Multi-Function Security Application
The DFL-700 features functions typically found from enterprise-grade firewalls, such as Stateful Packet Inspection (SPI), detect/drop intruding packets, embedded VPN, a physical DMZ port, multiple-mapped IPs and multiple virtual servers. The DFL-700 connects your office easily to a broadband modem such as cable or DSL through an external 10/100BASE-TX WAN port.
Full Firewall Functions
The DFL-700 provides complete firewall functions, including the NAT mode, PA T (Port Address Translation) mode, Routing mode and SPI. It also supports customized policy and virtual server configuration. Administrators can easily manage the network through graphical statistics in a logging/monitoring system.
High Performance IPSec VPN Support
The DFL-700 is equipped with embedded VPN support, allowing you to create multiple IPSec tunnels to remote sites/clients. IPSec on the DFL-700 uses strong encryption with DES, 3DES, AES and Automated Key Management via IKE/ISAKMP. A VPN tunnel can be activated from the DFL-700 to a remote site or a mobile user for secured traffic flow using triple DES encryption. This offers users a way to confidentially access and transfer sensitive information. Multiple VPN tunnels may be easily created without the need to setup IKE (Internet Key Exchange) policies.
Access Control List (ACL)
URL blocking is part of basic features offered by DFL-700. This function provides the benefit of limiting access to undesirable Internet sites. Logs of real-time Internet traffic, alarms of Internet attacks, and notice of web-browsing activities are logged and can be reported through e-mail notification. DFL-700 supports Radius authentication so you can make use of your existing Radius Server and user information.
Advanced Features for Complete Protection
DFL-700 provides advanced features including Content filtering, IDS (Intrusion Detection System), Bandwidth Management for complete solution protection to users' Network. Content Filtering lets you filter/protect your network with customized policy. Bandwidth management guarantees bandwidth for different services.
The DFL-700 protects your network from attacks. It can be configured to log all attacks, locate the source IP address generating the attack, send the attack report notification to a specified e-mail address and establish policies to restrict incoming traffic from specific IP address sources. Network administrators can set e-mail addresses to receive alert message from the DFL-700. When intrusion events are detected, the DFL-700 will log them and send alert e-mail, and the administrator can check the log file on the router to find out what happened.
1 DMZ Port, 1 Trusted LAN Port
The DFL-700 includes an auto-sensing 10/100BASE-TX LAN ports that connect to your internal office network, and a physical DMZ (Demilitarized Zone) port that can connect your Web, mail or FTP servers for access from the Internet. The DMZ function is useful because it alleviates congested server traffic from entering the Internal network, while protecting your other office computers from Internet attacks by hiding them behind the firewall.
The DFL-700 provides an easy-to-use interface that is password-protected but still easily accessible through any Internet browser. Incoming and outgoing policies for firewall traffic, as well as configuration can be easily set up through this web-based interface.