Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
AT-AR770S
Secure Gigabit VPN Router
AT-AR770S Performance VPN/Encryption
2 x WAN combo ports (SFP or 10/100/1000TX) The AT-AR770S provides superior performance DES, AES2 , 3DES2 encryption
4 x LAN 10/100/1000TX ports over other secure VPN routers in this market 5,000 configured IPsec VPN tunnels
2 x PIC slots space. While most secure routers have stateful (1000 active tunnels)
HW accelerated IPsec performance: Up to
1 x Asynchronous console / modem port firewalls with NAT, QoS, and IPsec VPN termination 1
500Mbps
capability, very few can perform all three functions
Flexible High Speed WAN Options Supports industry standard VPN clients
and still provide excellent performance with the Manageability
The AT-AR770S is the first Allied Telesis router to mixed packed sizes seen in real networks. The CLI management
offer gigabit connectivity for both the LAN switch AT-AR770S can support up to 1000 concurrent SNMPv3
and WAN Ethernet ports. Eth0 and Eth1 are VPN tunnels or up to 500 Mbps AES or 3DES
combo ports. This means that they can make use throughput. Manageability
of an SFP instead of the standard copper RJ-45 CLI management
connection. This level of performance enables secure site-to- SNMPv3
site VPNs over multiple WAN interfaces while still
Both the SFP and RJ-45 physical ports are managed firewalling the local network across multiple LAN Extensive routing support
by the same interface IC, providing a single port WAN load balancer
ports. Software QoS
with two connectivity options. When using an
SFP port on the AT-AR770S, the corresponding RIPv1 and v2
RJ-45 port is disabled. However, when the SFP OSPFv1 and v2
transceiver is removed, the RJ-45 port becomes GRE
IPX
operational again.
VRRP
Secure Modular Routing Solution IPv6 optional
The AT-AR770S has been designed to meet the BGP-4 optional
needs of small to medium enterprises/businesses
Key Features RIPng optional
or branch office businesses. The AT-AR770S offers Hardware
Multicast routing protocols
2 x SFP or 10/100/1000TX WAN interfaces
significant advances in processing performance, PIM-DM
2 x Port Interface Card (PIC) slots
Quality of Service (QoS), routing, remote PIM-SM
4 x 10/100/1000TX LAN ports
connectivity and security. DVMRP
1 x Asynchronous console / modem port
IGMPv2
Extensive VPN Capability DMZ port: configurable on any of the WAN/LAN
IGMP Snooping
ports
The AT-AR770S provides extensive IPSec-based IPv6 Multicast optional
128MB RAM
VPN capability, allowing the interconnection of PIM6 optional
32MB Flash
offices, remote tele-workers, and other users who MLD optional
RoHS compliant
require secure access to a corporate network.
Support for traditional network protocols
The integrated hardware acceleration, standard on Security
X.25
the AT-AR770S, maximizes encryption throughput IP Filtering
Frame Relay
and removes the need to purchase a hardware Stateful Inspection Firewall
802.1x
upgrade package. The AT-AR770S is compatible
NAT-T
with industry standard IPSec VPN clients. 1
Authentication: RADIUS, TACACS, MD5, PAP, CHAP Performance figure estimates from pre-production units.
