Security Appliances | Product Information

UTM Firewalls
AR3050S and AR4050S
Allied Telesis Unified Threat Management (UTM) Firewalls are the
ideal integrated security platform for modern businesses. Powerful
firewall and threat protection is combined with routing and switching,
to provide an innovative high performance solution.

The AR3050S and AR4050S are the ideal choice for high Secure Remote Virtual Private Networks (VPN)
speed Enterprise gateway applications. The UTM Firewalls Allied Telesis UTM Firewalls support IPSec site-to-site VPN
feature an integrated “best of breed” security platform to connectivity to connect one or more branch offices to a
provide up-to-the-minute threat protection, and advanced central office, providing employees company wide with
networking capabilities, meeting the needs of Enterprise consistent access to the corporate network.
networks.
Remote workers can utilize an SSL VPN connection to
High performance encrypt their business data over the Internet, allowing them to
High performance is guaranteed by harnessing the power of utilize all their business resources when working from home,
multi-core processors and application acceleration engines, travelling, or otherwise away from the company premises.
dramatically increasing throughput and enabling sustained
low latency traffic inspection. Easy to manage
The firewalls run the advanced AlliedWare Plus™ fully
featured operating system, with an industry standard CLI.
AT-AR3050S AT-AR4050S
The Graphical User Interface (GUI) provides a dashboard for
Firewall throughput (Raw) 750 Mbps 1,900 Mbps monitoring, showing traffic throughput, security status, and
Firewall throughput (App Control) 700 Mbps 1,800 Mbps application use at a glance. Configuration of security zones,
Concurrent sessions 100,000 300,000 networks and hosts, and rules to limit and manage traffic, as
well as management of advanced threat protection features,
New sessions per second 3,600 12,000
provides a consistent approach to policy management.
IPS throughput 220 Mbps 750 Mbps
IP Reputation throughput 350 Mbps 1,000 Mbps Wireless LAN management
Malware protection throughput 300 Mbps 1,300 Mbps The firewalls feature Allied Telesis Autonomous Wave
VPN throughput 400 Mbps 1,000 Mbps Controller (AWC), which is an intelligent, easy-to-use Wireless
LAN controller that automatically maintains the optimal
Note: All performance values are maximums, and vary depending on system configuration. wireless coverage. AWC is fully integrated with the GUI for
easy setup, management, and monitoring of wireless
Advanced feature licenses access points.
Flexible subscription licensing options make it easy to choose
the right combination of security features to best meet your
business needs. The Firewall license includes App Control,
Web Control and URL Filtering. The Advanced Threat
Protection (ATP) license includes IP Reputation, stream-based
Malware Protection and proxy-based Antivirus.* All other
features are included in the base feature set.
* Antivirus is only available on the AR4050S

Application-aware Firewall
The Allied Telesis UTM Firewalls have a Deep Packet
Inspection (DPI) engine that provides real-time, Layer 7
classification of network traffic. Rather than being limited to
filtering packets based on protocols and ports, the firewall
can determine the application associated with the packet.
This allows Enterprises to differentiate business-critical from
non-critical applications, and enforce security and acceptable
use policies in ways that make sense for the business.

