سامانه iGate توانائی مدیریت و کنترل ارتباط کاربران و محافطت از شبکه محلی درون سازمان را داشته و با توجه به پهنای باند دسترسی به اینترنت قابلیت سرویس دهی به 500 کاربر را بصورت همزمان دارد. این سامانه قدرتمند بر اساس سرور اینتل و پردازنده Quad Core Xeon و هسته مرکزی لینوکس طراحی گردیده و با اختصاص 250GB هارددیسک جهت (Cache Server (File & HTTP Caching موجب افزایش سرعت دسترسی و کاهش حجم مصرف اینترنت می گردد.

iGate 2400-FCIS شبکه اینترنت را برای شما به 4 قسمت قرمز، زرد، آبی و سبز تقسیم می کند. قرمز برای اتصال به اینترنت، زرد برای اتصال وب سرور، آبی جهت اتصال کاربران شبکه بیسیم و سبز برای سرویس دهی به شبکه محلی سازمان و مصرف کاربران مجاز

کاربران پس از نصب و راه اندازی سامانه نیازی به اعمال تغییرات در کامپیوتر شخصی نداشته و همانند گذشته می توانند از اینترنت استفاده کنند.

2400-FCIS Internet Gateway

An intel Server Box with Xeon Quad Core processor which is powered by Linux core base system and highly protection against attacks and network threats. Ready to protect and speed up your local internet network and Web Servers.

iGate uses the Linux Netfilter or IPTables firewall facility to maintain a stateful firewall. Stateful firewalls keep track of connections to and from all GREEN, BLUE and YELLOW network IP addresses, based on both the source and destination IP addresses and ports, as well as the state of the connection itself. After a connection is established involving protected machines, only packets consistent with the current state of the connection are allowed through the iGate firewall. 

Relative Security of iGate Network Interfaces
The security model of iGate is that the GREEN network is fully trusted and any requests from this network, whether initiated by a user or by a machine infected with a virus, Trojan horse or other “malware” is legitimate and allowed by iGate.
IDS feature of iGate, allows for the Intrusion Detection System to be enabled for each network interface. The order of trustworthiness of networks in order of increasing trust is:

                                   RED −> Yellow −> BLUE −> GREEN

Network Configurations
The base configuration is RED/GREEN where iGate protects a single internal network from the Internet. If you have a wireless access point then you can attach it to the BLUE NIC and configure iGate to restrict the access of machines on your wireless LAN. If you have some servers that need to be accessible to the Internet you can place them in an un trusted DMZ attached to the YELLOW NIC.

  

List of Features;

• IPTable network filters
• RED network; The Internet connected network
• YELLOW network; Connection for Web Servers
• BLUE network; Internal wireless network
• GREEN network; Internal trusted network
• DHCP server for GREEN and BLUE to simplify network setup and maintenance.
• NTP server and client for setting clock and supplying a common clock for internal GREEN & BLUE network.
• Intrusion Detection for networks.
• Virtual Private Network (VPN) to allow multiple sites to act as single large network.
• Proxy Support for both Web Surfing and DNS support allow for “faster” connection response on and simplified network setup.

internet line in (access line to internet without firewall and protection) 

DMZ for Internet accessed servers

Green & Blue Network LAN port;

• Web proxy Advanced access control;
• Network based access control over IP and MAC addresses
• Time based access restrictions
• Blocking of unauthorized browsers or client softwares
• Time restrictions
• Size limits for download requests
• Download throttling
• Browser check
• MIME type filter
• DNS service
• DHCP server (can release static or dynamic IP)
• URL and Category Filter
• Firewall / Snort service
• Intrusion detection system (RED, YELLOW, BLUE & GREEN)
• Cache server
• NTP server
• Supports WINS sever