OPSWAT NetWall USG

Unidirectional Security Gateway for IT and OT

NetWall USG provides access to real-time OT data and enables secure data transfer to the OT environment without compromising the security and integrity of your critical production systems.

NetWall USG delivers:

Lossless, unidirectional data communications

  • Isolates OT/ICS assets against cyber attacks
  • Prevents malicious C&C communications from the OT network
  • Segments and protects networks, devices, historians, SCADA, DCS, HMIs, and PLCs

Seamless integration with OPSWAT MetaDefender Kiosk and Vault

  • Secure transfer of software updates and other files to the protected domain

Guaranteed Payload Delivery

No Data Loss

Delivery assurance mechanism assures reliable operation and conserves valuable bandwidth.

No Overrun

Anti-overrun mechanism eliminates data overflow, retransmissions, and sync issues.

No Return Path

A non-networked serial connection between the NetWall USG server pair enforces one-way data flows.

Scalable Industrial Cybersecurity

OPSWAT NetWall USG comprises two 1U server appliances with
a non-networked serial connection between them

Easy to Deploy

Preconfigured platform deploys quickly and seamlessly.

Highly Scalable

Choose 50Mbit, 100Mbit, 1Gbit or 10Gbit throughput — all software is selectable to meet current and future requirements.

Simple to Operate

Ready for use in minutes after one-time initial setup. No firewall audit or configuration needed.

Full Support for Industrial Protocols

Includes OPC DA, A&E, and UA, plus Modbus/TCP, file transfers, and TCP/UDP sockets.

Transparent to Users

Fast and high-fidelity data replication means there is no need to alter work procedures of corporate users.

Enables Regulatory Compliance

Supports compliance with Industrial Cybersecurity standards:

  • NERC CIP
  • NIST CSF, ICS, 800-82,
    800-53
  • IEC 62443
  • NRC 5.71
  • CFATS
  • ISO 27001, 27032, 27103
  • ANSSI
  • IIC SF
  • and more

Protects against Industrial attack techniques outlined by MITRE ATT&CK for ICS.

OT Infrastructure Monitoring and Data Replication


Secure File Transfer from IT to OT Assets

Insist on uncompromising security for OT/IT communications with OPSWAT NetWall™ USG.

SCHEDULE A DEMO


Focus on Maximum Security and Reliability

NetWall vs. Firewall, Router rules & VLANS

True unidirectional behavior, with no possibility of routable connections to protected zone.

Feature
OPSWAT NetWall
Networking Solutions
Routing configuration
Protocol break, completely removed from TCP/IP connection
Meets functional requirements of data diodes
Guaranteed delivery with non-repudiable data movement
No complex rule-building
Guaranteed prevention of malware propagation
No ARP, BGP, TCP/IP handshake

NetWall vs. Hardware Data Diodes

Reliable data transfers and replication without compromises.

Feature
OPSWAT NetWall
Data Diodes
Unidirectional Gateway
Complete protocol break
Supports all industrial protocols without vendor HW and SW
Guaranteed data delivery
Efficient data synchronization and replication
Improved throughput (reduced repeat transmissions)
Same hardware for 50 Mbit/s up to 10 Gbit/s throughput
Hardware dongle for admin access
Fast and easy to deploy
Cost effective with competitive subscription options

Learn Why Unidirectional Gateways
are the Next Evolution in Air-Gap Security

WHITE PAPER

Unidirectional
Security Gateways

Learn how a unidirectional security gateway will increase your organization’s security posture while reducing costs.

DOWNLOAD NOW
GUIDE

Unidirectional
Gateway Market Guide

Learn about the advantages of integrating a unidirectional gateway over data diodes and firewalls. Compare specs and more.

DOWNLOAD NOW

Need to support applications requiring a data response?

OPSWAT NetWall Bilateral Security Gateway (BSG) supports real-time replication and transfer of Historians and SQL databases without compromising the security and integrity of your critical production systems, and without requiring users and applications to change the way they work.

learn more

OPSWAT NetWall BSG

From Fast to Gigafast, Solutions for
Every Industrial Enterprise

NetWall USG is delivered as a preconfigured appliance, comprising of a pair of 19" 1U rack
mounted servers (2U total). Includes PCIe cards and data link cable, USB security
dongles and management console. Field upgradable by software licensing.

NetWall USG Standard

NetWall USG 10G

50 mbit to 1 gbit/sec

10 gbit/sec


talk to sales

talk to sales

NetWall USG Specifications

DOWNLOAD DATASHEET


Additional Included Interfaces

Power Supply

250W

Voltage

100-240VAC, auto ranging

Power Consumption

Typical ~ 150W

USB Interface

1 USB socket on each platform to connect provided USB crypto key


Tested Latency*

TCP Data Stream

0.6ms

UDP Data Stream

0.7ms

*Actual latency results may vary according to setup used, traffic characteristics and network topology.


Reliability

MTBF

> 50,000 hours

Form Factor

Weight

2 units @ 27lb / 12.2kg each

Mounting

Rack mounting kit supplied


Application and Protocol Suport

Industrial Protocols

  • Modbus
  • OPC (UA, DA, A&E)
  • MQTT-SN

IT Protocols

  • UDP, TCP, HTTP, HTTPS, SMTP
  • Video/Audio Stream Transfer

IT Monitoring Applications

  • Log Transfer, SNMP, SYSLOG
  • SIEM integration via SYSLOG

File/Folder Transfers

  • Folder, tree mirroring, remote folders (CIFS)
  • Windows File Share
  • Antivirus updates, patch (WSUS) updates

Don’t let cyber threats infiltrate your OT networks. Insist on uncompromising security for OT/IT communications with OPSWAT NetWall™ USG.


talk to us