An all-in-one gateway security hardware appliance for small businesses up to 30 users in size. The ProSecure UTM combines application proxy firewall, VPN, zero day protection, anti-virus, anti-spyware, anti-spam, intrusion prevention, and URL filtering for total protection.
NETGEAR ProSecure Unified Threat Management (UTM) appliances combine performance with comprehensive security coverage for small businesses. The flexible modular software design architecture leverages patent-pending Stream Scanning technology to scan files and data streams up to 5x faster than conventional methods. This architecture in turn enables ProSecure UTM to utilize virus and malware threat databases from NETGEAR and Sophos™ that are hundreds of thousands signatures in size – up to 200x more comprehensive than legacy small business UTM platforms.
 UTM Models |
 UTM 10 |
 UTM 25 |
|---|---|---|
| Sizing Guidelines | ||
| Customer Type | Small Networks | Small Networks |
| Recomended Number of Concurrent Users | 1-15 | 10-30 |
| AV Throughput | 31Mbps | 45Mbps |
| Stateful Packet Inspection Firewall Throughput | 133Mbps | 153Mbps |
| IPS Throughput | TBD | TBD |
| VPN Throughput | TBD | TBD |
| Concurrent Sessions | 8000 | 20000 |
| VLANs | 255 | 255 |
| Content Security | ||
| Web (HTTP, HTTPS, FTP) |  |
|
| Email (SMTP, POP3, IMAP) | |
|
| Stream Scanning | |
|
| Inbound and Outbound Inspection | |
|
| Intrusion Detection & Prevention | |
|
| Signature-Less Zero Hour Protection | |
|
| Malware Signatures | 600,000 | 600,000 |
| Automatic Signature Updates | Hourly | Hourly |
| True HTTPS Scanning and Filtering | |
|
| Web Content Filters | Filter By: HTML Body Keywords, File Extension | |
| Web Object Filters | ActiveX, Java, Flash, Javascript, Proxy, Cookies | |
| Email Content Filters | Filter By: Subject Keywords, Password-Protected Attachments, File Extension, File Name | |
| Distributed Spam Analysis | |
|
| Anti-spam Real-time Blacklist (RBL) | |
|
| User Defined Spam Allowed/Block Lists | Filter by: Sender Email Address, Domain, IP Address Recipient Sender Email Address, Domain | |
| Distributed Web Analysis w/ 64 categories | |
|
| Instant Messaging (IM) Control | MSN Messenger, Yahoo Messenger, Skype, mIRC, Google Talk | |
| Peer to Peer (P2P) Control | BitTorrent, eDonkey, Gnutella | |
| Maximum Number of Users | Unlimited | |
| Firewall Features | ||
| Stateful Packet Inspection (SPI) | Port/Service Blocking, Denial of Service (DoS) Prevention, Stealth Mode, Block TCP Flood, Block UDP Flood, WAN/LAN Ping Response Control | |
| WAN Modes | NAT, Classical Routing | |
| ISP Address Assignment | DHCP, Static IP Assignment, PPPoE, PPTP | |
| Nat Modes | 1-1 NAT, PAT | |
| Routing | Static, Dynamic, RIPv1, RIPv2 | |
| VoIP | SIP ALG | |
| DDNS | DynDNS.org, TZO.com, Oray.net | |
| Firewall Functions | Port Range Forwarding, Port Triggering, DNS proxy, MAC Address Cloning/spoofing, Network Time Protocol NTP Support, Diagnostic Tools (ping, DNS lookup, trace route, other), Auto-Uplink on Switch Ports, L3 Quality of Service (QoS) ,LAN-to-WAN and WAN-to-LAN (ToS) | |
| DHCP | DHCP Server, DHCP Relay | |
| User Authentication | Active Directory, LDAP, Radius, Local User Database | |
| PCI Compliance Two Factor Authentication Support | |
|
| VPN | ||
| Site to Site VPN Tunnels | 10 | 25 |
| Dedicated SSL VPN Tunnels | 5 | 13 |
| IPsec Encryption Algorithm | DES, 3DES, AES(128,192,256bit) | |
| IPsec Authentication Algorithm | SHA-1, MD5 | |
| Key Exchange | IKE, Manual Key, Pre-Shared Key, PKI, X.500 | |
| IPsec NAT Traversal | |
|
| SSL Version Support | SSLv3, TLS1.0 | |
| SSL Encryption Support | DES, 3DES, ARC4, AES(128,256bit) | |
| SSL Message Integrity | MD5, SHA-1, MAC-MD5/SHA-1, HMAC-MD5/SHA-1 | |
| SSL Certificate Support | RSA, Diffie-Hellman, Self | |
| SSL VPN Platforms Supported | Windows 2000 / XP / Vista, Mac OS X 10.4+ | |
| Deployment | ||
| VLAN Support | |
|
| Dual-WAN Fail-over | |
|
| Intelligent Traffic Load Balancing based on Traffic Byte Count | |
|
| Configuration Wizards | Setup, IPsec VPN, SSL VPN | |
