Beruflich Dokumente
Kultur Dokumente
www.endian.com
Securing everyThing
The Simplest and Most Secure UTM Available
Network Security:
All-in-one full UTM hardware,
software and virtual appliances.
Endian Network
Endians centralized
management portal
About Endian
Founded in Appiano, Italy in 2003 by a team of experienced network specialists and security enthusiasts. Endians goal is clear:
Develop the worlds most powerful and easy-to-use Open Source Unified Threat Management system. With over 1.7 million users
of the Community Edition and thousands of installations of the professional product in over 50 countries, Endian continues to
deliver on its mission!
The number of Internet-connected devices is growing
at an incredible rate every day in both the business
and consumer markets. Endian understands that each
of these appliances becomes exposed to millions of
potential threats the minute its connected.
Our solution set is unique in that it can provide a comprehensive security layer combined with a unique level
of simplicity within the IoT industry. This can offer a
tremendous value to businesses in terms of protecting
their employees and users as well as enabling the creation of new service and support platforms that can
save costs and drive revenue.
Securing everyThing
www.endian.com
Hardware Appliance
Virtual Appliance
Software Appliance
Protect your virtual networks and infrastructure in seconds. Support for all
leading virtualization paltforms (VMware, Xen/XenServer, KVM).
Application Control
Take control of the network by properly managing time-wasting, high bandwidth or non-business applications like Skype, WhatsApp, Dropbox, Facebook,
Twitter and over 150 more. Endian makes it simple to manage applications
on your network with just a few clicks, increasing productivity has never been
easier.
Securing everyThing
www.endian.com
Event Management
The event notification engine was completely rewritten from the ground up to
provide more advanced features and all new notification capabilities. Now you
can keep track of things like IPsec and SSL VPN user activity (login/logout),
errors and much more. In addition, weve added multiple notification options
that include the ability to be notified via email or SMS or even have the system
run a custom script upon an event occurring.
Highlights Mini 25
4 Ethernet Ports
2 GB RAM
8 GB CFast Flash Memory
Desktop Appliance
WIFI Upgrade Available
Securing everyThing
www.endian.com
Highlights
5 Ethernet Ports
2 GB RAM
320 GB Hard Disk
Desktop Appliance
Highlights
6 Ethernet Ports
4 GB RAM
2x320 GB Hard Disk
LAN-Bypass
Rack 1U
Highlights
8 Ethernet Ports
4 / 8 GB RAM
2x320 / 2x500 GB Hard Disk
LAN-Bypass
Rack 1U
Highlights
10/18 Ethernet Ports
16/32 GB RAM
2x500/2x1000 GB Hard Disk
LAN-Bypass
Rack 2U
2x 10Gigabit SFP+ (optional)
Securing everyThing
www.endian.com
Mercury 50
Mercury 100
Macro 250
Macro 500
Macro 1000
Macro 2500
Firewall Throughput
1.2 Gbit/s
1.55 Gbit/s
2.5 Gbit/s
5.1 Gbit/s
10 Gbit/s
20 Gbit/s
30 Gbit/s
VPN Throughput
(IPsec & SSL)
120 Mbit/s
155 Mbit/s
220 Mbit/s
880 Mbit/s
1.4 Gbit/s
2.5 Gbit/s
4 Gbit/s
IPS Throughput
100 Mbit/s
120 Mbit/s
160 Mbit/s
590 Mbit/s
900 Mbit/s
1.8 Gbit/s
2.5 Gbit/s
Antivirus Throughput
(Proxy)
120 Mbit/s
150 Mbit/s
250 Mbit/s
1.4 Gbit/s
2.5 Gbit/s
3.5 Gbit/s
5 Gbit/s
180 Mbit/s
250 Mbit/s
400 Mbit/s
2.7 Gbit/s
4.8 Gbit/s
10 Gbit/s
15 Gbit/s
300,000
300,000
500,000
1,500,000
2,500,000
2,500,000
5,000,000
Mini 25
Mini 25 WiFi
Mercury 50
Mercury 100
Macro 250
