Vous êtes sur la page 1sur 2

NetVanta 2400

Corporate Host VPN Gateway and Firewall


The ADTRAN NetVanta® 2400 is a corporate Management
Product Features host IPSec compliant gateway providing all
the necessary components required to secure
NetVanta’s web-based GUI or CLI can be
used for secure local or remote configuration
■ Standards-based IPSec an integrated VPN solution. As a large host of the NetVanta 2400. For a centralized,
VPN tunneling with enterprise-wide management scheme,
security gateway, the NetVanta 2400 provides
DES/3DES/AES encryption
several key security features such as IPSec VPN ADTRAN offers n-Command™, an intuitive,
■ Internet Key Exchange (IKE) tunneling with DES, 3DES, or AES encryption, scalable software suite for managing larger
for user authentication NetVanta deployments and features robust
stateful inspection firewall, and IKE for user
■ Stateful inspection firewall authentication supporting public/private productivity tools to effectively manage a
for network security keys or digital certificates. In addition, it also distributed network. To administer user
■ Hardware Encryption offers three 10/100Base-T Ethernet ports for accounts, the NetVanta 2400 utilizes XAUTH
Accelerator LAN segmentation and DMZ applications, a using RADIUS and RSA SecurID to manage
hardware encryption accelerator for faster administration account lists. This device also
■ Up to 1,000 private
encryption tunnels encryption throughput, and up to 1,000 offers built-in alert and logging mechanisms
simultaneous VPN tunnels. to warn administrators about activities that
■ Built-in IP router supporting
are going on in the network.
BGP, OSPF, and RIP Security
On a public infrastructure like the Internet, Quality of Service (QoS)
■ Quality of Service (QoS)
for delay sensitive traffic security is of the utmost importance. The QoS is also supported for delay sensitive
like VoIP NetVanta 2400 protects the corporate network traffic like VoIP or video. To prioritize
■ Web-based and CLI remote against attacks with a built-in stateful inspec- mission critical traffic and control network
management tion firewall and provides data security congestion, the NetVanta 2400 uses Low
through encryption, authentication and key Latency Queuing, Weighted Fair Queuing
■ 10/100Base-T Ethernet
interfaces for flexible exchange. The NetVanta 2400 employs a (WFQ), Class-based WFQ, and DiffServ
connectivity stateful inspection firewall that protects an marking to establish priority of IP packets
organization’s network from common cyber routed over the network.
■ Logging and alerts
attacks including TCP syn-flooding, IP VoIP Ready
■ Industry-leading five-year
spoofing, ICMP redirect, land attacks, ping- In combination with the QoS features, a
North American warranty
of-death, and IP reassembly problems. specialized SIP Application Layer Gateway
VPN Tunneling (ALG) allows SIP traffic to traverse NAT-
NetVanta 2400 is an IPSec compliant device enabled firewalls. For an enterprise network,
that provides secure communications over this interoperability allows IP PBXs, phones,
potentially unsecure network. As a security and other SIP-based devices to set up, tear
gateway, the NetVanta 2400 can support up to down, and pass voice and call control
1,000 private encryption communication messages seamlessly through the integral
tunnels and unlimited users on the LAN, NAT-enabled firewall.
while supporting encryption algoritions like Interoperability: The NetVanta 2400
DES, 3DES, and AES. In addition, Internet Key offers the highest level of integration with
Exchange (IKE) can be used for user authenti- ADTRAN’s complete line of IPSec VPN
cation supporting public/ private keys or equipped NetVanta products: NetVanta
digital certificates, assuring that the proper Ethernet Switches, NetVanta Access Routers,
VPN tunnel is established and that the tunnel and NetVanta VPN/Firewall appliances.
has not been redirected or compromised. Together the NetVanta Series offers the
most robust set of features to address a
wide range of enterprise VPN needs.
ADTRAN, Inc.
Attn: Enterprise Networks
NetVanta 2400
901 Explorer Boulevard Corporate Host VPN Gateway and Firewall
Huntsville, AL 35806

