c2000 350px
360° View ProductflyerManual

Router-Features C2000

C2000 Router with IPSec and OpenVPN, modularly expandable

  • 2 Ethernet Ports, expandable
  • 8 freely configuriable LEDs
  • Fully implemented IPSec and OpenVPN
  • Intelligent Firewall
  • Perl Interpreter
  • Intelligent Routing
  • Connection Manager

 

C2000 Router Functions and Characteristics

The C2000 VPN router is based on a modularily structured hardware and software architechture, where the basic version includes the full scope of the router, VPN and firewall functionality.

Interface expansions and customer-specific hardware can be realised using three expansion slots.

Upgrading with 3G, 4G/LTE and WiFi are realized internally without using the expansion slots.

The fully implemented IPSec Standard as well as OpenVPN guarantee the highest security during transmission of data. The authentication can be made either using deposited certificates or pre-shared keys. All modern encryption algorithms such as 3DES or AES with up to 256 bit key length are supported. The VPN router can be easily integrated into a company network via the permanently established VPN Tunnel (configurable) and the network (also mobile) can also be accessed via private IP addressing. In this case DynDNS is not necessary, but it can be established at any time if required.

Terminal equipment is connected to the VPN router using WLAN (optional) or Ethernet.

To render you network secure from attacks, a configurable high security firewall with intrusion protection is available. This can be supplemented by the possiblity of depositing your own scripts and rules. The so-called Perl Scripting interpreter offers the possibility of your own individual software installation on the VPN router.

The transmission of video data must be highlighted. A special buffer management as well as an optional extended memory are used to transfer the data-stream quickly and smoothly. An FTP server in the router enables the storeage and retrieval of data.

The optionally available 3G or 4G / Lte radio connection is carried out via a multiband modem LTE/HSPA/UMTS/EDGE/GPRS/(optional GSM). Dual SIM support and the intelligent backup management of the VPN router guarantee almost 100% reliability.

Using LTE (Long Term Evolution) a much larger bandwidth of the VPN router is available.

The integrated GPS (with optional 3G or Lte modem) enable the transmission of the exact geographical position of the VPN router.

For configuration a web interface with a user-friendly interface is provided. Hence, the C2000 router can be locally or remotely configured. Experts can also configure the VPN router using a CLI (command line interface), and it can even be accessed and send commands via text merssages (e.g. Reset).

 

 

 

All Features at a Glance

Hardware Specification Basic System

  • 500Mhz Prozessor (without fan)
  • 256 MB RAM Working Memory
  • 4 GB System Memory (Compact Flash, Dual Boot)
  • 2 10/100 BaseT Ethernet Port (Wake on LAN, Power over Ethernet)
  • 1 Power LED
  • 10 LEDs for displaying status information (freely configurable)
  • 2 USB 2.0 Ports (z.B. Backup, UPS administration via USB to Serial Adapter)
  • 1 RS232 Interface Port (for moniroing and error diagnostic)
  • Dual SIM (use of two SIM cards for backup scenarios)
  • Real-time clock

General Router Features

  • Network Time Protocol (NTP) Client/Relay/Server
  • Dynamic Host Control Protocol (DHCP) Client/Relay/Server
  • Dynamic DNS (DynDNS) and secure DNS support
  • Real-time Statistic and Log Function, Log Rotation, Syslog Client/Server
  • FTP (Client/Server/Relay, e.g. for Webcams to buffer pictures)
  • IP CAM Server and Transcoder (for video applications)

Routing Protocols

  • IP Protocols such as e.g. IPv4, IPv6, TCP, UDP, ARP, RARP, ICMP
  • Routing Information Protocol (RIPv1 and RIPv2) and RIPng
  • Open Shortest Path First (OSPF)
  • Border Gateway Protocol (BGP, BGPv4+)
  • Intermediate system to intermediate system (IS-IS)
  • Multicast support
  • Spanning Tree Protocol (STP)
  • Transparent Bridging
  • Network Address Translation (NAT) Network Address Port Translation (NAPT)
  • Point-to-Point Protocol over ATM (PPoA) (with DSL models)
  • PPP over Ethernet (PPPoE)
  • PPPoE and PPPoA bridging (with DSL models)
  • Generic Routing Encapsulation (GRE)
  • Web Cache Communication Protocol (WCCP)
  • Multi Channel Connection (MCC) 

Safety Features

  • Stateful Inspection Firewall (extendable using Scripts)
  • Bridging Firewall
  • Demilitarized Zone (DMZ)
  • IPSec (Client/Server)
  • OpenVPN routed and bridged (Client/Server)
  • Easy VPN Client/Server (XAuth)
  • IPSec Passthrough
  • Point-to-Point Tunnelling Protocol (PPTP), passthrough
  • Layer 2 Tunnelling Protocol (L2TP), passthrough
  • SSL/TLS Tunnel (client/server)
  • EAP Client/Server
  • Radius Client/Server
  • Authentication: PAP, CHAP und PSK
  • Digital certificates Public-Key-Infrastructure (PKI)
  • MD5, SHA1, SHA2 256/512 Hash Algorithms (others on request)
  • Diffie Hellman Group 1, 2, 5 for key exchange 
  • Encryption algorithms, DES, 3DES, AES 128/192/256, Blowfish, Twofish 128/256, Serpent 128/256 (others on request)
  • Simple Certificate Enrolment Protocol (SCEP)
  • HTTP Proxy Inspection Engine
  • 802.1x
  • Secure HTTP (HTTPS), SSH, SCP and FTP Authentication Proxies
  • Up to 30 VPN Tunnels 

