Firewall Real CommThe solutions that Real Comm offers implement pfSense, a FreeBSD-based firewall distribution that ensures maximum security and top-performance typical of UNIX systems. With pfSense, Real Comm firewalls can act as a captive portal, i.e., a Wi-Fi access monitoring system in public places or as DHCP, DNS, and PPPoE servers, and perform traffic shaping. They support numerous types of VPNs, such as PPTP, IPSEC, and many others, including OpenVPN. Real Comm Firewalls support multiple internet connections with the ability to balance the load. They can be configured for the creation of firewall clusters, automatically replicating configurations and providing a service in HA (High Availability).

Our firewall models

EL SERIES Compact, quiet, and low consumption, it is the suitable firewall for professional studios and companies with a limited number of Internet accesses. UTM SERIES A high-performance firewall, suitable for SMEs that use the Internet intensively. UTM2 SERIES Thanks to its significant processing capacity, it is the right tool for companies with a larger number of workstations.

Main features of Real Comm firewalls:

1.Top-class firewall rule definition;

2.VPN support based on digital certificates;

3.Content filtering and URL Filtering;

4.Traffic shaping;

5.Hardware redundancy on devices (High Availability).

NetSense EL is the entry-level model of the NetSense range. Compact, quiet, and low consumption, it is the suitable firewall for professional studios and companies with a limited number of Internet accesses. It is equipped with three interfaces: 100 Mbps LAN, WAN, and DMZ. NetSense EL is easy to install and configure, and thanks to the web interface, it is possible to manage the entire system. It provides real protection and inspection for your company network and guarantees the security of your infrastructure. NetSense EL implements DHCP, DNS, PPPoE server functionality, and is capable of performing traffic shaping. Another distinguishing feature is the ability to configure it for the creation of firewall clusters, automatically replicating configurations and providing a service in HA (High Availability). Thanks to its real-time reporting system, it is possible to monitor the traffic of each interface. NetSense EL implements three types of VPN connectivity: IPsec, OpenVPN, and PPTP.

Technical features of NetSense ELW

NetSense ELW: compact, quiet, and low consumption, it is the suitable firewall for professional studios and companies with a limited number of Internet accesses. It is equipped with three interfaces: 100 Mbps LAN, WAN, and DMZ. NetSense ELW is equipped with an external antenna to allow 802.11 a/b/g wireless connections and can be used as an Access point. Thanks to the captive portal functionality, which adds extra security to authentication for wireless devices, you can have constant monitoring of Wi-Fi accesses. The appliance implements DHCP, DNS, PPPoE server functionality, and is capable of performing traffic shaping. NetSense ELW is easy to install and configure, and thanks to the web interface, it is possible to manage the entire system. It provides real protection and inspection for your company network and guarantees the security of your infrastructure. Another distinguishing feature of this device is the ability to configure it for the creation of firewall clusters, automatically replicating configurations and providing a service in HA (High Availability). NetSense EL implements three types of VPN connectivity: IPsec, OpenVPN, and PPTP, and thanks to its real-time reporting system, it is possible to monitor the traffic of each interface.

Caratteristiche tecniche

Technical features

A high-performance firewall, suitable for SMEs that use the Internet intensively. NetSense UTM has 5 network cards of 1 Gbps and is rack-mountable. Thanks to its high-performance hardware features and operating system installed on an SSD, this firewall guarantees speed and security for your company network. The web administration interface allows speed and ease in the initial configuration phase and subsequent modification. You will no longer have problems configuring VPNs in your company, NetSense UTM implements three types of VPN connectivity: IPsec, OpenVPN, and PPTP in unlimited numbers. NetSense UTM is configurable for the creation of firewall clusters, automatically replicating configurations and providing a service in HA (High Availability). Nothing will escape your control, thanks to the real-time reporting system it is possible to monitor the traffic of each interface, the performance of the system and it is possible to perform checks on the queues and individual traffic. Thanks to its 5 network ports, it is possible to configure the appliance to perform load balancing both on multiple WANs to provide balancing and failover, and on incoming to distribute the load among various servers. NetSense UTM implements DHCP, DNS, PPPoE server functionality, and is capable of performing traffic shaping.

