Physical Interfaces LAN Ports (Switch) 4 X Gigabit Ethernet (1000Mb/s) Ports Port-Based VLAN (Inclusive/Exclusive Groups) 802.1q VLAN Tagging USB Ports: 2x USB 2.0 ports for 3G/4G Modem, Printer, USB storage or USB temperature sensor WAN Ports: WAN1 : ADSL, RJ11 WAN2 : Gigabit Ethernet (1000Mb/s) Ethernet WAN3 : USB Port for 3G/4G Cellular Modem WAN4 : USB Port for 3G/4G Cellular Modem Performance Firewall: Up to 300Mb/s IPSec VPN: Up to 50Mb/s ADSL Compatibility ANSI T1.413 Issue2 ITU-T G.992.1 G.dmt (ADSL) ITU-T G.992.2 G.lite ITU-T G.992.3 ADSL2 ITU-T G.992.5 ADSL2+ Annex L (READSL) Annex A Annex M ANFP Issue 3 Compliant/Certified (for Annex A & Annex M) DSL Forum : TR-048/67 & TR-100 Load Balance/Failover Features Outbound Policy-Based Load-Balance WAN Connection Fail-over BoD (Bandwidth on Demand) Wireless LAN Features (\'n\' Models Only) 802.11n with backward support for 802.11b/g 2.4GHz operating frequency (UK channels 1-13) Multiple SSID : Create up to 4 virtual wireless LANs (independent or joined) Optional Higher Gain or directional aerials available – Click Here. Active Client list in Web Interface Wireless LAN Isolation (from VLAN groups and wired Ethernet interfaces) 64/128-bit WEP Encryption WPA/WPA2 Encryption Switchable Hidden SSID Restricted access list for clients (by MAC address) Time Scheduling (WLAN can be disabled at certain times of day) Access Point Discovery WDS (Wireless Distribution system) for WLAN Bridging and Repeating 802.1x Radius Authentication Wireless VLAN Wireless Rate-Control Automatic Power Management 802.11e WMM (Wi-Fi Multimedia) Firewall & Security Features CSM (Content Security Management): URL Keyword Filtering – Whitelist or Blacklist specific sites or keywords in URLs Block Web sites by category (e.g. Adult, Gambling etc. Subject to subscription) Prevent accessing of web sites by using their direct IP address (thus URLs only) Blocking automatic download of Java applets and ActiveX controls Blocking of web site cookies Block http downloads of file types : Binary Executable : .EXE / .COM / .BAT / .SCR / .PIF Compressed : .ZIP / .SIT / .ARC / .CAB/. ARJ / .RAR Multimedia : .MOV / .MP3 / .MPEG / .MPG / .WMV / .WAV / .RAM / .RA / .RM / .AVI / .AU Time Schedules for enabling/disabling the restrictions Block popular P2P (Peer-to-Peer) file sharing programs Block Instant Messaging programs (e.g. IRC, MSN/Yahoo Messenger etc.) Multi-NAT, DMZ Host Port Redirection and Open Port Configuration Policy-Based Firewall MAC Address Filter SPI ( Stateful Packet Inspection ) with new FlowTrack Mechanism DoS / DDoS Protection IP Address Anti-spoofing E-Mail Alert and Logging via Syslog Bind IP to MAC Address Bandwidth Management QoS (For devices in the NAT subnet according to source or destination IP) Guaranteed Bandwidth for VoIP Class-based Bandwidth Guarantee by User-Defined Traffic Categories Layer 2&3 (802.1p & TOS/DCSP) DiffServ Code Point Classifying 4-level Priority for each Direction (Inbound / Outbound) Bandwidth Borrowed Temporary (5 minute) Quick Blocking of any LAN Client Bandwidth / Session Limitation Network/Router Management Web-Based User Interface (HTTP / HTTPS) CLI ( Command Line Interface ) / Telnet / SSH Administration Access Control Configuration Backup / Restore Built-in Diagnostic Function Firmware Upgrade via TFTP / FTP Logging via Syslog SNMP v3 Management with MIB-II TR-069 TR-104 VPN Facilities Up to 32 Concurrent VPN Tunnels (incoming or outgoing) Tunnelling Protocols: PPTP IPSec L2TP L2TP over IPSec DrayTek SSL IPSec Features: Internet Key Exchange : IKEv1 (Main and Aggressive mode) & IKEv2 NEW! Security Protocols : AH mode, ESP mode DiffieHelman (DH) Groups: IKEv1 : 1,2,5,14 IKEv2 : 1,2,5,14,19,20,21 Encryption: DES / 3DES (168bits) AES (128/192/256bits) – Hardware-Accelerated Authentication – Hardware-Accelerated: MD5 SHA-1 SHA-256 IKE Authentication : Pre-shared Key or X.509 Digital Signature DHCP over IPSec NAT-Traversal (NAT-T) Dead Peer Detection (DPD) SSL VPN for teleworkers – Up to 16 simultaneous users. Proxy or tunnel LAN-to-LAN & Teleworker-to-LAN connectivity MOTP (Mobile One Time Password) for two factor authentication (2FA) Virtual IP Mapping, map a remote IP subnet/range to another range to resolve IP subnet/range conflicts VPN Pass-Through Network Features DHCP Client / Relay / Server DHCP Option 66 support Dynamic DNS NTP Client (Synchronise Router Time) Call Scheduling (Enable/Trigger Internet Access by Time) RADIUS Client UPnP Support Routing Protocols Static Routing RIP V2 Vigor 2832 ATM Protocols (DSL) RFC-2684/RFC-1483 Multiple Protocol over AAL5 RFC-2516 PPP over Ethernet RFC-2364 PPP over AAL5 PPPoE pass through LAN/WLAN PPPoE/PPPoA Relay Transparent bridge for MPoA Multiple PVC support for Triple Play Applications (up to 8 simultaneous) Support for RFC4638 for MTU up to 1500 WAN Protocols (Ethernet) DHCP Client Static IP PPPoE PPTP BPA Operating Requirements Rack Mountable (Optional Vigor RM1 mounting bracket required) Wall Mountable Temperature Operating : 0 °C ~ 45 °C Storage : -25 °C ~ 70 °C Humidity 10% ~ 90% (non-condensing) Power Consumption: 18 Watt Max. Dimensions: L240.96 * W165.07 * H43.96 ( mm ) Operating Power: DC 12V (via external PSU, supplied) Warranty : Two (2) Years RTB Power Requirements : 220-240VAC