Enigmätron-C, Router & Firewall Equipment

Description

Valiant’s Enigmätron-C is an integrated router and firewall equipment with extremely advanced firewall features that may be installed to secure critical infrastructure such as Sub-Stations, Smart Grid Distribution Systems, Airport and Railway IT Networks as well as Financial Infrastructure such as Banks and Payment Processing Gateways.

Firewall Equipment - Data Sheet SCADA Equipment Firewall

Encryption Equipment - Data Sheet SCADA Equipment Firewall

SCADA Equipment Firewall

Access to Enigmätron-C is password protected with advanced firewall capabilities that meet and exceed NERC as well as all mandatory requirements of Password Protection and Control as provided in the GR-815-CORE-2 specifications. Enigmätron-C can optionally be managed centrally from a RADIUS Server to provide enhanced levels of access security and centralized password management and control.

Enigmätron-FW provides Comprehensive Protection for:

  • IP Networks, including all types of Data, Voice and Video over IP applications
  • MPLS meshed networks
  • Metro Ethernet and VPLS networks

Firewall - Features and Capabilities:

  • Deep Packet Inspection
  • Per-frame/packet authentication
  • Firewall
    • Port (Soft) Based
    • MAC based
    • IP Address based
    • IP Domain based
  • White List and Black List options
    • White List Exception allowed and Blocks all other traffic by default (system default mode)
    • Black List Exception blocked and Allows all other traffic by default
  • Seamless scalability
  • Infrastructure neutral
  • Transparent to network and applications
  • Easy installation and management

Interfaces:

  • Total Number of Interfaces : 5
    • Four 10/100 RJ45 locally switched network interfaces to the local (trusted) network
    • One 10/100/1000 RJ45 network interface to the WAN (untrusted) network
  • Integrated four-port Ethernet switch
  • Auto MDI/X (straight or crossover Ethernet cable correction)
  • USB serial port for local access and configuration.

Applications

  • Utilities: Electric generation, transmission and distribution
  • Smart Grid Distribution Systems
  • Oil & Gas production, pipelines
  • Remote nodes in SCADA multi-drop networks
  • Railway and Airport Infrastructure
  • Financial Infrastructure such as Banks and Payment Processing Gateways
  • Law Enforcement

Firewall and Security:

  • Secure Boot
  • Firewall Security:
    • Inclusion Policy - Access Control based upon White List IP addresses, MAC address and IP Domain
    • Exclusion Policy -Access Control based on Black List
  • Continuous monitoring of the TLS connection to nullify MitM attacks
  • Resistance to Denial of Service (DoS) Attack
  • Encrypted Firmware Updates
  • Non-volatile Access Log with capability to "fingerprint" all successful and failed log-in attempts and keep a log of the IP and MAC addresses of all successful and failed logins / login attempts
  • SNMP trap generation, along with LED and external alarm indication
  • Password Protection with password strength monitor
  • RADIUS Password Authentication
  • SSH (Secure Access Control) with encrypted Password Protection

Firewall Resilience:

  • May be used in conjunction with VCL-2478; or VCL-2454, Ethernet Failover Switches to provide 1:N Firewall Redundancy and Automatic Failover in the event of equipment failure; or in the event of hostile intrusion attempts.
  • Valiant’s Enigmätron-C uses complex algorithms to automatically detect attempts to break it and may be used in conjunction with VCL-2478; or VCL-2454, Ethernet Failover Switches to very effectively to repel and frustrate all such hostile intrusion attempts, including DoS (Denial of Service) attacks.

Firewall / Router Throughput:

  • ≤ 90Mbps.

Network Support:

  • IPv4, IPv6 Routing
  • Ethernet
  • VLAN tag preservation
  • MPLS tag preservation
  • Secure NTP (Client).

Power:

  • Power: 1+0 and 1+1 Redundant Power Supply Options
  • 100~240VAC, 50/60Hz
  • 18VDC ~ 60VDC
  • 85VDC ~ 140VDC
  • Power consumption: 9W at maximum load

Data Sheet

Data Sheet SCADA Equipment Firewall