Frequently Asked Questions
– Please refer to the product description on HDN website for detailed specifications and functions.
– If you can’t find any relevant information through FAQ, then please contact HDN via on-line inquiry.
Do we need a software or solution for APT integration?
None of software is required for APT integration. Only HDN Security Switch and VIPM are required for APT blocking solution.
What is the best advantage of HDN to interwork with APT solution?
APT solution will detect and block any malicious traffic or code at the gateway. However, APT solution can’t isolate the compromised PC or user from the network. In addition, there’s no way of APT solution to detect the malware traffic raised from internal users. HDN along with APT solution will detect/block any single malware traffic and prevent the trouble in advance.
HDN security solution can block attack from Layer 2 to Layer 4 but it can’t detect Layer 7 attack such as malicious code. Interworking between HDN solution and APT is able to detect and block L7 Layer attack too.
APT integration will be true end-to-end security platform against hacker/attacker who is inside or outside. So HDN can make more robust network for the company.
Can HDN interwork with APT solution?
HDN solution can interwork with local brand and overseas brand for APT integration. Most of public institutions and IT association is applying HDN solution.
Please contact HDN sales for more information.
Email: firstname.lastname@example.org / Tel: +82-1661-6650
I can’t see the details of VIPM report. What should I do?
The Pack Install file has to be installed in advance to open the VIPM report.
Please install the file on System > Pack Install and try again.
How do I download the user instruction of HDN product or OS image?
Manual and OS image can download HTSC site. You must have the valid account before downloading. Please contact your account manager.
What is the default user ID and password of SG security switch?
The default user ID and password are ‘root’ and ‘root’ respectively.
V2.2.8 recommends you to change the password once you login with default ID and password. The password must have at least 9 digits having at least 1 upper/lower character, number and symbol.
SSH access is not available since V2.2.8. What should we do?
SSH access requires higher level of security.
SSH software must support SHA-2 and AES for the connection of SSH from V2.2.8.
Here’re recommended software – Teraterm v4.80, SecureCRT 7.3 and Bitvise SSH Client v6.08
SG Security switch can handle attack properly regardless of PC OS?
SG Security switch combines two different technologies -‘switching’ and ‘security’. So it will deliver user’s normal traffic without delay and detect/block any malicious traffic regardless of PC OS.
As result, SG Security switch provides security function based on the traffic. So the security function is not related with PC OS.
Does VIPM support IP Management for the users who connected to the other brand’s switch?
VIPM, the integrated management solution of HDN, provides IP management function for users connected to the security switch. But it can also support IP Management function for the device who connected to other brand switches in the limited configuration.
VIPM can deliver IP Management function to the users/devices who connected to other switch but at least 1 security switch is needed in this case.
Is VIPM mandatory when I purchase a security switch?
VIPM is another solution for IP and user device management. If you do not concern too much about device management, then you can use VNM.
But we recommend VIPM along with Security switch if you consider internal security threats. VIPM will give you additional advantages such as ‘batch configuration’, ‘IP Control and management’, and ‘Remote access control’ etc.
I would like to know more about VIPM function and features.
VIPM provides IPAM and 4 other additional features.
IPAM needs “PROBE” and “IP Management Server” but VIPM doesn’t need these additional equipment so we can save the client’s initial investment for IPAM.
- User/Device Authentication
NAC Client(Agent) and NAC server can be replaced by VIPM for the device authentication. There’re three different ways of IT manager to implement the device authentication – Log Server, Detect & Security, Access Control.
These features are more powerful compared to NAC solution.
- NMS function
VIPM allows administrator to find a variety of information at a glance such as collection and management of security events from the security switch, managing topology of the security switch and IP usage. Also it supports batch firmware update or batch configuration changes for all equipments.
- Bandwidth Management
This is one of IPAM features. VIPM can control user’s upload and download bandwidth with a few clicks.
This is different with switch’s rate limit feature. In a word, it is more powerful and enhanced bandwidth management features compared to the rate limit.
- Command Control
VIPM can assign a different privilege to the manager based on the company’s policy.