2
AES & 3DES disabled in AR770S-51
Quality of Service (QoS) Standards and Protocols RFC 1552 The PPP Internetworking Packet Exchange Control
Extensive Traffic classifiers of L2 to L5 traffic to AlliedWare Software Release 2.9.2 Protocol (IPXCP)
allow appropriate queuing of traffic RFC 1570 PPP LCP Extensions
IP: IP source / destination address, TOS & DiffServ BGP-4 RFC 1582 RIP on Demand Circuits
Ethernet: MAC source / destination, 802.1q RFC 1771 Border Gateway Protocol 4 RFC 1598 PPP in X.25
TCP / UDP: Port numbers RFC 1966 BGP Route Reflection RFC 1618 PPP over ISDN
VoIP: RTP source & destination RFC 1997 BGP Communities Attribute RFC 1661 The Point-to-Point Protocol (PPP)
Queuing: RFC 1998 Multi-home Routing RFC 1662 PPP in HDLC-like Framing
Low latency queuing (LLQ) RFC 2385 Protection of BGP Sessions via the RFC 1701 GRE
Class-based weighted fair queuing (CBWFQ TCP MD5 Signature Option RFC 1702 GRE over IPv4
Deficit Round Robin (DRR) RFC 2439 BGP Route Flap Damping RFC 1762 The PPP DECnet Phase IV Control Protocol (DNCP)
Supported tunnel interfaces: PPP, L2TP, IPsec, GRE RFC 2858 Multiprotocol Extensions for BGP-4 RFC 1812 Router Requirements
RSVP RFC 2918 Route Refresh Capability for BGP-4 RFC 1877 PPP Internet Protocol Control Protocol Extensions for
RFC 3065 Autonomous System Confederations for BGP Name Server Addresses
Management RFC 3392 Capabilities Advertisement with BGP-4 RFC 1918 IP Addressing
CLI RFC 1962 The PPP Compression Control Protocol (CCP)
SNMPv3 Encryption
RFC 1968 The PPP Encryption Control Protocol (ECP)
RFC 1321 MD5 RFC 1974 PPP Stac LZS Compression Protocol
IPv6 RFC 2104 HMAC RFC 1978 PPP Predictor Compression Protocol
RIPng RFC 2451 The ESP CBC-Mode Cipher Algorithms RFC 1989 PPP Link Quality Monitoring
IPv6 RFC 2460 FIPS 180 SHA-1 RFC 1990 The PPP Multilink Protocol (MP)
Neighbour discovery RFC 2461 FIPS 186 RSA RFC 1994 PPP Challenge Handshake Authentication Protocol
Stateless address auto configuration RFC 2462 FIPS 197 AES1 (CHAP)
ICMPv6 RFC 2463 FIPS 46-3 DES RFC 2125 The PPP Bandwidth Allocation Protocol (BAP) / The
Transmission of IPv6 packets RFC 2464 FIPS 46-3 3DES1 PPP Bandwidth Allocation Control Protocol (BACP)
Connection of IPv6 domains via IPv4 clouds RFC FIPS 140-2 Compliant RFC 2131 DHCP
3056 RFC 2390 Inverse Address Resolution Protocol
Ethernet
DHCPv6 RFC 2516 A Method for Transmitting PPP Over Ethernet
RFC 894 Ethernet II Encapsulation
Country of Origin IEEE 802.1D MAC Bridges (PPPoE)
China IEEE 802.1G Remote MAC Bridging RFC 2822 Internet Message Format
IEEE 802.1Q Virtual LANs RFC 2878 PPP Bridging Control Protocol (BCP)
IEEE 802.2 Logical Link Control RFC 2661 L2TP
IEEE 802.3ac VLAN TAG RFC 3046 DHCP Relay Agent Information Option
IEEE 802.3u 100BASE-T and 802.3u 1000 Base-T RFC 3232 Assigned Numbers
IEEE 802.3x Full Duplex Operation RFC 3993 Subscriber-ID Sub-option for DHCP Relay Agent
Option
General Routing "IPX Router Specification", v1.2, Novell, Inc., Part Number 107-
RFC 768 UDP 000029-001
RFC 791 IP ISO 10589, ISO 10589 Technical Corrigendums 1, 2, 3, ISO
RFC 792 ICMP Intermediate System-to-Intermediate System
RFC 793 TCP "ISO 8473, relevant parts of ISO 8348(X.213), ISO 8343/
RFC 826 ARP Add2, ISO 8648, ISO 8648, ISO TR 9577 Open System
RFC 903 Reverse ARP Interconnection"
RFC 925 Multi-LAN ARP ISO 9542 End System to Intermediate System Protocol
RFC 950 Subnetting, ICMP Encapsulation of IPsec Packets
RFC 1027 Proxy ARP http://www.iana.org/assignments/bootp-dhcp-parameters BootP
RFC 1035 DNS and DHCP parameters
RFC 1055 SLIP
RFC 1122 Internet Host Requirements General Routing and Firewall
RFC 1142 OSI IS-IS Intra-domain Routing Protocol RFC 3022 Traditional NAT
RFC 1144 Van Jacobson's Compression draft-ietf-ipsec-nat-t-ike-08.txt Negotiation of NAT-Traversal in
RFC 1256 ICMP Router Discovery Messages the IKE
RFC 1288 Finger draft-ietf-ipsec-udp-encaps-08.txt UDP Encapsulation of
RFC 1332 The PPP Internet Protocol Control Protocol (IPCP) IPsec Packets
RFC 1334 PPP Authentication Protocols IP Multicasting
RFC 1377 The PPP OSI Network Layer Control Protocol RFC 1075 DVMRP
