Finally, a firewall that is not only easy to use, but extremely secure and versatile!

CIPAFilter is not simply a filtering appliance, but an advanced router/firewall and VPN device, that is replacing even the most secure firewall implementations, such as a Cisco PIX, Linux firewalls or Sonic Walls.

The beauty of CIPAFilter is that it not only integrates many other features on one device, but is very capable of providing a highly secure network environment. The web-page interface has been designed to keep firewall rules and other configuration as simple as possible.

• P2P Blocking
• Chat Blocking
• External Proxy Server Blocking
• Complete NAT, SNAT & PAT Support
• DMZ & Advanced Firewall Configuration
• Fully Stateful Firewall
• Complete Routing with Static Routing Table (dynamic routing supported)
• VPN and IPSec Support (RSA & x.509 tunnels)
• Protect your network from unwanted traffic and intrusions

CIPAFilter will:

• Provide you with an effective, extremely secure, and easy-to-use firewall
• Provide you with complete support for configuration and customization of the firewall
• Allow VPN connections between buildings, or to a stand-alone computer
• Give you the ability to control traffic flow and prevent unwanted traffic, more easily

CIPAFilter's VPN connections are very easy to configure. CIPAFilter uses Freeswan, a popular open-source IPSec product. It uses a 2048-bit encrypted key to create the connections, and provides 128-bit encryption of the traffic.

NAT & Port Forwarding

Network Address Translation (NAT) is a simple yet effective firewall setup. It consists of one or more "Public" IP addresses on the external interface, and "Private" (hidden) IP addresses on the internal. The Internet traffic cannot see or directly communicate with the internal addresses unless traffic as originated internally.

The unlimited port forwarding allows several "holes" through the NAT firewall, allowing traffic from specific sources to access internal resources. Examples would be a web-server, remote access software or FTP

.

Layer7 Packet Filtering

Typically, most firewalls block traffic by TCP or UDP port and source and/or destination IP address. There are many standard defined ports which include many popular protocols in use. It is relatively easy to block standard traffic, because of common ports numbers.

There are over 65,000 different ports that applications may use. Many software applications make use of random ports, which makes it difficult to block. CIPAFilter's new firewall inspects the Application Layer of the packets, locating common information that each unique program uses to communicate. Thanks to this technology, it is now possible to block many forms of chatting and use of external proxy servers.

CIPAFilter support multiple Ethernet and DMZ interfaces. The firewall and port forwarding rules have comment sections and are quickly configured and instantly activated.

Because CIPAFilter comes with unlimited support, our support technicians will help you configure the firewall, to ensure maximum security on the network.

DHCP Server

CIPAFilter includes a DHCP server that also supports static mappings/reservations by MAC address. The leases appear on the web interface. This is useful for obtaining client names on the filter notification e-mails, or simply to enable DHCP on the network.