NetVanta 2050/2100

Small Office and Home Office VPN Gateway and Firewall

Product Features The ADTRAN NetVanta™ 2050 and 2100 are network components. As a security gateway, the ■ IPSec VPN tunneling with small office/home office VPN/Security gate- NetVanta 2050 can provide five private encryption DES/3DES encryption ways providing all the necessary components communication tunnels supporting up to 15 required to secure an integrated VPN solution. users, while the NetVanta 2100 can provide up ■ Internet Key Exchange (IKE) for user Used primarily for remote access, the NetVanta to 10 private encryption tunnels with unrestricted authentication 2050 is perfect for work-at-home telecom- number of users. With the use of Network Address muters, while the NetVanta 2100 addresses Translation (NAT), both devices can hide IP ■ Stateful inspection firewall security the small office or corporate branch office. addresses from the external world. In addition, the Each provide key security and data manage- internal router allows multiple users to share a VPN ■ NetVanta 2050: 5 private tunnels and up to 15 users ment features such as IPSec VPN tunneling, connection and can also direct incoming IP traffic. stateful inspection firewall, built-in router, ■ Web-based Management: A remote NetVanta NetVanta 2100: 10 private authenticated remote user access, and tunnels with unrestricted 2050 or 2100 can easily be configured and users Network Address Translation. managed using a standard . These ■ Internal router Security: On a public infrastructure like the devices offer built-in alert and logging mecha- Internet, security is of the utmost importance. nisms to warn administrators about activities ■ Network Address The NetVanta 2050 and 2100 protect the corporate that are going on in the network. Translation network against attacks with a built-in firewall Performance: Unlike a software-implemented ■ Logging and alerts and provides data security through encryption, VPN solution, which depends on local CPU and ■ Web-based management authentication and key exchange. Both the memory performance to implement encryption, NetVanta 2050 and the 2100 employs a stateful ■ 10/100BaseT these standalone hardware platforms off-loads interface for flexible inspection firewall that protects an organization's the CPU intensive encryption process. 3DES connectivity network from common cyber attacks including encryption significantly impacts CPU perform- TCP synflooding, IP spoofing, ICMP redirect, land ance, possibly slowing all the local processes attacks, ping-of-death, and IP reassembly prob- on the computer. Since the NetVanta 2050 and lems. They also encrypt the data being sent out 2100 offer a dedicated processing platform to drive onto the network, using either the DES (Data the encryption process, local computer perform- Encryption Standard) or 3DES encryption algo- ance is unaffected. rithms. In addition, Internet Key Exchange (IKE) can be used for user authentication supporting The NetVanta 2050 and the 2100 offer guaran- public and private keys or digital certificates, teed interoperability with ADTRAN’s complete assuring that the proper VPN tunnel is established line of NetVanta 2000 Series of VPN/Security and that the tunnel has not been redirected gateways: NetVanta 2300 for branch offices or as a or compromised. mid-size host, NetVanta 2400 for larger corporate host applications, and the software implemented, VPN Tunneling: The NetVanta 2050 and the 2100 NetVanta VPN Client. Together the NetVanta 2000 are IPSec compliant devices that provides secure Series offers the most robust features and functions communication over potentially unsecure to address a wide range of enterprise VPN needs. NetVanta 2050/2100

ADTRAN, Inc. Attn: Enterprise Networks Small Office and Home Office VPN Gateway and Firewall 901 Explorer Boulevard Huntsville, AL 35806 Product Specifications P.O. Box 140000 Huntsville, AL 35814-4000 Physical Interface Administration ■ WAN: RJ-45 10/100 Auto-Sensing Ethernet interface ■ Web-based management 256 963-8000 voice ■ LAN: RJ-45 10/100 Auto-Sensing Ethernet interface ■ SYSLOG logging in WELF format 256 963-8699 256 963-8200 fax back ■ Serial Port: RS-232 for off-net configuration ■ Email alerts (SMTP) ■ Virtual Private Network (VPN) User and group access control General Information policies based on time-of-day 800 9ADTRAN Hash Algorithms ■ User accounting policy statistics [email protected] ■ MD5-HMAC 128-bit authentication algorithm www.adtran.com ■ SHA1-HMAC 160-bit authentication algorithm DHCP ■ Server (to manage IP addresses on local network) Pre-Sales Encryption ■ Client (to acquire the WAN-side IP address from Technical Support ■ DES-CBC 56-bit encryption 800 615-1176 toll-free service provider); MAC Address Masquerading ■ [email protected] 3DES-CBC 168-bit encryption PPPoE www.adtran.com/support Diffie Hellman Group Support ■ Client (to acquire the WAN-side IP address from ■ Group 1: MODP 768 Where to Buy service provider) 877 280-8416 toll-free ■ Group 2: MODP 1024 [email protected] Authentication Mechanisms Environment www.adtran.com/where2buy Operating Temperature ■ Preshared keys ■ 0° to 50° (32° to 122 °F) Post-Sales ■ X.509 Certificate Support: Technical Support RSA Signatures, DSS Signatures Storage Temperature 888 423-8726 ■ -20° to 70°C (-4° to 158 °F) [email protected] Key Management www.adtran.com/support ■ IKE (ISAKMP/Oakley) Relative Humidity ■ Up to 95%, non-condensing ACES Installation & IPSec Mode Maintenance Service ■ Tunnel Physical 888 874-ACES IKE Modes Size [email protected] ■ ■ 1.625" H, 9.0" W, 6.375" D www.adtran.com/support Main ■ Aggressive Weight International Inquiries ■ Quick ■ 2 lbs (shipping weight) 256 963 8000 voice 256 963-6300 fax Firewall Power [email protected] ■ ■ Stateful inspection firewall 12 VDC Power www.adtran.com/international ■ ■ Cyber assault protection 4 W For the regional office Agency Approvals nearest you, visit: Diagnostics ■ FCC Part 15 (Class B) www.adtran.com/where2buy Front Panel Status LEDs ■ ■ Power – status UL and Canadian UL (CUL), IEC/EN, CSA, CE Mark ■ VPN – status, transmit, receive Product Includes ■ LAN – transmit, receive ■ 12 VDC power supply ■ WAN – transmit, receive ■ 6 ft. crossover Ethernet cable ■ Routing User manual ■ ■ TCP/IP Quick start guide ■ Static Routes ■ RIP V1 and RIP V2 Ordering Information Network Address Translation Equipment Part # ADTRAN is a ■ Basic NAT (1:1) NetVanta 2050 1200362L1 ISO 9001 registered company. ■ NAPT (Many:1) NetVanta 2100 1200361L2 ■ Reverse NAT (translation of an inbound session’s destination IP address) ■ Application Level Gateways for ADTRAN is a TL 9000 registered company. FTP, HTTP, POP3, and others Printed in the U.S.A. Specifications subject to change without notice. ADTRAN and NetVanta are trademarks 61200361L2-8G May 2002 of ADTRAN, Inc. All other registered trademarks and trademarks mentioned in this ©2002 ADTRAN, Inc. All rights reserved. publication are the property of their respective owners.