alliedtelesis.com NETWORK SMARTER

AR3050S and AR4050S | UTM Firewalls

DPI FIREWALL ENGINE

The high-performance inspection engine performs stream-based bi-directional traffic analysis, identifying individual applications,
Deep Packet Inspection engine
while blocking intrusion attempts and malware.
Protects your network by scanning for threats in inbound traffic, while also protecting your business reputation by scanning for
Bi-directional inspection
threats in outbound traffic.
Multiple threat detection and protection capabilities are integrated within a purpose-built solution that provides single-pass low-
Single-pass inspection
latency inspection and protection for all network traffic.
APPLICATION AND WEB CONTROL
The increased network visibility provided by the application-aware firewall allows fine-grained application, content and user
Application control control. Use either the free built-in application list, or the subscription-based ProceraTM database of application signatures which
is regularly updated.
Application bandwidth management Manage application bandwidth to support business requirements, while limiting non-essential applications.
Digital ArtsTM web categorisation enables easy control of web content by simply selecting which of the 100 content categories to
allow or deny globally, or per user or group. URL categories are cached locally so that the response time for access to frequently
Web control
visited sites is not delayed. Any URL can be checked to view its web control category, to ensure website management aligns with
business policies.
Enables HTTP or HTTPS access to particular websites to be allowed (whitelist) or blocked (blacklist) with user-defined lists. A
URL filtering
subscription service can also be employed, utilizing a frequently updated blacklist from Kaspersky.
FIREWALL AND NETWORKING
Virtual Routing and Forwarding (VRF-Lite) allows multiple routing tables. As the routing instances are independant, the same or
VRF-Lite
overlapping IPv4 addresses can be used.
Flexible deployment options The Allied Telesis UTM Firewalls can be deployed in traditional NAT, Layer 2 Bridge, Wire Mode and Network Tap modes.
A 3G/4G/LTE USB modem offers an additional secure data connection for critical services that can automatically switch to a
3G/4G/LTE USB modem
mobile network whenever a primary data connection becomes unavailable.
RESILIENCY
Bypass ports allow a backup link to be formed to another device to act as a passive backup. In the event of a power failure, the
High availability bypass ports
WAN traffic is immediately transmitted to the backup device for an automatic failover of the WAN connection.
The Allied Telesis UTM Firewalls support event-based triggers to automatically change VRRP mastership if a bypass port is
VRRP triggers for bypass port failover
activated. This simplifies WAN failover and reduces disruption to other network devices.
UNIFIED THREAT MANAGEMENT
All inbound, outbound and intra-zone traffic is scanned by the DPI engine for viruses, Trojans, and other malware to protect
Malware protection
business information.
Protection against Denial of Service (DoS) attacks, which are designed to consume resources and therefore deny users network
DoS attack protection
and application access
Security is kept up-to-the-minute without requiring user intervention or network disruption. UTM Firewalls with active security
Automatic security updates
subscriptions automatically receive new threat signature and database updates, which have been tested by Allied Telesis.
Internal security is increased with the network segmented into multiple security zones, with boundaries that block the propaga-
Zone-based protection
tion of threats.
KasperskyTM malware protection identifies and blocks command and control traffic originating from bots on the local network to
Bot activity detection
IPs and domains that are identified as propagating malware.
Intrusion Detection and Prevention IDS/IPS is an intrusion detection and prevention system that protects your network from malicious traffic. IDS/IPS monitors
Systems (IDS/IPS) inbound and outbound traffic, and identifies threats which may not be detected by the firewall alone.
Protocol anomaly detection Identifies and blocks attacks that abuse protocols in an attempt to circumvent the IDS/IPS.
VIRTUAL PRIVATE NETWORKING
High-performance IPSec VPN allows the Allied Telesis UTM Firewalls to act as a VPN concentrator for other large sites, branch
IPSec VPN for site-to-site connectivity offices or home offices.

Users simply utilize the OpenVPN ® client on their computer, tablet or other mobile device for easy access email, files, and other
SSL/TLS VPN for secure remote access
corporate digital resources when away from the office.
Primary and secondary VPNs can be configured when using multiple WAN connections, for seamless failover of VPN connec-
Redundant VPN gateway
tivity to a remote site.
Dynamic routing over VPN links ensures no loss of connectivity, as traffic is routed through an alternate link in the event of a
Dynamic routing through VPN tunnels
tunnel failure.

