.png/Firewall2150.png "ISS2150-LOGO")
.png/ISS2150-ACR-front.png "ISS2150-ACR-front")
.png/ISS2150-ACR-rear.png "ISS2150-ACR-Rear")
.png "ISS2150-IEC-front")
.png "ISS2150-IEC-side")
.png "ISS2150-IND-front")
.png "ISS2150-IND-side")
.png/__thumbs/Firewall2150.png/Firewall2150_120x0.png)
.png/__thumbs/ISS2150-ACR-front.png/ISS2150-ACR-front_120x0.png)
.png/__thumbs/ISS2150-ACR-rear.png/ISS2150-ACR-rear_120x0.png)
.png/ISS2150-IEC-front (800x600)_120x0.png)
.png/ISS2150-IEC-side(800x600)_120x0.png)
.png/ISS2150-IND-front(800x600)_120x0.png)
.png/ISS2150-IND-side (800x600)_120x0.png)
Description
The application of digital information processing and communications in mission critical infrastructure is getting more complicated. It has led to numerous vulnerabilities and significant security issues. It reveals the cyber security threats and the importance of solutions on cyber security against intruders.
Abundant attack cases have proven that unauthorized users have the capability to access and manipulate sensitive data from a protected network domain. Loop-ISS2150 MCC Firewall is aimed to manage and enhance the network security of the Mission Critical Infrastructure by utilizing the firewall to isolate security zones between different network areas to better protect and block the inbound information flow.
Features
- All-in-one Firewall/NAT/VPN/Router/IPS
- Stateful firewall that monitors connection states and identifies potential traffic risks
- Full-function NAT includes Source NAT, Destination NAT, Static NAT, and Dynamic NAT
- Supports both static routing and dynamic routing
- Secure remote access tunnel with IPSec VPN
- Industrial-grade Intrusion Prevention/Detection System (IPS/IDS) for ICS network
- Supports SYN cookies to prevent Denial-of-Service (DoS) attacks
- Supports Quality of Service (QoS) in networking to manage traffic and guarantee the performance of critical applications
- Supports a variety of connectivity methods, such as Link Aggregation/Failover, to suit OT networking requirements
- The high availability design supports automatic hardware failover.
- Supports RESTful API for easy system integration
- Supports Deep Packet Inspection (DPI)*, offering enhanced network connection management beyond the capabilities of traditional layer 4 firewalls
- Compliant with the IEC 61850-3 industrial standards (IEC model)
- The fanless design can greatly operate in extreme conditions with restricted airflow (IND and IEC model).
The ISS2150 firewall in this application protects critical systems by controlling and monitoring network traffic to block unauthorized access and cyber threats. It is placed at gate keepers, such as the Management System Security and SCADA Supervisory Security edges, to secure sensitive areas like the NMS Core Server and SCADA control systems. The firewall enforces strict access rules, inspects network packets, and prevents attacks on PLCs/RTUs and other critical components. Its role is to ensure secure communication, protect against intrusions, and maintain the reliability of the mission-critical network.