Macro 500
Macro 1000
Macro 2500
Desktop
Desktop
Rack 1U
Rack 1U
Rack 1U
Rack 2U
Rack 2U
Weight
1.19 kg
2 kg
5 kg
8 kg
8 kg
19 kg
19 kg
Memory
2 GB
2 GB
4 GB
4 GB
8 GB
16 GB
32 GB
Storage
8 GB CFast
Flash Memory
320 GB HDD
Concurrent Sessions
Hardware
Case
Dimensions (mm)
4x Gigabit
Ethernet
44 x 430 x 260 44 x 430 x 400 44 x 430 x 400 88 x 430 x 580 88 x 430 x 580
5x Gigabit
Ethernet
6x Gigabit
Ethernet
8x Gigabit
Ethernet
8x Gigabit
Ethernet
10x Gigabit
Ethernet
2x 1 TB HDD
Raid
18x Gigabit
Ethernet
Networking
Wi-Fi 802.11
a/b/g/n (optional)
LAN Bypass
1 Pair
2 Pairs
4 Pairs
4 Pairs
40W External
45W External
65W Internal
250W Internal
250W Internal
Fanless
Fans
Fans
Fans
Fans
Fans
Fans
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
12 months
12 months
12 months
12 months
12 months
12 months
12 months
FCC/CE/RoHS
FCC/CE/RoHS
FCC/CE/RoHS
FCC/CE/RoHS
FCC/CE/RoHS
FCC/CE/RoHS
FCC/CE/RoHS
Power Supply
Cooling
LCD Display
VGA
Hardware Warranty
Certifications
2x 10Gigabit
2x 10Gigabit
SFP+ (optional) SFP+ (optional)
4 Pairs
8 Pairs
Software Solutions
Turn any PC into a Unified Threat Management Appliance
The software appliance is ideal for those who are looking to leverage existing hardware (x86) for their networking and security
needs. The product functionality is identical to our hardware appliances so no tradeoffs required.
The Endian UTM Software Appliance offers the same technology that resides in the Endian Unified Threat Management (UTM)
hardware appliances, thus making it possible to turn any PC into a full featured security appliance. Unleash the power of Endian
UTM using your preferred hardware to enable comprehensive security for your whole network infrastructure. Integrated security
services such as stateful inspection firewall, VPN, gateway anti-virus, anti-spam, Web security, and e-mail content filtering offer
granular protection in a single system, hence reducing management time and costs.
System Requirements
CPU
Intel x86 compatible (1GHz minimum, Dual-core 2 GHz recommended), including VIA, AMD Athlon, Athlon 64,
Opteron, Intel Core 2 Duo, Xeon, Pentium and Celeron processors
Multi-Processor
RAM
Disk
SCSI, SATA, SAS or IDE disk is required (8GB minimum 20GB recommended)
Software RAID
For software RAID1 (mirroring) two disks of the same type are required (capacity can be different)
Hardware RAID
CD-ROM
An IDE, SCSI or USB CDROM drive is required for installation (not required after installation)
Network Cards
Most common Network Interface Cards are supported including Gigabit and fiber NICs
Monitor Keyboard
Only required for the installation but not for configuration and use
Operating System
Multi-Processor
RAM
Disk
Support for full virtualization and paravirtualization / 8GB minimum (20 GB recommended)
CD-ROM
Network Cards
Operating System
Hypervisors
Securing everyThing
www.endian.com
Endian Network:
Check the status of your appliances and verify that the maintenance
is active
Let Endian technical support remotely access your machines
Download upgrades and security updates in a single click
Endian Network
Endians free centralized management platform
Endian Network is a free cloud-based, centralized management portal for secure remote
access to all your Endian hardware, software and virtual appliances. This unified solution allows you to access, monitor, update and upgrade your Endian appliances. A simple
setup process and a user-friendly web interface will help you in managing, selling and
supporting Endian products.
