ENPAQ Unified Gateway

To start with, ENPAQ Unified Gateway is available as software package that

can be installed on any standard PC or Server depending on your requirement. In

our case we installed Unified Gateway on standard machine with three network

ports, 80GB HDD, and 3GB RAM with Core2duo X6800 processor. List of features

seem endless; it has every feature that you can imagine. UTM features of Unified

Gateway include AntiVirus engine for HTTP, FTP and email access with Anti-SPAM

engine for emails. Other security features available are Stateful Packet

Inspection and Intrusion Detection System to keep intruders out. Site-to-site

and nomadic VPN, using SSL, IPSec or PPTP allow remote users access relevant

resources without any risk of data theft. On the other hand Unified Gateway also

includes bandwidth restrictions on upload and download and blocking of

categorized websites. Instant messaging based on Jabber Instant Messaging and

Presence technology, VoIP, FTP Server, SMB file share and WiFi Besides these

features this package also has a comprehensive view of data transfers happening

on your corporate network.

Configuration



There are three different network scenarios in which Unified Gateway can be
configured. First is the standard one WAN and one LAN port scenario we all are

familiar with. Second one is where one can have multiple WAN ports for load

sharing and fail over. You can even use one of the WAN ports exclusively for VPN

traffic in this scenario. Finally we have scenario where we can have multiple

WAN ports with DMZ. In our setup, we have used two WAN ports (WAN0 and WAN1) and

single LAN port. We connected two different routers to two WAN ports while LAN

port was connected to a switch, from where we connected multiple machines. Once

the physical setup was over next point is to configure Unified Gateway to

leverage its capabilities. Just open the web interface of this Unified Gateway

(192.168.10.1) and login using default username 'admin' and password 'admin00'.

It is not possible for us to show each and every feature of this package

therefore we would restrict ourselves to basic connection and proxy setting to

enable anti-virus and anti-spam capabilities. Now once you are inside, first

thing to do is to make traffic flow through it, click on 'Network' tab on the

top, this would bring all the necessary sub tabs required for network

configuration. Define a domain, then click on 'Network Interface>WAN/LAN' to

define corresponding settings. Through this tab, you can also configure other

traffic flow features of this package like load balancing, etc. Second important

tab is 'Proxy'; click on 'Proxy' and then put a check on 'Enable' to scan web

traffic. On similar line, you can also enable POP3, SMPT, Chat and FTP proxy for

healthy traffic through these channels. Enable intrusion detection/prevention

system by clicking on 'Security' tab. Finally to enable applications integrated

in Unified Gateway we discussed in introduction click on 'Applications' tab.

Bottomline: One in all solution to take care of almost every aspect of

network security and monitoring.

Sandeep Koul