Load Balancing VPN Firewall VDSL ADSL Router DrayTek 2860N

DrayTek Vigor 2860N VDSL/ADSL Router Firewall with 6 Gigabit LAN Ports, with USB NAS and 3G/4G USB Modem Support

Draytek
Scan code: LN66386 Manufacturer code: V2860N-K Request call
£216.98Item currently awaiting an ETA
Pre order
Spend over £225 and Buy Now, Pay Later or spread the cost of your finance over 24-48 months with a 10% deposit.
High End
Delivery options £11.50 By DPD DPD Delivered to your specified address. Receive SMS with one-hour delivery window. £4.79 Collect from local shops UPS and DPD Pickup Collect your parcel from your newsagents, petrol stations and convenience stores. Free Collect Instore Q-Collect Place your order online and collect from our Bolton store with Q-Collect. Weekend, timed and European delivery options are available at checkout Scansure protection Scansure Protect against installation damage for 28 days.More
Product Overview Vigor 2860 Series VDSL/ADSL Router Firewall

The Vigor 2860 series (including the Vigor 2860n and Vigor 2860Vn) is our new router/firewall which can support either ADSL or VDSL (BT Infinity™/FTTC). This makes the Vigor 2860 ideal ideal for users with ADSL now who might upgrade to VDSL later. Alternative WAN ports can insead provide connectivity to Ethenet feeds, secondary xDSL modems or a 3G/4G cellular service using a supported USB adaptor. This latest router series includes support for professional features such as VLAN tagging, Gigabit Ethernet built-in WiFi ('n' models).

Packed with professional-level features, the Vigor 2860 series offers truly comprehensive DSL connectivity and security. Compatible with all UK variants of ADSL (including ADSL2+ and Annex M), VDSL and VDSL2, the Vigor 2860 can also be used for cable-modem, leased line and EFM applications using its Gigabit Ethernet WAN port. On VDSL, the Vigor 2860 series supports the very latest services for speeds up to 80Mb/s (depending on line quality and length).

A 6-port Gigabit Ethernet switch on the LAN side provides high speed connectivity for your server, other local PCs or for uplink to a larger Ethernet switch. Comprehensive security features include content filtering, web application controls and an object based firewall management system.

Runs on either ADSL or VDSL
The Vigor2860's built in DSL interface will connect to either an ADSL or VDSL line. If you have a second line (of either type) you can add an additional modem (or your existing modem from your other line) to the Vigor2860's Ethernet WAN ports. You can set the two lines up in load balancing mode, where traffic is split across both of them, or into failover mode, where the other DSL line only kicks-in if your primary DSL line fails (or vice versa). ADSL makes a particularly good method of failover for VDSL because they are delivered differently. VDSL service is provided and powered by a cabinet in your street - that's where the line terminates. ADSL service, on the other hand, comes all the way from your local exchange, which coul be miles away and is powered from there. That means that if your street's VDSL cabinet is damaged, its DSLAM fails or you lose power to your street, you lose VDSL, but your ADSL line comes via a different method and route, so it's less likely that both would be affected. These failover methods can also be used instead for the other WAN ports on the router (Ethernet or 3G).

Robust & Comprehensive Firewall
Security is always taken seriously with DrayTek routers. The firewall protects against attacks including DoS (Denial of Service) attacks, IP-based attacks and access by unauthorised remote systems. Wireless, Ethernet and VPN are also protected by various protection systems. The latest ('Version 3') DrayTek object-based firewall allows even more setup flexibility than ever, enabling you to create combinations of users, rules and restrictions to suit multi-departmental organisations. The Vigor 2860 now also allows selective direction firewall rules of LAN to WAN, WAN to LAN or LAN to VPN. In addition, QoS (Quality of Service Assurance) can now be selectively applied to specific users.

IPv6 - Next Generation Internet Routing
The Vigor 2860 supports IPv6 - the successor to the current IPv4 addressing system that has been used since the Internet was first created. IPv4 address space is full up and IPv6 allows for much more efficient routing and a larger address space. IPv6 is supported both from your own ISP, but if your ISP does not (yet) support IPv6, the Vigor 2860 also supports IPv6 broker/tunnel services to provide IPv6 access using either TSPC or AICCU via 3rd party IPv6 providers. To learn all about IPv6, you can get our detailed guide to IPv6 here.