QoS Features

  • Hierarchical, sequencial planning for DiffServ classes (Traffic Shaping)
  • Dynamic bandwidth management with DiffServ classes
  • DiffServ Policing:
    • Class Based Queue (CBQ)
    • Token Bucket Flow (TBF)
    • First In First Out (P/BFIFO)
    • Stochastic Fair Queuing (SFQ)
    • Diff-Serv Marker (DS_MARK)
    • Hierarchical Token Bucket (HTB)
    • Priority-based queuing (PTIO)
    • Class-Based Marking (CBM)

High Availability Features

  • TDT Connection-Manager with complex backup possibilities
    • Multi-homed and multi-level backup-target strategies
    • Optimising of switching times
    • Prevention of unnecessary switching
    • Optimising of switch-back
    • Prevention of switching instability (chattering)
    • Mobile telephone provider switching using dual SIM
    • Dynamic connection parameters (Default Route, DNS, Gateway, etc.)
    • Configurable connection monitoring (Ping, LCP-Echo, etc.)
    • Emergency Reboot/Reset when e.g. 3G+/4G cannot be established
  • Virtual Router Redundancy Protocol (Multigroup VRRP)
  • Out-of-band management (with optional ISDN/3G+/4G modem, SMS)

Management Features

  • Access management using Access Control Lists (ACL)
  • Firmware Updates via Web interface or command line
  • Differential Firmware Update (reduced size for updates via WAN)
  • Simple Network Management Protocol (SNMPv1/2/3)
  • Management via Command Line Interface (CLI), SSH, SCP and HTTPS
  • SMS configuration and status request (only with mobile telephone models)
  • Event handler, extendable with scripts (perl, bash)

LTE/HSPA Module (Optional)

  • LTE 100 Mbps (DL) 50 Mbps (UL) at 20MHz, MIMO (Cat 3)
  • HSDPA 42.2 Mbps (DL, Cat 20) MIMO / HSUPA 5.76 Mbps (UL, Cat 6)
  • UMTS 384 Kbps (DL/UL)
  • EDGE 236.8 Kbps (DL) / 118.4 Kbps (UL) multi-slot class 12
  • GPRS 80 Kbps (DL) / 40 Kbps (UL) multi-slot class 10
  • CSD (Circuit-switched data bearers) 64 kbps for GSM and UMTS
  • LTE Frequency bands: 800/900/1800/2100/2600MHz
  • UMTS/HSPA+ Frequency bands: 900/2100MHz
  • GSM/GPRS/EDGE Frequency bands: 850/900/1800/1900MHz
  • SMS transmission
  • GPS position determination

HSPA Module (Optional) 

  • HSDPA 14.4Mbps (DL, Cat 10) / HSUPA 5.76Mbps (UL, Cat 6)
  • UMTS 384Kbps (DL/UL)
  • EDGE 236.8Kbps (DL) / 236.8Kbps (UL) multi-slot class 10 / 12
  • GPRS 85.6Kbps (DL) / 85.6Kbps (UL) multi-slot class 10 / 12
  • CSD (Circuit-switched data bearers) GSM Data rate 14.4Kbps
  • UMTS/HSPDA/HSUPA Frequency bands: 800-850/900/1900/2100MHz
  • GSM/GPRS/EDGE Frequency bands: 850/900/1800/1900MHz
  • SMS transmission
  • GPS position determination

WiFi Module (Optional)

  • 2.4 and 5 GHz IEEE 802.11 a/b/g/n standard (up to 300 Mbp/s)
  • Access Point Modus / Ad-Hoc Modus / Client Modus
  • Safety Features: WiFi Protected Access Support (WPA, WPA2, WPA-ENT), WEP, AES, TKIP, MAC Address Filter
  • Quality of Service (QoS) support (802.11e draft)
  • Dynamic Frequency Selection / Transmit Power Control (DFS/TPC)

Technical Data

  • Dimensions: 199x98x210mm (WxHxD, without aerials)
  • Weight: ca. 2200g
  • Operating temperature: -5°C (optional -25°C) - +60°C
  • Humidity: 85% (non condensing)
  • Power supply: 100-240V AC
  • Power consumption: 230V / 700mA
  • Robust metal housing
  • 1x/2x 3G+/4G aerial connection: SMA socket (optional)
  • 2x WLAN aerial connections: RP-SMA socket (optional)
  • 1x GPS aerial connection: SMA socket (optional)
  • CE conformity and vibration tested

Bezugsquellen / Supply Sources

In general, all products can be obtained directly from TDT.

Our expert regional partners offer additional local installation and support. In any case, please feel free to contact us.

TDT Sales ContactExpert Partners