Mailing List
Mailing List
Sign Up Here
Like, follow & share: visit DrayTek UK's Facebook page visit DrayTek UK's Twitter page visit DrayTek UK's Linkedin page
DrayTek
Vigor 3200 Series Router Firewall
  • 4 Gigabit WAN Ports selectable for
    either Load Balancing or Failover
  • Dedicated Ethernet DMZ Port
  • Gigabit LAN Port
  • Multiple private LAN subnets support
  • 802.1q VLAN Tagging on LAN and WAN
  • 3G (Cellular) USB Modem support
  • Configurable QoS (For traffic prioritisation)
  • QoS (Layer 2&3, 802.1p & TOS/DCSP)
  • VPN Dial-in/dial-out with VPN co-processor
  • 10 SSL VPN Tunnels for remote dial-in
  • Mobile One-Time Passwords (MOTP)
  • VPN Trunking (up two two channels)
  • Content Filtering (by keyword or data type)
  • Globalview Web Filtering (req. subscription)
  • User Authentication for Internet Access
  • Optional VigorCare Available

Overview

Vigor 3200 Quad-WAN Router Firewall

The Vigor 3200 series is a Quad-WAN port Firewall Router. The four Gigabit Ethernet WAN ports can each be connected to its own WAN (Internet) connection, for example an ADSL or VDSL modem, cable modem, satellite feed or any other Ethernet based connection. Each WAN connection can be configured for load balancing (splitting your traffic across multiple Internet connections) or for failover, switching to alternative connectivity when your primary connectivity fails. For ADSL2+ connectivity, you can add DrayTek's Vigor 120 ADSL modem.

Vigor 3200 in Rack mount
Vigor 3200 in optional Rack Mount (RM1)

The Vigor 3200 supports multiple private subnets on the LAN (e.g. 192.168.1.x, 192.168.2.x and so on). This is ideal for increasing security, segmenting or the inclusion of legacy LANs within your infrastructure. Each of these IP subnets can be distributed on separate tagged VLANs (see later) for further physical separation.

Robust & Comprehensive Firewall

The Vigor 3200's firewall includes protection against DoS (Denial of Service) attacks, IP-based attacks and access by unauthorised remote systems. Wireless, wired-Ethernet and VPN are also protected by various protection systems (see later). The DrayTek object-based firewall (new V3) allows vast flexibility, enabling you to create combinations of users, rules and restrictions to suit multi-departmental organisations.

Content control features of the firewall allow you to set restrictions on web site access, blocking download of certain file types, blocking specific web sites, blocking IM/P2P applications or other potentially harmful or wasteful content. Filtering using web site categorisations enable you to block whole categories of web sites (e.g. gambling, adult sites etc.), subject to subscription. Read more about DrayTek WCF here. Different users or user groups can have different firewall rules, web access and time schedules depending on the privileges you grant.

Flexible VLAN & Tagging & QoS

With all this connectivity, your WAN and LAN increases in complexity, but comprehensive VLAN and QoS facilities help you to make the most efficient use of your bandwidth on your LAN and WAN side. 802.1q VLAN tagging, compatible with any other 802.1q device (including DrayTek's own managed switches). By marking packets, they can be transmitted together and split further along in your network topology, as required, or merely ignored/dropped if they fall outside a device's VLAN settings.

802.1q VLAN is supported on both the WAN and LAN ports. In addition QoS (assured Quality of Service) lets you give specific traffic types or clients different levels of prority when it comes to transmitting data so that the most appropriate amount of total bandwidth is reserved for the most important data. QoS supports both 802.1p & TOS/DCSP methods and the VLAN groups can be combined with QoS rules for transmission onward to the Internet

VLAN groups can also be included specifically within firewall rules, including the ability to allow remote VPN links or teleworkers to have access only to the parts of the LAN that they should. VLAN setup can also be used together with the multiple LAN subnet facility which can be particularly useful for multi-tenanted applications or where strict departmental segmentation is required. If you are running publicly accessible services (e.g. a web server) on your network, VLAN segmentation with separate sub-netting can be used to provide a fully isolated connection.

VLAN Tagging

3G Access via the USB Port

The Vigor 3200's USB port provides an alternative connection method for Internet backup by connecting to a compatible USB modem (or cellphone) for access to the high speed 3G cellular networks from UK providers such as Vodafone, O2, 3, and Orange T-Mobile. The 3G access method can be used as your primary/only Internet connection, ideal for temporary locations, mobile applications or where broadband access is not available. For more information about 3G usage click here.

Vigor2820 with 3G Modem

Network Attached Storage (NAS)

Vigor 3200 NAS Facility

The Vigor 3200 Series's USB port can also be used to add storage memory to the unit in the form of a USB memory key (as shown right) or for higher capacity a USB hard drive (normally requires its own power). The Vigor 3200 then provides FTP access file uploading/downloading which can be from the local LAN or from anywhere on the Internet - ideal for a simple to deploy file depository. Access can be 'public' or using usernames and passwords, each of which can have their own directories and/or file access rights. As well as FTP, file sharing is available as a Windows 'network drive'. Using Internet Explorer, you can view the contents of the USB drive connected to the Vigor 3200 and read or write files.

The NAS facility uses any FAT16/FAT32 formatted device (includes USB memory sticks, USB hard drives etc.) and supports a transfer rate of 12Mb/s.