2 | AR3050S and AR4050S

AR3050S and AR4050S | UTM Firewalls

Key Solution

Members
x2
30

Full application and

webcontrol, with
x2
30

advanced threat
0 protection.
x51
M
Company UT

x2
30
office

Master

U
TM
Members

Internet

SSL VPN Branch office

IPSec VPN
LAN Remote
worker

Integrated protection and secure remote access The powerful combination of features make Allied Telesis
Allied Telesis UTM Firewalls are the ideal integrated security UTM Firewalls the one-stop integrated security platform for
platform for modern businesses. The powerful combination protecting today’s online business activity.
of next-generation firewall and threat protection, along with
secure remote access, and routing and switching, provides Automated network management
a single platform able to connect and protect corporate In addition to protecting and connecting modern networks,
data. the firewalls are fully supported by the Allied Telesis
Autonomous Management Framework (AMF).
This solution shows a UTM Firewall providing site-to-site
IPSec VPN connectivity between corporate offices, while AMF is a sophisticated suite of management tools
also allowing secure SSL VPN access for remote workers, that automate and simplify many day-to-day network
so they enjoy full access to digital company resources when administration tasks. Powerful features like centralized
away from the office. management, auto-backup, auto-upgrade, auto-
provisioning and auto-recovery ensure streamlined
As well as securing remote connectivity, the firewall networking. Growing the network can be accomplished
will simultaneously ensure the security of inbound and with plug-and-play simplicity, and network node recovery is
outbound business data, with advanced threat protection fully zero-touch
features like IP reputation, Malware protection and Antivirus.
Full application control allows this organization to control The AR4050S can operate as the AMF network master,
the applications their people use, and how they use them, storing firmware and configuration backups for up to 20
so security and acceptable use policies can be enforced in other network nodes.
ways that make sense for the business.

NETWORK SMARTER AR3050S and AR4050S | 3

AR3050S and AR4050S | UTM Firewalls

Key Solution

Autonomous Wireless LAN solution unscreened electrical equipment, changes to office layout,
Allied Telesis AWC offers solutions for two of the most or neighbouring wireless networks.
common problems with Wireless LANs: initial setup
complexity and on-going performance degradation. Initial When AWC is combined with the firewall functionality in the
WLAN set-up usually requires a site survey to achieve the AR3050S and AR4050S, they become the ideal solution for
best coverage; and performance of WLANs can often branch offices and small businesses to both protect and
change over time as external sources of radio interference manage the office network. AWC is an essential tool for
reduce coverage and bandwidth. These issues can be time- busy network administrators to save time and money when
consuming to identify and resolve. deploying and managing WLANs.

AWC features an intelligent process that automatically Up to 5 TQ or MWS Series wireless APs can be managed
re-calibrates the signal strength and radio channel of each using the built-in AWC functionality. Additionally, the
Access Point (AP) for optimal WLAN performance. This AR4050S can manage a further 20 APs (max 25) with a
re-calibration is performed daily based on measurements feature license, available separately.
taken from each AP to compensate for interference such as

4 | AR3050S and AR4050S

AR3050S and AR4050S | UTM Firewalls

Features Diagnostic Tools

‫ ۼۼ‬Active Fiber Monitoring detects tampering on optical links
Firewall ‫ ۼۼ‬Automatic link flap detection and port shutdown
‫ ۼۼ‬Deep Packet Inspection (DPI) application aware firewall (built-in or Procera ‫ ۼۼ‬Optical Digital Diagnostic Monitoring (DDM)
application lists) for granular control of apps and IM (chat, file transfer, video)
‫ ۼۼ‬Ping polling for IPv4 and IPv6
‫ ۼۼ‬Application Layer Gateway (ALG) for FTP, SIP and H.323
‫ ۼۼ‬Port mirroring
‫ ۼۼ‬Application layer proxies for SMTP and HTTP
‫ ۼۼ‬TraceRoute for IPv4 and IPv6
‫ ۼۼ‬Bandwidth limiting control for applications and IM/P2P
‫ ۼۼ‬Firewall session limiting per user Authentication
‫ ۼۼ‬Bridging between LAN and WAN interfaces ‫ ۼۼ‬RADIUS authentication and accounting
‫ ۼۼ‬Data leakage prevention ‫ ۼۼ‬TACACS+ Authentication, Accounting and Authorization (AAA)
‫ ۼۼ‬Bidirectional single-pass inspection engine ‫ ۼۼ‬Local or server-based RADIUS user database
‫ ۼۼ‬Maximum and guaranteed bandwidth control ‫ ۼۼ‬RADIUS group selection per VLAN or port
‫ ۼۼ‬Multi zone firewall with stateful inspection ‫ ۼۼ‬Strong password security and encryption
‫ ۼۼ‬Static NAT (port forwarding), double NAT and subnet-based NAT
‫ ۼۼ‬Masquerading (outbound NAT) Unified Threat Management (UTM)
‫ ۼۼ‬Proxy-based web control by content categorisation (Digital Arts) ‫ ۼۼ‬Proxy-based anti-virus scanning (AR4050S only)