| Logging and Reporting | ||
| Management | HTTP/HTTPS, SNMP v2c | |
| Reporting | Summary Statistics, Graphical Reporting, Automatic Outbreak Alerts, Automatic Malware Notifications, System Notifications | |
| Logging | Traffic, Malware, Spam, Content Filter, Email Filter, System, Service, IPS, Port Scan, IM, P2P, Firewall, IPsec VPN, SSL VPN | |
| Log Delivery | Management GUI Query, Email Delivery, Syslog | |
| Hardware | ||
| WAN Gigabit RJ45 Ports | 1 | 2 |
| LAN Gigabit RJ45 Ports | 4 | 4 |
| DMZ Interfaces (Configurable) | 1 | 1 |
| Administration Console Port | RS232 | RS232 |
| USB Ports | 1 | 1 |
| Major Regulatory Compliance | FCC Class A, CE, WEEE, RoHS | |
| Storage and Operating Temperatures | Operating Temperature 0-45°C (32°-113°F), Storage Temperature -20-70°C (-4°-158°F) |
|
| Humidity | Operation 90% Maximum Relative, Storage 95% Maximum Relative | |
| Electrical Specifications | 100-240V, AC/50-60Hz, Universal Input, 1.2 Amp Max | |
| Dimensions (W x H x D) inches | 13 x 1.7 x 8.2 | 13 x 1.7 x 8.2 |
| Dimensions (W x H x D) cm | 33 x 4.3 x 20.9 | 33 x 4.3 x 20.9 |
| Weight (lb) | 4.6 | 4.6 |
| Weight (kg) | 2.1 | 2.1 |
The following screenshots illustrate the Web user interface of the NETGEAR® ProSecure™ STM series of gateway security appliances.
Determine the ISP settings for the primary WAN.
Determine the ISP settings for the primary WAN.
Add and configure protocol bindings for the primary WAN.
Configure the UTM to utilize DynDNS.com DNS services.
Configure the UTM to utilize tzo.com DNS services.
Configure the UTM to utilize Oray.net DNS services.
Configure traffic metering for the primary WAN.
Add and configure virtual LANs, including IP address, DHCP status, and port assignment settings.
Add computers and devices the LAN manually.
Add a secondary LAN IP address to and existing LAN configuration.
Enable and configure the DMZ.
Add and manage static routes. Configure RIP settings.
Enter account settings for Email notifications. The UTM will utilize this information for sending any necessary alerts.
Enable intrusion prevention and port scan detection.
Determine which intrusion prevention rules to enable, and select the appropriate action to take, in the event of an attack.
Add and configure services to be used in firewall rules.
Add and configure QoS profiles to be used in firewall rules.
Enable bandwidth profiles. Add and configure bandwidth profiles to be used in firewall rules.
Configure a schedule for firewall rules to be active. Choose specific times of the day and days of the week.
Configure a schedule for firewall rules to be active. Choose specific times of the day and days of the week.
Configure a schedule for firewall rules to be active. Choose specific times of the day and days of the week.
Define firewall rules for traffic between the LAN and the WAN/Internet.
Define firewall rules for traffic between the DMZ and the WAN/Internet.
Define firewall rules for traffic between the LAN and the DMZ.
Configure the UTM to protect against commonly used network attacks.
Configure user session limit and session timeout parameters.
Enable and configure filtering of MAC addresses.
Bind IP to MAC address and vice-versa. Enable and configure email logs for IP/MAC binding violations.
Add and configure port triggering rules.
Configure scanning and security policies for email, Web, IM, and P2P.
Determine what action the UTM will take when malware is detected. Configure email security settings, including scanning and user notification β to alert users and/or senders regarding the security status of their email. Custom alerts can be sent when malware is found, when it is not found, or when a scan has been skipped. Infected attachments can also be replaced with a customized warning message.
Configure the UTM to filter email based on keywords in the subject line, or by the file type, name, or password status of attachments. Also tells the UTM what action to take when an email meets any of these pre-determined parameters. Emails and/or attachments can be logged, or blocked and logged.
