EDR-810 Series

Introduction
The EDR-810 is a highly integrated industrial multiport secure router with firewall/NAT/VPN and managed Layer 2 switch functions. It is designed for Ethernet-based security applications on critical remote control or monitoring networks, and it provides an electronic security perimeter for the protection of critical cyber assets including pump-and-treat systems in water stations, DCS systems in oil and gas applications, and PLC/SCADA systems in factory automation. The EDR-810 Series includes the following cybersecurity features:

  • Firewall/NAT: Firewall policies control network traffic between different trust zones, and Network Address Translation (NAT) shields the internal LAN from unauthorized activity by outside hosts.
  • VPN: Virtual Private Networking (VPN) is designed to provide users with secure communication tunnels when accessing a private network from the public Internet. VPNs use IPsec (IP Security) server or client mode for encryption and authentication of all IP packets at the network layer to ensure confidentiality and sender authentication.

 

The EDR-810’s “WAN Routing Quick Setting” provides an easy way for users to set up WAN and LAN ports to create a routing function in four steps. In addition, the EDR-810’s “Quick Automation Profile” gives engineers a simple way to configure the firewall filtering function with general automation protocols, including EtherNet/IP, Modbus TCP, EtherCAT, FOUNDATION Fieldbus, and PROFINET. Users can easily create a secure Ethernet network from a user-friendly web UI with a single click, and the EDR-810 is capable of performing deep Modbus TCP packet inspection. Wide-temperature range models that operate reliably in hazardous, -40 to 75°C environments are also available.

EDR-810 Series

Category:

Features and Benefits

  • 8+2G all-in-one firewall/NAT/VPN/router/switch
  • Secure remote access tunnel with VPN
  • Stateful firewall protects critical assets
  • Inspect industrial protocols with PacketGuard technology
  • Easy network setup with Network Address Translation (NAT)
  • RSTP/Turbo Ring redundant protocol enhances network redundancy
  • -40 to 75°C operating temperature range (-T model)
  • Security features based on IEC 62443/NERC CIP
  • Check firewall settings with intelligent SettingCheck feature

Certifications

Download Datasheet

Get Quote

Description

Introduction
The EDR-810 is a highly integrated industrial multiport secure router with firewall/NAT/VPN and managed Layer 2 switch functions. It is designed for Ethernet-based security applications on critical remote control or monitoring networks, and it provides an electronic security perimeter for the protection of critical cyber assets including pump-and-treat systems in water stations, DCS systems in oil and gas applications, and PLC/SCADA systems in factory automation. The EDR-810 Series includes the following cybersecurity features:

  • Firewall/NAT: Firewall policies control network traffic between different trust zones, and Network Address Translation (NAT) shields the internal LAN from unauthorized activity by outside hosts.
  • VPN: Virtual Private Networking (VPN) is designed to provide users with secure communication tunnels when accessing a private network from the public Internet. VPNs use IPsec (IP Security) server or client mode for encryption and authentication of all IP packets at the network layer to ensure confidentiality and sender authentication.

 

The EDR-810’s “WAN Routing Quick Setting” provides an easy way for users to set up WAN and LAN ports to create a routing function in four steps. In addition, the EDR-810’s “Quick Automation Profile” gives engineers a simple way to configure the firewall filtering function with general automation protocols, including EtherNet/IP, Modbus TCP, EtherCAT, FOUNDATION Fieldbus, and PROFINET. Users can easily create a secure Ethernet network from a user-friendly web UI with a single click, and the EDR-810 is capable of performing deep Modbus TCP packet inspection. Wide-temperature range models that operate reliably in hazardous, -40 to 75°C environments are also available.

Specification

10/100BaseT(X) Ports (RJ45 connector) 8
100/1000BaseSFP Slots 2
Standards IEEE 802.1Q for VLAN Tagging
IEEE 802.3 for 10BaseT
IEEE 802.3ab for 1000BaseT(X)
Static Port Trunk
IEEE 802.3u for 100BaseT(X)
IEEE 802.3x for flow control
IEEE 802.3z for 1000BaseSX/LX/LHX/ZX

Broadcast Forwarding IP directed broadcast, broadcast forwarding
Management Back Pressure Flow Control, DDNS, DHCP Server/Client, Web Console (HTTP/HTTPS), LLDP, QoS/CoS/ToS, SNMPv1/v2c/v3, Telnet, TFTP
Multicast Routing DVMRP, PIM-SM, PIM-SSM
Redundancy Protocols RSTP, STP, Turbo Ring v2
Routing Throughput: 10,000 packets per second (max. 100 Mbps)
Routing Redundancy VRRP
Security All models: HTTPS/SSL, SSH, L2TP (server), RADIUS
EDR-810-VPN-2GSFP Series: HTTPS/SSL, SSH, IPsec, OpenVPN (client and server), UDP and TCP Tunnel mode (routing) and TAP mode (bridge), L2TP (server), RADIUS, L2TP (server), RADIUS
Time Management NTP Server/Client, SNTP
Unicast Routing OSPF, RIPV1/V2, Static Route
Filter IGMP v1/v2/v3

