System Modules

Filtering Mechanisms (firewall function)

 

The Eurotux Firewall is able to filter application layer (layer 7) packets, thus making monitoring, control and filtering of data traffic more efficient and secure.

Routing between internal, external and DMZ networks

 

Eurotux Firewall isolates the internal network from the external network, blocking access to the internal network from external machines. However, the Eurotux Firewall features a DMZ (demilitarized zone) that allows  restricted external access to the internal network. Permissions granting internal machines access to the external network are provided by the administrator.

NAT between internal networks and the outside

 

Eurotux Firewall allows NAT between internal networks and the outside, thus assigning a public address to a computer (or group of computers) within a private network. The main use of NAT is to limit the number of public IP addresses that an organization or company should use, for the purpose of safety and economy.

Remote access for web Administration

 

Eurotux Firewall features a web interface for administration that can be accessed remotely allowing the total management of the solution.

SNMP Access for monitoring and sending system logs to monitoring server

Eurotux Firewall is capable of gathering information (SNMP, NRPE) and sending system logs to a monitoring platform (for example, Nagios, OpenView, etc.) Hence, it is possible to generate reports and set alarms, increasing monotoring potential and adding value to the solution.

Alarm generation tools

 

This module has the ability to send alarms by e-mail concerning certain parameters directly related to the usage of the Eurotux Firewall system and the hardware platform in which it is installed (for example, memory usage, occupied hard drive space, etc.).

Primaty DNS Service

Eurotux Firewall is able to block web access to domains or contents at the administrator’s discretion. This access-barring may be set to users at a granular level (in the case of being embedded in an active directory), IP, or MAC address.

DHCP Server

 

Automatically assigns different IP addresses to computers at the moment they request connection to the network. IP addresses are distributed according to a previously configured interval on the Eurotux Firewall’s DHCP service. Whenever a machine disconnects, the IP address it was using is released to be used by another.

DNS-caching Service

Stores information from accessed websites, allowing faster access to websites whose which information has been previously stored on the  Eurotux Firewall.

IPsec, and OpenVPN support for VPNs

The VPN service permits establishing secure connections from outside of the client’s facilities to the local network. The services and/or resources that users can access depend on their profile. Access is granted to all or only to a specified set of resources over a secure connection as if the users were locally logged. Authentication of VPNs established by OpenVPN can be verified by a local file, a RADIUS service or an Active Directory service. VPNs through IPsec need authentication via local file.

Traffic Shapping

Eurotux Firewall allows bandwidth management for Internet connections, thus making it possible, for example, to prevent the congestion of vital services.

Advanced Routing

Eurotux Firewall enables the management of several Internet connections. This feature provides the capacity to route different services through different accesses. One of the most useful features is the detection of a connectivity failure and the automatic re–establishment of Internet through an alternate link, allowing network users to continue working without interruptions.

Traffic Monitoring

 

Traffic Monitoring service enables the analysis of the origin and type of traffic that uses Internet access. This allows the analysis of the occurrence of bottlenecks and other potential sources of problems that can hinder the solution’s functionality.

Proxy Service with content filtering

The primary aim of this service is to increase the access performance to HTTP service (using a cache mechanism) and to implement a comprehensive and flexible mechanism that allows access management (restrictions, statistics, etc.)

Load Balancing

 

This module enables the implementation of three types of features: HTTP load balancing for several internal servers, SSL acceleration and the use of one IP address for multiple websites.

AAA – Authentication, Authorization and Accounting

The term AAA is a reference to the protocols related to the procedures for authentication, authorization and accounting. The authentication verifies the digital identity of the system user, the authorization guarantees that an authenticated user has access only to authorized resources, and, last, the accounting refers to the gathering of information regarding the use of system resources by their users.

Switch The Language