MeGaDoizer Posted July 15, 2006 Posted July 15, 2006 нужно подобрать железячку с характеристиками : 500 000 сессии. 50Mbps IPS 50Mbps VPN(3DES/AES) 100Mbs FIREWALL Layer 2 fall back OSI 2 - 7 50 зон 4 зоны DMZs VPN : DES/3DES/AES, X.509,PPTP,L2TP,IPserc Server Firewall: SPI,NAT,PAT,календарь прошу сильно не пинать ))) я в таких железячка не спец, клиент просит ) Вставить ник Quote
ayamb Posted July 15, 2006 Posted July 15, 2006 (edited) ATi AT-AR770s 4x10/100/1000T + 2x10/100/1000T(SFP combo) 480Mbps IPSec 384Mbps VPN(AES128/192) (192Mbps AES256) 480Mbps FireWall (whith NAT) 288Mbps FireWall (whith doble NAT) 1024 VPN tunnels (4096 ready) Firewall SIF (1024 policies) (exclude blank policies) Firewall 96 zones (LAN/WAN/DMZ) (For Alias-based ip-interfaces case, limited specificly firewall policies configuration 496 zones.) Firewall proxy type: Telnet, ICMP, DNS, FTP, SMTP, HTTP, HTTPS, TCPGeneric, , UDPGeneric, OTHERGeneric, CUSEEME, XING Firewall NAT type: STANDART, NAPT, Enhanced, Enhanced NAPT, Reverse, Double, IPsec NATTraversal VPN : PPTP,L2TP,IPsec,OSI,STT client/server Encryption: DES/3DES/AES (AES - feature Licence) BGP4 (extended memory module 256/512mb) OSI L2-7 (L5-7 for filtering, mapping, and software QoS only) (Full L3 IPv6, IPX and Appletalk - feature Licence) L3 Server Load balancer L2 Resilent link Trigger facility (include data/time/period) P.S Аналогичные аппараты: AT-AR750s (192/96/192/128/256(1024)), AT-AR450s (64/48/96/48/64(256)). Слабее, но с тем же функционалом. Edited July 15, 2006 by ayamb Вставить ник Quote
MaxP Posted July 17, 2006 Posted July 17, 2006 нужно подобрать железячку с характеристиками :500 000 сессии. 50Mbps IPS 50Mbps VPN(3DES/AES) 100Mbs FIREWALL Layer 2 fall back OSI 2 - 7 50 зон 4 зоны DMZs VPN : DES/3DES/AES, X.509,PPTP,L2TP,IPserc Server Firewall: SPI,NAT,PAT,календарь прошу сильно не пинать ))) я в таких железячка не спец, клиент просит ) Посмотри вот это http://www.netwell.ru/model.asp?id=5 , и там внизу есть ссылки на описание на русском, интересна вторая статья Вставить ник Quote
MeGaDoizer Posted July 17, 2006 Author Posted July 17, 2006 ayamb MaxP огромное спасибо! Вставить ник Quote
MeGaDoizer Posted July 18, 2006 Author Posted July 18, 2006 неудается найти AT-AR770S.....((( может из кисок есть что нибудь похожее ? ещё раз спасибо .... Вставить ник Quote
MeGaDoizer Posted July 18, 2006 Author Posted July 18, 2006 опять я,,,,полный список нужных характеристик....чувствую одной железкой не обойтись ))) 500000 simultaneous sessions 5000 connections per second and at least 128k connections RIP v1, v2, 802.1Q Vlan Tagging Limitless users Support PIM-DMK multicast routing in tunnels VPN for handling of applications of conferences IP Radius 4 Ports 10/100 1 Admin Port 10/100 1 Admin console port HIGH AVAILABILITY : Layer 2 fall back Active-active or active-passive redundancy VPN: 50Mbps like IPS 1 <= ms 50Mbps like VPN (3DES/AES) DES/3DES/AES, X.509, PPTP, L2TP, IPSec Server 50 areas of security, 4 should be physical and that they can functional as DMZs 250 associations of tunnels VPN in IPSec with handling capacity of at least 1000 tunnels VPN TRAFFIC SHAPING: in incoming and salient traffic based on political capacity to prioritize traffic of applications of critical mission inside of and outside of tunnels VPN FIREWALL: 100Mbps Firewall SPI, NAT, PAT, Calendar, Services and groups configurables OSI 2-7 filters of Microsoft, operating systems, Oracle, Linux, VoIP It protects vulnerabilities of the net teams It protects before anomalies of I traffic peer-to-peer,chat control ADMIN: HTTPS, CLI, SSH, SNMP Web content filtering, black and white Lists, subscription with a company that provides 6 millions of categorized URLs at least, 40 categories of contents, 65 lenguages, without limit in the size of the database BASE OF THE AUTOMATIC UPGRADES FOR IPS: It is required that offered IPS is upgraded automatically with filters of characteristic security of the following ones I manage of signatures, vulnerabilities, anomalies of protocols, traffic anomalies Automatic security through recommended filters or recommended settings Automatic Updates at least once per week The filters should contemplate the protection of vulnerabilities, virus, worms, Trojan, P2P, spyware, phishing, to protect applications like VoIP The filters should be focused Вставить ник Quote
ayamb Posted July 19, 2006 Posted July 19, 2006 (edited) Если достаточно 10/100BaseT, то вполне подойдет AR750s. С избытком соответствует Твоему заданию, кроме следующих пунктов: 1. 500000 simultaneous sessions. (Пункт под вопросом.) 2. Traffic shaping. (Нет прямого ограничения на физике, только QoS на L3-интерфейсах.) 3. Base of The automatic upgrades for IPS. (Нет автоматического обновления.) P.S. Для AR770s - аналог CISCO7301 с соответствующей набивкой 3x10/100/1000T(SFP combo), только деньги немного другие. :) Edited July 19, 2006 by ayamb Вставить ник Quote
.png.5d2afa2996cc6a85d0f2c09b92dd0a28.png)
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.