Home | Case Studies | Testimonials | Whitepapers | Contact Us
Customer Portal
Home > Managed Security > Products > E-4000 Detail
E-4000
The Network Box E-4000 is the flagship of the Network Box range, and includes two duel core AMD Opteron 64bit CPUs, allowing for the highest performance possible from a single Network Box unit. For even higher performance however, it is of course possible to cluster Network Box systems together; an ability inherent across the entire Network Box range. Like the Network Box E-1000, this model is uncompromisingly designed to protect Enterprises. The installed operating system is entirely 64bit, as are the core Network Box software components. These have been programmed ?from the ground up,? to make good use of the four CPU cores installed as standard on this system. Extreme performance requirements stemming from unusually high firewall, IDP or VPN demands can be handled by the increased performance provided by the four CPU cores working together.
^ UP
Technical Specifications Download S-M-E Range Catalogue   Download Datasheet
NETWORK BOX
Processor 2 x AMD Opteron 280 (Total: 4 CPU Cores)
System Architecture 64bit
Independent network connections 1 x 10/100 TX / 2 x 10/100/1000 TX
Upgradeable: Fibre LX / Fibre SX / Additional TX ports
Solid State Storage 1GB (SS HDD)
System RAM 4GB ECC
Hard Disk Drive(s) 2 x 72GB (SCSI)
Threat types protected against Viruses, e-mail, hacking, Denial of Service, software vulnerabilities, SPAM, company policy violations
IP address requirements Requires 1 public IP address (static or dynamic IPv4) for upstream connection, additional required for high availability
Front panel display VFD (Vacuum Fluorescent Display) with built-in 7-key keypad for easy operator control
Licensing Per Box
Power supply 110volt-60Hz / 240volt-50Hz [Dual Redundant Power Supplies]
Weight 24 kg
Dimensions (H x D x W) 2U (9cm x 66cm x 43cm)
FIREWALL
Packet filtering firewall Yes - filtering by protocol, source, destination (address and/or port) and interface
Stateful packet inspection Yes - connection tracking and filtering by invalid, established, new, and related states
Application proxies Yes - security-hardened ARP, DHCP, NTP, HTTP, HTTPS, FTP, GOPHER, SMTP, POP3 and IMAP4
Application level filtering Yes - filters configurable on data stream
Network Address Translation (NAT) Yes - both source (connection sharing) and destination (call/port forwarding)
Load balancing/multiple gateway support Yes - both incoming (via call forwarding/routing) and outgoing (multiple gateways)
Available routing protocols Static (recommended), RIP, HELLO, OSPF, IS-IS, EGP, BGP
Unauthorised action response Blackhole (silently drop), reject (with correct protocol response), or blacklist (drop further traffic)
Address spoofing protection Both inbound and outbound protection against network address spoofing
Basic Routed Protocols support ARP, ICMP, IPv4, IPv6
Maximum network nodes Unlimited
Suggested maximum network connections 1,048,576
Absolute maximum network connections 2,097,152
Maximum throughput 2,800 Mbps
IDS / IDP
Intrusion detection engine Zero latency, hybrid, multi-level, tightly integrated with firewall
Action Active (blocks network traffic) and/or passive (logs intrusion attempts)
Reporting Real time (on demand), and periodic (summary) by SMTP e-mail
Types of intrusion detected ICMP/IP, Denial of Service (DoS), portscans, protocol level, application level
Signatures Depends on configuration, but normally in excess of 2,500 (IDS) / 350 (IDP)
VPN
VPN types IPSEC, L2TP, PPTP, GRE, SSL
IPSEC encryption algorithms DES, 3DES, AES, CAST, Blowfish, Serpent, Twofish
IPSEC digest algorithms MD5, SHA1, SHA2
IPSEC key sizes supported 168 / 192bit DES, 128 / 256bit AES, 256 / 512bit SHA2, 2048+bit RSA
IPSEC VPN 394 Mbps (AES 256bit)
SSL VPN 334 Mbps (AES 256bit)
Simultaneous VPNs tested 10,000 tested
Configuration options Site-to-Site, Site-to-Remote, Site-to-Roadwarrior
Hardware Acceleration Not Required
ANTI-VIRUS / ANTI-SPYWARE
Protocols for scanning/detection SMTP, POP3, IMAP4, FTP, HTTP
Maximum message size Configurable, but at least 100Mbytes
Anti-relay protection Protects LAN segment(s) and DMZ segment(s)
Basic encoding methods supported MIME, uuencode, Base64, text
Anti-virus engines Heuristic and signature-based engines, including Kaspersky Laboratories and optionally CLAM (Over 275,000 signatures)
E-mail anti-virus scanning throughput 70,000 ? 372,000 messages per hour (AV+)
ANTI-SPAM / ANTI-PHISHING
Protocols for scanning/detection SMTP, POP3, IMAP4
Maximum message size Configurable, but at least 100Mbytes
Basic encoding methods supported MIME, uuencode, Base64, text
Actions on SPAM detection Scoring, Header-Insertion, Subject-Marking, Forwarding, Drop1, Redirect1 and Quarantine1
Anti-SPAM engines Heuristic, signature, RBL and Bayesian state-of-the-art SPAM engines (Over 750,000 signatures)
E-mail anti-SPAM scanning throughput 20,000 ? 210,000 messages per hour (UTM+)
Optical Character Recognition Technology Yes
CONTENT FILTERING
Protocols supported HTTP, HTTPS, FTP, GOPHER, WAIS
Source user filtering Authenticated user/source IP address
Filtering rules Source user, Method, Category, Schedule
Scheduling flexibility Multiple schedules by time of day/day of week across different users/groups of users
Categorisation database 1.5 billion web pages, categorised into 54 categories, collected from 192 countries, in 70 different languages
Black lists/White lists Both, selectable for individual users/groups
Web Proxy scanning throughput (UTM+) 300 - 320 requests per second
Reporting Flexible, drill-down, "slice and dice" by IP, user, site, category, date, time, cache status
SERVICE
Installation/configuration Network Box is fully and individually configured according to the customer's requirements
Configuration verification Periodic verification of system integrity and configuration
24 x 7 monitoring Active and passive monitoring of environment, hardware, O/S, key subsystems, configuration and performance
24 x 7 updates Delivered on an as-available basis, pushed to Network Box systems from a worldwide network of NOCs
Just-in-time updates Just-in-time release of latest threat signatures for protection from blended threats
Help desk 8x5 or 24x7 access to help desk as per Service Level Agreement (SLA)
Reporting Real time (on demand), and periodic PDF (summary) via SMTP e-mail
Hardware maintenance Included with managed service
Configuration back-up Full configuration back-up maintained at managing Network Box NOC(s)
Live Watch Monitoring System Built into Network Box Graphical User Interface Version 3, using AJAX technology
1 Anti-Spam actions Drop, Redirect and Quarantine are not support for POP3 and IMAP4 protocols.
Benchmarking is performed with representative data, on a function by function basis. Features and specifications are subject to change without notice. Network Box can not be held accountable for any unintentional typographical errors. Actual models may differ in appearance to the illustrations and photographs provided. Copyright Network Box Corporation Limited 2006.
     
POP3 and IMAP4 accounts are fully protected by the Network Box solution as soon as they are activated on the LAN. That is it - no setup required. Most systems cannot offer this type of protection at all. Automatic POP3 and IMAP4 email protection also allows sites which do not host their own email systems, to be protected by the Network Box. The outsourcing of email management is common, yet many traditional anti-virus email gateways cannot work with such a configuration, as they only support the SMTP protocol directly.
Security Links
© Copyright 2003-2007 Network Box USA Inc.