Encryption & Firewall solutions

Encryption, Firewall, 104 Protocol Encryptor, Network Intrusion Detection

Enigmätron Firewall Equipment

Description

Valiant’s Enigmätron is an integrated router and firewall equipment with extremely advanced firewall features that may be installed to secure critical infrastructure such as Sub-Stations, Smart Grid Distribution Systems, Airport and Railway IT Networks as well as Financial Infrastructure such as Banks and Payment Processing Gateways.

Data Sheet SCADA Equipment Firewall

SCADA Equipment Firewall

Access to Enigmätron is password protected with advanced firewall capabilities that meet and exceed NERC as well as all mandatory requirements of Password Protection and Control as provided in the GR-815-CORE-2 specifications. Enigmätron can optionally be managed centrally from a RADIUS Server to provide enhanced levels of access security and centralized password management and control.

Enigmätron-FW provides Comprehensive Protection for:

  • IP Networks, including all types of Data, Voice and Video over IP applications
  • MPLS meshed networks
  • Metro Ethernet and VPLS networks

Interfaces:

  • Total Number of Interfaces : 5
    • Four 10/100 RJ45 locally switched network interfaces to the local (trusted) network
    • One 10/100/1000 RJ45 network interface to the WAN (untrusted) network
  • Integrated four-port Ethernet switch
  • Auto MDI/X (straight or crossover Ethernet cable correction)
  • USB serial port for local access and configuration.

Related Links

Firewall - Features and Capabilities:

  • Deep Packet Inspection
  • Per-frame/packet authentication
  • Firewall
    • Port (Soft) Based
    • MAC based
    • IP Address based
    • IP Domain based
  • White List and Black List options
    • White List Exception allowed and Blocks all other traffic by default (system default mode)
    • Black List Exception blocked and Allows all other traffic by default
  • Seamless scalability
  • Infrastructure neutral
  • Transparent to network and applications
  • Easy installation and management

Applications

  • Utilities: Electric generation, transmission and distribution
  • Smart Grid Distribution Systems
  • Oil & Gas production, pipelines
  • Remote nodes in SCADA multi-drop networks
  • Railway and Airport Infrastructure
  • Financial Infrastructure such as Banks and Payment Processing Gateways
  • Law Enforcement

Firewall and Security:

  • Ruggedized, IEC-61850-3 compliant firewall
  • Fanless, High reliability hardware
  • Wide Operating Temperature Range: -4°F ~ 149°F (-20°C ~ 65°C)
  • Suitable for installation in sub-stations, SCADA and industrial networks / harsh environments
  • Wide range of power supply options which includes, 24VDC, 48VDC, 110VDC, 250VDC and 90~240VAC 50/60Hz
  • Secure Boot
  • Firewall Security:
    • Inclusion Policy - Access Control based upon White List IP addresses, MAC address and IP Domain
    • Exclusion Policy -Access Control based on Black List
  • Continuous monitoring of the TLS connection to nullify MitM attacks
  • Resistance to Denial of Service (DoS) Attack
  • Encrypted Firmware Updates
  • Non-volatile Access Log with capability to "fingerprint" all successful and failed log-in attempts and keep a log of the IP and MAC addresses of all successful and failed logins / login attempts
  • SNMP trap generation, along with LED and external alarm indication
  • Password Protection with password strength monitor
  • RADIUS Password Authentication
  • SSH (Secure Access Control) with encrypted Password Protection

Firewall Resilience:

  • May be used in conjunction with VCL-2478; or VCL-2454, Ethernet Failover Switches to provide 1:N Firewall Redundancy and Automatic Failover in the event of equipment failure; or in the event of hostile intrusion attempts.
  • Valiant’s Enigmätron-C uses complex algorithms to automatically detect attempts to break it and may be used in conjunction with VCL-2478; or VCL-2454, Ethernet Failover Switches to very effectively to repel and frustrate all such hostile intrusion attempts, including DoS (Denial of Service) attacks.

Firewall / Router Throughput:

  • ≤ 90Mbps.

Network Support:

  • IPv4, IPv6 Routing
  • Ethernet
  • VLAN tag preservation
  • MPLS tag preservation
  • Secure NTP (Client).

Power:

  • Power: 1+0 and 1+1 Redundant Power Supply Options
  • 100~240VAC, 50/60Hz
  • 18VDC ~ 60VDC
  • 85VDC ~ 140VDC
  • Power consumption: 9W at maximum load

Data Sheet

Data Sheet SCADA Equipment Firewall