Network OS Datasheet

Vyatta Network OS Highlights Flexible, Affordable, Software Routing and Security » Dynamic Routing (BGP, OSPF, RIP) The Vyatta Network OS delivers advanced routing and security functionality for physical, » Stateful virtual and cloud networking environments. The Vyatta network operating system includes » IPSec and SSL-based VPN dynamic routing, , VPN support, threat protection, traffic management and more in a package that is optimized to take advantage of multicore processing power, » Intrusion Prevention common hypervisor platforms and emerging cloud architectures. All features are config- » Secure Web Filtering ured through Vyatta’s familiar, networking-centric CLI, web-based GUI or third party man- agement systems using the Vyatta Remote Access API. » DSL through 10Gbps performance The Vyatta Network OS is designed to be installed on any standard x86 based system » WAN Interface Support up to T3 scaling from single core desktop units for SME and branch office needs to quad core » Scalable x86-ready platform design plus for high-performance BGP routing or scalable VPN termination. Advancements in x86 processing power have proven that readily available multi-core systems can easily handle small packet processing and up to 10Gbps. Subscription Support Packages All Vyatta subscription customers are delivered our exclusive enterprise-ready Vyatta Net- BASIC: work OS software that includes ongoing engineering services to provide proactive notifica- » Vyatta Software Updates tion of software updates, bug fixes and security alerts. Vyatta subscriptions are packaged » Security Alerts & Patches with a choice of technical support to meet your business requirements and are eligible for optional add-on training and proactive engineering services that are designed to get your » Bug Fixes network up and running and maintaining optimal performance. » Proactive Notifications » Online Documentation The Vyatta Advantage » Knowledge Base Access Scalability: Choosing a software-based networking solution delivers freedom that has never been available from a routing and security vendor. By offering a software-only option, Vyatta puts the freedom in your hands to right-size your network as needed using readily available off-the-shelf components ENTERPRISE: and systems to drive as little or as much performance as your network requires today. Performance: The performance scale available from x86 hardware is continually expanding. Today’s Professional Features Plus multi-core servers have been proven to deliver up to 10Gbps routing throughput and faster » 5 X 12 Phone Support processors are always on the horizon. » Web-based Ticketing Price: Leveraging open standards in software and hardware allows us to deliver a feature competitive routing and security product for enterprise, government, education and service provider networks at a » Customer Hot Fixes fraction of the price of common proprietary hardware-based vendor systems. » Case SLA - Severity Based » Vyatta University Training The Vyatta network OS is designed to be deployed on standard x86-based hardware. Use Getting Started Bundle the chart below for basic guidance on building your Vyatta system using 3rd-party hardware.

PREMIUM: Basic Hardware Requirements Design Considerations Memory Storage Cores Enterprise Features Plus 1-4 100Mb Interfaces 512MB 2GB 1 Core » 7 X 24 Emergency Phone 1-4 T1/E1 Interfaces 1 Routing Protocol » Case SLA - Priority Response up to 100 Routes, Basic Firewalling 2-6 Interfaces (combo of 1GBE - T3) 1GB 2GB+ 1-2 Cores Up to 2 Routing Protocols Up to 10,000 Routes Firewall, NAT 6-10 Interfaces (combo of 1GBE - T3) 2GB 2GB+ 2-4 Cores 2 or more Routing Protocols Full Internet Routing Table Firewall, NAT, VPN, IPS 10 or more 1GBE or T1/T3 Interfaces 4GB 4GB+ 4-8 Cores 10GBE Interfaces 2 or more routing protocols Full Internet Routing Table from Multiple BGP Peers Complex Firewall, NAT, VPN, IPS

1 888 VYATTA 1 (US & CANADA) » +1 650 413 7200 (INTERNATIONAL) » WWW.VYATTA.COM Vyatta Network OS

