HotBrick Dual WAN Firewall VPN 1400/2 User Manual

Page 5

background image

HotBrick, Tel: 305-398-0888, Fax: 305-398-5966

Supports all common Connection Methods

All popular DSL and Cable Modems and connection methods are supported, including Fixed

IP, Dynamic IP, PPPoE, and PPTP.

Outbound/Inbound Traffic Load Balancing and Failover

There are many load-balancing methods to allow administrators to manage the traffic from

LAN or WAN to maximize bandwidth usage. There are also smart health check methods to protect
against connection failure by using failover.

PPPoE Session Management

Multiple PPPoE sessions are supported and you can choose to “map” sessions to

individual PCs if desired.

Multiple IP Address Support

If your ISP allocates you multiple public IP addresses, you can “map” them to internal
PCs if desired.

Special Application

This feature allows you to use some non-standard applications, where the port number used
to reply is not the same port number used by the sender.

Virtual Server

This feature allows Internet users to access your internal Internet servers on your LAN. For standard

servers such as Web, FTP or E-Mail servers, only the IP address of the server PC is required.
You can also define you own Server types if needed.

Multiple DMZ

A "DMZ" PC will receive incoming connection requests that would normally be blocked.
For each IP address allocated by your ISP, a separate "DMZ" PC can be specified. So if your

ISP has provided multiple IP addresses, you can have multiple “DMZ” PCs. Each “DMZ” PC
has unrestricted 2-way Internet access. This allows you to run programs that are
otherwise incompatible with NAT routers like the Multi-WAN VPN Link Balancer.

Access Filter

The network administrator can use the Access Filter to gain fine control over Internet

access and applications available to LAN users. Five (5) user groups are available, and each
group can be assigned unique access rights.

Block URL

Use this feature to block access to undesirable Web sites by LAN users. You can even have
different settings for different groups of PCs.

Session Limit

With the Session Limit feature, when the number of new sessions for the system exceeds the

maximum in the sampling time, any new session in the system will be dropped.

System Filter Exception

The firewall rejects every packet with an unrecognized port to avoid port scans by hackers.

This requires exception handling in situations where some servers (e.g. SMTP server port 113) or
clients need to respond to non-standard packets to indicate aliveness to their communication peers.

VPN (Virtual Private Network)

Up to 50 VPN tunnels are supported, with a fail-over mechanism.

5