Click Fraud Cyberoam CR2500iNG UTM Firewall
Shopping Cart 0 items - 0.00
Become a Reseller
Fanvil VoIP Phones

Cyberoam CR2500iNG UTM Firewall

0 Based on 0 ratings.
Key Features

Pricing Volume Price Discounts

No volume pricing discounts available

Shipping Shipping Options

Shipping costs are calculated based on weight and destination during checkout. For next day delivery our cut off is 15:30.

Support Product install/setup

Want help installing this product? Add premium support to your order.

Downloads Documents & Manuals

Available Options:
  • Product Details
  • Reviews
  • White Papers / Case Studies
Please Note: This product has been discontinued. Please see the Sophos XG Firewall XG650 Appliance.

Cyberoam CR2500iNG UTM Firewall

The Cyberoam CR2500iNG UTM Firewall offers Next-Generation Firewall (NGFW) capabilities with high performance. The Cyberoam CR2500iNG UTM Firewall offers inline application inspection and control, HTTPS inspection, Intrusion Prevention System, malware protection, secure remote access via VPN (IPSec and SSL) and granular bandwidth controls. The inline Layer 8 Identity-based controls with on-appliance reporting offer complete control & real-time visibility over user and network activities.


  • 14x10/100/1000 Ethernet ports
  • 4x1GbE SFP(Mini GBIC) Ports
  • 2 x 10GbE SFP(Mini GBIC) Ports
  • 36000 Mbps Firewall Throughput
  • 4000 Mbps UTM Throughput

Based on best-in-class hardware along with software to match, the NG series enables unprecedented throughput speeds for future-ready security in large enterprise networks. The Cyberoam NG series for large enterprises offer assured Security, Connectivity and Productivity. Its Extensible Security Architecture(ESA) supports feature enhancements that can be developed rapidly and deployed with minimum efforts, offering future-ready security to organisations.

Cyberoam CR2500iNG UTM Firewall - Technical Specifications


  • Copper GBE Ports 14
    1GbE SFP(Mini GBIC) Ports 4
    10GbE SFP(Mini GBIC) Ports 2
    Configurable Internal/DMZ/WAN Ports Yes
    Console Ports (RJ45) 1
    USB Ports 2
    Hardware Bypass Segments 2
    RAID 1 (with two disk) Yes

System Performance*

  • Firewall Throughput (UDP) (Mbps) 40,000
  • Firewall Throughput (TCP) (Mbps) 28,000
  • New sessions/second 200,000
  • Concurrent sessions 3,500,000
  • IPSec VPN Throughput (Mbps) 8,000
  • No. of IPSecTunnels 3,000
  • SSLVPN Throughput (Mbps) 1,000
  • WAF Protected Throughput (Mbps) 1,000
  • Anti-Virus Throughput (Mbps) 6,000
  • IPS Throughput (Mbps) 6,000
  • UTM throughput (Mbps) 4,500

Stateful Inspection Firewall

  • Layer 8 (User - Identity) Firewall
  • Multiple Security Zones
  • Access Control Criteria (ACC) - User - Identity, Source & Destination Zone, MAC and IPaddress, Service
  • UTM policies - IPS, Web Filtering, Application Filtering, Anti-Virus, Anti-Spam and Bandwidth Management
  • Layer 7 (Application) Control & Visibility
  • Access Scheduling
  • Policy based Source & Destination NAT
  • H.323, SIP NATTraversal
  • 802.1q VLAN Support
  • DoS & DDoS Attack prevention
  • MAC & IP-MAC filtering and Spoof prevention

Gateway Anti-Virus & Anti-Spyware

  • Virus, Worm, Trojan: Detection & Removal
  • Spyware, Malware, Phishing protection
  • Automatic virus signature database update
  • Scans HTTP, HTTPS, FTP, SMTP, POP3, IMAP, IM, VPN Tunnels
  • Customize individual user scanning
  • Self Service Quarantine area
  • Scan and deliver by file size
  • Block by file types
  • Add disclaimer/signature

Intrusion Prevention System

  • Signatures: Default (4500+), Custom
  • IPS Policies: Multiple, Custom
  • User-based policy creation
  • Automatic real-time updates from CRProtect networks
  • Protocol Anomaly Detection
  • DDoS attack prevention

Web Filtering

  • Inbuilt Web Category Database
  • URL, keyword, File type block
  • Categories: Default(82+), Custom
  • Protocols supported: HTTP, HTTPS
  • Block Malware, Phishing, Pharming URLs
  • Schedule-based access control
  • Custom block messages per category
  • Block Java Applets, Cookies, Active X
  • CIPA Compliant
  • Data leakage control via HTTP, HTTPS upload

Application Filtering

  • Inbuilt Application Category Database
  • 11+ Application Categories: e.g. Gaming, IM, P2P,
  • Proxy
  • Schedule-based access control
  • Block
  • P2Papplications e.g. Skype
  • Anonymous proxies e.g. UItra surf
  • “Phone home” activities
  • Keylogger
  • Layer 7 (Applications) & Layer 8 (User - Identity) Visibility

Web Application Firewall

  • Positive Protection model
  • Unique "Intuitive Website Flow Detector" technology
  • Protection against SQL Injections, Cross-site Scripting
    (XSS), Session Hijacking, URL Tampering, Cookie
  • Poisoning
  • Support for HTTP 0.9/1.0/1.1
  • Extensive Logging & Reporting

