VCL-5010-F: Ruggedized Firewall, IEC-61850-3 compliant

Description

VCL-5010-F is ruggedized firewall equipment with advanced next generation features that may be installed to secure critical infrastructure such as utilities, sub-stations, smart-grid distribution systems, airports and railways as well as IT Networks of financial institutions such as banks and corporate networks.

VCL-5010-F is password protected with capabilities that meet and exceed NERC as well as all mandatory requirements of password protection and control as provided in the GR-815-CORE-2 specifications.

Data Sheet ruggedized-router

Interfaces:

6 x 100/1000Base-T Interface (RJ45) Any 6 interfaces are usable.
May be selectively configured
either as a WAN interface or LAN Interface.
6 x SFP 1G Optical Interface (SFP)
4 x 10/100/1000Base-T RJ-45 (Shared Mode)
1 x 10/100Base-T RJ-45 (LAN)
2 x 10/100Base-T RJ-45 Electrical (LAN)
1 x RS-232 (V.24)
1 x RS-485

Firewall and Security:

  • Ruggedized, IEC-61850-3 compliant firewall
  • Fanless, High-reliability hardware
  • Suitable for installation in sub-stations, SCADA and industrial networks / harsh environments
  • Secure Boot
  • Firewall Security:
    • Inclusion Policy - Access Control based upon White List IP addresses, MAC address and IP Domain
    • Exclusion Policy - Access Control based on Black-List Continuous monitoring of the TLS connection to nullify MitM attacks.
  • Non-volatile Access Log with capability to "fingerprint" all successful and failed log-in attempts and keep a log of the IP addresses of all successful and failed logins / login attempts.
  • Resistance to Denial of Service (DoS) Attack
  • SSH (Secure Access Control) with encrypted password protection.
  • VCL-5010-F offers a wide range of VPN technologies ranging from modern SSL VPN's to IPsec. Site-to-Site and road warrior setups are possible and with the integrated OpenVPN client exporter, the client can be configured within minutes.

Firewall - Features and Capabilities:

  • Deep Packet Inspection (DPI)
  • Point-to-Point Data encryption between two terminals
  • Point-to-Multipoint - Data encryption / VPNs between multiple RTU Terminals and the IEC 60870-5-104, DNP server(s), MODBUS and C37.118 PMU data between substations & Load Dispatch Centres / SCADA Management and Rail Traffic Control Centres.
  • Per-frame/packet authentication
  • Firewall
    • Port based, MAC based, IP Address based
    • IP Domain based
  • Whitelist and blacklist options
    • Allows traffic based on user configured rules
  • Traffic Shaper
  • Two-factor Authentication with time-based OTP for secure access
  • Forward Caching Proxy (transparent) with Blacklist support
  • Virtual Private Network (OpenVPN site to site and remote VPN client support)
  • IPSec Site to Site Tunnels
  • Encryption Algorithms: AES-128, AES-256
  • Auth Digest Algorithm: SHA512 (512 bit)
  • High Availability & Hardware Ethernet Failover using VCL-Safecomm-E
  • Intrusion Detection and Prevention
  • Built-in reporting and monitoring tools including real-time graphs
  • Network Flow Monitoring
  • DNS Server, DNS Forwarder, Dynamic DNS
  • DHCP Server and Relay
  • Stateful inspection firewall
  • Granular control over state table
  • 802.1Q VLAN support
  • Infrastructure neutral
  • Transparent to network and applications
  • Easy installation and management
  • LDAP user authentication support
  • Export logs locally or on a server.

Typical VCL-5010-F Deployments:

  • Utilities - Power, Oil and Gas, SCADA Installations.
  • Industrial Applications.
  • Campus IP Networks, for all types of data, voice and video over IP applications
  • MPLS meshed-networks
  • Metro Ethernet and VPLS networks
  • Cloud applications

Specifications:

Integrated Storage Drive 16GB High Performance SATA Drive
Additional Storage Options M.2 SATA - 256GB, 512GB, 1TB SSD
Power Supply Dual (1+1) Redundant Power Inputs* (Power Supply Options)
Indicators and Alarms - 2 x Power Supplies
- 1 x System Alarm Inputs
- 1 x Dry Contact Alarm Relay (NO/NC)
Processor Quad core up to 2.4 Ghz
DDR 8GB
Performance Ruggedized Fanless System
MTBF (hours) 101292
IP Level Protection Ip20
Power Consumption @ 48VDC 12 Watts
Power Consumption @ 80~240, 50/60Hz VAC 18 Watts

CE Compliance:

  • Low Voltage Directive 2014/35/EU
  • Electromagnetic Compatibility 2014/30/EU

Other Regulatory Compliances:

  • RoHS
  • CE Marking
  • Complies with FCC Part 68 and EMC FCC Part 15
  • Telcordia GR-1089 Surge and Power Contact

Data Sheet

Data Sheet ruggedized-router