(OSINLCP) RFC 1112 Host Extensions
RFC 1378 The PPP AppleTalk Control Protocol (ATCP) RFC 1812 Router Requirements
RFC 1518 CIDR RFC 2236 IGMPv2
RFC 1519 CIDR RFC 2362 PIM-SM
RFC 1542 BootP RFC 2715 Interoperability Rules for Multicast Routing Protocols
ISDN Japan NTT I.430-a Leased Line Basic Rate User-Network SFP Options4
ANSI T1.231-1997 Digital Hierarchy - Layer 1 In-Service Digital Interface Layer 1-Specification AT-SPFX/2
Transmission Performance Monitoring Standardization New Zealand Telecom TNA 134 Telecom ISDN User-Network 100BASE-FX 1310 nm fiber up to 2 km
ANSI T1.403-1995 Telecommunications - Network-to-Customer Interface: Layer 3: PART B Basic Call Control Procedures
Installation - DS1 Metallic Interface Q.920 (1988) Digital subscriber Signalling System No.1 (DSS1) - AT-SPFX/15
ANSI T1.408-1990 ISDN Primary Rate - Customer Installation ISDN user-network interface data link layer - General aspects
100BASE-FX 1310 nm fiber up to 15 km
Metallic Interfaces, Layer 1 Specification Q.921 (1988) ISDN user-network interface - Data link
AT&T TR 54016-1989 Requirements for Interfacing Digital layer specification AT-SPFX/40
Terminal Equipment to Services Employing the Extended Q.930 (1988) Digital subscriber Signalling System No. 1 (DSS 1) 100BASE-FX 1310 nm fiber up to 40km
Superframe Format - ISDN user-network interface layer 3 - General aspects
Austel TS 013.1:1990 General Requirements for Customer Q.931 (1988) Digital subscriber Signalling System No. 1 (DSS AT-SPTX
Equipment Connected to ISDN Basic Rate Access - Vol. I: 1) - ISDN user-network interface layer 3 specification for basic 1000 BASE-T 100 m Copper
Customer Equipment Access Interface Specifications call control
Bellcore SR-3887 1997 National ISDN Primary Rate Interface Rockwell Bt8370 Fully Intergrated T1/E1 Framer and Line AT-SPSX
ETS 300 012:1992 Integrated Services Digital Network (ISDN); Interface data sheet 1000BASE-SX
Basic user-network interface; Layer 1 specification and test Technical Reference of Frame Relay Interface, Ver. 1, November GbE multi-mode 850 nm fiber
principles 1993, Nippon Telegraph and Telephone Corporation. Ver. 1,
ETS 300 102-1:1990 Integrated Services Digital Network (ISDN) November 1993, Nippon Telegraph and Telephone Corporation. AT-SPLX10
;User-network interface layer 3;Specifications for basic call ACA TS 013.2:1990 General Requirements for Customer 1000BASE-LX
control Equipment Connected to ISDN Basic Rate Access, Vol 2: GbE single-mode 1310 nm fiber up to 10 km
ETS 300 102-2:1990 Integrated Services Digital Network (ISDN); Conformance Testing Specifications
User-network interface layer 3; Specifications for basic call ACA TS 014.1:1990 General Requirements for Customer AT-SPLX40
control; Specification Description Language (SDL) diagrams Equipment Connected to ISDN Primary Rate Access, Vol 1: 1000BASE-LX
ETS 300 125:1991 Integrated Services Digital Network Customer Access Interface Specifications GbE single-mode 1310 nm fiber up to 40 km
(ISDN); User-network interface data link layer specification; ACA TS 014.2:1990 General Requirements for Customer
Application of CCITT Recommendations Q.920/I.440 and Equipment Connected to ISDN Primary Rate Access, Vol 2: AT-SPZX80
Q.921/I.441 Conformance Testing Specifications 1000BASE-ZX
ETS 300 153:1992 Integrated Services Digital Network GbE single-mode 1550 nm fiber up to 80 km
(ISDN);Attachment requirements for terminal equipment to Frame Relay
connect to an ISDN using ISDN basic access (Candidate NET 3 ANSI T1S1 Frame relay Feature License
Part 1) RFC 1490, 2427 Multiprotocol Interconnect over Frame Relay
AT-AR700 ADVL3UPGRD
ETS 300 156:1992 Integrated Services Digital Network (ISDN);
Ordering Information AR700 series advanced Layer 3 upgrade includes:
Attachment requirements for terminal equipment to connect to IPv6
an ISDN using ISDN primary rate access (Candidate NET 5) AT-AR770S BGP-4
ETS 300 011:1992 Integrated Services Digital Network (ISDN); Includes power cords for US, UK, Australia & Server Load Balancing
Primary rate user-network interface; Layer 1 specification and Europe.