In addition, it allows IT manager to configure specific command lists which doesn’t want the normal users to execute after log in – shutdown and reload etc.
What are features of SG backbone switch?
SG backbone switch is designed for high availability, high performance to meet the large network’s requirement.
Depending on the model, maximum switching capacity of the system can be up to 2TB or 1TB. It supports max 384 ports for 1G interface and max 256 ports for 10G interface.
Also it supports virtual stacking that integrates 2 physical chassis into one logical chassis, which enables expansion of available capacity of the system. There is no restriction for using advanced features such as VRF/MPLS/Virtual Stacking.
Unlike other backbone switches, no other license is required for advanced features, so user can access all functions upon purchasing the product, which leads to reduced cost too.
Does SG backbone switch come with references in operation?
SG backbone switch has been supplied to multiple customers including public institutions, companies, schools and military sites where they have been stably operating. Please contact our sales representative for details.
(email@example.com / +82-1661-6650 )
Which kinds of models are there of the SG backbone switch?
There are two types of chassis such as ‘SG8800’ and ‘SG8700’ depending on the port density.
SG8800 and SG8700 have 8 and 4 slots respectively.
Can VNM manage other brand’s switch too?
You can add the other brand’s switch manually and then manage it like SG security switch.
You can monitor SNMP info and whether the general servers are on/off.
Can I purchase VNM separately?
VNM is free software that comes with HDN security switch.
What is ‘VNM’, the network management software for SG security switch?
SG security switch provides ‘integrated management software (VNM)’ that allows users to monitor and manage network status and conditions on real time basis by unifying all switches.
Even if business sites are dispersed to other areas including other countries, administrators can remotely identify status and work on responses thanks to the report containing log tables of detected/blocked traffic as well as attack information.
Detailed and accurate reports can be referred to for internal reporting.
How do I reflect any change of security policy or a new virus to the security switch?
HDN’s security switch does not implement security policies in the signature or pattern methods. It applies security policies in the behavioral method, which does not require separately updating patterns.
It analyzes traffic from L2 to L4 to learn the behavior of abnormal traffic and block it.
As attack patterns of such harmful traffic remain unchanged even if the virus is a new one, HDN’s security switch can block it without a hitch.
Does the SG security switch block attacks such as DoS, DDoS, ARP spoofing, flooding and scanning?
MDS engine, which is patented andmounted to Handreamnet’s SG security switch, is implemented with 100%self-running type, and it blocks attack in real time with separate security filter setup.
MDS engine analyzes security status by traffic volume/time and by detail host/TCP/UDP. When it detects abnormal status, it automatically generatesecurity filter and blocks it using L3, L4 information of invader and victim. In other words, when a certain attack like DDoS occurs, it ensures network safety even for the period without security patch, or when threshold based equipment did not detect attack.
ARP Spoofing, blocking internal information hacking
MDS engine detects and blocks ARP spoofing attack, internal confidential information hacking against all network environments which use static or dynamic IP. Especially, it fundamentally prevents illegal voice call wiretapping/monitoring by ARP spoofing attack in IPT/UC environment.
Block harmful traffic such as DoS/DDoS,Flooding, Scan
It detects/blocks the attack in ‘realtime’ against harmful traffic attack, and prevent the spread of worm or virus after user PC is infected by them to block secondary, third damages. Especially,MDS engine is smart enough to detect/block modified source IP when DoS/DDoS attack modify the IP at switch side.
What are the benefits of SG security switch products in the redundancy of the power supply?
With the exception of the part, almost all the products of SG security switch support the power redundancy.
Using the built-in power supply to power redundancy, it is capable of efficient space utilization.
The 24-port PoE switch provide up to 370W for PoE power from one power supply, so it can supply simultaneously 15.4W on the 24-port. Therefore, even if one power supply fails, it is possible to maintain a stable power supply for all ports 24 ports of as using the other power supply.
What are the features of the SG Security Switch?
Along with recent frequent damages by DDoS attack, user level security reinforcement against zombie PCs appearance get attention as social issue. SG Security Switch series protects network environment safer way by detecting/blocking the attack in real time at the nearest access level from user PC.
