ECOS UTM Appliances

The ECOS UTM appliances are secure servers with many features to protect corporate networks:
VPN gateway, proxy, authentication server (PKI + RADIUS), mail gateway (including spam filter), CA (Certificate Authority), token management, state-full-inspection firewall, router.
The flexible design allows it to adapt to various scenarios and, depending on the requirements, to distribute the functions over several UTM appliances with central administration. Thus very simply two-level security concepts can be realized for the protection of corporate networks through a firewall with a downstream connected VPN gateway / secure server.
The UTM appliances are also used as a central component in connecting branches, because you can build with them extensive infrastructures, which are very easy to manage. For this, the UTM Appliance can act as a master for any number of UTM appliances, which are in remote locations and are configured as slaves, to allow for central management.
To enable secure remote access to servers behind an UTN appliance, the ECOS Mobile Office stick can be used. This remote access solution runs on any Windows PC with Internet access and does not require any software installation or administrator rights. Alternatively, our ECOS Secure Boot sticks allow highly secure access to centralized terminal servers. Alternatively a SSL VPN client, to be installed under Windows, is available for a fully transparent VPN connection.
When used as a mail gateway, an optional spam filter can be activated.
An integrated CA allows the generation of digital certificates; a smart card and token management complements the PKI functionalities.
The automatic up-to-date service ensures the up-to-dateness of the appliances and the addition of further features.

Available versions

  • SEC-V which can be installed within a VMware, Citrix XenServer or on certified hardware.
  • SEC-50-AW: Small Business version (e.g. for networking of branch offices), offered by our partners together with appropriate hardware.

Features

  • VPN Gateway (PPTP, IPsec, SSL-VPN).
  • Application-level proxies.
  • Spam filter for mail gateway (optional, only with SEC-V).
  • Synchronization of users with different servers
    (inter alia ADS, only with SEC-V).
  • Bandwidth management, QoS.
  • Integrated CA (Certificate Authority, only with SEC-V).
  • Integrated smartcard and token management (only with SEC-V).
  • One Time Password system (OTP).
  • State-Full-Inspection firewall with extensive packet filtering rules.
  • LDAP based.
  • High Availability module for high availability solutions.
  • Up-to-date-service guarantees the up-to-dateness of the components (optional).
  • Modular hardware concept, expandable to ISDN, ADSL,
    UMTS interfaces.