IPv6 on the Vigor 2860 series provides the following features:
• Operation on any one of the WAN ports (ADSL/VDSL, Ethernet or 3G)
• Connectivity to direct native IPv6 ISPs
• Built-in tunneling to 3rd party IPv6 brokers supporting TSPC or AICCU methods
• Default stateful firewall for all IPv6 LAN Clients/Devices
• DHCPv6 Client or Static IPv6 Client
• DHCPv6 & RADVD for client configuration
• IP Filtering Rules
• QoS for IPv6 with DiffServ
• Router Management over IPv6 (Telnet/HTTP) with IPv6 Access List
• Simultaneous (concurrent) operation with IPv4 ("Dual-Stack")
• Other router features are available on IPv4 only currently
• IPv6 support DrayTek Vigor 2860

Web Content Filtering
The content control features of the Vigor 2860 allows you to set restrictions on web site access, blocking download of certain file or data types, blocking specific web sites with whitelists or blacklists, blocking IM/P2P applications or other potentially harmful or wasteful content. Restrictions can be per user, per PC or universal. Using DrayTek's GlobalView service, you can block whole categories of web sites (e.g. gambling, adult sites etc.), subject to an annual subscription to the Globalview service, which is continuously updated with new or changed site categorisations or sites which have become compromised (such as infected with Malware). A free 30-day trial is included with your new router.

WAN Load Balancing & Backup
The Vigor 2860 features three methods of WAN connectivity - ADSL/VDSL, Ethernet (Gigabit, switchable with LAN6) and a USB port for connection of a 3G modem. The Ethernet port can connect to a second ADSL modem (e.g. Vigor 120), a cable modem or any other Ethernet-based Internet feed. The multiple WAN interfaces can be used either for WAN-Backup or load balancing. Load-balancing or failover supports IPv4 only currently.

WAN-Backup provides contingency (redundancy) in case of your primary ADSL line or ISP suffering temporary outage). Internet Traffic will be temporarily routed via the secondary Internet access. When normal services is restored to your primary ADSL line, all traffic is switched back to that.

If you don't have VDSL or ADSL, the Ethernet WAN port can instead be used as your primary/only Internet connection (using NAT) so the same router can be used regardless of whether you have xDSL or Ethernet Internet connections currently.

The USB port provides Internet connectivity (main, backup or load balanced) by connecting to a compatible USB modem (or cellphone) for access to the high speed 3G cellular networks from UK providers such as Vodafone, O2, 3 and EE. If you don't have ADSL at all, the USB/3G access method can be used as your primary/only Internet connection, ideal for temporary locations, mobile applications or where broadband access is not available. Features VPN - Linking remote offices, HQ, teleworkers and mobile staff
A feature central to DrayTek routers is the VPN (Virtual Private Networking) features. A VPN enables you to link two remote offices, branch offices back to HQ or home-based/mobile teleworkers back to your office. Once connected, they have access to your office/remote resources through a secure encrypted tunnel allowing remote desktop, file sharing and seamless access to other resources and devices.

The Vigor 2860 allows you to set up up to 32 simultaneous VPN tunnels to remote offices or teleworkers. The Vigor2860 supports all industry standard protocols, including encryption and authentication methods. Teleworkers can authenticate directly with your LDAP server if preferred.

The Vigor2860 supports VPN trunking; this allows you to create tunnels down muliple WAN connections to a remote site in order to increase bandwidth. VPN trunking also provides failover (backup) of your VPN route down a secondary WAN connection. You can learn more about DrayTek VPN here.

The Vigor 2860 also supports SSL VPN. These are encrypted tunnels linking your teleworker back to your main office but they are 'clientless in that your O/S does not need to generate the tunnel and you do not need to install any VPN software manually. You instigate an SSL tunnel from your regular web browser, so it could be in a web cafe or guest network, and the tunnel is creating using SSL technology - the same encryption that you use for secure web sites such as your bank. The Vigor2860 can operate SSL VPNs in either Proxy or full tunnel mode and allows up to 5 simultaneous incoming users. For SSL VPN tunnel mode Windows OS is supported.

802.1q Tagged, Wireless & Port Based VLAN
The Vigor 2860 features a hugely flexible VLAN system. In its simplest form, each of the six Gigabit LAN ports can be isolated from each other, for example to feed different companies or departments but keeping their local traffic completely separated. For more sophisticated scenarios, the Vigor 2860 includes tagged VLANs (802.1q) whereby data is marked with a VLAN identifier. This identifier can be read by an onward Ethernet switch and directed to specific ports or just passed to the LAN for specific VLAN clients to pick up; priorities can also be applied for LAN-side QoS.