‫ ۼۼ‬Custom web control categories, match criteria and keyword blocking per entity ‫ ۼۼ‬No file size limitations

‫ ۼۼ‬Security for IPv6 traffic ‫ ۼۼ‬Auto-update of UTM signature files

‫ ۼۼ‬Bot activity detection (using Kaspersky malware protection)
Networking ‫ ۼۼ‬Intrusion Detection and Prevention System (IDS/IPS) (no license required)
‫ ۼۼ‬Routing mode / bridging mode / mixed mode ‫ ۼۼ‬DoS and DDoS attack detection and protection
‫ ۼۼ‬Static unicast and multicast routing for IPv4 and IPv6 ‫ ۼۼ‬IP reputation (Emerging Threats)
‫ ۼۼ‬Dynamic routing (RIP, OSPF and BGP) for IPv4 and IPv6 ‫ ۼۼ‬Stream-based Malware protection (Kaspersky) from over 20,000 attacks
‫ ۼۼ‬Flow-based Equal Cost Multi Path (ECMP) routing ‫ ۼۼ‬Dynamic URL filtering (Kaspersky)
‫ ۼۼ‬Dynamic multicasting support by IGMP and PIM ‫ ۼۼ‬URL blacklists and whitelists (block or allow HTTP and HTTPS access to specific
‫ ۼۼ‬Route maps and prefix redistribution (OSPF, BGP, RIP) Websites)
‫ ۼۼ‬Virtual Routing and Forwarding (VRF-Lite) ‫ ۼۼ‬Protocol anomaly detection and protection
‫ ۼۼ‬Traffic control for bandwidth shaping and congestion avoidance ‫ ۼۼ‬Zone-based UTM
‫ ۼۼ‬PPPoE client with PADT support
VPN Tunneling
‫ ۼۼ‬DHCP client, relay and server for IPv4 and IPv6
‫ ۼۼ‬Diffie-Hellman key exchange (D-H groups 5, 14, 16)
‫ ۼۼ‬Dynamic DNS client
‫ ۼۼ‬Secure encryption algorithms: AES and 3DES
‫ ۼۼ‬IPv4 and IPv6 dual stack
‫ ۼۼ‬Secure authentication: SHA-1 and SHA-256
‫ ۼۼ‬Device management over IPv6 networks with SNMPv6, Telnetv6 and SSHv6
‫ ۼۼ‬IKEv1 and IKEv2 key management
‫ ۼۼ‬Logging to IPv6 hosts with Syslog v6
‫ ۼۼ‬IPsec Dead Peer Detection (DPD)