Technical features of NetSense UTMW

Ideal for SMEs that use the Internet intensively. NetSense UTM has 5 network cards of 1 Gbps and is rack-mountable. It has an integrated wireless card that guarantees WiFi connectivity according to IEEE 802.11b/g standards. Thanks to the captive portal functionality, which adds extra security to authentication for wireless devices, you can decide the maximum concurrent connections, disconnect clients that do not make connections for more than a certain number of minutes, force the disconnection of clients, and much more. The operating system is installed on a solid-state disk to give the entire system optimal performance for large companies that require top controls and performance. The entire system is administrable from a practical and comfortable web interface. Through the CARP protocol, Netsense UTMW manages hardware failover and it is therefore possible to create a stack of firewalls in High Availability, with automatic replication of configurations and rules. The problems of the company VPN are solved by NetSense UTMW as it implements three types of VPN connectivity: IPsec, OpenVPN, and PPTP in unlimited numbers. As with the UTM model, it is possible to configure the appliance to perform load balancing both on multiple WANs to provide balancing and failover, and on incoming to distribute the load among various servers. NetSense UTMW implements DHCP, DNS, PPPoE server functionality, and is capable of performing traffic shaping. The most performing firewall of the entire NetSense line. Thanks to a significant processing capacity, it is the right tool for companies with a larger number of workplaces, NetSense UTM2 guarantees TOP performance.

Like the UTM model, it is equipped with 5 ports of 1 Gbps that allow load balancing both on multiple WANs and on incoming to allow better distribution of the load. The ability to create clusters of firewalls, automatically replicating configurations and providing a high-reliability service makes this firewall a professional product for medium and large companies. NetSense UTM2 also allows an unlimited number of VPN connections and implements IPsec, OpenVPN, and PPTP. Like the other models of the NetSense line, it implements the functionality of a DHCP, DNS, PPPoE server, and is capable of performing traffic shaping. NetSense UTM2, like the other models, implements a web interface for managing the entire firewall and is equipped with brackets for rack mounting.

Firewall

•Filtering from source and destination IP, IP protocol, source, and destination port for TCP and UDP traffic

•Enable limits for simultaneous connections on basic rules

•Option to log or not log traffic matching each rule

•High flexibility routing policies for gateway selection on basic rules for bandwidth balancing, failover, multiple WANs, backup on multiple ADSL, etc...

•Ability to create Aliases for groups of IP and names of IP, networks, and ports.

•Transparent Layer 2 filtering. Ability to bridge interfaces and filter traffic between them

•Packet normalization.

•Ability to disable filtering (firewalling) to use pfSense as a pure router

State Table

The firewall's state table maintains information on open connections. pfSense is a stateful firewall, by default all rules are stateful. Many firewalls do not have the ability to control the state table. pfSense has numerous functions capable of performing granular control of the state table, thanks to the features of OpenBSD's pf.

Adjustment of the state table size

Basic rules:

• Limits of simultaneous client connections

• State limits per host

• Limits of new connections per second

•Define the state timeout

• Define the state type

State types - pfSense offers numerous options for state management

•Keep state - Works with all protocols. By default on all rules

•Modulate state - Works only with TCP. pfSense will generate ISNs (Initial Sequence Numbers) on behalf of the host •Synproxy state - Proxies start TCP connections to help servers from spoofed TCP SYN floods

•None - No state entry is kept

State table optimization options - pfSense offers four states for state table optimization

•Normal - default •High latency - used for high-latency links, such as satellite connections

•Aggressive - faster expiration of idle state. More efficient using more hardware resources, but it can eliminate correct connections

•Conservative - Tries to avoid deleting correct connections at the expense of higher CPU and RAM use