Today’s continuously shifting security environment presents a challenge for small/home office networks with limited IT capabilities. Fortunately, the D-Link NetDefend Unified Threat Management (UTM) firewalls provide a powerful security solution to protect business networks from a wide variety of threats. UTM Firewalls offer a comprehensive defense against virus attacks, unauthorized intrusions, and harmful content, successfully enhancing fundamental capabilities for managing, monitoring, and maintaining a healthy network.
Enterprise-Class Firewall Security
NetDefend UTM Firewalls provide complete advanced security features to manage, monitor, and maintain a healthy and secure network. Network management features include: Remote Management, Bandwidth Control Policies, URL Black/White Lists, Access Policies, and SNMP. For network monitoring, these firewalls support e-mail alerts, system logs, consistency checks and real-time statistics.
Unified Threat Management
NetDefend UTM Firewalls integrate an intrusion detection and prevention system, gateway antivirus, and content filtering for superior Layer 7 content inspection protection. An acceleration engine increases throughput, while the real-time update service keeps the IPS information, antivirus signatures, and URL databases current. Combined,
these enhancements help to protect the office network from application exploits, network worms, malicious code attacks, and provide everything a business needs to safely manage employee Internet access.
Powerful VPN Performance
NetDefend UTM Firewalls offer an integrated VPN Client and Server. This allows remote offices to securely connect to a head office or a trusted partner network. Mobile users working from home or remote locations can also safely connect to the office network to access company data and e-mail. NetDefend UTM Firewalls have hardware-based VPN engines to support and manage a large number of VPN configurations. They support IPSec, PPTP, and L2TP protocols in Client/Server mode and can handle passthrough traffic as well. Advanced VPN configuration options include: DES/3DES/AES/Twofish/Blowfish/CAST-128 encryption, Manual or IKE/ISAKMP key management, Quick/Main/Aggressive Negotiation modes, and VPN authentication support using either an external RADIUS server or a large user database.
Maintaining an effective defense against the various threats originating from the Internet requires that all three databases used by the NetDefend UTM Firewalls are kept up-to-date. In order to provide a robust defense, D-Link offers optional NetDefend Firewall UTM Service subscriptions which include updates for each aspect of defense: Intrusion Prevention Systems (IPS), Antivirus and Web Content Filtering (WCF). NetDefend UTM Subscriptions ensure that each of the firewall’s service databases are complete and effective.
Robust Intrusion Prevention
The NetDefend UTM Firewalls employ componentbased signatures, a unique IPS technology which recognizes and protects against all varieties of known and unknown attacks. This system can address all critical aspects of an attack or potential attack including payload, NOP sled, infection, and exploits. In terms of signature coverage, the IPS database includes attack information and data from a global attack sensor-grid and exploits collected from public sites such as the National Vulnerability Database and Bugtrax. The NetDefend UTM Firewalls constantly create and optimize NetDefend signatures via the D-Link Auto-Signature Sensor System without overloading existing security appliances. These signatures ensure a high ratio of detection accuracy and a low ratio of false positives.
Stream-Based Virus Scanning
The NetDefend UTM Firewalls examine files of any size, using a stream-based virus scanning technology which eliminates the need to cache incoming files. This zero-cache scanning method not only increases inspection performance but also reduces network bottlenecks. NetDefend UTM firewalls use virus signatures from Kaspersky Labs to provide systems with reliable and accurate antivirus protection, as well as prompt signature updates. Consequentially, viruses and malware can be effectively blocked before they reach the desktops or mobile devices.
Web Content Filtering
NetDefend UTM Subscription
The standard NetDefend UTM Subscription provides your firewall with UTM service updates for 12 months* starting from the day you activate or extend your service. The NetDefend UTM Subscription can be renewed regularly to provide your firewalls with the most up-to-date security service available from D-Link.
NetDefend Center: http://security.dlink.com.tw
*Actual service package may vary depending on region.
Powerful VPN Engine
Hardware-based data encryption and authentication for IPSec, PPTP, and L2TP in Client/Server mode enable fast and safe handling of VPN traffic. Professional Intrusion Prevention System (IPS) Automatic updates from a comprehensive IPS signature database focus on attack payloads to protect the network against zero-day attacks.
Real-Time Antivirus Inspection (AV)
The antivirus engine scans using the most complete, most up-to-date antivirus signature database. Streaming-based pattern matching provides the effective protection against viruses.
Fast, Efficient Web Content Filtering
Multiple index server implementation, granular policies, black lists and active content handling enhance performance and effectiveness of web surfing control.
Acceleration Engine for Unified Threat Management
A powerful processor allows the firewall to carry out IPS and Antivirus scanning simultaneously without performance degradation.
Licensed for Unlimited Users
Optional subscription services for IPS, Antivirus Scanning, and Web Content Filtering are priced per firewall rather than per user, thus reducing the total cost of ownership for licensing.
