IEF-G9010 Series

Introduction
The Moxa IEF-G9010 Series industrial IPS firewall can segment and hide your network and protect mission-critical assets with industrial-grade IPS and granular access control. Meanwhile, the Security Dashboard Console (SDC) software, when used together with the IEF-G9010 Series, offers another layer of protection through centralized critical asset visibility, network analysis, and auto pattern updating.

Centrally Manage Network Security and Enhance OT Visibility
The IEF-G9010 Series sniffers network traffic and gives users full visibility of current assets and connections, which helps administrators and operators understand the real-time conditions of the OT system. When connected to Security Dashboard Console, a security management platform, the administrators or operators can effectively manage and monitor all the intrusion prevention systems from a single space. This provides an easier way to monitor the devices and execute policy, firmware, and pattern updates.

 

Dynamically Prevent Malicious Cyber Threat Activity Affecting Your System
The IEF-G9010 Series is designed to protect mission-critical assets at the OT network edge. It silently analyzes your network traffic in the background and offers granular behavior monitoring and control of cyber activities. These firewall devices provide both “Monitor” and “Protect” modes to facilitate different OT scenarios. Monitoring mode gives administrators full visibility of cyber threat activities. In the case of an emergency, administrators can easily switch to “Protect” mode to block and contain any malicious operations.

Industrial Protocol Whitelist Control for Mission-critical Assets
Using advanced Deep Packet Inspection (DPI) technology, the IEF-G9010 Series is equipped with industrial protocol awareness to offer granular command of control system traffic to critical controllers.

 

Virtual Patching and Intelligent Threat Protection
Frequent patching significantly reduces a system’s vulnerability to cyberthreats. However, patching continues to be a major challenge in OT environments because OT applications cannot afford interrupting operations by shutting down systems to apply patches. Virtual patching technology can help complement existing patch management processes by shielding known and unknown vulnerabilities. Virtual patching acts as an agentless emergency security tool that OT administrators and operators can use to address vulnerabilities on affected OT equipment quickly. The IEF-G9010 Series provides advanced protection against threats with up-to-date threat information and guards your systems against undisclosed and zero-day threats.

Flexible License Upgrades
The IEF-G9010 Series supports flexible, on-demand expansion through Moxa’s license platform. As your network grows, you can purchase additional licenses based on your needs. The IEF-G9010 Series supports the following licenses:

  • IEF-New-1Y: 1-year, 1 node IEF license
  • IEF-Renew-1Y: 1-year, 1 node IEF renewal license
  • IEF-Renew-2Y: 2-year, 1 node IEF renewal license
  • IEF-Renew-4Y: 4-year, 1 node IEF renewal license
  • SDC-New-1Y: 1-year, 1 node SDC license
  • SDC-New-3Y: 3-year, 1 node SDC license
  • SDC-New-5Y: 5-year, 1 node SDC license
  • SDC-Renew-1Y: 1-year, 1 node SDC renewal license
  • SDC-Add-4Q: 1-year, 1 node SDC add-on license

IEF-G9010 Series

Features and Benefits

  • Compact industrial IPS firewall for network segmentation
  • Industrial-grade Intrusion Prevention/Detection System (IPS/IDS)
  • Object-based policy enforcement rules for protocol filtering and traffic control
  • Easy network setup with Network Address Translation (NAT)
  • Full OT network visibility when used with Security Dashboard Console (SDC)
  • -40 to 75°C wide operating temperature range (-T models)

Certifications

Download Datasheet

View List

Description

Introduction
The Moxa IEF-G9010 Series industrial IPS firewall can segment and hide your network and protect mission-critical assets with industrial-grade IPS and granular access control. Meanwhile, the Security Dashboard Console (SDC) software, when used together with the IEF-G9010 Series, offers another layer of protection through centralized critical asset visibility, network analysis, and auto pattern updating.

Centrally Manage Network Security and Enhance OT Visibility
The IEF-G9010 Series sniffers network traffic and gives users full visibility of current assets and connections, which helps administrators and operators understand the real-time conditions of the OT system. When connected to Security Dashboard Console, a security management platform, the administrators or operators can effectively manage and monitor all the intrusion prevention systems from a single space. This provides an easier way to monitor the devices and execute policy, firmware, and pattern updates.

 

Dynamically Prevent Malicious Cyber Threat Activity Affecting Your System
The IEF-G9010 Series is designed to protect mission-critical assets at the OT network edge. It silently analyzes your network traffic in the background and offers granular behavior monitoring and control of cyber activities. These firewall devices provide both “Monitor” and “Protect” modes to facilitate different OT scenarios. Monitoring mode gives administrators full visibility of cyber threat activities. In the case of an emergency, administrators can easily switch to “Protect” mode to block and contain any malicious operations.

Industrial Protocol Whitelist Control for Mission-critical Assets
Using advanced Deep Packet Inspection (DPI) technology, the IEF-G9010 Series is equipped with industrial protocol awareness to offer granular command of control system traffic to critical controllers.

