Discover how our IIoT edge gateways use cloud services to simplify the integration of edge data.
Explore our article library for a wealth of expert advice on improving your industrial network security.
Learn how to unlock the secrets of your OT data to succeed with your industrial digital transformation.
Still need assistance with your Moxa product?
We strive to implement environmental practices that have a positive impact.
Bringing out the best in our people is how we grow and succeed together.
The Moxa IEF-G9010 Series industrial IPS firewall can
segment and hide your network and protect mission-critical assets
with industrial-grade IPS and granular access control. Meanwhile,
the Security Dashboard Console (SDC) software, when used together
with the IEF-G9010 Series, offers another layer of protection through
centralized critical asset visibility, network analysis, and auto
The IEF-G9010 Series sniffers network traffic and gives
users full visibility of current assets and connections, which helps
administrators and operators understand the real-time conditions of
the OT system. When connected to Security Dashboard Console, a security
management platform, the administrators or operators can effectively
manage and monitor all the intrusion prevention systems from a single
space. This provides an easier way to monitor the devices and execute
policy, firmware, and pattern updates.
The IEF-G9010 Series is designed to protect mission-critical
assets at the OT network edge. It silently analyzes your network traffic
in the background and offers granular behavior monitoring and control
of cyber activities. These firewall devices provide both “Monitor”
and “Protect” modes to facilitate different OT scenarios. Monitoring
mode gives administrators full visibility of cyber threat activities.
In the case of an emergency, administrators can easily switch to “Protect”
mode to block and contain any malicious operations.
Using advanced Deep Packet Inspection (DPI) technology,
the IEF-G9010 Series is equipped with industrial protocol awareness
to offer granular command of control system traffic to critical controllers.
Frequent patching significantly reduces a system’s vulnerability
to cyberthreats. However, patching continues to be a major challenge
in OT environments because OT applications cannot afford interrupting
operations by shutting down systems to apply patches. Virtual patching
technology can help complement existing patch management processes
by shielding known and unknown vulnerabilities. Virtual patching acts
as an agentless emergency security tool that OT administrators and
operators can use to address vulnerabilities on affected OT equipment
quickly. The IEF-G9010 Series provides advanced protection against
threats with up-to-date threat information and guards your systems
against undisclosed and zero-day threats.
Series supports flexible, on-demand expansion through Moxa’s license
platform. As your network grows, you can purchase additional licenses
based on your needs. The IEF-G9010 Series supports the following licenses:
1-year, IEF customizable node license (minimum 1 node)
IEF customizable node and duration license (minimum 1 node, 1 month)
1-year, SDC customizable node license (minimum 1 node)
3-year, SDC customizable node license (minimum 1 node)
5-year, SDC customizable node license (minimum 1 node)
SDC customizable node and duration license (minimum 1 node, 1 month)
+13 to +30 V for state 1 -30 to +3 V for state 0 Max. input current: 8 mA
Resistive load: 1 A @ 24 VDC
IEEE 802.3 for 10BaseT IEEE 802.3ab for 1000BaseT(X) IEEE 802.3u for 100BaseT(X)
PWR1, PWR2, STATE, MGMT, IPS/IDS, HA, FUNC, USB, 10/100 Mbps copper port, 1000 Mbps copper port, 1000 Mbps SFP port
N-to-1, 1-to-1, Port forwarding, NAT loopback
SIP H.323 FTP
SSH, Telnet, NTP Client, DHCP Server/Client, DNS
Local Account Accessibility
ICMP Flood, IGMP Flood, UDP Flood, UDP Port Scan, TCP SYN Flood, TCP Port SYN Scan, TCP Port FIN Scan, TCP Port NULL Scan, TCP Port Xmas Scan
Max. 360,000 packets per second (max. 1,000 Mbps)
> 450 Mbps when the packet size is greater than 128 bytes
< 500 microseconds
Modbus TCP Modbus UDP EtherNet/IP PROFINET-DCP CIP Omron FINS SLMP Siemens S7 Comm. Siemens S7 Comm. Plus Additional protocols will be supported through future firmware updates.
Pro Models: Supported (1 year of updates included)Pro-H Models: Supported (requires IEF pattern update license)
Web GUI and Security Dashboard Console
Cybersecurity, Policy enforcement, Protocol Filter, Assets detection, System event
Local storage, Syslog server
Removable terminal block
1.265 A @ 12 VDC, 0.605 A @ 24 VDC, 0.308 A @ 48 VDC
64 x 105 x 135 mm (2.52 x 4.13 x 5.32 in)
1100 g (2.43 lb)
DIN-rail mounting, Wall mounting (with optional kit)
Standard Models: -10 to 60°C (14 to 140°F) Wide Temp. Models: -40 to 75°C (-40 to 167°F)
-40 to 85°C (-40 to 185°F)
5 to 95% (non-condensing)
UL 60950-1 Ed.2, UL 62368-1
EN 55032/35, EN 61000-6-2/-6-4
CISPR 32, FCC Part 15B Class A
IEC 61000-4-2 ESD: Contact: 4 kV; Air: 8 kV IEC 61000-4-3 RS: 80 MHz to 1 GHz: 3 V/m IEC 61000-4-4 EFT: Power: 1 kV; Signal: 0.5 kV IEC 61000-4-5 Surge: Power: 0.5 kV; Signal: 1 kV IEC 61000-4-6 CS: 3 V IEC 61000-4-8 PFMF
Telcordia (Bellcore), GB
File Name: Firmware for Nport
SHA-512 Checksum: --checksum placeholder--
Copied to clipboard