| Logo ID | 02-C-002245 |
|---|---|
| Approved Date | 2021/07/26 |
| Application ID | CN-2-C-20210709-000852 |
| Applied Date | 2021/07/09 |
| Usage Agreement | Agreed |
| OEM Licensor's Logo ID | - |
| Note | - |
| Target Information | Application Phase | Phase-2 |
|---|---|---|
| Test Category | Core Protocols | |
| Vendor Name | Hangzhou Zhongdian Anke Modern Technology Co., Ltd. | |
| Country | CN | |
| Product Name (original) | Lanxum industrial firewall xfw | |
| Product Version (original) | V4.1 | |
| Product Description (original) | Lanxum Industrial firewall is an industrial control network security protection product developed and launched by Lanxum Company for Industrial control network, including traditional firewall, industrial control protocol packet depth analysis, industrial control protocol command control and other functions. The industrial firewall supports flexible security zone isolation and rich security policy control functions to realize the core network isolation and access control of the firewall. The system also adopts the high-speed matching algorithm of security policy rules to ensure the search and matching speed of security policy rules without affecting the performance and improve the overall performance of the system. | |
| Product Name | Industrial control firewall | |
| Product Version | V4.1 | |
| Product Classification | Host | |
| Product Description | Industrial control firewall is an industrial control network security protection product developed and launched for industrial security control networks and industrial security applications, which covers traditional firewalls, in-depth analysis of industrial control protocol data packets, and industrial control protocol command control. The industrial control firewall adopts a multi-core parallel system to encapsulate the underlying data for the upper-layer application, providing high-speed forwarding and security awareness capabilities of the underlying data; on the basis of the streaming session, the state detection firewall function is realized, and the TCP traffic state information is intelligently detected and controlled. The application layer detects and opens dynamic ports; it can identify more than 4000+ Internet application characteristic attack behaviors, supports the control of characteristic behaviors based on rule base, and achieves fine-grained content identification control, auditing and security protection, and can prevent common SYN Flood, ICMP Flood , UDP Flood, TearDrop, Land, super large ICMP and other abnormal packet attacks. | |
| Vendor's Note | - | |
| Test Information | Test Specification | 5.1.0 |
| Interoperability Test Scneario | 5.0.3 | |
| Information for Series of Product |
|
| Interoperable Devices |
Router | |||
|---|---|---|---|---|
| 1 | Vendor Name | FreeBSD Project | ||
| Device Name | FreeBSD | |||
| Version | 9.1-release | |||
| 2 | Vendor Name | OpenBSD Project | ||
| Device Name | OpenBSD | |||
| Version | 5.3 | |||
| Host | ||||
| 1 | Vendor Name | Microsoft | ||
| Device Name | Windows 10 | |||
| Version | 1903 | |||
| 2 | Vendor Name | Ubuntu Project | ||
| Device Name | Ubuntu | |||
| Version | 18.04.5 | |||
| Target supporting Advanced Functions: |
- Transmitting Echo Requests(Passive Node)
- Configuring Multicast Packet Size - Multicast Routing(Router Only) o RFC 4191 Type C Host(Host Only) o Duplicate Overlapping Fragments - Beyond Scope of Source Address(Router Only) - Tracking Connections for ICMPv6 - Router Advertisement DNS (Host Only) |
|||