test principles
G.706 (1988) Frame Alignment and CRC Procedures Relating to AT-AR770S-51 AT-AES/3DES-00
Basic Frame Structures Defined in G.704 No AES & 3DES encryption enabled AES/3DES encryption activation key
G.794 (1988) Characteristics of 24-channel
transmultiplexing equipments Port Interface Card (PIC) Options
German Monopol (BAPT 221) Type Approval Specification for
Radio Equipment for Tagging and Identification AT-AR020
I.120 (1988) Integrated services digital networks (ISDNs) Single software configurable E1/T1 interface that
I.121 (1988) Broadband aspects of ISDN supports channelized/unchannelized Primary Rate
I.411 (1988) ISDN user-network interface reference ISDN/Frame Relay
configurations
I.430 (1988) Basic user-network interface - Layer 1 AT-AR021S (V3)3
specification (AT-AR021S V1 card is not supported on the
I.431 (1988) Primary rate user-network interface - Physical AT-AR770S)
layer specification Single basic rate ISDN S/T interface 3
AR021S (V3) requires AlliedWare Operating System
ITU-T G.703 Physical/electrical characteristics of hierarchical
version 2.9.1-13 or later
digital interfaces
AT-AR023
ITU-T G.704 Synchronous frame structures used at 1544, 6312, 4
Single synchronous port up to 2Mbps to an Please check with your sales representative for ROHS
2048, 8488 and 44736 kbit/s hierarchical levels
external CSU/DSU (AT-V.35-DTE-00 or AT-X.21- compliance on SFP modules.
ITU-T G.706 Frame Alignment and CRC Procedures Relating to
DTE-00 cable required)
Basic Frame Structures Defined in G.704
ITU-T Q.922 ISDN data link layer specification for frame mode
bearer services AT-AR024
ITU-T G.703 (1972) Physical/electrical characteristics of Four Asynchronous RS-232 interfaces to 115Kbps
hierarchical digital interfaces
RoHS
Allied Telesis RoHS-compliant product conforms
to the European Union Restriction of the Use
of Certain Hazardous Substances (RoHS) in
Electrical and Electronic equipment. Allied Telesis
ensures RoHS conformance by requiring supplier
Declarations of Conformity, monitoring incoming
materials, and maintaining manufacturing process
controls.
North America Headquarters | 19800 North Creek Parkway | Suite 100 | Bothell | WA 98011 | USA | T: +1 800 424 4284 | F: +1 425 481 3895
Asia-Pacific Headquarters | 11 Tai Seng Link | Singapore | 534182 | T: +65 6383 3832 | F: +65 6383 3830
EMEA & CSA Operations | Incheonweg 7 | 1437 EK Rozenburg | The Netherlands | T: +31 20 7950020 | F: +31 20 7950021
alliedtelesis.com
2013 Allied Telesis Inc. All rights reserved. Information in this document is subject to change without notice. All company names, logos, and product designs that are trademarks or registered trademarks are the property of their respective owners. 617-000087 Rev N
Page 6