Configure white lists and black lists for Email, based on the recipient's IP address, domain, or Email address. Email can also be white listed based on the recipient's domain or email address.
Provides the capability to quickly enable or add real-time blacklists to the UTM.
Enable and configure Distributed Spam Analysis anti-spam detection.
Configures the UTM for Web-based malware handling, including what action the UTM will take when infections are found and how to handle messages that are larger than a pre-determined size. Custom alerts can also be sent when malware is found.
Perform Web content filtering. Block specified file types, Web objects, and keywords within Web pages.
Configure the UTM to block URLs from the selected categories. The content filter consists of 64 different categories with a real-time "in the cloud" database of hundreds of millions of URLs. Filtering can be designed to be continuously enforced, or only during certain scheduled days/times. URLs can be submitted to check for classification.
Configure URL white lists and black lists.
Configure HTTPS scan Settings.
Catalogs all certificates for the UTM and tells it what Web sites to allow without a corresponding certificate.
Configure the UTM to bypass the HTTPS scanning of specific trusted hosts.
Configure the UTM for FTP-based malware handling, including what action the UTM will take when infections are found, how to handle messages that are larger than a pre-determined size, and what file extensions should be blocked.
The UTM can be configured to override previously determined application rules.
The UTM can be configured to bypass the content filtering for specified client or destination IP addresses.
Configure IKE policies.
Manage and configure VPN tunnels and policies.
The VPN wizard used for simplified VPN setup.
Configure DHCP over VPN settings.
Configure the UTM as a RADIUS client.
Configure SSL VPN policies.
Assign specific network services to defined resources for use in SSL VPN tunnels.
Select and configure portal layouts for SSL VPN tunnels.
Configure the IP address range and routes assigned to SSL VPN Tunnel clients.
Detect and reroute data sent by remote users to the SSL VPN gateway to predefined applications running on private networks.
Manage and generate certificates used in SSL VPN connections.
Add and manage user accounts on the UTM on any configured domains.
Add and manage user groups on any configured domains.
Enable local authentication to authenticate users locally. Add and manage domains.
Configure the UTM for remote management.
Configure the UTM for integration with third party SNMP network monitoring tools.
Enables settings to be backed up or restored β to factory defaults, or from a specified file.
Configure update settings for the UTM. Updates to the scan engine and pattern file are performed online and automatically.
Configure firmware update settings for the UTM. Query, download, and install new firmware versions.
Set the system time and local time zone.
Contains information on the overall status of the UTM, including current version, most recent update of all software elements, and license status information. Network address and interface information is also communicated.
Provides a list of administration and SSL VPN users currently logged into the UTM, including the group, IP address, and login time for each.
Display the status of IPsec connections.
Display the status of SSL VPN connections.
Show current threat detection statistics.
Enable diagnostic tools, including ping, trace route, DNS lookup, packet capture, important log generation, or network usage reports for troubleshooting purposes. Display the routing table, reboot the UTM.
Tells the UTM which logs to generate, when, and how frequently. Also tells the UTM whether to send the logs via Email or syslog.
Tells the UTM which routing and event logs to generate.
Tells the UTM which activities warrant alerts and determines the construct of the message that will be received.
Enables log files to be generated for a specified set of criteria.
Enables the generation of email, Web, or system reports for a specified date range.
Tells the UTM which reports to generate on a regular basis, when and how frequently to generate them, and where to send them when completed.
Enable a secure online support connection with the ProSecure™ Support Team.
Send a suspicious file or suspected malicious Email to the ProSecure™ malware labs for analysis.
Register and manage the Web protection, Email protection, and Support & Maintenance licenses for the UTM.
Select the type of Wizard.
Enter basic LAN settings for the UTM.
Enter ISP settings for WAN connectivity.
Set the system time and local time zone.
Configure scanning and security policies for email, Web, IM, and P2P.
Determine all email scanning parameters, including what action the UTM will take when infections are found.
Determine all Web scanning parameters, including what action the UTM will take when malware is detected.
Configure the UTM to block URLs from the selected categories. The content filter consists of 64 different categories with a real-time "in the cloud" database of hundreds of millions of URLs. Filtering can be designed to be continuously enforced, or only during certain scheduled days/times. URLs can be submitted to check for classification.
Enter account settings for email notifications.
Determine the time, frequency, and source of scan engine and malware signature updates.
