ICARUS : IU-0545T
4 Port Gigabit SMB UTM Firewall for up to 50 Concurrent Users
OVERVIEW

IU-0545T is an ideal UTM designed especially for SOHO and SMB, a 9-inch desktop fanless design that ensures silent operation in small or quiet office environments. 4 Gigabit ports (fixed 1LAN and 1WAN and 2 custom ports) provide Gigabit Ethernet connectivity for users under 50. It is the most simple and cost-effective network security solution available.

Built-in SPI (Stateful Packet Inspection) provides DoS detection and prevention against certain popular flood attacks like SYN, ICMP, and UDP. When the unusually high rates of the new connection are detected, the system will issue an alert notification or block anomalous session. In addition, IU-0545T SPI protects against packet-injection attacks by checking several components of TCP and UDP sessions.

Internet service providers (ISPs) are offering higher-speed DSL to homes and businesses. In order to satisfy existing customers, IU-0545T provides better support for the explosive growth in data traffic. In addition to Gigabit LAN and WAN ports, hardware-accelerated NAT operates at gigabit speed up to 1.8 Gbps that makes IU-0545T a basic unit with comparable performance and advanced functionality.

Native dual-stack supported. To cope with IPv4 depletion, AADONA provides a solution that covers both IPv4 and IPv6 network and can be configured for IPv4 only, IPv6 only, or to support both protocols simultaneously.

IT administrators can configure Web filtering profiles that block URLs to inappropriate web pages like violence and pornography and hacking attacks like malware and virus. Moreover, IU-0545T filters out ActiveX objects, Cookies or Java applets that may pose a security threat in certain situations. Both keywords and URLs of specified websites can be added to Blacklist and Whitelist.

Clam AV for virus scanning can detect over million kinds of viruses, worms, and Trojans. Once suspicious emails are detected, the administrator can decide to delete it automatically, quarantine ones with unwanted file extensions or send notifications. Moreover, websites will be scanned once the function of anti-virus is enabled in policy.

IU-0545T supports outbound and inbound load balancing, providing business at least 2 WAN links. Multi-homing load balancing is supported to spread a business's Internet traffic among multiple access links to increase the aggregate throughput and to divert traffic away from non-functional links when they fail. An additional 3G/4G/LTE USB can also be attached to the USB port of the IU-0545T to add a backup wireless connectivity.

IU-0545T combines MPLS, Ethernet ADSL, Wireless 3G, 4G/LTE in a single box. It is ideal for companies with multiple offices having demanding applications. IT Administrators can manage Internet access easily for improved latency and reduced WAN cost spending. Companies can adopt a reliable and private line MPLS to protect important data, while administrators cost-effectively mix and match other network links as backup links. With SD-WAN, geographic boundaries are erased. Network links can be optimized to support applications with specific needs.

QoS offers more agile bandwidth management for industries and organizations. All the servers and users can be configured for their minimum and maximum bandwidth; the remaining bandwidth will be allotted to the other users according to their configuration.

IU-0545T integrates a third party URL database which collects millions of URLs and updates at regular intervals of time. All these URLs and their contents are analyzed and classified into categories. IT administrator is able to block any category in the database with ease without entering keywords or the desired URL addresses one by one. Users do not have to fear they might stumble on a malicious URL and get infected with malware.

In order to prevent data leakage and ensure regulatory compliance, the access to applications which unrelated to work should be controlled during working hours. Cooperated with a third-party database, IU-0545T can enforce policies for applications like P2P, VPN and Remote Control, Streaming and VoIP, Network Service, Online Sharing and Storage, Web Service, Social Network, Instant Messaging, System and Update, News and Media, Shopping and Auction, Entertainment and Arts, Sports and Travel, Food and Drink, Finance and Insurance, Gambling and porn, Games, etc. The URL database is updated daily at the time specified.

Built-in IPS inspects the packets from OSI layer 4-7 (transport to application layer) and blocks concealed malicious code and worms delivered in TCP/IP protocols. As soon as an attack is suspected, IT administrator will be notified immediately and later an extensive range of reports will be available for analysis. AADONA regularly updates the predefined attack-signature database and makes it available as IPS security package.

Bulletin board is an effective way designed to make an announcement within company employees. Before being allowed to use the Internet, employees are expected to read the messages posted on the bulletin board.

IU-0545T offers three authentication methods: Active Directive (AD), POP3, and Radius. When a user first opens a web browser and begins to access an internet site, they will be prompted to authenticate before using internet service.

Using IPsec, PPTP, L2TP, and SSL VPN connections, IU-0545T provides data confidentiality, data integrity, and data authentication. At the same time, popular protocols such as web, SMTP, and POP3 that contains packets transmitting within tunnels can to be controlled.
 
  1. Supports IPSec, PPTP, L2TP, SSL, and GRE Tunnel
  2. Supports DES, 3DES, AES, AES128, AES192, and AES256 encryption and SHA-1, SHA256, SHA512, and MD5 authentication algorithms
  3. SSL VPN mobility client for Android and Apple iOS
  4. Controls connectivity of remote sites from the central location

The dynamic dashboard in the web user interface (web UI) presents a graphic view of the system status including concurrent connections, application classification, network resource usage, HTTP or HTTPS traffics and intrusion defense to help in tracking and diagnosis. IT administrators are given visibility into the network users, their devices, and their applications.

IU-0545T provides diagnostic tools such Ping, Traceroute, DNS Query, Port Scan and so on. They make fault isolation and troubleshooting easy for administrators.

