EDR-G903

Industrial Gigabit Firewall/NAT secure router with 2 WAN/1 DMZ ports, 25 VPN Tunnels, 0 to 60°C operating temperature

The EDR-G903 series is a high performance, industrial VPN server with firewall/NAT all-in-one secure router. It is designed for Ethernet security applications in sensitive remote control or monitoring networks, and provides an Electronic Security Perimeter for the protection of critical cyber assets  such as pumping stations, DCS, PLC systems on oil rigs, and water treatment systems. The EDR-G903/G902 series includes the following cyber security features:

  • Virtual Private Networking (VPN): VPNs are designed to provide users with secure communication links when accessing a private network from the public Internet. Uses IPSec (IP Security) server or client mode for encryption and authentication of all IP packets at the network layer to ensure confidentiality and sender authentication.
  • Firewall: Controls network traffic between different trust zones. Network Address Translation (NAT), which shields the internal LAN from unauthorized activity from outside hosts, is included.

The EDR-G903 Quick Automation Profile function supports most common Fieldbus protocols, including EtherCAT, EtherNet/IP, FOUNDATION Fieldbus, Modbus/TCP, and PROFINET. Users can easily create a secure Ethernet Fieldbus network from a user-friendly web UI with a single click operation. In addition, Moxa’s PacketGuard technology (Deep Packet Inspection) helps filtering Modbus TCP commands at OSI layer 7. The wide temperature models are available that operate reliably in hazardous, -40 to 75°C environments.

Feature :

Features and Benefits

  • Firewall/NAT/VPN/Router all-in-one
  • Secure remote access tunnel with VPN
  • Protect critical assets with stateful firewall
  • Inspect industrial protocol with PacketGuard technology
  • Easy network setup with address translation (NAT)
  • Dual WAN redundant interfaces through public networks
  • Support for VLANs in different interfaces
  • -40 to 75°C operating temperature range (T model)
  • ISA99 / IEC 62443 / NERC CIP compliance

Diagram :

Diagram EDR-G903-1

Diagram EDR-G903-2

Specification :

• Technology
Standards IEEE 802.3 for 10BaseT
IEEE 802.3u for 100BaseT(X) and 100BaseFX
IEEE 802.3ab for 1000BaseT(X)
IEEE 802.3z for 1000BaseX
Protocols SNMPv1/v2c/v3, DHCP Server/Client, TFTP, NTP, HTTP, HTTPS, Telnet, SSH, Syslog, SMTP, LLDP, PPPoE, PPTP, Dynamic DNS, QoS (Quality of Service)
Routing Static routing, RIP V1/V2, VRRP
VLAN 5 VLANs per interfaces (VLAN ID: 1 to 4094)
Flow Control IEEE 802.3x flow control, back pressure flow control
• Interface
WAN/WAN1 1 RJ45/Fiber combo port
WAN2/DMZ 1 RJ45/Fiber combo port
LAN RJ45/SFP combo port
RJ45 Ports 10/100/1000BaseT(X) auto negotiation speed
Fiber Ports 100/1000BaseSFP slot
LED Indicators PWR1, PWR2, FAULT, 10/100/1000M
Alarm Contact One relay output with current carrying capacity of 1 A @ 24 VDC
Digital Inputs 1 input
• +13 to +30 V for state “1”
• -30 to +3 V for state “0”
• Max. input current: 8 mA
• Security Function
Firewall • Stateful inspection
• Filter: IP and MAC address, ports, ICMP, DDoS, Ethernet Protocols
• Bridge mode firewall
• Deep Packet Inspection on Modbus TCP
Quick Automation Profile EtherCAT, EtherNet/IP, FOUNDATION Fieldbus, LonWorks, Modbus/TCP, PROFINET, IEC 60870-104, DNP, FTP, SSH, Telnet, HTTP, IPSec, L2TP, PPTP, RADIUS
NAT N-to-1, 1-to-1, and port forwarding
VPN IPSec (client/server), L2TP (server), PPTP (client), Max. 50 tunnels (EDR-G902) or Max. 100 tunnels (EDR-G903)
Encryption DES, 3DES, AES-128/192/256
Authentication Pre-shared key (PSK), X.509v3 certificates, MD5, SHA
Data Throughput 300 Mbps (40000 fps)
VPN Throughput (AES-256, SHA-256) 150 Mbps
• Power Requirements
Input Voltage 12/24/48 VDC (9.6 to 60 VDC), redundant dual inputs
Input Current 0.53 A @ 24 V
Overload Current Protection Present
Connection Removable terminal block
Reverse Polarity Protection Present
• Physical Characteristics
Housing Metal, IP 30 protection
Dimensions 51 x 152 x 131.1 mm (2.01 x 5.98 x 5.16 in)
Weight 1250 g
Installation DIN-Rail mounting, wall mounting (with optional kit)
• Environmental Limits
Operating Temperature Standard Models: 0 to 60°C (32 to 140°F)
Wide Temp. Models: -40 to 75°C (-40 to 167°F)
Storage Temperature -40 to 85°C (-40 to 185°F)
Ambient Relative Humidity 5 to 95 % (non-condensing)
• Standards and Certifications
Safety UL 508
EMI FCC Part 15 Subpart B Class A, EN 55022 Class A
EMS EN 61000-4-2 (ESD) Level 3, EN 61000-4-3 (RS) Level 3,
EN 61000-4-4 (EFT) Level 3, EN 61000-4-5 (Surge) Level 3,
EN 61000-4-6 (CS) Level 3
Marine DNV (EDR-G902)
Shock IEC 60068-2-27
Freefall IEC 60068-2-32
Vibration IEC 60068-2-6
Note Please check Moxa’s website for the most up-to-date certification status.
• MTBF (mean time between failures)
Time 530,000 hrs
Database Telcordia (Bellcore), GB
• Warranty
Warranty Period 5 years
Details See www.moxa.com/warranty