Manualsbrain.com
  1. Manuals
  2. Brands
  3. Endian
  4. Mercury 50 Firewall Router
  5. Specification Guide

Endian Mercury 50 Firewall Router Specification Guide

Download
Page of 2
Endian UTM Mercury 50
www.endian.com
Endian UTM Mercury 50 Features
Network Security
• Stateful packet firewall
• Application control (over 160 pro-
tocols including Facebook, Twitter, 
Skype, WhatsApp and more)
• Demilitarized zone (DMZ)
• Intrusion detection and prevention
• Multiple public IP addresses
• Multiple WAN
• Quality of service and bandwidth 
management
• SNMP support
• VoIP/SIP support
• SYN/ICMP flood protection
• VLAN support (IEEE 802.1Q 
trunking)
• DNS proxy/routing
• Anti-spyware
• Phishing protection
Web Security
• HTTP & FTP proxies
• HTTPS filtering
• Transparent proxy support
• URL blacklist
• Authentication: Local, RADIUS, 
LDAP, Active Directory
• NTLM single sign-on
• Group-based and user-based web 
content filter
• Time based access control with 
multiple time intervals
• Panda anti-virus
• Cyren URL filter
Mail Security
• SMTP & POP3 proxies
• Anti-spam with bayes, pattern 
and SPF
• Heuristics, black- and whitelists 
support
• Anti-virus
• Transparent proxy support
• 
NEW
 Email quarantine manage-
ment
• Spam auto-learning
• Transparent mail forwarding (BCC)
• Greylisting
• Cyren anti-spam
• Panda anti-virus
WAN Failover
• Automatic WAN uplink failover
• Monitoring of WAN uplinks
• Uplink types: Ethernet (static/
DHCP), PPPoE, PPTP
• Support for UMTS/GPRS/3G USB 
dongles
User Authentication
• Active Directory / NTLM
• LDAP
• RADIUS
• Local
Virtual Private Networking
IPsec
• Encryption: Null, 3DES, CAST-
128, AES 128/192/256-bit, 
• Blowfish 128/192/256-bit, 
Twofish 128/192/256-bit,
• Serpent 128/192/256-bit, 
Camellia 128/192/256-bit
• Hash algorithms: MD5, SHA1, 
SHA2 256/384/512-bit, AESXCBC
• Diffie Hellman modes: 1, 2, 5, 14, 
15, 16, 17, 18, 22, 23, 24
• Authentication: pre-shared key 
(PSK), RSA keys
• X.509 certificates
• IKEv1, IKEv2
• Dead Peer Detection (DPD)
• NAT traversal
• Compression
• Perfect Forward Secrecy (PFS)
• VPN Site-to-Site
• VPN Client-to-Site (roadwarrior)
• L2TP user authentication
• XAUTH user authentication
 
OpenVPN
• Encryption: DES, 3DES, AES 
128/192/256-bit, CAST5, 
Blowfish
• Authentication: pre-shared key, 
X.509 certificates
• Support for VPN over HTTP Proxy
• PPTP passthrough
• VPN client-to-site (roadwarrior)
• VPN client for Microsoft Windows, 
Mac OS X and Linux
• Possibility of multiple logins per user
• VPN failover
• Multiple server support
• Support for mobile devices (Andro-
id, iOS)
 
VPN Portal for Clientless Connections
• 
NEW
 Web-based access to internal 
resources
• 
NEW
 Configurable portal page
• 
NEW
 Support for multiple desti-
nations
• 
NEW
 Destination-based authenti-
cation
• 
NEW
 SSL offloading
 
User Management & Authentication
• Unified user management for 
OpenVPN, L2TP, XAUTH, VPN 
Portal
• Group management
• Integrated certificate authority
• External certificate authority 
support
• User password and certificate 
management
• Multiple authentication servers 
(local, LDAP, Active Directory)
BYOD / Hotspot
• Configurable captive portal
• Free access to allowed sites (wal-
led garden)
• Wired / wireless support
• Integrated RADIUS service
• Connection logging
• Per-user and global bandwidth 
limiting
• MAC-address based user accounts
• 
NEW
 Configurable multiple logins 
per user
• User accounts import/export via CSV
• User password recovery
• Automatic client network confi-
guration (support for DHCP and 
static IP)
• Fully integrated accounting
• Generic JSON API for external 
accounting and third party 
integration
• Instant WLAN ticket shop (Smart-
Connect)
• Single-click ticket generation 
(Quick ticket)
• SMS/e-mail user validation and 
ticketing
• Pre-/postpaid and free tickets
• Time-/trafficbased tickets
• Configurable ticket validity
• Terms of Service confirmation
• MAC address tracking for free 
hotspots
• Cyclic/recurring tickets (daily, 
weekly, monthly, yearly)
• Remember user after first authenti-
cation (SmartLogin)
• External authentication server 
(Local, LDAP, Active Directory, 
RADIUS)
Network Address Translation
• Destination NAT
• Incoming routed traffic
• One-to-one NAT
• Source NAT (SNAT)
• IPsec NAT traversal
Routing
• Static routes
• Source-based routing
• Destination-based routing
• Policy-based routing (based on 
interface, MAC address, protocol 
or port)
Bridging
• Firewall stealth mode
• OSI layer 2 firewall functionality
• Spanning tree
• Unlimited interfaces per bridge
High Availability
• Hot standby (active/passive)
• Node data/configuration synchro-
nization
Event Management
• 
NEW
 More Than 30 Individually 
Configurable Events
• Email Notifications
• 
NEW
 SMS Notifications
• 
NEW
 Powerful Python Scripting 
Engine
Logging and Reporting
• Reporting dashboard
• Detailed system, web, email, 
attack and virus reports
• Live network traffic monitoring 
(powered by ntopng)
• Live log viewer
• Detailed user-based web access 
report (not in 4i, Mini)
• Network/system/performance 
statistics
• Rule-based logging settings (fire-
wall rules)
• Syslog: local or remote
• OpenTSA trusted timestamping
Extra Services
• NTP (Network Time Protocol)
• DHCP server
• SNMP server
• Dynamic DNS
Management / GUI
• Centralized management through 
Endian Network (SSL)
• Easy Web-Based Administration 
(SSL)
• Multi-language web-interface (En-
glish, Italian, German, Japanese, 
Spanish, Portuguese, Chinese, 
Russian, Turkish)
• Secure remote SSH/SCP access 
• Serial console 
Updates and Backups
• Centralized updates through 
Endian Network
• Scheduled automatic backups
• Encrypted backups via email
• Instant recovery / Backup to USB 
stick (Endian Recovery Key)
© 2015 Endian SRL. Subject to change without notice. Endian and Endian UTM are trademarks of Endian SRL. All other trademarks 
and registered trademarks are the proper
ty of their respective owners.