INTRO | KLAS ROUTER | POWER ENGINEERING | MECHANICAL & ELECTRICAL ENGINEERING
KlasRouter Header Image

KlasRouter

The KlasRouter networking product forms the basis of Klas solutions in both classified and unclassified modules. KlasRouter was designed specifically for the DoD satellite community and therefore provides key DoD features such as FIPS 140-2 IPsec, firewall and robust WAN acceleration while maintaining a small footprint mechanically and electrically. KlasRouter has been in use for the past 5 years on DoD networks and has a proven track record in garrison and tactical environments. KlasRouter is STIG compliant and has been used at the core of thousands of baseband solutions deployed on NIPRNet, SIPRNet, JWICS and other networks throughout DoD and the Intelligence Community. KlasRouter supports common routing features such as DHCP client/server, DNS relay, and static and dynamic routes. In addition, it supports features which are key to use in a deployed environment. These features include:

  • DHCP Option 150 to serve Cisco Call Manager information to VoSIP phones -
    Port-based VLAN for separation of JWICS data and voice/video VLANs -
    IGMP/PIM Multicast routing protocol for access to Full Motion Video streams -
    Multipoint GRE with NHRP to support hot COOP configuration -
    This may be used with OSPF for live failover.
  • SecNet 54 bypass mode to allow access to SecNet 54 after device has been factory reset
  • Configuration profiles may be stored on KlasRouter or on included SATA hard disk, which also is used for HTTP cache. The SATA hard disk option renders the device inoperable and unclassified when the hard disk is removed.

2160
Enlarge Image Enlarge Image Icon

* Example of network node built around the KlasRouter


Ipsec

KlasRouter uses a FIPS 140-2 approved IPSec implementation which supports many forms of encryption, including AES-256 and the highly secure Suite-B elliptical curve cryptography (ECC) algorithms. This provides a future-proof option for non-CCI encryption of data at TS collateral and below. The FIPS Certificate and Security Policy for KlasRouter is available on NIST's website. As de-boxing a FIPS approved device invalidates the approval commercial off the shelf FIPS solutions are often extremely bulky. To counter this the KlasRouter has been FIPS tested within a ultra compact enclosure (8.79" x 5.25" x 1.36") ensuring that it can be built easily into a fly-away-case.

KlasRouter in FIPS enclosure 01
Enlarge Image Enlarge Image Icon

* Front View: KlasRouter in FIPS enclosure


KlasRouter in FIPS enclosure 02
Enlarge Image Enlarge Image Icon

* Back View: KlasRouter in FIPS enclosure


Key Features

  • FIPS 140-2 Level 2 certification
  • KlasRouter currently is deployed in systems with active authority to operate (ATO) on and authority to connect (ATC) to the Joint Worldwide Intelligence Communications System (JWICS).
  • KlasRouter supports the SSH protocol allowing secure remote access and administration
  • KlasRouter supports 802.1X MAC-based authentication. This can be used to limit access to the network only to authorized systems.
  • KlasRouter supports Simple Network Management Protocol (SNMP) v3. GUI-based SNMP managers, such as SolarWinds, can be used to evaluate KlasRouter status such as throughput and uptime. KlasRouter also provides both a web-based GUI and a menu driven command line interface (CLI) for configuration and system status.
  • Fully compatible with CISCO voice, video and data network equipment
KLAS Company Overview Video
Email: sales@klasonline.com
Website: www.klasonline.com
Phone: (866) 263-5467
Fax: (866) 532-3091
1101 30th Street NW,
Suite 500, Washington, DC 20007
Klas Telecom Inc.,