Installation Manual
H3C SecPath V1000-A Security Gateway
Chapter 1 Product Overview
1-2
II. Data security and reliability
The security gateway supports:
z
NAT. Besides the basic functions, the NAT of the SecPath V1000-A can limit the
number of concurrent connections to a single user. This eliminates the malicious
resource seizures while common network applications are being provided. In
addition, its enhanced NAT ALG function provides NAT traversal for H.323, FTP,
ICMP, and so on.
z
AAA and RADIUS user authentication protocols.
z
Packet filter and Application Specific Packet Filter (ASPF) to prevent the attacks
from external networks.
z
VPN (including GRE and L2TP) with the IPsec and IKE technologies to guarantee
the security of private networks over the Internet.
z
Virtual Router Redundancy Protocol (VRRP) to provide backup in case of
communication line or equipment failures. This effectively enhances network
robustness and reliability.
z
Deeper application recognition (DAR) to recognize and classify packets more
deeply, thus enhancing the control over data flows.
z
Object oriented management, simplifying configuration management and
improving the usability.
III. Online software upgrade
You can upgrade the application and Boot ROM programs on line to add features and
extend functions.
IV. Network management
The security gateway supports the SNMPV3 network management and provides
powerful device management.
V. Regulatory compliance
Designed taking into considerations the national and international standards dominant
in China, North America, Europe, Australia, and Japan, the security gateway complies
with the requirements of these countries and regions in EMC, safety, and network
access.