-
Load Balance mode
Round-Robin, by traffic,
by sessions, by packets
-
Content Filtering
V
Mail Security
Model
Interface
System Performance
Max. Concurrent Sessions
New Sessions per second
Firewall Throughput
3DES performance
Email Capacity per day
Multi-Homing
Inbound/
Outbound
Round-Robin, by traffic,
by sessions, by packets
Round-Robin, by traffic,
by sessions, by packets
V
V
V
-
-
Anti-virus,
Anti-spam
Anti-virus,
Anti-spam
IDP
-
-
V
V
DoS, DDoS protections
V
V
V
V
User Authentication
V
V
V
V
V
V
V
V
100/200
100/200
200/1000
100/200
50 tunnels
5 tunnels
200 tunnels
-
V
-
V
V
Outbound
Content Security
QoS
VPN
IPSec VPN Tunnel
SSL VPN
VPN Trunk
www.planet.com.tw
13 / 41
CS-1000 Comparison
Brand
PLANET
Fortinet
Zyxel
Model
CS-1000
Fotigate-60
ZyWALL-70 UTM
LAN x1, WAN x2, DMZ x1
LAN x4, WAN x2, DMZ x1
LAN x1, WAN x2, DMZ x4
Max. Concurrent Sessions
110,000
50,000
10,000
Firewall Throughput
100Mbps
70Mbps
90Mbps
17Mbps
20Mbps
40Mbps
Transparent
V
V
V
NAT, PAT
V
V
V
Virtual server
V
V
V
Multiple Subnet
V
-
-
Anti-spam
V
V
V
Spam Mail Training System
V
-
-
Anti-virus
V
V
V
Automatically virus
database update
V
V
V
Whitelist & Blacklist
V
V
V
Alert by email
V
V
V
Free of charge
Per Year
Per Year
LAN
System Performance
3DES performance
Mode of Operation
Mail Security
Update License Fees
www.planet.com.tw
14 / 41
CS-1000 Comparison
Brand
PLANET
Fortinet
Zyxel
Model
CS-1000
Fotigate-60
ZyWALL-70 UTM
Scripts, URL Blocking
V
V
V
IM, P2P Blocking
V
-
-
Download, Upload Blocking
V
-
-
VPN Tunnel
100/200
40
100
PPTP server
V
V
-
VPN Trunk
V
V
-
Outbound Load Balance
V
-
V
WAN Fail over
V
V
V
IDP
V
V
V
QoS
V
V
V
User Authentication
V
V
V
Log to Syslog server
V
V
V
Accounting Report
V
V
V
Content Filtering
VPN
Advance Feature
Monitor
www.planet.com.tw
15 / 41
CS-2000 Comparison
Brand
PLANET
Fortinet
Juniper
Model
CS-2000
FortiGate 100A
NetScreen 25
Intel Celeron 1.2GHz
FortiASIC
PowerPC266MHz
RAM
512MB
256MB
128MB
Flash
128MB
-
-
H.D.
80G
-
-
LAN x 1, WAN x 2, DMZ x 1
LAN x 4, WAN x 2, DMZ x 2
10/100 RJ-45 Port x 4
582,000
200,000
32,000
20,000
4,000
4,000
100Mbps
100Mbps
100Mbps
30Mbps
40Mbps
20Mbps
QoS
V
V
V
IDP
V
V
V
IDP Report
V
V
-
VPN Tunnel
200
80
125
V
V
-
Inbound / Outbound
Outbound
-
V
V
V
Hardware
Processor
Network port
Software
Concurrent session
New Sessions / second
Firewall performance
3DES performance
SSL VPN
WAN Load balancing
Content Filtering
www.planet.com.tw
16 / 41
CS-2000 Comparison
Brand
PLANET
Fortinet
Juniper
Model
CS-2000
FortiGate 100A
NetScreen 25
V
-
-
Local Database, RADIUS,
POP3, LDAP
Local Database, RADIUS,
LDAP
Local Database, RADIUS,
LDAP
High Availability
V
-
V
Event log and alarm
V
V
V
Syslog server support
V
V
V
Accounting Report
V
-
-
Statistic
V
V
V
Anti-Virus
V
V
-
2(Clam & Sophos)
1
-
Anti-Spam
V
V
V
Mail Report
V
-
-
IM/P2P Blocking
User Authentication
Anti-Virus Engine
www.planet.com.tw
17 / 41