The VLANs can be tied to any other individual 6 RJ45 ports on the front of the Vigor 2860, or, as seen below, by the use of VLAN tagging, you can uplink to a larger switch and retain the separation for larger groups:

The VLANs can each be tied into each of the different IP subnets that the router may also be operating, to provide even more isolation. On the Wireless-equipped models (Vigor2860n / 2860n-plus) each of the wireless SSIDs can also be grouped within one of the VLANs.

Each individual private subnet can be independent (isolated) or common (able to communicate with each other). This is ideal for departmental or multi-occupancy applications.

User Management/Authentication
The Vigor 2860 has built-in user management which allows you to provide internet access to users based on their own unique login (stored in the router, or on an external Radius server). Accounts can be restricted by schedules or maximum usage times but also any other aspect of the firewall or content filtering can be applied on a user-by-user basis. For example, a sales department might not be allowed access to social networking sites except at lunch time, or in a school, teachers and staff have more access permitted than pupils. This works with Wireless (WiFi) clients too so is ideal for guest or temporary access as users can be isolated from the rest of the company LAN.

Reliable and High-Performance WiFi ('n' models only)
The Vigor 2860 Series 'n' models feature 802.11n wireless LAN specification and has been certified by the WiFi alliance for cross compatibility and WiFi compliance (including WPA/WPA2 and WMM). The Vigor2860n and Vn models includes a hardware co-processor for WiFi to ensure best performance and encryption processing.

802.11n provides a total wireless bandwidth of up to 200Mb/s using new methods such as packet aggregation and channel bonding. Real-world throughput depends on your own environment (factors such as obstructions, number of hosts and distance all make a significant difference), but actual transfer speeds of over 100Mb/s are achievable (based on our real world tests). In addition, 802.11n provides greater coverage and resilience to interference compared to previous wireless standards thanks to the MIMO technology and the Vigor's antennae diversity arrangement.

Wireless Security
The Vigor 2860 Series provides several independent levels of security including encryption (up to WPA2), authentication (802.11x) and methods such as MAC address locking and DHCP fixing to restrict access to authorised users only. The Web interface lets you see how many and which clients are currently connected as well as their current bandwidth usage. An 'instant' block lets you disconnect a wireless user temporarily in case of query. The Wireless VLAN facility allows you to isolate wireless clients from each other or from the 'wired' LAN.

The Vigor2860 wireless versions also allow guest access with password protection so that visitors can use your WiFi access, but only with a password which you set for them. When the user connects to your wireless LAN, they are firstly presented with your login screen before any Internet access is permitted. This is in addition to any encryption system you have running.

The Multiple SSID features enables you to have up to four distinct or common virtual wireless access points. For example, you could have one for company usage, with access to your company LAN and another for public access which allows internet surfing only. Setting up wireless security is made easier thanks to the WPS feature (WiFi protected setup) whereby your client PC can get it's security keys by pressing a button on the front of the router.

For specialist or more demanding coverage applications, optional aerials can be used with the Vigor 2860 to potentially increase the range of wireless coverage (depending on environment) or provide directional coverage in order that your wireless transmission is focussed and concentrated into one direction only, for example into a room or across open space. With the increasing popularity of wireless LANs, you will want to choose the least congested wireless channel (Nos. 1-13) for yours so the Vigor can scan and provide a list of all devices in the vicinity so that you can choose the best channel (see screenshot below).

The Vigor2860n provides a local survey of other devices so that you can choose the least congested channel.

Above: The Vigor2860n provides a local survey of other access points so that you can choose the least congested channel.

• 802.11n Compliant
• Hardware wireless co-processor for increased throughput
• 'MIMO' Technology with two aerials (2T2R) for diversity
• Packet Aggregation and Channel Bonding
• Optional Higher Gain or directional aerials available - Click Here.
• 200Mb/s Total Wireless bandwidth
• Backward compatible with 802.11b and 802.11g Standards
• Active Client list in Web Interface
• Wireless LAN Isolation (from each other and/or wired LAN)
• 64/128-bit WEP Encryption
• WPA/WPA2 Encryption
• WPS - WiFi Protected Setup for client security setup
• Switchable Hidden SSID
• Restricted access list for clients (by MAC address)
• Time Scheduling (WLAN can be disabled at certain times of day)
• Access Point Discovery
• WDS (Wireless Distribution system) for Bridging and Repeating
• 802.1x Radius Authentication
• Wireless Rate-Control
• Automatic Power Management
• 802.11e WMM (Wi-Fi Multimedia)

Wireless LAN WDS Facility
Vigor 2860 'n' models support WDS (Wireless Distribution System) which enables you to use the wireless capability to bridge to another network, within wireless range. You need an additional compatible wireless router for this of course. Here is a simple example:

With WDS bridging, both networks should be within the same logical IP subnet (IP address range). Once set up, all of the PCs on both sides of the link can access each other, across the wireless bridge. Local wireless devices such as a laptop can continue to use their local access point.