Flexible web policies allow you to build rules based on users, groups, date, time and much more. Administrators can setup combination to reach different network requirements. Problems can be fixed without temporarily suspending services and operation can be made through GUI to keep your network safe and secure.

Firmware is upgraded using a web browser. Users can select their preferred time zone. IU-0545T export/import functionality makes it possible to exchange various configuration entities between one AADONA UTM and another.

I-Cloud is a next-gen cloud service platform providing a user-friendly interface to support instant equipment maintenance and management. It is an all-inclusive solution to monitor various networking appliances deployed in either external or internal networks such as UTMs, wireless APs, or switches. When an anomaly occurs, administrators will be notified of the problem.

Building a cluster and hot standby of two or more AADONA UTMs is available.
FEATURES
Features Description
Threats Defense (Anti-Virus/IPS/SSL Inspection)
  1. Uses open source Clam AV engine with huge database includes millions of signatures
  2. Clam AV team has fast response time, updates signature regularly and requires no yearly subscription fees
  3. Provides IPS attack-signature database
  4. IPS risk management is divided into 3 levels (high, medium, and low)
  5. Provides scalable SSL inspection
Malicious URL Filtering (URL) URL filtering policies are allowed to be configured by administrators
Firewall Security
  1. Coordinated DoS/DDOS attacks and UDP Flood performed by hackers can be blocked automatically.
  2. Supports IPv4, IPv6, and Dual Stack
  3. Supports load balancing and fail-over for both outbound and inbound traffics
  4. Provides DNS Proxy and Dynamic DNS services
Potential Risks Detection (Flow Analysis)
  1. Flow/behavior-based anomaly detection allows both up and down sessions to be analyzed and see if a performance problem exists
  2. An anomaly can be blocked, recorded, and notify subscribers.
  3. Switching topology
Application Access Control
  1. Multiple application categories e.g. P2P, VPN and Remote Control, Streaming and VoIP, Network Service, Online Sharing and Storage, Web Service, Social Network, Instant Messaging, System and Update, News and Media, Shopping and Auction, Entertainment and Arts, Sports and Travel, Food and Drink, Finance and Insurance, Gambling and Porn, Games, etc.
  2. Free scheduled updates 3. Administrators can use policies to prohibit their users from accessing to applications
User Identity (Radius)
  1. The host computers are established to ensure user identity and also supports the use of LDAP, Radius, AD or POP3 servers for authentication.
  2. Desired user groups can be customized
  3. Provides authentication record and connection status
Load Balance
  1. Ensuring the network is never disconnected
  2. Provides inbound and outbound load balancing
  3. Load Balancing fail-over with 3G/4G USB
  4. Users can assign load balancing automatically, manually, or by source-destination IP
QoS
  1. Supports bandwidth guarantee, max/min-limit, and priority commands
  2. Bandwidth usage from the internal/external source IP can be limited
  3. Efficient priority scheme is available
VPN Connection
  1. IPSec, Site-to-Site PPTP, and L2TP VPN
  2. Reliable SSL VPN connection
  3. Users can create, edit, and control VPN connections
  4. Supports IP Tunnels
Operation Modes Transparent Bridge, NAT
Logging & Reports
  1. Multiple event logs can be centrally logged and monitored. And logging includes configuration, networking, and route, objects, services, advanced protection, mail security, VPN, etc.
  2. Dashboard (Optional)
  3. A report includes a statistic table, ranking grid, bar/line graphs, and pie charts. (included in the Dashboard module)
Virtual Server IP Supports virtual server that data flows can be transmitted to any of the other ports without using any switch or router
High Availability Building a cluster and hot standby of two or more AADONA devices is available
Cloud Management
  1. Cloud-based integration can be led to AADONA I-Cloud service system
  2. Manages multiple UTMs
  3. Provides real-time monitoring and proactive management
Bulletin Board An announcement can be made to employees in a very effective and proper way
Diagnostic Tools
  1. Standard net tools such as Ping, Traceroute, DNS lookup, and port scanner are available to help users identify and fix connection problems.
  2. Test widgets like IP Route, Wake Up, SNMP, IPv6 tools are provided to test your connection and readiness as well.
Others
  1. Free firmware upgrades
  2. Administrators can select authorized users and assign access conditions
  3. Supports 802.1Q
  4. Autonomous management based on a user-friendly interface
  5. Fanless design that ensures noiseless operation
  6. Quick setup wizard
SPECIFICATIONS
Model IU-0545T
Recommended User Numbers Up to 50
Mounting Desktop
Power supply AC: 100V-240V
I/O Interface
10x100x1000 4
USB 2
HDMI 1
Capacity
Firewall throughput 1.8Gbps
Max. Connections 200000
Antivirus throughput 350 Mbps
VPN throughput 200 Mbps
Software
Firewall Yes
Anti-Virus Clam AV
Authentication Yes
Anomaly IP Analysis Yes
Typology Yes
Load Balance Inbound / Outbound
QoS Yes
Intranet Protection Yes
Applications Control Lionic (1-year license)
URL Management & Database Lionic (1-year license)
IPS & Signature Database Yes
Dashboard (Optional module, reports included)
HA Yes
Bulletin Board Yes
VPN (IPsec/PPTP/L2TP) Yes
SSL VPN Yes
IP Tunnel Yes
I-Cloud Management Yes
Warranty 2 Year Default + 3 Year Warranty Pack, Total 5 Years
*All specifications are subject to change without notice.
*All specifications are subject to change without notice.