SG-1000 Comparison
Brand
PLANET
Cisco
SonicWall
Model
SG-1000
VPN 3005
SSL-VPN 2000
19” Rack Mount
19” Rack Mount
19” Rack Mount
LAN x 1, WAN x 2, DMZ x 1
LAN x 1, WAN x 1
LAN x 1, WAN x 2, DMZ x 1
DMZ Transparent
V
-
V
Static Route
V
V
V
NAT, PAT
V
V
V
Firewall
V
-
V
DoS, DDoS protections
V
-
V
200
50
50
V
-
V
50
50
50
Authentication User
V
-
V
RADIUS Authentication
V
V
V
Round-Robin, by traffic,
by packet, by session
V
-
QoS
V
-
V
Content Blocking
V
-
-
URL Filtering
V
-
V
H/W Watch-Dog
V
-
-
Hacker Alert
V
-
V
Hardware
Dimension
Network Port
Software
VPN Entry
SSL VPN
SSL VPN Tunnels
WAN Load balancing
www.planet.com.tw
18 / 41
Features & Comparison
Multi-Homing Security
www.planet.com.tw
Features MH-2001
Four 10/100M Ethernet ports: LAN x 1,
WAN x 2, DMZ x 1
Stateful Packet Inspection (SPI) Firewall
& protection for DoS
Web Content Filtering
Hardware-based VPN with DES,3DES,AES
encryption
IPSec, PPTP VPN tunnels and VPN passthrough support
MH-2001
WAN LAN DMZ
Round Robin of outbound load balancing
by traffic, by packet, by session
Supports QoS and Authentication feature
Up to 200 VPN tunnels
User authentication
WAN Load Balancing
Firewall
VPN
Content Filter
QoS
www.planet.com.tw
20 / 41
MH-2001 Comparison
Brand
PLANET
SonicWall
Watch
Guard
Juniper
Cisco
Model
MH-2001
TZ170
Firebox 700
NS-25
PIX 506E
Concurrent Session
60,000
6,000
10,000
16,000
25,000
Firewall Throughput
100 Mbps
90 Mbps
150 Mbps
100 Mbps
100 Mbps
25 Mbps
30 Mbps
5 Mbps
20 Mbps
17 Mbps
200
50
150
100
25
Outbound
Load Balancing
V
V
-
-
-
Bandwidth
Management
V
V
-
V
-
4 groups
-
-
-
-
User-defined
User-defined /
Websense *
User-defined /
Webblocker *
User-defined /
Websense *
User-defined /
Websense *
3DES Throughput
VPN Tunnels
Server Load Balancing
URL Filtering
Remark: * Need additional annual fee
www.planet.com.tw
21 / 41
Features WLS-1280
Wireless LAN Switch
Manageable 12 APs include WAP-4033,
WAP-4033PE and WAP-4060PE
Supports up to 120 concurrent users
Provides 500 local accounts and 2000
on-demand accounts
Multiple User login method via local database,
RADIUS, POP3, NT domain
Role-based and Policy-based access control,
bandwidth control
Supports monitor IP on 3rd party Access
Points
Managed APs support WEP, WPA, and WPA2
Supports VPN termination of IPSec tunnels
for secured wired/wireless connection
Supports MAC Access Control List
WLS-1280
WAN
LAN
IPSec VPN Encrypted Network
www.planet.com.tw
22 / 41
Features & Comparison
Bandwidth Management
www.planet.com.tw
Features BM-525
One 10/100Mbps LAN, DMZ, and WAN ports
NAT mode and DMZ mode
Guaranteed and maximum bandwidth with
three levels of priorities
Professional Monitor function includes Log,
Accounting Report, Statistics, and Status
MRTG-like Traffic Statistics, easy to trace and
analyze
Content Filter includes URL, Script, P2P, IM,
and Download blocking
Hacker Alert and Anomaly Flow Detection