1st, Prevention trouble in advance by blocking harmful traffic of DDos in access level
2nd, Protection of confidential information and banking information of individual /company / public institution from ARP Spoofing attack
3rd, It is safe for ‘Zero-Day’ attack with elaborate behavior analysis technology
4th, Full wire speed with security function
5th, Integrated security management system” (VNM) from one screen
What is the MDS engine in SG Security Switch series?
MDS Engine, developed and patented by HDN’s sole technology, is composed of ASIC (Application Specific Integrated Circuit) and security software. Its main function is to detect & block harmful network traffic that causes lowering of total network performance and bandwidth.
MDS Engine is operated using the combination of unique network traffic distribution types, packet information, and traffic entropy, etc.
MDS Engine uses packet header information up to Layer 4, and it uses real time extracted data of Protocol Type, Source MAC, Source IP, Destination IP, Source Service Port, Destination Service Port from packet header.
Also, it detects harmful packet by analyzing time analysis, packet volume and packet continuity.
Important thing is that all above works are executed based on ASIC in real time at switch stage so that it can clear all attacks even when there is full bandwidth virus attack.
Does the SG Security Switch support PoE?
Models of the SG Security Switch that has “P” or “PoE” at the end of its name support PoE.
Also such models support 802.3af too, and some of them also support 802.3at too. Please contact our sales representative for detailed models. (firstname.lastname@example.org / +82-1661-6650)
What are the HDN’ SG Security Switch products?
HDN’s SG Security Switch that detects and blocks security threat elements in real time through its patented MDS (Multi Dimension Security) engine, is divided into many product categories according to supported number of ports, data capacity, and whether it includes PoE(Power over Ethernet) function for power supply through Ethernet cable.
– SG2000 Series
– SG2100 Series
– SG2200 Series
– SG2300 Series
Please refer to the product page on our website or the brochure for detailed functions and specifications.
How do I purchase an SG Security Switch from HDN?
Please contact us at email@example.com for inquiries about sales or products and we’ll provide prompt answers.
Does adding security features to a switch degrade its network functionality?
HDN’s SG security switch adopted hardware based security technologies which prevent performance deterioration of a switch or overload on the CPU that occurs when security is enabled with a software. With these functions, it also ensures QoS and ‘full wire speed’ on each port.
What are difference between normal switch and the SG Security Switch?
HDN’s SG Security Switch is the next generation switch with embedded various security functions.
It has security function that can detect and block security threats, and it is able to counteract efficiently for enhanced internal network security.
Especially, HDN’s SG Security Switch has patented embedded MDS engine to detect/block harmful traffic in realtime, and can fundamentally block DoS, DDoS, ARP spoofing, flooding attack. In addition, it provides integrated security control solution (VNM) that other switches do not provide, and monitors network load status or abnormal packets in their attack types, track the packet source, and can physically control each port of switches in remote operation. It also provides detail report about this and enhances business management and report efficiency.
What is the meaning of internal network security?
Internal network security means to implement security policy that can secure network communication reliability by blocking harmful traffic which causes performance deterioration and failure of network key equipment when internal network client is infected by virus, and that can prevent secondary infection spread to other client, or it means to implement separate security policies that fit to each department’s characteristics between different departments in internal network.
What is harmful traffic?
Harmful traffic is the service attack using worm, virus, window security weak point, etc. and it indicates all traffic that disable the network operation.
What kind of products does HDN supply?
As the IT environment diversifies security threats are on the rise as well. HDN develops and supplies network security solutions that ensure maximum availability of networks in the midst of such threats.
- Our SG Security Switch is a next generation product that implements safer network environment by detecting and blocking attacks in real time on the access level closest to the user’s PC. It is categorized into SG2000 / SG2100 / SG2200 /SG2300 series depending on data capacity or support for PoE.
- The SG backbone switch is a modular line concentration switch capable of handling Tbps class capacity. It also supports diverse I/O modules and can be configured to suit user’s specific environment.
- VIPM(Visual IP Manager) is a management system for managing an internal network and IPs, accessing the network or linking with other solutions.
* Please refer to the product description on the HDN website for detailed specifications and functions.