P.O. Box 140000


Product Specifications Protocols
■ IP ■ RIP (v1 and v2)
Huntsville, AL 35814-4000 Physical Interface ■ eBGP/iBGP ■ GRE
■ Public: Auto-Sensing 10/100Base-T
256 963-8000 voice ■ OSPF ■ PPPoE
256 963-8699 fax ■ Private: Three auto-sensing 10/100Base-T
■ Serial Port: RS-232 for off-net configuration Quality of Service (QoS)
General Information ■ Class-based Weighted Fair Queuing
800 9ADTRAN Diagnostics ■ Low Latency Queuing
info@adtran.com Front Panel Status LEDs ■ Weighted Fair Queuing
www.adtran.com ■ Power: status ■ DiffServ marking and packet recognition

Pre-Sales ■ VPN: status, transmit, receive ■ DiffServ preservation through VPN tunnel
Technical Support ■ Public: transmit, receive, link Administration
800 615-1176 toll-free
■ Private 1: transmit, receive, link ■ Familiar Command Line Interface (CLI)
application.engineer@adtran.com
www.adtran.com/support ■ Private 2: transmit, receive, link ■ Web-based GUI ■ SYSLOG Logging

■ Private 3: transmit, receive, link ■ n-Command™ support ■ Email Alerts (SMTP)


Where to Buy ■ SNMP v2 ■ Policy Statistics
877 280-8416 toll-free Security
channel.sales@adtran.com Firewall DHCP
www.adtran.com/where2buy ■ Server, Client, Relay
■ Stateful Inspection Firewall
■ MAC Address Masquerading
■ Denial of Service (DoS) Protection
Post-Sales
Technical Support ■ Access Control Lists Environment
888 423-8726 ■ Application Level Gateways (ALGs) ■ Operating Temperature: 0° to 50°C (32° to 122°F)
support@adtran.com ■ Storage Temperature: -20° to 70°C (-4° to 158°F)
www.adtran.com/support Virtual Private Network (VPN)
■ IPSec Mode: Tunnel ■ Relative Humidity: Up to 95%, non-condensing

ACES Installation & ■ Encryption: DES, 3DES, and AES


Maintenance Service
Physical
■ Diffie Hellman Group Support: ■ Size: 1.75" H, 17.25" W, 7" D
888 874-ACES
❍ Group 1: MODP 768 ■ Weight: 7 lbs. (shipping weight)
aces@adtran.com
www.adtran.com/support ❍ Group 2: MODP 1024 ■ Power: 100 – 250 VAC, 50/60 Hz
■ Hash Algorithms:
International Inquiries ❍ MD5-HMAC
Agency Approvals
256 963 8000 voice ■ FCC Part 15 (Class B)
❍ SHA1-HMAC
256 963-6300 fax ■ UL and Canadian UL (CUL), IEC/EN, CSA
international@adtran.com ■ Authentication Mechanisms:
www.adtran.com/international ❍ XAUTH
Product Includes
❍ X.509 Digital certificates ■ User manual
For the regional office ❍ Preshared keys
nearest you, visit: ■ AC power cord
❍ Secure ID
www.adtran.com/where2buy ■ Rackmount brackets
❍ DSS Signatures
■ Key Management: IKE (ISAKMP/Oakley)
■ IKE Modes: Ordering Information
❍ Main
Equipment Part #
❍ Aggressive
NetVanta 2400 1202367L2
❍ Perfect Forward Secrecy
❍ Mode Config
■ Dead Peer Detection
■ NAT Traversal V2

Network Address Translation


For details on applicable export licenses, visit
■ Basic NAT (1:1), NAPT (Many:1), 1:1 Port Translation www.adtran.com/exportlicense
■ NAT compatible SIP ALG Specifications subject to change without notice. ADTRAN and NetVanta
are registered trademarks of ADTRAN, Inc. n-Command is a trademark
Secure Management of ADTRAN, Inc. All registered trademarks and trademarks mentioned
■ Multi-level access control in this publication are the property of their respective owners.

■ RADIUS AAA
■ SSH CLI and SSL GUI

ADTRAN is an ISO 9001, ISO 14001,


and a TL 9000 certified supplier.
61202367L2-8F 10.1 August 2005
Copyright © 2005 ADTRAN, Inc.
All rights reserved.