PLANET - CS-2001 - Enterprise Multi-Homing Security Gateway, 4-Port Gigabit for LAN/WAN,DMZ, IPv6, IM/P2P/URL

The Internet enables the exchange of huge amounts of information, but at the same time creates problems related to the security of local networks, being a source of increasingly serious threats to the functioning of companies. Planet CS-2001 is a UTM security gateway that adopts a heuristic analysis algorithm to filter email for spam and viruses.

The device supports the IPv6 protocol, guaranteeing compatibility in the future. The self-learning heuristic analysis system can increase its effectiveness in identifying spam, and the built-in 500GB hard drive provides enough space for quarantined e-mails. The anti-virus engine has two scanning engines, Clam and Sophos, thanks to which it is able to diagnose viruses, worms and other threats in e-mails and files sent from the Internet. The device sends daily, weekly, monthly and yearly reports via e-mail, which allows the administrator to easily monitor the status of the network.

CS-2001 protects against spam and viruses, but also thanks to the built-in firewall and IDP protection it protects against hackers and other attacks coming from the Internet or Intranet. The gateway not only has features such as: content filtering to block specific URL addresses, scripts, messengers and P2P programs, IPSec /PPTP VPN server/client, QoS mechanisms, authorization, load balancing, etc., but also guarantees much higher performance also thanks to the support Gigabit Ethernet interface. The built-in two WAN ports allow the CS-2001 gateway to balance the load of incoming and outgoing traffic and ensure continuous access to the WAN even in the event of a link failure. What's more, the VPN Trunk function enables VPN load balancing

Multifunctional UTM security gate

The PLANET CS-2001 UTM security gateway is a specially designed spam and virus filtering gateway. Acting as a security for the corporate network, the CS-2001 protects the corporate intranet from virus infection and prevents network resources from being wasted on useless spam. What's more, IDP mechanisms, user authorization and content filtering guarantee comprehensive protection of the network against all threats. The CS-2001 also supports IPSec, SSL VPN, and PPTP VPN to guarantee secure data transfer through the VPN tunnel.

Features:

• Gigabit Ethernet Interface: CS-2001 supports Gigabit Ethernet interface for high performance.
• IPv6: IPv6 was designed as the successor to IPv4. The CS-2001 supports the new version of the IP protocol, guaranteeing compatibility with networks in the near future.
• Anti-Spam Filter: Multi-level analysis (header analysis, content analysis, blacklist and whitelist verification, Bayesian filtering, Spam Fingerprint, sender account and IP address check, Graylist) and heuristic analysis block approximately 95% of spam . Configurable options for tagging such emails, reports for the administrator. Various response possibilities: deletion, delivery, forwarding and storage. Self-learning system to increase spam capture efficiency.
• Anti-Virus Protection: The built-in dual anti-virus system is able to diagnose viruses, worms and other unwanted add-ons in e-mail. Real-time scanning of critical SMTP and POP3 protocols as soon as data appears on the network. Configurable options for tagging such emails, reports for the administrator. Multiple response options: deletion, delivery, forwarding and quarantine storage.
• Anti-Virus for HTTP, FTP, P2P, IM, NetBIOS: CS-2001 not only offers anti-virus mechanisms for e-mail, but also intercepts viruses in other protocols. The virus database can be updated automatically or manually.
• VPN Support: The gateway supports IPSec VPN, SSL VPN, and PPTP server/client protocols. The security of network traffic when using the public Internet is guaranteed by the use of DES, 3DES security and AES encryption along with SHA-1 / MD5 user authorization. The VPN connection wizard makes it easy for the administrator to set up.
• SSL VPN: SSL VPN requires no additional hardware or software installation. Just use a web browser to establish VPN connections with SSL-encrypted data transmission.
• VPN Trunk: Enables load balancing in the VPN network, and offers a redundancy mechanism to guarantee the continuity of the VPN connection.
• Content filtering: The gateway can block connections based on URLs, scripts (Pop-up windows, Java applets, cookies and Active X controls), P2P applications (eDonkey, Bit Torrent, WinMX, others), messengers (MSN, Yahoo Messenger , ICQ, QQ, Skype and Google Talk) and download/upload files. If a new version of P2P software or a new messenger is installed on the client side, the CS-2001 will detect the difference and update its content filtering mechanism.
• IDP: The built-in IDP mechanism prevents hacking, flow disruptions and other threats from the Internet. CS-2001 offers three types of signatures to complement the threat detection system, you can set "Anomalous", "Predefined" or "Custom" types according to your current needs.
• Firewall: The built-in firewall protects against many known hacker attacks, such as: SYN attack, ICMP flood, UDP flood, Ping of Death, etc. The access control function allows users to configure WAN or LAN access to specific services at specific times .
• QoS Mechanisms: Network packets can be classified based on IP address, IP subnet, and TCP/UDP port number. With three priority levels, maximum network throughput is ensured.
• Authentication: Web-based authentication allows users to authenticate through a browser. The user base can be configured on the device or via an external RADIUS, POP3 or LDAP server.
• WAN failure protection: The CS-2001 can monitor the status of each WAN port and automatically activate backup links when a failure is detected. Failure detection is based on checking the configured destination address on the Internet.
• Outbound load balancing: Network sessions are awarded based on a configurable load balancing mode - "Auto", "Round-Robin", "Traffic", "Session" and "Bundle" modes available. It is also possible to configure which IP addresses or which services (based on TCP/UDP ports) use which WAN port.
• Load balancing for incoming traffic: CS-2001 offers load balancing for traffic to the internal server. This feature reduces the server load and the risk of system failure.
• Multiple NAT: Multiple NAT allows you to set up multiple subnets and connect to the Internet via different WAN IP addresses.
• VLAN: The CS-2001 supports IEEE 802.1Q Tagged VLAN and VLAN groups, which allows flexible network deployment.
• High Availability: The CS-2001 offers High Availability and a redundant system prevents network problems in the event of a device failure.