Virtual Server and IP mapping
(Multi-DMZ Host)
Assign daily and weekly access schedule to
each individual policy
BM-525
Policy
Statistics
Service
Distribution
Chart
Outbound
Service
Statistics
Report
www.planet.com.tw
24 / 41
Features
Broadband Router /
Wireless Gateway
www.planet.com.tw
Features VRT-401
VPN Broadband Router
IPsec, PPTP, and L2TP server/ client
support
Provides up to 100 VPN tunnels
15 Mbps 3DES VPN performance
SPI firewall + DoS prevention
protection
90 Mbps Firewall throughput
Virtual Server, DMZ, UPnP and
DDNS support
VRT-401
www.planet.com.tw
26 / 41
Features VRT-311S
Built-in NAT Firewall
Stateful Packet Inspection (SPI) Firewall
for DoS attacks
UPnP support
IPsec, PPTP and L2TP VPN pass through
support
Provides up to 10 VPN tunnels
Group-based / Scheduled Access Control
Predefined / User-defined service database
VRT-311S
www.planet.com.tw
27 / 41
Features Brief
Model
VRT-401
VRT-311S
LAN port
4
3
WAN port
1
1
DMZ port
Software
1 x hardware DMZ
V
V
Rule-based
Rule-based
DDNS, UPnP
V
V
Virtual Server
V
V
DoS support
V
V
Scheduling
V
V
Logs
V
V
100
10
IPSec, PPTP, L2TP
IPSec, PPTP, L2TP
-
V
MD5/SHA-1
MD5/SHA-1
DES/3DES
DES/3DES/ AES
SME
SOHO
Function
Content Filtering
Firewall
VPN Tunnels
VPN pass through
Microsoft VPN support
VPN Authentication
VPN Encryption
Target Market
www.planet.com.tw
28 / 41
VRT-311S Comparison
Brand
PLANET
Sonicwall
Juniper
WatchGuard
Model
VRT-311S
SOHO 3
Netscreen-5XT
Firebox X15
LAN x3, WAN x1, DMZ
x1
LAN x1, WAN x1, console
x1
LAN x4, WAN x1
LAN x4, WAN x1
80 Mbps
75 Mbps
70 Mbps
95 Mbps
3.5 Mbps *
20 Mbps
20 Mbps
35 Mbps
URL Blocking
V
V
V
V
DDNS
V
-
-
V
DoS
V
V
V
V
UPnP
V
-
-
-
Virtual Server
V
V
V
V
Hardware
Software*
Software*
Software*
Routing Mode
Static Route,
RIP v1, v2
Static Route,
RIP v1, v2
Static Route,
RIP v2
Static Route,
RIP v2
VPN Tunnels
10
10
10
15
IPSec, PPTP, L2TP
IPSec, PPTP, L2TP
IPSec, L2TP
IPSec, PPTP
V
-
-
-
MD5/SHA-1
MD5/SHA-1
MD5/SHA-1
MD5/SHA-1
DES/3DES/AES
DES/3DES/AES
DES/3DES/AES
DES/3DES
-
V
V
-
Interface
Firewall Throughput
3DES Throughput
DMZ
VPN Pass Through
Microsoft PPTP VPN Server
VPN Authentication
VPN Encryption
Hardware VPN
Remark: * software based 3DES performance.
www.planet.com.tw
29 / 41
Features WSG-404
54 Mbps 11g Hot Spot Wireless Subscriber Gateway
Plug-n-Play IP Internet access, no configuration changes
required
Comply with 802.11g wireless standard
•
Work with any WiFi adapters such as Centrino Notebook,
11g 54Mbps adapters or 11b adapters
Built-in or RADIUS AAA support
(Authentication, Authorization and Accounting)
Built-in RC4 WEP Encryption, secure HTML
login page (SSL), VLAN Security for Wireless,
VPN (IPSec/PPTP) Pass through
Operate with the compact thermal printer
(WSG-ACG4) to print out billing information
in a minute
Right for any places that provide public access
to the Internet, such as Cyber Café, Airport,
Government, and etc.