An additional mode, as shown above, called 'repeating', allows you to set up a third station. In the diagram below, the router at 'B' is set up in repeating mode, relaying traffic between LANs at A and C. Therefore, all three physical networks can communicate with each other over the wireless links.

Important Note: Wireless performance (speed and range) always depends on your specific environment and will vary considerably. Factors affecting performance include wireless traffic, other networks nearby, site construction, walls, ceilings and other electronic equipment nearby. Speeds quoted are the maximum wireless capacity, including RX/TX capacity, protocol overheads and all clients/hosts connected.

3G/4G Cellular Data Features
The Vigor 2860 Series' USB port can host a compatible 3G/4G USB modem for access to the cellular network for full Internet Access. All UK networks provide high speed HSDPA data connections and some are starting to roll out 4G.

The 3G/4G connection can be used as your primary/only Internet access, or as backup to your main ADSL line connection. This facility is ideal for homes or offices which don't want to pay fixed line + broadband rental and also for temporary locations, or those to where fixed lines aren't available but for businesses, having 3G as a failover to your main connectivity means that your business stays online when your broadband doesn't!.

With the Vigor 2860n (Wireless model) your local users can be connected wirelessly to the router, so instant free 'hotspots' can be deployed quickly and easily. Mains power is required for the router's PSU, but this could be from a mobile generator or equivalent so you need to plan for this.

Please check here for the latest USB modem compatibility; the phone companies (Vodafone, EE, O2, 3 etc.) continuously introduce new models, so additional Modem Support is added continuously. If you have a new modem, not yet supported, please contact us as support for new models is frequently added. Also it is possible to obtain logs for our engineers to assess.

3G Modems for the DrayTek Vigor 2820 compatible with Vodafone, 3, EE, Virgin Mobile, Orange, T-Mobile and O2

The Vigor 2860 and 3G/4G cellular modem setup is ideal for:
• Backup to your primary Internet feed (ADSL, cable etc.)
• Providing lower cost broadband than a fixed line solution
• Areas without fixed line broadband access
• Compatible with a wide range of 3G modems/phones
• Temporary Locations
• Mobile Homes
• Locations on the move - coaches, trains
• Fairgrounds & temporary exhibitions
• Outdoor locations (the router and modem itself must be indoors!)
• Disaster Planning & High Availability

Network Attached Storage (NAS)
The Vigor 2860's USB port can also be used to add storage memory to the unit in the form of a USB memory key (as shown right) or for higher capacity a USB hard drive (normally requires its own power). The Vigor 2860 then provides FTP access file uploading/downloading which can be from the local LAN or from anywhere on the Internet - ideal for a simple to deploy file depository. Access can be 'public' or using usernames and passwords, each of which can have their own directories and/or file access rights. As well as FTP, file sharing is available as a Windows 'network drive'. You can also use Windows Explorer to view and access the contents of the USB drive.

If you do have a USB memory key connected, you can also have the router save it's system logs (syslog) to that memory instead of to a connecting computer; useful for technical personnel (SysAdmins).

The NAS facility uses any FAT32 formatted device (includes USB memory sticks, USB hard drives etc.) and supports a transfer rate of 12Mb/s so ideal for occasional or remote storage.
Specifications
Specifications
CPU  
LAN Type
  • 10/100/1000
  • Wireless LAN
Wireless LAN Yes
Type N/A
Number of WAN Connections 3
Number of LAN Connections 6
Wireless Speed N/A
Wireless Band Single Band
Frequency 2.4 Ghz
Wireless Standards IEEE 802.11n
Aprox Wireless Range (m) N/A
UPnP Support No
Other Connectors 2 x USB
Firewall/NAT Yes
WDS No
Security
  • 3DES
  • AES
  • DES
  • MPPE
  • WEP (128 bit)
  • WEP (64 bit)
  • WPA
  • WPA2
  • WPS
Wireless Transmitter Power N/A
Wireless Transmitter N/A
Antenna 2x External
Warranty

Please note your statutory rights are not affected.

For further information regarding Scan's warranty procedure please see our terms and conditions

Details
Duration:
24 months
Type:
Return to base
DOA Period:
7 days
RTB Period:
24 months
Manufacturer Contact Details
Manufacturer:
Scan
Reviews
Questions & Answers
Load Balancing VPN Firewall VDSL ADSL Router DrayTek 2860N
Load Balancing VPN Firewall VDSL ADSL Router DrayTek 2860N