ProductsSpecifications
System Specifications
Item | H3C SecPath U200-CS Overseas Version | |
Performance | Firewall Throughput: 100Mbps Concurrent Connection: 20,000 3DES Performance: 80Mpbs Anti-Virus: 30Mbps IPS: 30Mpbs | |
Interface | One console port (CON) Five Gigabit Ethernet interfaces | |
Slot | One mini slot that can be expanded for network interface | |
CF card | An optional external CF card that can be expanded | |
DDR SDRAM | 512 MB | |
Physical dimensions (H × W × D) | 43.6*300*260 | |
Power module | Rated voltage | 100 VAC to 240 VAC, 47/63 Hz |
Max input current | 1.5 A | |
Max power consumption | 54 W | |
MTBF | 36 years | |
Operating temperature | 0°C to 45°C (32°F to 113°F) | |
Relative humidity(non-condensing) | 10% to 95% | |
Weight | 2.5 kg (5.51 lb) | |
Functionalities
Item | H3C SecPath U200-CS Overseas Version | |
Operating mode | Routing mode Transparent mode Hybrid mode | |
Network security | AAA services | RADIUS authentication HWTACACS authentication PKI/CA (x.509 format) authentication Domain authentication CHAP authentication PAP authentication |
Firewall | Virtual firewall Security zone configuration Defense against attacks of ARP spoofing, invalid TCP flag, large ICMP packets, SYN flooding, address/port scanning. Basic and extended ACLs Interface-based access control Time range-based access control Dynamic packet filtering ASPF packet filtering Static and dynamic blacklists MAC-IP binding MAC-based access control Transportation of 802.1Q-tagged packets | |
Anti virus | Virus definition-based detection Library upgrading manually and automatically Flow handing mode Supporting protocols of HTTP, FTP, SMTP, and POP3. Preventing virus types of Backdoor, Email-Worm, IM-Worm, P2P-Worm, Trojan, AdWare, Virus Supporting virus logs and reports | |
URL filtering | Custom-defined URL filtering library Supporting Java Blocking and ActiveX Blocking | |
Mail filtering | Blacklist of IP addresses Matching keywords of the mail address, attachment name, content, sender, and receiver | |
Depth security protection | Preventing hiker attacks, worms, and Trojans. Supporting to identify P2P and IM applications like BT | |
Security logs and statistics | User behavior flow logs NAT translation logs Real time logs of attacks Blacklist logs Address binding log Traffic alarm logs Traffic statistics and analysis Global/security zone-based connection rate monitoring Global/security zone-based protocol packet rate monitoring Events statistics E-mail notification of real-time alarms Information distribution through E-mail | |
NAT | Many-to-one NAT Many-to-many NAT One-to-one NAT Translation of source address and destination address Accessing internal network from an external host Easy IP DNS mapping NAT aging time NAT ALG for multiple application protocols, including DNS, FTP, H.323, ILS, MSN, NBT, PPTP, SIP | |
VPN | L2TP VPN | Initiating tunneling requests to specific LNS for users with fully qualified name or the domain name Address allocation of VPN users LCP re-negotiation and mandatory CHAP authentication |
GRE VPN | ||
IPSec/IKE | AH/ESP protocols Manual SA setup or through IKE ESP supports encryption algorithms of DES, 3DES, AES Algorithms of MD5 and SHA-1 IKE main mode and aggressive mode NAT traversal DPD detection | |
Network connectivity | LAN protocols | Ethernet_II Ethernet_SNAP 802.1q VLAN |
Link layer protocol | PPPoE | |
Network protocols | IP services | IPv4/v6 ARP Domain name resolution IP unnumbered IP UNNUMBERED DHCP relay DHCP server DHCP client |
IP routing | Static routing RIP v1/2 OSPF BGP Policy routing | |
High reliability | Stateful failover in two modes: Active/Active and Active/Passive, implementing load balancing and service backup Support of VRRP | |
QoS | Traffic policing | CAR |
Configuration management | CLI | Local configuration through console port Local or remote configuration through Telnet or SSH Authorization of commands by user levels, so that unauthorized users cannot log in to the device Detailed debugging information for troubleshooting Login and management through Telnet FTP Server/Client for downloading and uploading configuration files and application programs Logging function Configuration of user interface to configure authentication modes and authorize functions to users |
Supporting SNMPv3, and is compatible with SNMPv2c and SNMPv1 Supporting time synchronization through NTP | ||
Supporting Web-based management Supporting SNMP and TR-069 Supporting management through H3C SecCenter | ||
Restriction | Supporting RoHS | |