VLAN ID Range VID 1 to 4094
IGMP Groups 256
Max. No. of VLANs 16

LED Indicators STATE, PWR1, PWR2, FAULT, 10/100/1000M

Technology ARP-Flood, FIN Scan, ICMP-Death, NEWWithout-SYN Scan, NMAP-ID Scan, NMAP-Xmas Scan, Null Scan, SYN/FIN Scan, SYN/RST Scan, SYN-Flood, Xmas Scan

Deep Packet Inspection Modbus TCP
Modbus UDP
Filter DDoS, Ethernet protocols, ICMP, IP address, MAC address, Ports
Quick Automation Profiles DNP, EtherCAT, EtherNet/IP, FOUNDATION Fieldbus, FTP, HTTP, IEC 60870-104, IPsec, L2TP, LonWorks, Modbus TCP, PPTP, PROFINET, RADIUS, SSH, Telnet
Stateful Inspection Router firewall
Transparent (bridge) firewall
Throughput Max. 10,000 packets per second (max. 100 Mbps)

Authentication EDR-810-VPN-2GSFP Series: MD5 and SHA (SHA-256), RSA (key size: 1024-bit, 2048-bit), X.509 v3 certificate
Concurrent VPN Tunnels EDR-810-VPN-2GSFP Series: Max. 10 IPsec VPN tunnels
Encryption EDR-810-VPN-2GSFP Series: DES, 3DES, AES-128, AES-192, AES-256
Protocols EDR-810-VPN-2GSFP Series: IPsec, L2TP (server), PPTP (client)
Throughput EDR-810-VPN-2GSFP Series: Max. 17 Mbps (Conditions: AES-256, SHA-256)

Features 1-to-1, N-to-1, Port forwarding

Authentication EDR-810-VPN-2GSFP Series: User password by MD5 and SHA1
Concurrent VPN Tunnels EDR-810-VPN-2GSFP Series:
Client Mode: max. 2 external servers
Server Mode: max. 5 external clients
Encryption EDR-810-VPN-2GSFP Series: AES-128/192/256 CBC, Blowfish CBC, DES CBC, DES-EDE3 CBC
Protocols EDR-810-VPN-2GSFP Series:
OpenVPN (client and server), UDP, and TCP
Tunnel mode (routing) and TAP mode (bridge)
Throughput EDR-810-VPN-2GSFP Series: Max. 5 Mbps

Event Type All models: Firewall event
EDR-810-VPN-2GSFP Series: VPN event
Media Local storage, SNMP Trap, Syslog server

Console Port RS-232 (TxD, RxD, GND), 3-pin (115200, n, 8, 1)

Connection Removable terminal block
Input Voltage 12 to 48 VDC
Input Current 0.706 A @ 12 VDC, 0.353 A @ 24 VDC, 0.187 A @ 48 VDC
Reverse Polarity Protection Supported

Housing Metal
Dimensions 53.6 x 135 x 105 mm (2.11 x 5.31 x 4.13 in)
Weight 830 g (2.10 lb)
Installation DIN-rail mounting, Wall mounting (with optional kit)

Operating Temperature Standard Models: -10 to 60°C (14 to 140°F)
Wide Temp. Models: -40 to 75°C (-40 to 167°F)
Storage Temperature (package included) -40 to 85°C (-40 to 185°F)
Ambient Relative Humidity 5 to 95% (non-condensing)

EMC EN55032/24
EMI CISPR 32, FCC Part 15B Class A
EMS IEC 61000-4-2 ESD: Contact: 6 kV; Air: 8 kV
IEC 61000-4-3 RS: 80 MHz to 1 GHz: 10 V/m
IEC 61000-4-4 EFT: Power: 2 kV; Signal: 2 kV
IEC 61000-4-5 Surge: Power: 2 kV; Signal: 2 kV
IEC 61000-4-6 CS: 10 V
IEC 61000-4-8 PFMF
Hazardous Locations ATEX, Class I Division 2
Maritime DNV
Railway EN 50121-4
Traffic Control NEMA TS2
Safety UL 508
Shock IEC 60068-2-27
Freefall IEC 60068-2-32
Vibration IEC 60068-2-6

Time 981,954 hrs
Standards Telcordia (Bellcore), GB

Warranty Period 5 years
Details See www.moxa.com/warranty

Models

Related products