Network Connectivity: Secure Connectivity IPv6 Compatibility At the core of the Vyatta system is a complex Establish secure site-to-site VPN tunnels Vyatta Subscription Edition software is the routing engine with full support of IPv4 and IPv6 with standards-based IPSec VPN between only software-based routing and security dynamic routing protocols (BGP, OSPF, RIP). two or more Vyatta systems or any IPSec solution with proven IPv6 functionality and Vyatta systems include support for 802.11 - VPN device. Or provide secure network ac- interoperability, ensuring a future-proof invest- ment in a solution that offers a simplified less, Serial WAN Interfaces and a wide variety of cess to remote users via Vyatta’s SSL-based migration path from IPv4 to IPv6. 10/100 thru 10Gb Ethernet NICs. OpenVPN functionality. Administration & : Firewall Protection: Traffic Management Vyatta systems can be managed through The Vyatta firewall features IPv4/IPv6 stateful The Vyatta system provides a variety of QoS our familiar network-centric command line packet inspection to intercept and inspect net- queuing mechanisms that can be applied interface, web-based GUI or through external work activity and protect your critical data. Vyatta to inbound traffic and outbound traffic for management systems using Vyatta’s Re- advanced firewall capabilities include zone and identifying and prioritizing applications and mote Access API. All network management time-based firewalling, P2P filtering and more. traffic flows. sessions can be securely managed using SSHv2, RADIUS or TACACS+. Content and Threat Protection High Availability Vyatta systems offer an additional level of proac- Mission critical networks can deploy Vyatta Monitoring and Reporting: tive threat protection with integrated secure web with the confidence that high availability and Vyatta systems present complete logging and filtering and advanced intrusion prevention rules system redundancy can be achieved through diagnostics information that can be monitored available as subscription-based Vyatta PLUS a industry standard failover and synchroniza- using in industry standard toolsets such as services. tion mechanisms. SNMP, Netflow, Syslog and more. Vyatta Network OS Version 6.2 IPv4 / IPv6 Routing » BGPv4, BGPv6 » RIPv2 » IPv6 Policy » OSPFv2 » Static Routes » IPv6 SLAAC IP Address Management » Static » DHCP Relay » IPv6 DNS Resolver » DHCP » Dynamic DNS » IDHCPv6 Server, Client » DHCP Client » DNS Forwarding » DHCPv6 Relay Encapsulations » Ethernet » PPPoE » MLPPP » 802.1Q VLANs » IP in IP » HDLC » PPP » Frame Relay » GRE Firewall » Stateful Inspection Firewall » IPv6 Firewalling » ICMP Type Filtering » Zone-based Firewall » Time-based Firewall Rules » Stateful Failover » P2P Filtering » Rate Limiting Tunneling / VPN » SSL-based OpenVPN » OpenVPN Client Auto-Configuration » OpenVPN Dynamic Client » Site to Site VPN (IPSec) » Layer 2 Bridging over GRE » Remote VPN (PPTP, L2TP, IPSec) » Layer 2 Bridging over OpenVPN Additional Security » Network Address Translation » DES, 3DES, AES » NAT Traversal » Sourcefire VRT Intrusion Prevention » MD5 and SHA-1 Authentication » Role based access control » VyattaGuard Web Filtering » RSA, Diffie Helman Key Mgmt

WAN / LAN Device Drivers » WAN Device Drivers - T1/E1 » IEEE 802.11 wireless » Synchronous Serial » Intel 10/100Mbps - 10Gbps » Drivers in 2.6.31 Kernel - V.35, X.21, RS-422, EIA530 Performance Optimization » WAN Link Load Balancing » MLPPP » Ethernet Link Bonding » ECMP » Web Caching » Management QoS Policies » Priority Queuing » Random / Weighted Random » VLAN Tag » Network Emulator » Classful Queuing » IPv6 Address » Round Robin » Ethernet Header Matching » Port Mirroring High Availability » Stateful Firewall / NAT Failover » Configuration Replication » IPSec VPN Clustering » VRRP » RAID 1 » Protocol Fault Isolation » HA Clustering Administration & Authentication » Integrated CLI » Telnet » RADIUS » Web GUI » SSHv2 / SSH Public Key » TACACS+ » Vyatta Remote Access API » Binary Image Install » OpenVPN PAM Authentication » Image Cloning » Single Configuration File Diagnostics & Logging » tcpdump » Serial Loopback Commands » Syslog » Wireshark Packet Capture » Netflow / sFlow » SNMPv2c » BGP MD5 Support » LLDP » SNMP for IPv6

1 888 VYATTA 1 (US & CANADA) » +1 650 413 7200 (INTERNATIONAL) » WWW.VYATTA.COM