Routing
Static routing
Routing Information Protocol (RIPv1 and RIPv2)
Inter-VLAN routing
Layer 2
Port-based and 802.1Q tag-based VLANs
4 active VLANs (4094 range)
One of five WAN/LAN ports can be mirrored to a selected LAN port
Supports Rapid Spanning Tree Protocol (RSTP) for loop detection and faster reconfiguration
Network
Dynamic Host Configuration Protocol (DHCP) Server, DHCP Client, DHCP Relay Agent
DHCP Server supports static IP address based on MAC address
Domain Name System (DNS) Relay, Dynamic DNS (DynDNS, TZO)
Network Address Translation (NAT): Port Address Translation (PAT), Network Address Port Translation (NAPT), Session Initial Protocol (SIP) Application Layer Gateway (ALG) support, NAT traversal
Network edge software configurable on any IP address
IPv6
Dual-stack IPv4 and IPv6
6 to 4
Stateless address auto-configuration
DHCP v6
Intra Module Command Protocol (IMCP) v6
Security
Access Control
MAC-based, IP-based access control list (ACL)
Firewall
SPI firewall
Content Filtering
Static URL blocking or keyword blocking (included)
Dynamic filtering through Trend Micro ProtectLink Gateway Security Service (optional)
Intrusion Prevention System (IPS)
IP sweep detection
Application anomaly detection (HTTP, FTP, Telnet, Remote Copy Protocol [RCP])
Peer-to-peer control
Instant messenger control
Layer 3/Layer 4 protocol (IP, TCP, User Datagram Protocol [UDP], Internet Control Message Protocol [ICMP]) normalization
Secure Management
HTTPS
Username/password
802.1X
Port-based RADIUS authentication (Extensible Authentication Protocol multicast distributed switching [EAP-MDS], Protected Extensible Authentication Protocol [PEAP])
VPN
5 VPN tunnels for remote client access
5 IPsec gateway-to-gateway tunnels for branch office connectivity
Triple Data Encryption Standard (3DES) encryption
Message Digest Algorithm 5 (MD5)/Secure Hash Algorithm (SHA1) authentication
IPsec NAT=T
VPN pass-through of Point-to-Point Tunneling Protocol (PPTP), Layer 2 Tunneling Protocol (L2TP), IPsec
Quality of Service
Service-based bandwidth management supports rate control and priority
Port-based prioritization on LAN port; application-based on WAN port
4 queues
Management
Simple Network Management Protocol (SNMP) version 1, 2c
Event logging: local, syslog, email alerts
Firmware upgradable through web browser
Flash, RAM diagnostics
Built-in web user interface for browser-based configuration
Performance
NAT throughput: 800 Mbps when IPS is disabled
WAN
Gigabit Ethernet (10/100/1000) WAN port
LAN
4-port, full-duplex 10/100/1000 Ethernet switch