WSG-404
www.planet.com.tw
30 / 41
Features
Unified Office Gateway
www.planet.com.tw
Applications
Unified office network management at single point
www.planet.com.tw
32 / 41
Features UMG-2000
Unified Office Gateway
IP PBX / VoIP Service
E-mail Service
Internet Security Service
UMG-2000
Network Storage Service
WiFi Service
24+2G Switch Service
www.planet.com.tw
33 / 41
Features UMG-2000
Front Panel
Network Storage Service
• RAID 0, 0/1, 5, and JBOD
• Up to 4TB Hot-swap Disk Array
• User Network Storage Quota
• Scheduled Auto Backup, Auto Snapshot
• User/Group Privilege ACL
E-mail Service
Internet Security Service
• Supports POP3, SMTP, IMAP
• Access Control List (ACL)
• Secured Socket Layer (SSL)
• URL / IM / P2P Blocking
• Junk Mail Filtering
• Firewall / NAT
• Anti-Virus and Anti-Spam
• DoS Attack Protection
• Auto Backup, Auto Reply
• Site-to-Site SSL VPN
• Web Mail
• PPTP VPN Remote Access
www.planet.com.tw
34 / 41
Features UMG-2000
Rear Panel
WiFi Service
• 802.11b/g/n Wireless Access Point
• 3 RP-SMA Detachable Antennas
• Security: WEP / WPA / WPA2
24+2G Switch Service
• IEEE 802.1d Spanning Tree
• IGMP Snooping
IP PBX / VoIP Service
• SIP 2.0 (RFC3261) compliant
• Up to 250 Registrations
• Call-Parking, Echo Cancellation
• QoS Support
• Telephone Conference, 3-Way Calling
• Call Hold, Call Waiting
• Fax Server Support
www.planet.com.tw
35 / 41
Network Security
Solutions
www.planet.com.tw
When Customers Choose
CS Series Products?
Planet CS series products are All-in-One Security Solution which includes
important security functions, such as VPN, IDP, Anti-Virus, and Anti-Spam.
If customers mainly look for Anti-Virus and Anti-Spam functions, CS-1000 or
CS-2000 would be the best choice.
SPI Firewall
VPN
IDP
Anti-Virus
Anti-Spam
URL Filtering
Content
Filtering
Bandwidth
Management
Use the
Browser
www.planet.com.tw
37 / 41
When Customers Choose
SG Series Products?
Planet SG series products provide important security functions, such as VPN,
SPI Firewall, Content Blocking, and QoS. If customers look for SSL, IPSec,
PPTP VPN mostly, they can choose SG-500 or SG-1000.
SPI Firewall
SSL VPN
IPSec VPN
PPTP VPN (SG-1000)
VPN Trunk (SG-1000)
WAN Load
Balancing (SG-1000)
Content Filtering
Bandwidth
Management
Support up to 50 SSL VPN
connection tunnels
www.planet.com.tw
38 / 41
When Customers Choose
MH Series Products?
Planet MH series products provide two WAN ports and important security
functions, such as SPI Firewall, Script Blocking, URL Blocking, and QoS.
If customers looking for WAN Fail Over function mostly, they can choose
MH-2001.
SPI Firewall
WAN Fail Over
WAN Load Balancing
IPSec VPN
PPTP VPN
URL Blocking
Script Blocking
Bandwidth
Management
Access Internet
through WAN2
WAN1 Fail
ISP1
ISP2
DMZ
LAN
www.planet.com.tw
39 / 41
Roadmap
100 tunnels MH
2WAN / Authentication /
VPN / FW
MH-2001
Security
Gateway
Unified Office Gateway
1 WAN / 24+2G / 11n / 4 FXO / 4 Hard Disk, IPPBX / VoIP / Network Storage / Email / Internet
Security / WiFi / L2 Switch
UMG-2000
50 tunnels SSL VPN
500 tunnels MH
2 WAN / SSL VPN / FW
2WAN / VPN / FW
SG-1000
MH-3000
1000 tunnels CS
100 users Internet Recorder
2 WAN / VPN / FW / AntiVirus / Anti- Spam / IPD
IM / Web Mail / E-mail / HTTP/ FTP/
Telnet, Cost-effective
CS-2000
IM-1010
200 users Internet Recorder
IM / Web Mail / E-mail / HTTP/ FTP/
Telnet
VPN Security
Bandwidth
Management
Gigabit Router
IM-2000
5-port Gigabit VPN /
IPS Router XRT-501
2000 tunnels CS
Bandwidth Gateway
Gigabit Router
(4 virtual IP, 1~50 users)
5-port Gigabit VPN / IPS Router
BM-525
2WAN / VPN / FW/ IDP / Anti-Virus /
Anti-spam / ICSA-certified
CS-3000
XRT-502
2009/Q2
2009/Q3
www.planet.com.tw
40 / 41
www.planet.com.tw