To start with, ENPAQ Unified Gateway is available as software package that
can be installed on any standard PC or Server depending on your requirement. In
our case we installed Unified Gateway on standard machine with three network
ports, 80GB HDD, and 3GB RAM with Core2duo X6800 processor. List of features
seem endless; it has every feature that you can imagine. UTM features of Unified
Gateway include AntiVirus engine for HTTP, FTP and email access with Anti-SPAM
engine for emails. Other security features available are Stateful Packet
Inspection and Intrusion Detection System to keep intruders out. Site-to-site
and nomadic VPN, using SSL, IPSec or PPTP allow remote users access relevant
resources without any risk of data theft. On the other hand Unified Gateway also
includes bandwidth restrictions on upload and download and blocking of
categorized websites. Instant messaging based on Jabber Instant Messaging and
Presence technology, VoIP, FTP Server, SMB file share and WiFi Besides these
features this package also has a comprehensive view of data transfers happening
on your corporate network.
Price: Rs 30,000—15,00,000 |
Configuration
There are three different network scenarios in which Unified Gateway can be
configured. First is the standard one WAN and one LAN port scenario we all are
familiar with. Second one is where one can have multiple WAN ports for load
sharing and fail over. You can even use one of the WAN ports exclusively for VPN
traffic in this scenario. Finally we have scenario where we can have multiple
WAN ports with DMZ. In our setup, we have used two WAN ports (WAN0 and WAN1) and
single LAN port. We connected two different routers to two WAN ports while LAN
port was connected to a switch, from where we connected multiple machines. Once
the physical setup was over next point is to configure Unified Gateway to
leverage its capabilities. Just open the web interface of this Unified Gateway
(192.168.10.1) and login using default username 'admin' and password 'admin00'.
It is not possible for us to show each and every feature of this package
therefore we would restrict ourselves to basic connection and proxy setting to
enable anti-virus and anti-spam capabilities. Now once you are inside, first
thing to do is to make traffic flow through it, click on 'Network' tab on the
top, this would bring all the necessary sub tabs required for network
configuration. Define a domain, then click on 'Network Interface>WAN/LAN' to
define corresponding settings. Through this tab, you can also configure other
traffic flow features of this package like load balancing, etc. Second important
tab is 'Proxy'; click on 'Proxy' and then put a check on 'Enable' to scan web
traffic. On similar line, you can also enable POP3, SMPT, Chat and FTP proxy for
healthy traffic through these channels. Enable intrusion detection/prevention
system by clicking on 'Security' tab. Finally to enable applications integrated
in Unified Gateway we discussed in introduction click on 'Applications' tab.
Bottomline: One in all solution to take care of almost every aspect of
network security and monitoring.
Sandeep Koul