The EDR-G902 is a high-performance, industrial VPN server with a firewall/NAT all-in-one secure router. It is designed for Ethernet-based security applications on critical remote control or monitoring networks, and it provides an Electronic Security Perimeter for the protection of critical cyber assets including pumping stations, DCS, PLC systems on oil rigs, and water treatment systems. The EDR-G902 Series includes the following cybersecurity features:
The EDR-G902’s Quick Automation Profile function supports most common fieldbus protocols, including EtherCAT, EtherNet/IP, FOUNDATION Fieldbus, Modbus TCP, and PROFINET. Users can easily create a secure Ethernet Fieldbus network from a user-friendly web UI with a single click. In addition, Moxa’s PacketGuard technology (Deep Packet Inspection) helps to filter Modbus TCP commands at OSI layer 7. The wide-temperature range models that are available operate reliably in hazardous, -40 to 75°C environments.
Input/Output Interface | |
Alarm Contact Channels | 1 relay output with current carrying capacity of 1 A @ 24 VDC |
Buttons | Reset button |
Digital Input Channels | +13 to +30 V for state 1 -30 to +3 V for state 0 Max. input current: 8 mA |
Ethernet Interface | |
10/100/1000BaseT(X) Ports (RJ45 connector) | 1 |
Combo Ports (10/100/1000BaseT(X) or 100/1000BaseSFP+) | 1 |
Standards | IEEE 802.1Q for VLAN Tagging IEEE 802.3 for 10BaseT IEEE 802.3ab for 1000BaseT(X) IEEE 802.3u for 100BaseT(X) and 100BaseFX IEEE 802.3x for flow control IEEE 802.3z for 1000BaseSX/LX/LHX/ZX |
WAN Ports, RJ45/Fiber Combo Port | 1 |
LAN Ports, RJ45 port | 1 |
Ethernet Software Features | |
Management | Back Pressure Flow Control, DDNS, DHCP Server/Client, HTTP, LLDP, QoS/CoS/ToS, SMTP, SNMPv1/v2c/v3, Telnet, TFTP, QoS, PPPOE, Traffic prioritization |
Routing | Throughput: 25,000 packets per second (max. 300 Mbps) |
Routing Redundancy | VRRP |
Security | HTTPS/SSL, SSH, IPsec, OpenVPN (client and server), UDP and TCP Tunnel mode (routing) and TAP mode (bridge), L2TP (server), RADIUS |
Time Management | NTP Server/Client, SNTP |
Unicast Routing | OSPF, RIPV1/V2, Static Route |
Switch Properties | |
Max. No. of VLANs | 10 |
DoS and DDoS Protection | |
Technology | ARP-Flood, FIN Scan, ICMP-Death, NEWWithout-SYN Scan, NMAP-ID Scan, NMAP-Xmas Scan, Null Scan, SYN/FIN Scan, SYN/RST Scan, SYN- Flood, Xmas Scan |
Firewall | |
Deep Packet Inspection | Modbus TCP Modbus UDP |
Filter | DDoS, Ethernet protocols, ICMP, IP address, MAC address, Ports |
Quick Automation Profiles | DNP, EtherCAT, EtherNet/IP, FOUNDATION Fieldbus, FTP, HTTP, IEC 60870-104, IPsec, L2TP, LonWorks, Modbus TCP, PPTP, PROFINET, RADIUS, SSH, Telnet |
Stateful Inspection | Router firewall Transparent (bridge) firewall |
Throughput | Max. 25000 packets per second (max. 300 Mbps) |
IPsec VPN | |
Authentication | MD5 and SHA (SHA-256) RSA (key size: 1024-bit, 2048-bit) X.509 v3 certificate |
Concurrent VPN Tunnels | Max. 50 IPsec VPN tunnels |
Encryption | 3DES, AES-128, AES-192, AES-256, DES |
Protocols | IPsec, L2TP (server), PPTP (client) |
Throughput | Max. 60 Mbps (Conditions: AES-256, SHA-256) |
NAT | |
Features | 1-to-1, bidirectional 1-to-1, N-to-1, Port forwarding |
OpenVPN | |
Authentication | User password by MD5 and SHA1 |
Concurrent VPN Tunnels | Client Mode: max. 2 external servers Server Mode: max. 5 external clients |
Encryption | AES-128/192/256 CBC, Blowfish CBC, DES CBC, DES-EDE3 CBC |
Protocols | OpenVPN (client and server), UDP, and TCP, Tunnel mode (routing) and TAP mode (bridge) |
Real-Time Firewall / VPN Event Log | |
Event Type | Firewall event, System event, VPN event |
Media | Local storage, SNMP Trap, Syslog server |
Serial Interface | |
Console Port | RS-232 |
Power Parameters | |
Connection | Removable terminal block |
Input Voltage | 12/24/48 VDC |
Input Current | 0.45 A @ 24 VDC |
Overload Current Protection | Supported |
Reverse Polarity Protection | Supported |
Physical Characteristics | |
Housing | Metal |
IP Rating | IP30 |
Dimensions | 51 x 152 x 131.1 mm (2.01 x 5.98 x 5.16 in) |
Weight | 1250 g (2.82 lb) |
Installation | DIN-rail mounting, Wall mounting (with optional kit) |
Environmental Limits | |
Operating Temperature | EDR-G902: 0 to 60°C (32 to 140°F) EDR-G902-T: -40 to 75°C (-40 to 167°F) |
Storage Temperature (package included) | -40 to 85°C (-40 to 185°F) |
Ambient Relative Humidity | 5 to 95% (non-condensing) |
Standards and Certifications | |
Freefall | IEC 60068-2-32 |
EMC | EN 55032/24 |
EMI | CISPR 32, FCC Part 15B Class A |
EMS | IEC 61000-4-2 ESD: Contact: 6 kV; Air: 8 kV IEC 61000-4-3 RS: 80 MHz to 1 GHz: 10 V/m IEC 61000-4-4 EFT: Power: 4 kV; Signal: 4 kV IEC 61000-4-5 Surge: Power: 2 kV; Signal: 1 kV IEC 61000-4-6 CS: 10 V IEC 61000-4-8 PFMF |
Maritime | DNV-GL |
Safety | UL 508 |
Shock | IEC 60068-2-27 |
Vibration | IEC 60068-2-6 |
MTBF | |
Time | 981,233 hrs |
Standard | Telcordia (Bellcore), GB |
Warranty | |
Warranty Period | 5 years |
Details | See www.moxa.com/warranty |
Name | Type | Version | Release Date | |
Datasheet for EDR-G902 Series | Datasheet | V1.1 | 26 August 2019 |
10/100/1000BaseT(X) RJ45 Connector, 100/1000Base SFP Slot Combo WAN Port | 1 |
Firewall/NAT/VPN | ✓ |
Operating Temp. | 0 to 60°C |
10/100/1000BaseT(X) RJ45 Connector, 100/1000Base SFP Slot Combo WAN Port | 1 |
Firewall/NAT/VPN | ✓ |
Operating Temp. | -40 to 75°C |
Notice: Undefined variable: detail_ap in /opt/lampp/htdocs/productview.php on line 639