Router & VPN Gateways
LANCOM 1900EF
Multi-WAN VPN gateway for connection to high-speed fiber-optic networks
and external modems—ideal for medium-sized VPN networking scenarios
The LANCOM 1900EF is the first choice for using a variety of Internet connections on a single device. This
extremely high-performance multi-WAN VPN gateway supports any external DSL or cable modems for the
greatest possible flexibility, for any Internet connections available at the site. It also supports high-speed fiber-optic
connections. With the award-winning LANCOM IPSec VPN, 25 (optionally 50) sites and mobile employees benefit
from Secure. Networks.
a
Multi-WAN VPN gateway for 1x SFP/TP, 1x WAN Ethernet
a
Load balancing for the parallel operation of several Internet access connections and maximization of the
available bandwidth
a
25 simultaneous IPSec VPN connections (50 optional)
a
Network virtualization with up to 64 networks on one device (ARF)
a
SD-WAN – automatic VPN and VLAN configuration via the LANCOM Management Cloud
a
Full-metal housing for mounting in a 19" rack and integrated 230V power supply
DATASHEET
LANCOM 1900EF
Multi-WAN
The LANCOM 1900EF is a multi-WAN router with 1x SFP/TP
combo port and 1x WAN Ethernet connection. It works with
high-speed fiber-optic connections and any external DSL or
cable modems to guarantee the greatest possible flexibility
in the choice of Internet connection at the site.
Load balancing
The LANCOM 1900EF allows the parallel operation of several
Internet access connections for perfect load balancing and
maximization of the available bandwidth. It is versatile
enough to operate with any kind of wireline connection—be
it Ethernet, fiber-optic or DSL/cable with an external modem.
So the LANCOM 1900EF offers maximum versatility as it
operates with any Internet connection.
Award-winning LANCOM VPN
The LANCOM 1900EF offers a high level of security. The
standard equipment of 25 IPSec VPN channels guarantees
strong encryption, secure connections for mobile employees,
and protection of corporate data. The LANCOM VPN Option
upgrades the VPN gateway to support 50 VPN channels. This
makes it the ideal device for medium-sized VPN networking
scenarios. By the way: Our VPN solutions are award winners!
In the techconsult Professional User Rating 2017, they
received the “Champion” award in the category “Virtual
Private Networks”.
Radical simplification of the configuration with
SD-WAN
In combination with the LANCOM Management Cloud, the
LANCOM 1900EF opens the way for automated
management. The software-defined WAN (SD-WAN) enables
the automatic setup of secure VPN connections between
sites, including network virtualization across the wide-area
network: A few mouse clicks is all it takes to enable the VPN
function and select the required VLANs for each site. The
laborious configuration of individual tunnel endpoints is no
longer required at all.
Premium full-metal housing
The LANCOM 1900EF comes in a high-quality full-metal
housing with integrated 230V power supply. Thanks to the
mounting system, it is easy to install in a 19" rack—with
connection ports redirected to the front, it is quick and easy
to work with.
Advanced Routing & Forwarding
The LANCOM 1900EF provides up to 64 securely isolated IP
contexts, each of which has its own separate routing. This
is an elegant way of operating IP applications with one
central router and keeping the different communication
channels securely separated from one another.