Highlights
Real-time status update of
your appliances
Remote access
Centralized updates and
upgrades
Remote support
Securing everyThing
IPsec
Encryption: Null, 3DES, CAST-128,
AES 128/192/256-bit,
Blowfish 128/192/256-bit, Twofish 128/192/256-bit,
Serpent 128/192/256-bit, Camellia 128/192/256-bit
Hash algorithms: MD5, SHA1, SHA2
256/384/512-bit, AESXCBC
Diffie Hellman modes: 1, 2, 5, 14, 15,
16, 17, 18, 22, 23, 24
Authentication: pre-shared key
(PSK), RSA keys
X.509 certificates
IKEv1, IKEv2
Dead Peer Detection (DPD)
NAT traversal
Compression
Perfect Forward Secrecy (PFS)
VPN Site-to-Site
VPN Client-to-Site (roadwarrior)
L2TP user authentication
XAUTH user authentication
OpenVPN
Encryption: DES, 3DES, AES
128/192/256-bit, CAST5, Blowfish
Authentication: pre-shared key,
X.509 certificates
Support for VPN over HTTP Proxy
PPTP passthrough
VPN client-to-site (roadwarrior)
VPN client for Microsoft Windows
and Apple OS X
Possibility of multiple logins per user
VPN failover
Multiple server support
Support for mobile devices (Android,
iOS)
VPN Portal for Clientless Connections*
NEW Web-based access to internal
resources
NEW Configurable portal page
NEW Support for multiple destinations
NEW Destination-based authentication
NEW SSL offloading
User Management & Authentication
Unified user management for OpenVPN, L2TP, XAUTH, VPN Portal
Group management
Integrated certificate authority
External certificate authority
support
User password and certificate
management
NEW Multiple authentication servers
(local, LDAP, Active Directory,
RADIUS)
NEW Fully integrated one-time
password (OTP) support
Web Security
HTTP & FTP proxies
HTTPS filtering
Transparent proxy support
URL blacklist
Authentication: Local, RADIUS,
LDAP, Active Directory
NTLM single sign-on
Group-based and user-based web
content filter
Time based access control with
multiple time intervals
Panda anti-virus
Cyren URL filter
Mail Security
SMTP & POP3 proxies
Anti-spam with bayes, pattern and
SPF
Heuristics, black- and whitelists
support
Anti-virus
Transparent proxy support
NEW Email quarantine management
Spam auto-learning
Transparent mail forwarding (BCC)
Greylisting
Cyren anti-spam
Panda anti-virus
WAN Failover
Automatic WAN uplink failover
Monitoring of WAN uplinks
Uplink types: Ethernet (static/
DHCP), PPPoE, PPTP
Support for UMTS/GPRS/3G USB
dongles
User Authentication
Active Directory / NTLM
LDAP
RADIUS
Local
BYOD / Hotspot*
Configurable captive portal
Free access to allowed sites (walled
garden)
Wired / wireless support
Integrated RADIUS service
Connection logging
NEW Bandwidth limiting based on
user, ticket or global settings
MAC-address based user accounts
NEW Configurable multiple logins
per user
User accounts import/export via CSV
User password recovery
Automatic client network configuration (support for DHCP and static IP)
Fully integrated accounting
Generic JSON API for external accounting and third party integration
Instant WLAN ticket shop (SmartConnect)
Single-click ticket generation (Quick
ticket)
SMS/e-mail user validation and
ticketing
Pre-/postpaid and free tickets
Time-/traffic-based tickets
Configurable ticket validity
Terms of Service confirmation
MAC address tracking for free
hotspots
Cyclic/recurring tickets (daily,
weekly, monthly, yearly)
Remember user after first authentication (SmartLogin)
NEW Social login (Facebook, Google)
External authentication server
(Local, LDAP, Active Directory,
RADIUS)
Routing
Static routes
Source-based routing
Destination-based routing
Policy-based routing (based on interface, MAC address, protocol or port)
Bridging
Firewall stealth mode
OSI layer 2 firewall functionality
Spanning tree
Unlimited interfaces per bridge
High Availability
Hot standby (active/passive)
Node data/configuration synchroniz-
Event Management
Extra Services
NTP (Network Time Protocol)
DHCP server
SNMP server
Dynamic DNS
Management / GUI
Centralized management through
Endian Network (SSL)
Easy Web-Based Administration
(SSL)
Multi-language web-interface
(English, Italian, German, Japanese, Spanish, Portuguese, Chinese,
Russian, Turkish)
Secure remote SSH/SCP access
Serial console
2015 Endian Spa. Subject to change without notice. Endian and Endian UTM are trademarks of Endian Spa. All other trademarks and registered trademarks are the property of their respective owners.
www.endian.com