NETGEAR ProSecure UTM appliances are situated between an organization's internal network and the Internet. The UTM acts as a stateful packet inspection firewall, keeping track of TCP connection state for every connection that is maintained through the UTM. Moreover, the UTM manages an organization's Internet usage and protects these organizations from Internet borne malware, spam, viruses, and inappropriate web surfing. With the NETGEAR ProSecure UTM appliance sitting between the organization and the Internet, it is critical that the UTM appliance is sized appropriately and matches the performance needs of the organization.
There are no industry-standard metrics for determining the model to select, as every organization is unique and displays different network traffic characteristics. Moreover, the performance of the UTM can vary widely depending on a number factors including the complexity of the firewall rules loaded, the number of current active VPN users, the IPS signatures employed, the number of active connections used by each user, and a host of other metrics, including, last but not least, the number of protocols inspected by the Antivirus engine and the number of signatures applied to the AV engine.
As such, NETGEAR highly recommends that you contact your ProSecure authorized VAR who is well versed in UTM sizing to benchmark your organization and recommend the best model for your needs. That said, NETGEAR generally uses several specifications to roughly evaluate the applicability of an UTM appliance:
A starting point is to estimate the throughput your organization requires between its internal network and the Internet. As the UTM appliance sits between your internal network and the Internet, firewall throughput number is the total amount of traffic that can be passed with the UTM in place.
Users typically engage in a host of activities that consume TCP sessions. Web browsing over HTTP and HTTPS, FTP file transfers, Email over POP3, SMTP, and IMAP, Instant Messenger, Peer to Peer Traffic, TELNET, SSH and streaming audio and video all consume TCP sessions.
On the average, "normal" users typically consume 100-300 active TCP sessions. Virus Infected PCs turned into zombies can often consumer upwards of 1000 active TCP sessions, although NETGEAR ProSecure UTM appliances have administrator-definable limits to contain infected PCs from consuming an excessive number of TCP sessions
Anti-Virus scanning can be performed against files or data embedded in time-sensitive applications such as web browsing over HTTP(s) or in latency-tolerant applications such as Email. Because Anti-Virus speed is directly correlated to the number of signatures applied in the scanning process and in the protocols being scanned, Anti-Virus throughput can typically be inflated by reducing the signature set size or reducing the numbers of protocols scanned. Thus, Anti-Virus effectiveness is often a balance between speed and thoroughness. NETGEAR ProSecure UTM appliances employ signature sets that are up 200x larger than competing legacy small business UTM solutions while employing patent-pending Stream Scanning technology to vastly increase Anti-Virus throughput.
| UTM Model Capacity | UTM10 | UTM25 |
|---|---|---|
| Firewall Throughput (Mb/s) | 133 | 153 |
| Concurrent TCP Sessions | 8000 | 20000 |
| Anti-Virus Throughput (Mb/s) | 31 | 45 |
| Anti-Virus Signature Set Size | Hundreds of Thousands | Hundreds of Thousands |
| Recommended # of Users | 1-15+ | 15-30+ |
Enterprise-class security architecture to protect business networks from viruses, worms, spyware, trojans, rootkits, keyloggers, and unauthorized Web surfing – without impacting productivity.
Firewall functionality that deploys an array of network security technologies such as stateful packet inspection (SPI), Intrusion prevention (IPS), and denial-of-service (DoS) protection.
A Distributed Spam Analysis architecture that uses an in-the-cloud approach to stop up-to-the-minute spam outbreaks. Patent-pending Stream Scanning architecture ensures email is malware free.
The ProSecure UTM series offers the best of both worlds by offering two types of virtual private network (VPN) tunnels, Secure Sockets Layer (SSL) and IP security (IPsec), for optimal secure connection to your network.
Call: 01344 458200 or Request More Info ›
The PowerShift Program puts a world of resources at your fingertips.
Login Page:
http://www.netgear-powershift.co.uk/
Apply to be a Partner:
http://www.netgear-powershift.co.uk/signup.php
NETGEAR® ProSecure™ security appliances employ a best-of-breed security architecture that provides up to 200x the virus and malware coverage over other solutions at speeds up to 5x faster using patent-pending Stream Scanning technology.
ProSecure™ STM Series: For Medium Sized Businesses – Enterprise Strength Spam, Virus, & Web Filter Security
ProSecure™ UTM Series: For Small Businesses – Comprehensive All-in-One Gateway Security – Without Compromise
Call: 01344 458200
Copyright © 2008 NETGEAR® | www.netgear.co.uk