DATASHEET
LANCOM 1900EF
Layer 2 features
4.096 IDs based on IEEE 802.1q, dynamic assignment, Q-in-Q taggingVLAN
IGMP-SnoopingMulticast
Protocols
Layer 3 features
Firewall
Security
IPv4 services
IPv6 services
IPv6 protocols
WAN protocols
Security
High availability / redundancy
Ethernet over GRE-Tunnel (EoGRE), ARP-Lookup, LLDP, DHCP option 82, IPv6-Router-Advertisement-Snooping, DHCPv6-Snooping,
LDRA (Lightweight DHCPv6 Relay Agent), Spanning Tree, Rapid Spanning Tree, ARP, Proxy ARP, BOOTP, DHCP, LACP
Stateful inspection firewall including paket filtering, extended port forwarding, N:N IP address mapping, paket tagging, user-defined
rules and notifications
Traffic shaping, bandwidth reservation, DiffServ/TOS, packetsize control, layer-2-in-layer-3 taggingQuality of Service
Intrusion Prevention, IP spoofing, access control lists, Denial of Service protection, detailed settings for handling reassembly,
session-recovery, PING, stealth mode and AUTH port, URL blocker, password protection, programmable reset button
PAP, CHAP, MS-CHAP, and MS-CHAPv2PPP authentication mechanisms
VRRP (Virtual Router Redundancy Protocol), analog/GSM modem backupHigh availability / redundancy
IPv4-, IPv6-, NetBIOS/IP multiprotokoll router, IPv4/IPv6 dual stackRouter
ARF (Advanced Routing and Forwarding) up to separate processing of 64 contextsRouter virtualization
HTTP and HTTPS server for configuration by web interface, DNS client, DNS server, DNS relay, DNS proxy, dynamic DNS client, DHCP
client, DHCP relay and DHCP server including autodetection, NetBIOS/IP proxy, NTP client, SNTP server, policy-based routing,
Bonjour-Proxy, RADIUS
HTTP and HTTPS server for configuration by web interface, DHCPv6 client, DHCPv6 server, DHCPv6 relay, DNS client, DNS server,
dynamic DNS client, NTP client, SNTP server, Bonjour-Proxy, RADIUS
WEBconfig, HTTP, HTTPS, SSH, Telnet, DNS, TFTP, firewall, RAS dial-inIPv6 compatible LCOS applications
RIPv2, BGPv4, OSPFv2Dynamic routing protocols
DNS, HTTP, HTTPS, ICMP, NTP/SNTP, NetBIOS, PPPoE (server), RADIUS, RADSEC (secure RADIUS), RTP, SNMPv1,v2c,v3, TFTP, TACACS+IPv4 protocols
NDP, stateless address autoconfiguration (SLAAC), stateful address autoconfiguration (DHCPv6), router advertisements, ICMPv6,
DHCPv6, DNS, HTTP, HTTPS, PPPoE, RADIUS, SMTP, NTP, BGP, Syslog, SNMPv1,v2c,v3
VDSL, ADSL1, ADSL2 or ADSL2+ additional with external DSL modem at an ETH portWAN operating mode
PPPoE, Multi-PPPoE, ML-PPP, GRE, EoGRE, PPTP (PAC or PNS), L2TPv2 (LAC or LNS) and IPoE (using DHCP or no DHCP), RIP-1, RIP-2,
VLAN, IPv6 over PPP (IPv6 and IPv4/IPv6 dual stack session), IP(v6)oE (autokonfiguration, DHCPv6 or static)
6to4, 6in4, 6rd (static and over DHCP), Dual Stack Lite (IPv4-in-IPv6-Tunnel)Tunneling protocols (IPv4/IPv6)
Monitoring and blocking of login attempts and port scansIntrusion Prevention
Source IP address check on all interfaces: only IP addresses belonging to the defined IP networks are allowedIP spoofing
Filtering of IP or MAC addresses and preset protocols for configuration accessAccess control lists
Protection from fragmentation errors and SYN floodingDenial of Service protection
Detailed settings for handling reassembly, PING, stealth mode and AUTH portGeneral
Filtering of unwanted URLs based on DNS hitlists and wildcard filters. Extended functionality with Content Filter OptionURL blocker
Password-protected configuration access can be set for each interfacePassword protection
Alerts via e-mail, SNMP traps and SYSLOGAlerts
PAP, CHAP, MS-CHAP and MS-CHAPv2 as PPP authentication mechanismAuthentication mechanisms
Adjustable reset button for 'ignore', 'boot-only' and 'reset-or-boot'Adjustable reset button
VRRP (Virtual Router Redundancy Protocol) for backup in case of failure of a device or remote station.VRRP
For completely safe software upgrades thanks to two stored firmware versions, incl. test mode for firmware updatesFirmSafe
LCOS 10.12
Loading...