|
|
EDR-G9010-VPN-2MGSFP - Industrial Secure Router Switch with 8 10/100/1000BaseT(X) ports, 2 1/2.5GbE SFP slots, Firewall/NAT/VPN, by MOXA
|
|
|
- All-in-one firewall/NAT/VPN/router/switch with 10 GbE ports
- Secure remote access tunnel with VPN
- Stateful firewall protects critical assets
- Inspect industrial protocols with PacketGuard technology
- Easy network setup with Network Address Translation (NAT)
- RSTP/Turbo Ring redundant protocol enhances network redundancy
- Security features based on IEC 62443/NERC CIP
- Supports secure boot for checking system integrity
- Check firewall settings with the intelligent SettingCheck feature
|
|
|
EDR-G9010-VPN-2MGSFP, the EDR-G9010 Series is a set of highly integrated industrial multi-port secure routers with firewall/NAT/VPN and managed Layer 2 switch functions. These devices are designed for Ethernet-based security applications in critical remote control or monitoring networks. These secure routers provide an electronic security perimeter to protect critical cyber assets including substations in power applications, pump-and-treat systems in water stations, distributed control systems in oil and gas applications, and PLC/SCADA systems in factory automation.
Defend Against Malicious Threats With Advanced Cybersecurity Features
The EDR-G9010 Series’ embedded firewall uses policy rules to control network traffic between trusted zones while Network Address Translation (NAT) shields the internal network from unauthorized access by outside hosts. The Virtual Private Networking (VPN) functionality further provides users with secure communication tunnels when accessing the private network from the public Internet. To help protect your OT assets from cyberattacks, the EDR-G9010 Series supports Deep Packet Inspection (DPI) to examine the data portion of network packets for various OT-specific protocols.
Simplify Configurations With the User-friendly Interface and Quick Settings
The EDR-G9010 Series’ “Interface Type Quick Settings” provide an easy way for users to set up WAN, LAN, and Bridge ports for routing functionality in just four steps. In addition, the “Quick Automation Profile” feature gives engineers a simple way to configure the firewall filtering function for general automation protocols, including EtherNet/IP, Modbus TCP, EtherCAT, FOUNDATION Fieldbus, and PROFINET.
Industrial-grade Design to Ensure Uninterrupted Network Connectivity
The EDR-G9010 Series’ rugged hardware makes these secure routers ideal for harsh industrial environments, featuring wide-temperature models that are built to operate reliably in hazardous conditions and extreme temperatures of -40 up to 75°C. Moreover, the EDR-G9010 Series supports comprehensive Layer 2 and Layer 3 redundancy mechanisms to ensure that your network stays connected at all times.
Input/Output Interface
Ethernet Interface
Ethernet Software Features
-
Broadcast Forwarding
IP directed broadcast, broadcast forwarding
-
Management
Back Pressure Flow Control, DDNS, DHCP Server/Client, Web Console (HTTP/HTTPS), LLDP, QoS/CoS/ToS, SNMPv1/v2c/v3, Telnet, TFTP, HTTPS, SSH
-
Redundancy Protocols
RSTP, STP, Turbo Ring v2
-
Routing
Throughput: 350K packets per second (max. 1500 Mbps)
-
Routing Table
Max. 4K routing rules
-
Concurrent Connections
Max. 400K
-
Connections Per Second
Max. 20K
-
Routing Redundancy
VRRP
-
Security
Secure Boot, IPsec, L2TP (server), RADIUS, Trust access control
-
Time Management
NTP Server/Client, SNTP
-
Unicast Routing
OSPF, RIPV1/V2, Static Route
-
Multicast Routing
Static Route
-
Filter
IGMP v1/v2/v3
Switch Properties
-
VLAN ID Range
VID 1 to 4094
-
IGMP Groups
256
-
Max. No. of VLANs
16
LED Interface
-
LED Indicators
PWR1, PWR2, STATE, MSTR/H.TC, CPLR/T.TC, VRRP/HA, VPN, USB
DoS and DDoS Protection
-
Technology
ARP-Flood, FIN Scan, ICMP-Death, NEWWithout-SYN Scan, NMAP-ID Scan, NMAP-Xmas Scan, Null Scan, SYN/FIN Scan, SYN/RST Scan, SYN-Flood, Xmas Scan
Firewall
-
Filter
DDoS, Ethernet protocols, ICMP, IP address, MAC address, Ports
-
Quick Automation Profiles
DNP, EtherCAT, EtherNet/IP, FOUNDATION Fieldbus, FTP, HTTP, IEC 60870-104, IPsec, L2TP, LonWorks, Modbus TCP, PPTP, PROFINET, RADIUS, SSH, Telnet
-
Stateful Inspection
Router firewall
Transparent (bridge) firewall
-
Deep Packet Inspection
Additional protocols will be supported through future firmware updates.
-
Throughput
Max. 350K packets per second (max. 1500 Mbps)
IPsec VPN
-
Authentication
MD5 and SHA (SHA-256)
RSA (key size: 1024-bit, 2048-bit)
X.509 v3 certificate
-
Concurrent VPN Tunnels
Max. 250 IPsec VPN tunnels
-
Encryption
DES, 3DES, AES-128, AES-192, AES-256
-
Protocols
IPsec, L2TP (server), PPTP (client)
-
Throughput
Max. 300 Mbps (Conditions: AES-256, SHA-256)
NAT
Real-Time Firewall / VPN Event Log
-
Event Type
Firewall event, VPN event
-
Media
Local storage, SNMP Trap, Syslog server
Serial Interface
-
Console Port
RS-232 (TxD, RxD, GND), 3-pin (115200, n, 8, 1)
-
Connector
USB Type-C
Power Parameters
Physical Characteristics
Environmental Limits
-
Operating Temperature
Standard Models: -10 to 60°C (14 to 140°F)
Wide Temp. Models: -40 to 75°C (-40 to 167°F)
-
Storage Temperature (package included)
-40 to 85°C (-40 to 185°F)
-
Ambient Relative Humidity
5 to 95% (non-condensing)
Standards and Certifications
-
Safety
UL 62368-1
-
EMC
EN 55032/35
-
EMI
CISPR 32, FCC Part 15B Class A
-
EMS
IEC 61000-4-2 ESD: Contact: 8 kV; Air: 15 kV
IEC 61000-4-3 RS: 80 MHz to 1 GHz: 20 V/m
IEC 61000-4-4 EFT: Power: 4 kV; Signal: 4 kV
IEC 61000-4-5 Surge: Power: 2 kV; Signal: 4 kV
IEC 61000-4-6 CS: 10 V
IEC 61000-4-8 PFMF
-
Railway
EN 50121-4
-
Traffic Control
NEMA TS2
-
Maritime
IEC 60945
-
Power Substation
IEEE 1613, IEC 61850-3 Edition 2.0
-
Shock
IEC 60068-2-27
-
Freefall
IEC 60068-2-32
-
Vibration
IEC 60068-2-6
MTBF
-
Time
1,080,807 hrs
-
Standards
Telcordia (Bellcore), GB
|
|