Security gateway RF-1031

EthernetIPserial

The iSEG RF-1031 Secure Gateway was designed for small remote sites that require a secure connection to a limited number of devices. It offers security solutions for both M2M (Machine to Machine) and H2M (Human to Machine) traffic by incorporating a DPI (Deep-Packet Inspection) firewall, as well as a user-identity firewall. The iSEG RF-1031 includes a distributed DPI firewall or monitoring all network traffic and managing physical and remote access control systems. The whitelist-based firewall is installed at every port for both Serial and Ethernet traffic. Each SCADA protocol packet is validated by the firewall for source, destination, protocol and packet content. The firewall’s two states (Monitoring and Blocking) allow blocking suspicious traffic or just monitoring, in addition to triggering an alarm at the control center. The iSEG RF-1031 supports VPN tunnels for secure inter-site connectivity with IPsec, DMVPN, mGRE tunnels (among others) with key management certificates, supporting layer-3 services. In addition, the iSEG RF-1031 fully supports L3 switches (VLANs, Routing, etc.) for Ethernet and serial ports. The iSEG RF-1031 offers a built-in APA (Authentication Proxy Access), for compliance with the NERC CIP V6 requirement for identifying and granting privileges to users prior to granting network access. Once validated, specific access is granted to predefined devices and functions, and each operation is logged. The iSEG RF-1031 is also integrated with a physical identity server system, for other authentication methods (e.g. magnetic card.)