D-Link DFL-700 SMB Firewall DFL-700/E User Manual
Product codes
DFL-700/E
DFL-700
Key Features
Network Security Firewall for SME
1 10/100BASE-TX LAN port, 1 10/100BASE-TX DMZ port
NAT Application Level Gateway (ALG) support
1 10/100BASE-TX WAN port for cable/DSL modem connection
DHCP server/client and parental control
PPTP, L2TP, IPSec VPN tunneling support
PPPoE support for dial-up DSL to save ISP charge
PPTP, L2TP, IPSec VPN pass throughput support
Content filtering, URL/domain blocking and key word check
Aggressive/Main client mode for VPN
Virtual server support
Stateful Packet Inspection (SPI) firewall protection
Web-based configuration management & real-time monitoring
Denial of Service (DoS) and DDoS attack blocking
SYSlog protocol support
Network Address Translation (NAT)/Network Address Port
Translation (NAPT)
Translation (NAPT)
Firewall
D-Link's DFL-700 is an easy-to deploy firewall designed for small and medium enterprises (SMEs), workgroups, and departments that require
superior price/performance. This device is a powerful security solution that provides integrated Network Address Translation (NAT), Firewall,
Content Filtering, IDS protection, bandwidth management as well as Virtual Private Network (VPN) support. The DFL-700 includes a WAN link
support, a trusted LAN port, and a DMZ port to support local e-mail and web servers, and is compact enough to fit anywhere. With an intuitive
web-based interface and simple process, the DFL-700 provides users with easy installation.
superior price/performance. This device is a powerful security solution that provides integrated Network Address Translation (NAT), Firewall,
Content Filtering, IDS protection, bandwidth management as well as Virtual Private Network (VPN) support. The DFL-700 includes a WAN link
support, a trusted LAN port, and a DMZ port to support local e-mail and web servers, and is compact enough to fit anywhere. With an intuitive
web-based interface and simple process, the DFL-700 provides users with easy installation.
Multi-Function Security Application
Advanced Features for Complete Protection
Full Firewall Functions
High Performance IPSec VPN Support
1 DMZ Port, 1 Trusted LAN Port
Access Control List (ACL)
Easy Setup
The DFL-700 features functions typically found from enterprise-
DFL-700 provides advanced features including Content filtering, IDS
grade firewalls, such as Stateful Packet Inspection (SPI), detect/drop
(Intrusion Detection System), Bandwidth Management for complete
intruding packets, embedded VPN, a physical DMZ port, multiple-
solution protection to users' Network. Content Filtering lets you
mapped IPs and multiple virtual servers. The DFL-700 connects your
filter/protect your network with customized policy. Bandwidth
office easily to a broadband modem such as cable or DSL through an
management guarantees bandwidth for different services.
external 10/100BASE-TX WAN port.
The DFL-700 protects your network from attacks. It can be
configured to log all attacks, locate the source IP address generating
configured to log all attacks, locate the source IP address generating
The DFL-700 provides complete firewall functions, including the
the attack, send the attack report notification to a specified e-mail
NAT mode, PAT (Port Address Translation) mode, Transparent mode,
address and establish policies to restrict incoming traffic from
Routing mode and SPI. It also supports customized policy and virtual
specific IP address sources. Network administrators can set e-mail
server configuration. Administrators can easily manage the network
addresses to receive alert message from the DFL-700. When
through graphical statistics in a logging/monitoring system.
intrusion events are detected, the DFL-700 will log them and send
alert e-mail, and the administrator can check the log file on the router
to find out what happened.
alert e-mail, and the administrator can check the log file on the router
to find out what happened.
The DFL-700 is equipped with embedded VPN support, allowing
you to create multiple IPSec tunnels to remote sites/clients. IPSec on
the DFL-700 uses strong encryption with DES, 3DES, AES and
Automated Key Management via IKE/ISAKMP. A VPN tunnel can
you to create multiple IPSec tunnels to remote sites/clients. IPSec on
the DFL-700 uses strong encryption with DES, 3DES, AES and
Automated Key Management via IKE/ISAKMP. A VPN tunnel can
The DFL-700 includes an auto-sensing 10/100BASE-TX LAN ports
be activated from the DFL-700 to a remote site or a mobile user for
that connect to your internal office network, and a physical DMZ
secured traffic flow using triple DES encryption. This offers users a
(Demilitarized Zone) port that can connect your Web, mail or FTP
way to confidentially access and transfer sensitive information.
servers for access from the Internet. The DMZ function is useful
Multiple VPN tunnels may be easily created without the need to
because it alleviates congested server traffic from entering the
setup IKE (Internet Key Exchange) policies.
Internal network, while protecting your other office computers from
Internet attacks by hiding them behind the firewall.
Internet attacks by hiding them behind the firewall.
URL blocking is part of basic features offered by DFL-700. This
function provides the benefit of limiting access to undesirable
function provides the benefit of limiting access to undesirable
The DFL-700 provides an easy-to-use interface that is password-
Internet sites. Logs of real-time Internet traffic, alarms of Internet
protected but still easily accessible through any Internet browser.
attacks, and notice of web-browsing activities are logged and can be
Incoming and outgoing policies for firewall traffic, as well as
reported through e-mail notification.
configuration can be easily set up through this web-based interface.
DFL-700 supports Radius authentication so you can make use of
your existing Radius Server and user information.
your existing Radius Server and user information.