UTT 2512 Security Gateway/VPN Firewall

UTT 2512 is a purpose-built firewall router designed for highest level of availability to meet the needs of SMEs, schools and small branch offices that require VPN (Virtual Private Network).


UTT 2512 adopts the Intel IXP network processor, delivering packet forwarding performance up to 140 Kpps, 3 times higher than the device which adopts ARM9.

UTT 2512 supports access restriction to enhance the management of network security and maintenance. Support
PPPoE server which will completely solve the ARP problems of Intranet; Support various VPN functions such as IPSec, L2TP and PPTP in establishing site-to-site VPN connections or remote access VPN connections.

VPN
Support various VPN functions such as IPSec, L2TP and PPTP, which can be used alone or combined; Support dynamic IP address VPN connections; Support Site-to-site VPN, remote access VPN (client-to-site); VPN tunnels are restricted to 5, up to 5 concurrent tunnels.

IPSec provides features of auto key (IKE) and manual key, ESP/AH protocols, DES/3DES/AES encryption algorithm, MD5/SHA-1 hash algorithm, main mode and aggressive mode, Anti-Replay and NAT Traversal.

NAT
Capabilities of NAPT/NAT, routing and hybrid mode meet the needs of complicated networks. Port forwarding and DMZ host provide external services of HTTP, telnet and FTP, etc; NAT re-routing, reverse NAT and NAT ALG (FTP, PPTP and IPSec ESP, etc) are also supported.

Firewall
Super abilities of defense against internal/external attacks: ARP spoofing attacks, port scanning, DoS/DDoS attacks, Worm.Blaster, Worm.Sasser, SQL slammer, etc. Ensure the stability and security of your router and network.

Support packet filteringbased on source/destination IP address, protocols, ports, source/destination MAC address; Support application layer filtering based on URL and keywords; Support schedule-based ACL; Control the Internet access and protect the internal network against external attacks.

Policy Database
By introducing policy database, UTT router will process several complex policy-based routings as a policy database. The database can be auto updated similar to Windows Update. It simplifies the configuration and avoids cumbersome maintenance for customers. To solve the frequent updating problems of various software like QQ, MSN, P2P, UTT employees will collect all the information and update policy database immediately.

Policy database realizes the convenient one-click operations of ARP Spoofing defense, DoS/DDoS attack defense, virus attack defense, IM (QQ, MSN) blocking and P2P (emule, BitTorrent) blocking, which greatly simplify the configuration.

Provide policy-based routing of different ISPs. Instead of adding static routings one by one, what you should do is only to update the policy database.

3-Class Bandwidth Control
3-Class Bandwidth Control represents three classed bandwidth control: personal > group > global, which is designed for meeting the demands of different internal network bandwidth. Algorithm-based bandwidth control will optimize the bandwidth utilization. Restrict software such as BT, P2P effectively.

Support bandwidth control based on schedule; when the network is high loaded, bandwidth control will be enabled to ensure all the users can receive rational bandwidth; while the network is low loaded, bandwidth control will be disabled.

Restrict the max number of concurrent NAT, TCP, UDP and ICMP sessions, which will effectively prevent overloading download software like P2P and ensure the other hosts' connections smooth from stopping the bandwidth waste of PCs which suffered from computer virus.

User Administration
Super abilities of defense against internal/external attacks: ARP spoofing attacks, port scanning, DoS/DDoS attacks, Worm.Blaster, Worm.Sasser, SQL slammer, etc. Ensure the stability and security of your router and network.

Support packet filteringbased on source/destination IP address, protocols, ports, source/destination MAC address; Support application layer filtering based on URL and keywords; Support schedule-based ACL; Control the Internet access and protect the internal network against external attacks.

Port Mirroring
Support port mirroring; Offer real-time details on each port; Provide ability of sending a copy of all network packets seen on one switch port to a network monitoring connection on another switch port. Port mirroring will simplify network monitoring so that the administrator can control network flow, analyze performance and diagnose faults easily.

Monitor
Offer different modes of monitoring and diagnosis, which can monitor network access dynamically and help the administrator to trap and resolve the network fault quickly. This function can especially enable ability of discovering the network abnormality and abnormal hosts.

Network administrators can quickly discover the abnormal phenomena of slow network through watching the bandwidth of each port, the uploading/downloading bandwidth of each user and NAT sessions of each user.

Configuration and Management
Offer user-friendly Web interface which delivers an easy-to-use platform with rich functions. Quick Wizard will help customers to complete the initial settings in short time. Support traditional Command Line Interface (CLI) with more functions. You can use both Web and CLI to manage the remote devices.

Support configuration backup and restore through TFTP and Web, etc. You can save the current configuration file into your computer and import the configuration file into the UTT router.

Support SNMP interface for remote management of SNMP server. Support Syslog for remote messages forwarding from Syslog server.


Key Features

  • Support connection via DSL, FTTx+LAN and Cable Modem.
  • 4 10/100M LAN ports, 1 10/100M WAN port
  • Support Internet access control, security management and network maintenance
  • Support express forwarding, throughput up to 200 Mbps, 140 Kpps
  • Max number of concurrent NAT sessions: 30,000
  • Support 3-Class management: personal, group and global
  • Support firewall policy based on address group and service group
  • Support PPPoE Server
  • Support schedule management
  • Support SNTP
  • Support DDNS
  • Support UPnP
  • Support DNS Proxy
  • Support Port-based VLAN
  • Support VPN pass-through of L2TP, PPTP and IPSec
  • Support IPSec, L2TP and PPTP
  • UTT Technologies: http://uttglobal.com/