Firewalls - IAC - DTIC
Firewalls - IAC - DTIC
Firewalls - IAC - DTIC
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Section 3 Firewall Products – Multifunction <strong>Firewalls</strong><br />
GeNUScreen Firewall & VPN Appliance<br />
Abstract<br />
The GeNUScreen Firewall & VPN Appliance provides<br />
the same packet inspection firewall found in the<br />
GeNUGate Two-Tier Firewall, and adds IPsec<br />
network-layer VPN that supports both tunneling and<br />
transport (packet payload only is encrypted) modes,<br />
as well as policy-based bridging and network mode<br />
(routing protocols, e.g., OSPF, over VPN connections).<br />
VPN authentication is possible using RSA, preshared<br />
keys, or X.509 PKI. Encryption is provided via AES,<br />
3DES, Blowfish, or CAST, with hashing via MD5,<br />
SHA-1, or SHA-2. As with the firewall, the VPN<br />
appliance provides high availability through activeactive<br />
load balancing; the VPN appliance also<br />
implements switch trunking and hot standby for<br />
automatic failover. In addition to GeNUScreen’s<br />
packet filtering firewall and VPN capabilities,<br />
optional modules are available to implement<br />
application-level capabilities such as virus scanning<br />
for HTTP and SMTP traffic, DNS and HTTP caching,<br />
and URL filtering.<br />
118 <strong>Firewalls</strong> IA Tools Report – Seventh Edition<br />
GeNUScreen Firewall & VPN Appliance<br />
Type of Firewall VPN firewall (with SIF [+ waF option])<br />
oS Included (openBSd)<br />
Format appliance<br />
License Commercial<br />
NIaP Validated No (BSI)<br />
Common Criteria EaL4+ (http://www.commoncriteriaportal.<br />
org/files/epfiles/0565a_pdf.pdf)<br />
developer GeNUa mbH (Germany)<br />
Information http://www.netgear.com/business/<br />
products/security/UTM-series/default.aspx