| Device Profile: 3Com OfficeConnect SecureRouter and VPN Firewall |
(Sep. 23, 2004)
3Com's OfficeConnect SecureRouter (3CR860-95) and OfficeConnect VPN Firewall (3CR870-95) are Linux-based VPN routers for the SOHO (small office, home office) market. 3Com offers a free but unsupported Linux-MIPS kernel source tree and cross-compiling toolchain for the devices, making them potentially interesting to embedded Linux hackers.
The "SecureRouter" and "VPN Firewall" share the same case, and have most of the same features
Both devices are rumored to be based on a Broadcom BCM6350 SoC (system-on-chip), according to a post at Linux-mips.org. However, almost no information appears to be available on the Internet about this mysterious chip.
Both OfficeConnect products support secure site-to-site or user-to site communications over VPN tunnels. The SecureRouter supports two VPN lines, while the VPN Firewall includes an IPSec cryptographic accelerator in hardware, and supports up to 50 simultaneous VPN tunnels, according to 3Com. The devices are compatible with most VPN terminators, 3Com says, and support VPN protocols that include IPSec, DES, 3DES, and AES-128, as well as PPTP and L2TP.
Both devices include stateful packet inspection firewalls that can prevent unauthorized access and block denial of service and other common attacks, 3Com says. They also include URL filtering capabilities to block user access to undesirable sites. Traffic-shaping capabilities can prioritize traffic on user-definable ports, to guarantee bandwidth for voice and multimedia applications. LED warning lights call attention to major security concerns, which are also logged.
The OfficeConnect devices run DHCP (dynamic host configuration protocol) servers that automatically assign non-Internet-routable IP addresses to local computers. The devices then provide NAT (network address translation, also sometimes called IP masquerading) to enable local computers to share an Internet connection. Claimed LAN-to-WAN throughput is up to 20Mbps for unencrypted traffic.
Both devices offer an autosensing 10/100 WAN port, as well as a built-in 4-port 10/100 Ethernet switch with Auto MDI/MDIX. They support PPPoE, PAP, and CHAP, in order to support the inferior on-demand broadband connections that are the only DSL alternative in some geographic areas. They also support Dynamic DNS (though a provider such as home Linux), which enables servers to be hosted on impermanent network addresses.
Additional features include support for DMZs (demilitarized zones, or subnets accessible both locally and publicly, typically used for Web and other servers); RIP 1 and 2 IP routing and static routing table support, useful for multinetwork environments; and traffic metering.
The OfficeConnect devices offer setup wizards and can be configured through a web interface, 3Com says.
Both OfficeConnect devices share the same case, which measures 9.1 x 5.3 x 1.6 inches (228 x 135.4 x 41.8mm), and both weigh 1.9 pounds (535 grams). They include an 11-watt 10-30V power supply, and have a claimed maximum power consumption of 6.5 watts.
3Com provides an unsupported GPL code download for both devices. The 85MB download includes a cross-compiling toolchain for building applications on an x86 PC that will run on the devices' MIPS processors. The download also includes source code for Linux kernel 2.4.17 Linux kernel.
Digital Life has published an exhaustive review of the OfficeConnect devices, here.
Related Stories:
(Click here for further information)
|
|
|
7 Advantages of D2D Backup
For decades, tape has been the backup medium of choice. But, now, disk-to-disk (D2D) backup is gaining in favor. Learn why you should make the move in this whitepaper.
4 Legal Reasons to Control Internet Access
The Internet is obviously a valuable resource for many organizations. However, many are exposed to legal liability concerns because they fail to control Internet access. Learn if you're safe in this white paper.
Rapidly Resolve J2EE Application Problems
Whether you are in the process of building J2EE applications or have J2EE applications already running in production, you must ensure that they deliver the expected ROI. Learn how in this white paper.
Load Testing 2.0 for Web 2.0
There are many unknowns in stress testing Web 2.0 applications. Find out how to test the performance of Web 2.0 in this white paper.
Build Better Games Online
For the game infrastructure providers, life is complex. Making money from games has become more complicated. Why? Find out in this white paper.
Building a Virtual Infrastructure from Servers to Storage
This white paper discusses the virtual storage solutions that reduce cost, increase storage utilization, and address the challenges of backing up and restoring Server environments.
Gaining Faster Wireless Connections with WiMAX
Welcome to what is quickly becoming the hyperconnected world where anything that would benefit from being connected to the network will be connected. Learn more in this white paper.
Is Your Desktop a Security Threat?
The new wave of sophisticated crimeware not only targets specific companies, but also targets desktops and laptops as backdoor entryways into those business’ operations and resources. Learn how to stay safe in this white paper.
Increasing SAN Reliability by 100 Percent
Storage area networks (SAN) are a strong part of storage plans. Learn how to increase your reliability and uptime by 100 percent in this case study.
|
|
|
|
|
Use of this site is governed by our Terms of
Service and Privacy Policy.
Except where otherwise specified, the contents of this site are copyright © 1999-2008
Ziff Davis Enterprise Holdings Inc. All Rights Reserved.
Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise is
prohibited. Linux is a registered trademark of Linus Torvalds. All other marks are the property of their respective owners.
news feed