 

Virtual Patching and Intelligent Threat Protection
Frequent patching significantly reduces a system’s vulnerability to cyberthreats. However, patching continues to be a major challenge in OT environments because OT applications cannot afford interrupting operations by shutting down systems to apply patches. Virtual patching technology can help complement existing patch management processes by shielding known and unknown vulnerabilities. Virtual patching acts as an agentless emergency security tool that OT administrators and operators can use to address vulnerabilities on affected OT equipment quickly. The IEF-G9010 Series provides advanced protection against threats with up-to-date threat information and guards your systems against undisclosed and zero-day threats.

Flexible License Upgrades
The IEF-G9010 Series supports flexible, on-demand expansion through Moxa’s license platform. As your network grows, you can purchase additional licenses based on your needs. The IEF-G9010 Series supports the following licenses:

  • IEF-New-1Y: 1-year, 1 node IEF license
  • IEF-Renew-1Y: 1-year, 1 node IEF renewal license
  • IEF-Renew-2Y: 2-year, 1 node IEF renewal license
  • IEF-Renew-4Y: 4-year, 1 node IEF renewal license
  • SDC-New-1Y: 1-year, 1 node SDC license
  • SDC-New-3Y: 3-year, 1 node SDC license
  • SDC-New-5Y: 5-year, 1 node SDC license
  • SDC-Renew-1Y: 1-year, 1 node SDC renewal license
  • SDC-Add-4Q: 1-year, 1 node SDC add-on license

Specification

10/100/1000BaseT(X) Ports (RJ45 connector)8
1000BaseSFP Slots2
StandardsIEEE 802.3 for 10BaseT
IEEE 802.3ab for 1000BaseT(X)
IEEE 802.3u for 100BaseT(X)

LED IndicatorsPWR1, PWR2, STATE, MGMT, IPS/IDS, HA, FUNC, USB, 10/100 Mbps copper port, 1000 Mbps copper port, 1000 Mbps SFP port

FeaturesN-to-1, 1-to-1, Port forwarding, NAT loopback
Application Layer Gateway (ALG)SIP
H.323
FTP

Unicast RoutingStatic Route
ManagementSSH, Telnet, NTP Client, DHCP Server/Client, DNS
AuthenticationLocal Account Accessibility

TechnologyICMP Flood, IGMP Flood, UDP Flood, UDP Port Scan, TCP SYN Flood, TCP Port SYN Scan, TCP Port FIN Scan, TCP Port NULL Scan, TCP Port Xmas Scan

ThroughputMax. 360,000 packets per second (max. 1,000 Mbps)
IPS Throughput> 450 Mbps when the packet size is greater than 128 bytes
Latency< 500 microseconds
Concurrent Connections (TCP)60,000
Deep Packet InspectionModbus TCP
Modbus UDP
EtherNet/IP
PROFINET-DCP
CIP
Omron FINS
SLMP
Siemens S7 Comm.
Siemens S7 Comm. Plus
Additional protocols will be supported through future firmware updates.
Policy Enforcement Rules64 rules
ICS Protocol Filter Profiles32 profiles
Automatic Pattern Updates via SDCPro Models: Supported (1 year of updates included)
Pro-H Models: Supported (requires IEF pattern update license)
Manual Pattern UpdatesPro Models: Supported (1 year of updates included)
Pro-H Models: Supported (requires IEF pattern update license)

Supported InterfacesWeb GUI and Security Dashboard Console

Event TypeCybersecurity, Policy enforcement, Protocol Filter, Assets detection, System event
MediaLocal storage, Syslog server

Console PortUSB Type-C

ConnectionRemovable terminal block
Input Current1.265 A @ 12 VDC, 0.605 A @ 24 VDC, 0.308 A @ 48 VDC

HousingMetal
Dimensions64 x 105 x 135 mm (2.52 x 4.13 x 5.32 in)
Weight1100 g (2.43 lb)
InstallationDIN-rail mounting, Wall mounting (with optional kit)

Operating TemperatureStandard Models: -10 to 60°C (14 to 140°F)
Wide Temp. Models: -40 to 75°C (-40 to 167°F)
Storage Temperature-40 to 85°C (-40 to 185°F)
Ambient Relative Humidity5 to 95% (non-condensing)

EMCEN 55032/35, EN 61000-6-2/-6-4
EMICISPR 32, FCC Part 15B Class A
EMSIEC 61000-4-2 ESD: Contact: 4 kV; Air: 8 kV
IEC 61000-4-3 RS: 80 MHz to 1 GHz: 3 V/m
IEC 61000-4-4 EFT: Power: 1 kV; Signal: 0.5 kV
IEC 61000-4-5 Surge: Power: 0.5 kV; Signal: 1 kV
IEC 61000-4-6 CS: 3 V
IEC 61000-4-8 PFMF
SafetyUL 60950-1 Ed.2, UL 62368-1
RailwayEN 50121-4
Traffic ControlNEMA TS2
ShockIEC 60068-2-27
FreefallIEC 60068-2-32
VibrationIEC 60068-2-6

Time1,070,000 hrs
StandardsTelcordia (Bellcore), GB

Warranty Period5 years
DetailsSee www.moxa.com/warranty

Models