Management ‫ ۼۼ‬IPsec NAT traversal

‫ ۼۼ‬Allied Telesis Autonomous Management Framework (AMF) enables powerful ‫ ۼۼ‬IPsec VPN for site-to-site connectivity
centralized management and zero-touch device installation and recovery ‫ ۼۼ‬Dynamic routing through VPN tunnels (RIP, OSPF, BGP)
‫ ۼۼ‬AMF secure mode increases network security with management traffic encryption, ‫ ۼۼ‬Redundant VPN gateway
authorization, and monitoring ‫ ۼۼ‬SSL/TLS VPN for secure remote access using OpenVPN
‫ ۼۼ‬Try AMF for free with the built-in AMF starter license (AR4050S only)
‫ ۼۼ‬Web-based GUI for device configuration and easy monitoring Wireless Controller AWC
‫ ۼۼ‬Industry-standard CLI with context-sensitive help ‫ ۼۼ‬Allied Telesis AWC is an intelligent WLAN controller that automatically maintains
‫ ۼۼ‬Role-based administration with multiple CLI security levels optimal wireless coverage
‫ ۼۼ‬Built-in text editor and powerful CLI scripting engine ‫ ۼۼ‬Up to five access points (APs) can be managed for free, with an additional 20
available via a separate software license (AR4050S only)
‫ ۼۼ‬Comprehensive SNMPv2c/v3 support for standards-based device management
‫ ۼۼ‬Rogue AP detection for increased WLAN security
‫ ۼۼ‬Event-based triggers allow user-defined scripts to be executed upon selected
system events ‫ ۼۼ‬WEP/WPA personal or WPA enterprise, pre-shared key (WEP/WPA personal),
RADIUS server (WPA enterprise)
‫ ۼۼ‬Comprehensive logging to local memory and syslog
‫ ۼۼ‬Wireless networks can have separate SSIDs, VLANs, security settings, etc.
‫ ۼۼ‬Console management port on the front panel for ease of access
‫ ۼۼ‬APs can belong to multiple networks each with different wireless settings, and can
‫ ۼۼ‬USB interface and SD/SDHC memory card socket allow software release files, broadcast multiple SSIDs (Virtual AP)
configurations and other files to be stored for backup and distribution to other
devices ‫ ۼۼ‬APs can be defined individually or in bulk using a common profile.
‫ ۼۼ‬AP radio settings can be configured automatically (default) or manually
Resiliency ‫ ۼۼ‬AP functions such as updating firmware, executing AWC calculations and applying
‫ ۼۼ‬High availability bypass ports calculation results can be run automatically based on a user-defined schedule
‫ ۼۼ‬Policy-based storm protection ‫ ۼۼ‬AWC supports Allied Telesis TQ and MWS Series wireless access points
‫ ۼۼ‬Spanning Tree (STP, RSTP, MSTP) with root guard
‫ ۼۼ‬Virtual Router Redundancy Protocol (VRRPv2/v3)
‫ ۼۼ‬VRRP triggers bypass port failover for v4 & v6 traffic

NETWORK SMARTER AR3050S and AR4050S | 5

AR3050S and AR4050S | UTM Firewalls

AR4050S

2 x SFP WAN Combo ports 2 x Bypass ports

Power switch Kensington lock hole Fan
2 x 10/100/1000T WAN Combo ports

USB
retainer
slot

Status LEDs USB port AC power inlet

Console port
8 x 10/100/1000T LAN ports Reset button

Specifications
AR3050S AR4050S
Processor and memory

Security processor 800MHz dual-core 1.5GHz quad-core

Memory (RAM) 1GB 2GB

Memory (Flash) 4GB 4GB

Security features

Firewall Stateful deep packet inspection application aware multi-zone firewall

FTP, TFTP, SIP

Application proxies

Threat protection DoS attacks, fragmented & malformed packets, blended threats & more
Security subscriptions Next-Gen Firewall, Advanced Threat Protection

Tunneling & encryption

Site-to-site VPN tunnels (IPsec) 50 1,000

Client-to-site VPN tunnels (OpenVPN) 100 1,000

Encrypted VPN IPsec, SHA-1, SHA-256, SHA-512, IKEv2, SSL/TLS VPN

Encryption 3DES, AES-128, AES-192, AES-256
Key exchange Diffie-Hellman groups 5, 14, 16
Dynamic routed VPN RIP, OSPF, BGP, RIPng, OSPFv3, BGP4+
Point to point Static PPP, L2TPv2 virtual tunnels, L2TPv3 Ethernet pseudo-wires

Encapsulation GRE for IPv4 and IPv6

Management & authentication

Logging & notifications Syslog & Syslog v6, SNMPv2 & v3
User interfaces Web-based GUI, scriptable industry-standard CLI
Secure management SSHv1/v2, strong passwords
Allied Telesis Autonomous Management FrameworkTM (AMF)
Management tools Autonomous Wave Control for wireless LAN APs (AWC)
Vista Manager EX
User authentication RADIUS, TACACS+, internal user database, web authentication
Command authorization TACACS+ AAA (Authentication, Accounting and Authorization)

