سامانه مدیریت یکپارچه تهدیدات

سامانه مدیریت یکپارچه تهدیدات IRONGATE

سامانه های مدیریت یکپارچه (UTM) سانای با نام تجاریIRONGATEضمن بهره گيري از تکنولوژی و فن آوری امنیتی پیشرفته با داشتن خصيصه‌هايی از قبيل پشتيباني از پروتكل‌هاي بومي،  انعطاف پذیری بالا از جمله قابلیت سفارشي نمودن نحوه ارائه سرويس ها و رابط‌های كاملا متمايز از ساير سيستم‌هاي جامع مديريت تهديدات در 6 مدل به شرح ذيل ارائه می شود:

 

Comparison of IRONGATE Ver.
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Support
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Commercial support options
Standard System Support
Direct support from SANAY
Phone Support
Live/Remote Support (hands on)
Instant Hardware Replacement
Optional
Optional
Optional
Optional
Optional
Optional
Advanced System Support
Optional
Optional
Optional
Optional
Optional
Optional
Premium System Support
SLA
SLA
SLA
SLA
SLA
SLA
Hardware Specs.
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
SFP Port
N/A
N/A
N/A
N/A
N/A
N/A
Gigabit Ethernet Port
N/A
2-4
4-8
4-8
4-8
8-24
Console Port
Storage
80GB
160GB
320GB
500GB
500GB
500GB
RAM
1GB
2GB
2GB UP 4
2GB Up 8
4GB UP 8
8GB UP 24
CPU
VIA 1G
Intel 2.8
Intel 3.4
Core 2 Quad 2.66
Xeon 2.6
2*Xeon 3.66
LAN Bypass
N/A
LCD Panel
Optional
Optional
Compact Flash
Optional
Optional
Optional
Optional
Optional
Optional
USB Port
2
2
2
2
2
2
Performance
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Suggested number of users
< 40
<100
<300
<550
<2500
<5000
Firewall Throughput
85Mbps
250Mbps
500 Mbps
1Gbps
1.5Gbps
3Gbps
No. of Concurrent Connections
45.000
150.000
500.000
1.000.000
1.500.000
2.500.000
VPN Throughput
40Mbps
55Mbps
100Mbps
250Mbps
350Mbps
500Mbps
IPS Throughput
N/A
N/A
N/A
150Mbps
200Mbps
350Mbps
UTM Throuput            
Network Security
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Stateful Packet Firewall
Demilitarized Zone (DMZ)
Intrusion Detection & Prevention System
N/A
N/A
N/A
Multiple Public IPs
QoS and Bandwidth Management
N/A
N/A
N/A
VoIP/SIP support
Portscan Detection
N/A
N/A
N/A
DoS and DDoS Protection
N/A
N/A
N/A
SYN/ICMP Flood Protection
N/A
N/A
N/A
Anti-Spoofing Protection
N/A
N/A
VLAN support (IEEE 802.1Q Trunking)
N/A
N/A
DNS Proxy/Routing
N/A
N/A
N/A
L7 Filtering            
Virtual Private Networks (VPN)
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
True SSL/TLS VPN
IPSEC (Site-to-Site)
N/A
N/A
Encryption; DES, 3DES, AES
Authentication: Pre-Shared Key, Certification Authority, Local, RADIUS
Support for VPN over HTTPS Proxy
N/A
N/A
N/A
X.509 and 2 factor based authentication
PPTP Pass-through
Pushing of DNS settings and Routes to clients
Automatic connection failover
Native VPN Client for Windows and Linux
Bandwidth Management per user
Web Security
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
HTTP, HTTPS, SIP & FTP proxies
N/A
Anti-virus (100.000+ patterns)
N/A
Transparent Proxy support
N/A
Content Analysis/Filtering
N/A
N/A
N/A
URL Blacklist
N/A
Authentication: Local, RADIUS, LDAP, Active Directory
N/A
NTLM Single Sign-On
N/A
Group based web content filter
N/A
N/A
N/A
N/A
Group based web access policies
N/A
N/A
N/A
N/A
Intelligent Web Cache
N/A
N/A
URL Database Classification (61 Categories)
N/A
N/A
N/A
Filtering Based on MIME Types
N/A
N/A
N/A
Mail Security
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
SMTP & POP3 proxies
N/A
Anti-spam with Bayes, Pattern, SPF Heuristics, Black- and White-lists support
Anti-virus (100.000+ patterns)
N/A
Spam Auto-Learning
Transparent Mail Forwarding (BCC)
N/A
N/A
N/A
Grey Listing
N/A
N/A
N/A
Block Files with MIME Types checking
N/A
N/A
N/A
Accounting Features
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Authentication: Local & Remote
Integrated RADIUS service
Per-user and global bandwidth limiting
Traffic-based Tickets
Connection Logging
No additional software/hardware required
User accounts import/export
Automatic client network configuration
Time-Based Limiting Service
Quota Definition (total, daily & weekly and monthly)
VPN Integration
Multi-WAN with Failover
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Support for multiple Uplinks/WANs
Automatic WAN Uplink Failover
Monitoring of WAN Uplinks
Uplink types: Ethernet (Static/DHCP), PPPoE, ADSL, ISDN, PPTP
UMTS/GPRS/3G support
N/A
N/A
N/A
Routing
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Static Routes
Source-based Routing
N/A
Destination-based Routing
N/A
Policy-based Routing (based on interface, mac, protocol or port)
N/A
Dynamic Routing (OSPF v2 and v3, BGP v4, RIP, RIP v2,RIPng)            
Network Address Translation
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
One-to-One NAT
N/A
N/A
Source NAT (SNAT)
IPSec NAT Traversal
N/A
N/A
Logging/Reporting
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Real-time Dashboard
Event handling and notification
Live Log Viewer
Detailed User Based Web Access Report
Network/System/Performance Statistics
Rule-based logging settings (Firewall Rules)
N/A
N/A
N/A
Syslog: Local or Remote
Management
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Easy Web-based Administration (SSL)
Secure Remote SSH/SCP Access
Serial Console
SNMP Support
Online Help
Updates and Backup
TS-05
TS-10
TS-20
TS-30
TS-40
TS-50
Backup/Restore Firewall settings from Web GUI
Centralized Updates through IRONGATE Net.
Anti-virus Definitions
URL Blacklist Definitions
Scheduled Automatic Backup
Encrypted Backups via E-mail
Instant Recovery/Backup to USB-Stick