D-Link's NetDefend line is a collection of appliances that include both VPN connectivity and stateful packet inspection firewall capabilities. The product line consists of multiple models in both desktop and rackmount flavors; targeted to deployments from small businesses to larger organizations.

Features include support for Web-based, CLI, or SNMP management; content filtering capabilties including URL/keyword blocking; activity logging/monitoring and E-mail alerts; a built-in intrusion detection system; and support for authentication via a RADIUS server or a built-in user database. Additionally, the devices all support VPN connectivity; with the total number of VPN tunnels allowed ranging from 80 to 1200, depending on the model. All have hardware-based or accelerated IPSec VPN servers supporting IPSec in Client/Server mode; and can support IPSec, PPTP, and L2TP pass-through traffic. The DFL-700, DFL-800, DFL-1100, and DFL-1600 additionally boast an integrated IPSec VPN Client; and the DFL-800 and DFL-1600 both support IPSec, PPTP, and L2TP protocols in Client/Server mode.

Currently offered NetDefend devices include the following (note that not all features described above may be available in all models):

- DFL-200: A desktop model with a WAN port, DMZ port, and four LAN ports. Firewall performance is listed at 46 Mb/sec and the total VPN tunnels supported is 80. The DFL-200 supports up to 3,000 concurrent sessions.

- DFL-700: A desktop model with a WAN port, DMZ port, and a single LAN port. Firewall performance is listed at 43 Mb/sec and the total VPN tunnels supported is 200. The DFL-700 supports up to 10,000 concurrent sessions, and includes bandwidth management features (as do all the later models).

- DFL-800: A desktop model with dual WAN ports (with failover), DMZ port, and seven LAN ports. Firewall performance is listed at 70 Mb/sec and the total VPN tunnels supported is 300. The DFL-800 supports up to 25,000 concurrent sessions.

- DFL-1100: A rackmount model with a WAN port, DMZ port, and a single LAN port. Firewall performance is listed at 89 Mb/sec and the total VPN tunnels supported is 1,000. The DFL-1100 supports up to 200,000 concurrent sessions.

- DFL-1600: A rackmout model with 6 GbE ports, configurable as LAN, WAN, or DMZ. Firewall performance is listed at 300 Mb/sec and the total VPN tunnels supported is 1,200. The DFL-1600 supports up to 400,000 concurrent sessions.

- DFL-CPG310/DFL-CP310: Wireless (802.11b/g) and wired (respectively) appliances based on Check Point (Embedded NGX with Application Intelligence, Firewall-1, VPN-1) technology. The newest entries in the product line, the CP310 offerings are targeted to SMBs and feature dual WAN ports (with failover), a built-in whois utility, traffic monitoring, WPA2 encryption for WLAN, IPSec support over wireless, and a built-in print server.

All but the DFL-CP310/CPG310 are available now, with base pricing ranging from $289.99 to $6,999.99. The CP310 devices are expected to be available before the end of Q12006, with pricing set at $319/$499.

Visit the D-Link Web site for further information.

product submission by EITPlanet Staff

E-Mail this page to a colleague
send info about NetDefend

Suggest a link
for the NetDefend fact sheet