WAN Link Load-Balancing and Fault-Tolerance
Multiple WAN ports support traffic load balancing and failover, thus guaranteeing Internet availability and bandwidth.
D-Link End-to-End Security (E2ES) Solutions*
The ZoneDefense mechanism operating in conjunction with D-Link xStack switches automatically quarantines infected workstations and prevents them from flooding the internal network with malicious traffic.
*For DFL-860E, DFL-1660, and DFL-2560(G) only
D-Link Green Certified
The D-Link Green certified DFL-1660 and DFL-2560(G) are built with an 80 PLUS internal power supply.
80 PLUS certified power supplies offer increased reliability due to greater efficiency, and provide a reduced cost of ownership through longer equipment life. Additionally, 80 PLUS power supplies help prevent pollution by limiting energy consumption, and run at a lower temperature to reduce cooling costs.
The DFL-260E and DFL-860E save energy automatically through cable length and link status detection. By detecting the length of cables connected to a port, the amount of power used for the port can be adjusted, only using as much as is needed. The DFL-260E/860E can also detect if a port is not in use, such as when a connected computer is shut down or if nothing is connected to the port, and can automatically reduce the power used for that port, cutting energy used for it by a substantial amount.
D-Link Green certified devices comply with RoHS (Restriction of Hazardous Substances) and WEEE (Waste Electrical and Electronic Equipment) directives. RoHS directives restrict the use of specific hazardous materials during manufacturing, while WEEE implements standards for proper recycling and disposal. Together, these considerations make D-Link Green firewall products the environmentally responsible choice.
The interface with the user:
- 2 10/100/1000 Ethernet WAN ports
- EthernetDMZ 1 10/100/1000 port (adjustable)
- 8 10/100/1000 Ethernet LAN ports
- 2 USB ports (reserved)
- The console port is an RJ-45
- Firewall Performance 2 : 200 Mbps
- VPN Performance 3 : 60 Mbps
- IPS Performance 4 : 80 Mbps
- Antivirus Performance 4 : 50 Mbps
- Parallel sessions: 40000 5
- New sessions: 4000 (second)
- Number of rules in 1000
- Transparent mode
- NAT, PAT
- Dynamic routing protocol OSFP
- H.323 NAT Traversal
- Policy according to the schedule
- Application Layer Gateway (ALG)
- Proactive Network Protection
- DHCP client / server
- DHCP relay
- Routing policies based
- IEEE 802.1Q VLAN: up to 16
- Port-based VLAN
- IP Multicast: IGMP v3
- Encryption (DES / 3DES / Twofish / Blowfish / CAST-128)
- 300 5 separate VPN tunnels
- PPTP/L2TP server
- Mode Hub and Spoke
- IPSec NAT Traversal
- SSL VPN (will work in the future)
- Outgoing traffic balancing
- Server load balancing
- Server load balancing algorithm: Round-robin, Weight-based Round-robin, Destination-based, Spill-over
- Traffic forwarding channel termination (Fail-over)
- Traffic Shaping policies based
- Guaranteed Bandwidth
- The maximum bandwidth
- Bandwidth prioritization
- Dynamic Bandwidth Allocation
Resistance to interference:
- WAN channel reservation
Prevention and Intrusion Prevention System (IDS / IPS)
- Automatic template update
- Protection against DoS and DDoS attacks
- Information about the attacks in e-mail. post
- Advanced IDP / IPS subscription (sold separately)
- "Black" list by IP (threshold level or the IDP / IPS)
- HTTP type: black / white list of URLs
- Set of commands type: Java Cookie, ActiveX, VB
- E-mail. mail type: black / white e. Mailing List
- External database content filtering
- Antiviral scanning in real time
- Unlimited document size
- VPN tunnel scanning
- Compressed documents required
- Antiviral codes: Kaspersky
- Automatic template update
- Internal power supply
- 330 x 180 x 44 mm
- Suitable for installation in 13-inch rack
- 0 º to 40 º C
- -20 º to 70 º C
- 5% to 95% without condensation
Average working hours without a crash:
- 140532 hours.
Electromagnetic Compatibility Certificates:
- FCC Class A
- CE Class A
- LVD (EN60950-1)
1 Actual performance may vary depending on network conditions and service activity.
2 Maximum capacity RFC 2544-based.
3 VPN traffic throughput measured using UDP traffic, the packet size is 1420 according to RFC 2544th
4 IPS and antivirus performance test conducted according to the HTTP protocol, by adding a run for IXIA IxLoad 1 Mb file. Tested with multiple flows through multiple port pairs.
5 Productivity determined using the software version 2.27.00 and later.
6 The function works if the DMZ port is set to the WAN port.
7 Compatible with the following D-Link SFP optical transducer modules: DEM-310GT, DEM-311GT, DEM-312GT2, DEM-314GT, DEM-315GT, DEM-330T, DEM-330R, DEM-331T, DEM-331R, DGS- 712