6 | AR3050S and AR4050S

AR3050S and AR4050S | UTM Firewalls

AR3050S AR4050S

Networking

Routing (IPv4) Static, Dynamic (BGP4, OSPF, RIPv1/v2), source-based routing, policy-based routing, VRF-Lite

Routing (IPv6) Static, Dynamic (BGP4+, OSPFv3, RIPng), policy-based routing

Multicasting IGMPv1/v2/v3, PIM-SM, PIM-DM, PIM-SSM, PIMv6

Resiliency STP, RSTP, MSTP
High availability VRRP, VRRPv3, hardware controlled bypass ports
Traffic control 8 priority queues, DiffServ, HTB scheduling, RED curves
IP address management Static v4/v6, DHCP v4/v6 (server, relay, client), PPPoE
NAT Static, IPsec traversal, Dynamic NAPT, Double NAT, subnet-based NAT
Link aggregation 802.3ad static and dynamic (LACP)
VLANs 802.1Q tagging

Reliability features
Modular AlliedWare Plus operating system
Full environmental monitoring of PSU, fan, temperature and internal voltages.
SNMP traps alert network managers in case of any failure
Variable fan speed control

Hardware characteristics
Input power 90 to 260V AC (auto-ranging), 47 to 63Hz
Max power consumption 23W 27W
LAN ports 8 x 10/100/1000T RJ-45
WAN ports 2 x 1000X SFP / 2 x 10/100/1000T RJ-45 combo
High Availability bypass ports 2 x 10/100/1000T RJ-45
Other ports 1 x USB, 1 x RJ-45 console, 1 x SDHC slot
Product dimensions (H x W x D) 42.5 mm (1.67 in) x 210 mm (8.26 in) x 220 mm (8.66 in)
Packaged dimensions (H x W x D) 36.5 cm (14.37 in) x 26 cm (10.24 in) x 11.5 cm (4.53 in)
Product weight 1.7 kg unpackaged, 2.6 kg packaged
Typical / Max noise 28.4 dBA / 35.1 dBA

Environmental specifications

Operating temperature range 0°C to 50°C (32°F to 122°F). Derated by 1°C per 305 meters (1,000 ft)
Storage temperature range -25°C to 70°C (-13°F to 158°F)
Operating relative humidity range 5% to 80% non-condensing
Storage relative humidity range 5% to 95% non-condensing
Operating altitude 2,000 meters maximum (6,600 ft)

Regulations and compliances

EMC EN55022 class A, FCC class A, VCCI class A

Immunity EN55024, EN61000-3-levels 2 (Harmonics), and 3 (Flicker)
Safety Standards UL60950-1, CAN/CSA-C22.2 No. 60950-1-03, EN60950-1, EN60825-1, AS/NZS 60950.1
Safety Certifications UL, cUL, TuV

Reduction of Hazardous Substances (RoHS) EU RoHS6 compliant, China RoHS compliant

IPv6 Ready Phase 2 (Gold) Logo

Country of origin
China

NETWORK SMARTER AR3050S and AR4050S | 7

AT-AR3050S and AT-AR4050S | Next-Generation Firewalls

Ordering information Security Licenses

AT-AR3050S-xx LICENSE NAME INCLUDES 1 YR SUBSCRIPTION 3 YR SUBSCRIPTION 5 YR SUBSCRIPTION

2 x GE WAN and 8 x 10/100/1000 LAN
AR3050S
AT-AR4050S-xx Application Control
Advanced AT-FL-AR3-NGFW AT-FL-AR3-NGFW-
2 x GE WAN and 8 x 10/100/1000 LAN Web Control AT-FL-AR3-NGFW-5YR
Firewall URL Filtering
1-YR 3YR

Advanced Threat IP Reputation

AT-FL-AR3-ATP-1YR AT-FL-AR3-ATP-3YR AT-FL-AR3-ATP-5YR
Protection Malware Protection
AR4050S
Application Control
Advanced AT-FL-AR4-NGFW- AT-FL-AR4-NGFW- AT-FL-AR4-NGFW-
Web Control
Firewall URL Filtering
1YR 3YR 5YR