Virtual Private Network

  • IPSec, L2TP, PPTP
  • Encryption - 3DES, DES, AES, Twofish, Blowfish,
  • Hash Algorithms - MD5, SHA-1
  • Authentication - Preshared key, Digital certificates
  • IPSec NATTraversal
  • Dead peer detection and PFS support
  • Diffie Hellman Groups - 1,2,5,14,15,16
  • External Certificate Authority support
  • Export Road Warrior connection configuration
  • Domain name support for tunnel end points
  • VPN connection redundancy
  • Overlapping Network support
  • Hub & Spoke VPN support


  • TCP& UDPTunneling
  • Authentication - Active Directory, LDAP, RADIUS,
  • Multi-layered Client Authentication - Certificate,
  • User & Group policy enforcement
  • Network access - Split and Full tunneling
  • Browser-based (Portal) Access - Clientless access
  • Lightweight SSLVPN Tunneling Client
  • Granular access control to all the Enterprise Network resources
  • Administrative controls - Session timeout, Dead Peer
    Detection, Portal customization
  • TCP- based Application Access - HTTP, HTTPS, RDP, TELNET, SSH

Instant Messaging (IM) Management

  • Yahoo and Windows Live Messenger
  • Virus Scanning for IM traffic
  • Allow/Block Login
  • Allow/Block File Transfer
  • Allow/Block Webcam
  • Allow/Block one-to-one/group chat
  • Content-based blocking
  • IM activities Log
  • Archive files transferred
  • Custom Alerts

Wireless WAN

  • USB port 3G/4G and Wimax Support
  • Primary WAN link
  • WAN Backup link

Bandwidth Management

  • Application and User Identity based Bandwidth Management
  • Guaranteed & Burstable bandwidth policy
  • Application & User Identity based Traffic Discovery
  • Multi WAN bandwidth reporting
  • Category-based bandwidth restriction

User Identity and Group Based Controls

  • Access time restriction
  • Time and Data Quota restriction
  • Schedule based Committed and Burstable Bandwidth
  • Schedule based P2Pand IM Controls


  • Failover - Automated Failover/Failback, Multi-WAN failover, 3GModem failover
  • WRR based load balancing
  • Policy routing based on Application and User
  • IP Address Assignment - Static, PPPoE, L2TP, PPTP & DDNS Client, Proxy ARP, DHCPserver, DHCPrelay
  • Support for HTTPProxy
  • Dynamic Routing: RIP v1& v2, OSPF, BGP, Multicast Forwarding
  • Parent Proxy support with FQDN
  • “IPv6 Ready” Gold Logo

High Availability

  • Active-Active
  • Active-Passive with State Synchronization
  • Stateful failover
  • Alerts on appliance status change

Administration & System Management

  • Web-based configuration wizard
  • Role-based access control
  • Firmware Upgrades via Web UI
  • Web 2.0 compliant UI (HTTPS)
  • UI Color Styler
  • Command Line Interface (Serial, SSH, Telnet)
  • SNMP(v1, v2c)
  • Multi-lingual support: Chinese, Hindi, French, Korean
  • Cyberoam Central Console (Optional)
  • NTPSupport

User Authentication

  • Internal database
  • Active Directory Integration
  • Automatic Windows Single Sign On
  • External LDAP/RADIUS database integration
  • Thin Client support - Microsoft Windows Server 2003
  • Terminal Services and Citrix XenApp - Novell
  • RSASecurID support
  • External Authentication - Users and Administrators
  • User/MAC Binding
  • Multiple Authentication servers


  • Graphical real-time and historical monitoring
  • Email notification of reports, gateway status, viruses and attacks
  • Syslog support
  • Log Viewer - Firewall, IPS, Web filter, Anti Virus, Anti Spam, Authentication, System and Admin Events

On-Appliance Cyberoam-iView Reporting

  • Integrated Web-based Reporting tool -
  • 1000+ drilldown reports
  • 45+ Compliance Reports
  • Historical and Real-time reports
  • Multiple Dashboards
  • Username, Host, Email ID specific Monitoring
  • Reports - Security, Virus, Spam, Traffic, Policy violations,
    VPN, Search Engine keywords
  • Multi-format reports - tabular, graphical
  • Exportable formats - PDF, Excel
  • Automated Report Scheduling

IPSec VPN Client**

  • Inter-operability with major IPSec VPN Gateways
  • Supported platforms: Windows 2000, WinXP 32/64-bit,
    Windows 2003 32-bit, Windows 2008 32/64-bit, Windows
    Vista 32/64-bit, Windows 7 RC1 32/64-bit
  • Import Connection configuration


  • ICSAFirewall - Corporate
  • Checkmark UTM Level 5 Certification
  • VPNC - Basic and AES interoperability
  • “IPv6 Ready” Gold Logo

Hardware Specifications

  • Memory 6GB
  • HDD (HOT Swappable) 250GB or higher


  • CE / FCC / UL


  • H x W x D (inches) 3.54 x 17.52 x 23.23
  • H x W x D (cms) 9 x 44.5 x 59
  • Weight 19kg, 41.8lbs


  • Input Voltage - 90-260 VAC
  • Consumption - 258 W
  • Total Heat Dissipation (BTU) - 881
  • Redundant Power Supply - Yes


  • Operating Temperature - 0 to 40 °C
  • Storage Temperature -25 to 75 °C
  • Relative Humidity (Non condensing) - 10 to 90%

Specifications Tab

There are currently no product reviews.
  • PDF
This product has been discontinued.

Be Notified

If you would like to be notified when the"Cyberoam CR2500iNG UTM Firewall" is re-stocked, please enter your contact details and we will notify you instantly.

Your Email Address
Your Name

  I want to receive the VoIPon newsletter for information about
products, promotions, and wireless news. See our Privacy Notice.

Please Note: Confirmation of your "notify me" stock request will be emailed to the provided email address.