IP Reputation,
AT-RKMT-J15 Advanced Threat
Malware Protection AT-FL-AR4-ATP-1YR AT-FL-AR4-ATP-3YR AT-FL-AR4-ATP-5YR
Rack mount kit to install two devices side by side in a Protection Anti-virus
19-inch equipment rack

Management Licenses

PRODUCT NAME DESCRIPTION

AR4050S AT-FL-AR4-AM20-1YR AMF Master license for up to 20 nodes for 1 year

AT-RKMT-J14
Rack mount kit to install one device in a 19-inch AR4050S AT-FL-AR4-AM20-5YR AMF Master license for up to 20 nodes for 5 years
equipment rack
AR4050S AT-FL-AR4-AWC20-1YR* WLAN Controller (AWC) license for up to 20 nodes for 1 year
Where xx = 10 for US power cord
20 for no power cord
30 for UK power cord AR4050S AT-FL-AR4-AWC20-5YR* WLAN Controller (AWC) license for up to 20 nodes for 5 years
40 for Australian power cord
50 for European power cord * 5 APs can be managed for free. 25 APs (max) can be managed with the addition of the 20 node license
51 for encryption not enabled

1000Mbps SFP Modules Related Products

AT-SPTX AT-SPBD10-14 AT-MWS600AP (Version 2.2.3)

1000T 100 m copper 1000LX GbE Bi-Di (1490 nm Tx, 1310 nm Rx) fiber Wireless Access Point with IEEE 802.11ac dual-
up to 10 km band radio and embedded antennas
AT-SPSX
1000SX GbE multi-mode 850 nm fiber up to 550 m AT-SPLX40 AT-MWS1750AP (Version 2.2.3)
1000LX GbE single-mode 1310 nm fiber up to 40 km Wireless Access Point with IEEE 802.11ac wave1
AT-SPSX/I dual-band radio and embedded antennas
1000SX GbE multi-mode 850 nm fiber up to 550 m AT-SPZX80
industrial temperature 1000ZX GbE single-mode 1550 nm fiber up to 80 km AT-MWS2533AP (Version 2.2.1, 2.2.3)
Wireless Access Point with IEEE 802.11ac wave2
AT-SPEX AT-SPBD20-13/I dual-band radio and embedded antennas
1000X GbE multi-mode 1310 nm fiber up to 2 km 1000BX GbE Bi-Di (1310 nm Tx, 1550 nm Rx) fiber
up to 20 km AT-TQ4600-xx (Version 4.0.5)
AT-SPLX10 Enterprise-Class Wireless Access Point with IEEE
1000LX GbE single-mode 1310 nm fiber up to 10 km AT-SPBD20-14/I 802.11ac dual-band radio and embedded antenna
1000BX GbE Bi-Di (1490 nm Tx, 1310 nm Rx) fiber
AT-SPLX10/I up to 20 km AT-TQ4400e-xx (Version 4.0.5)
1000LX GbE single-mode 1310 nm fiber up to 10 Enterprise-Class Outdoor Wireless Access Point
km industrial temperature with IEEE 802.11ac dual-band radio

AT-SPBD10-13 3G/4G USB Modems

1000LX GbE Bi-Di (1310 nm Tx, 1490 nm Rx) fiber For a list of supported USB modems visit
up to 10 km alliedtelesis.com

NETWORK SMARTER
North America Headquarters | 19800 North Creek Parkway | Suite 100 | Bothell | WA 98011 | USA | T: +1 800 424 4284 | F: +1 425 481 3895
Asia-Pacific Headquarters | 11 Tai Seng Link | Singapore | 534182 | T: +65 6383 3832 | F: +65 6383 3830
EMEA & CSA Operations | Incheonweg 7 | 1437 EK Rozenburg | The Netherlands | T: +31 20 7950020 | F: +31 20 7950021

alliedtelesis.com
© 2018 Allied Telesis, Inc. All rights reserved. Information in this document is subject to change without notice. All company names, logos, and product designs that are trademarks or registered trademarks are the property of their respective owners.
617-000567 Rev U