As of June 15, 2022, this site no longer supports Internet Explorer. Please use another browser for the best experience on our site.
Sign In

EDR-G9010 Series

8 GbE copper + 2 GbE SFP multiport industrial secure router

moxa-edr-g9010-series-image-(1).jpg | Moxa
moxa-edr-g9010-series-image-1-(1).jpg | Moxa
moxa-edr-g9010-series-image-2-(1).jpg | Moxa

Features and Benefits

  • Marine cybersecurity certified (IACS UR E27 Rev.1 & IEC 61162-460 Ed. 3.0), supporting 460-gateway, forwarder and switch roles
  • Developed according to the IEC 62443-4-1 and compliant with the IEC 62443-4-2 industrial cybersecurity standards
  • 10-port Gigabit all-in-one firewall/NAT/VPN/router/switch
  • Next-generation industrial firewall with Intrusion Prevention/Detection System (IPS/IDS)
  • Visualize OT security with the MXsecurity management software
  • Secure remote access tunnel with VPN
  • Examine industrial protocol data with Deep Packet Inspection (DPI) technology
  • Easy network setup with Network Address Translation (NAT)
  • RSTP/Turbo Ring redundant protocol enhances network redundancy
  • Supports Secure Boot for checking system integrity
  • -40 to 75°C operating temperature range (-T model)

Certifications

  • moxa-iec61850-3-ieee1613-black-certification-logo-image.png | Moxa
  • moxa-dnv-certification-logo-image.png | Moxa
  • moxa-atex-certification-logo-image.png | Moxa
  • moxa-nema-ts2-certification-logo-image.png | Moxa
 
Contact Sales

Introduction

The EDR-G9010 Series is a set of highly integrated industrial multi-port secure routers with firewall/NAT/VPN and managed Layer 2 switch functions. These devices are designed for Ethernet-based security applications in critical remote control or monitoring networks. These secure routers provide an electronic security perimeter to protect critical cyber assets including substations in power applications, pump-and-treat systems in water stations, distributed control systems in oil and gas applications, and PLC/SCADA systems in factory automation. Furthermore, with the addition of IDS/IPS, the EDR-G9010 Series is an industrial next-generation firewall, equipped with threat detection and prevention capabilities to further protect critical infrastructure from cybersecurity attacks.

MX-ROS Addresses Growing Cybersecurity Threats

Moxa’s MX-ROS (https://www.moxa.com/en/spotlight/portfolio/mx-ros/index) is a software platform for industrial security routers and firewalls. The platform supports the robust security and user-friendly operation of secure routers through simplified web and CLI interfaces. In addition to adhering to IEC 62443-4-2, MX-ROS devices offer a wealth of the latest cross-industry Operational Technology (OT) network management features with each release to safeguard hardware and software.

Defend Against Malicious Threats With Advanced Cybersecurity Features

The EDR-G9010 Series’ embedded firewall uses policy rules to control network traffic between trusted zones while Network Address Translation (NAT) shields the internal network from unauthorized access by outside hosts. The Virtual Private Networking (VPN) functionality further provides users with secure communication tunnels when accessing the private network from the public Internet. To help protect your OT assets from cyberattacks, the EDR-G9010 Series supports Deep Packet Inspection (DPI) to examine the data portion of network packets for various OT-specific protocols.

Simplify Configurations With the User-friendly Interface and Quick Settings

The EDR-G9010 Series’ Setup Wizard provides an easy way for users to set up WAN, LAN, and Bridge ports for routing functionality in just four steps. In addition, the object-based firewall management feature gives engineers a simple way to configure and maintain firewall filtering for IP addresses and subnets, network services, industrial application services, and user-defined services.

Industrial-grade Design to Ensure Uninterrupted Network Connectivity

The EDR-G9010 Series’ rugged hardware makes these secure routers ideal for harsh industrial environments, featuring wide-temperature models that are built to operate reliably in hazardous conditions and extreme temperatures of -40 up to 75°C. Moreover, the EDR-G9010 Series supports comprehensive Layer 2 and Layer 3 redundancy mechanisms to ensure that your network stays connected at all times.

Virtual Patching and Intelligent Threat Protection

Patching remains a major challenge in OT environments because OT applications cannot afford interrupting operations by shutting down systems to apply patches. Virtual patching technology can help complement existing patch management processes by shielding known and unknown vulnerabilities. In addition, the EDR-G9010 features intelligent IPS functionality for continuous protection against cyberthreats which uses pattern-based detection to identify and block known attacks.

  • Alarm Contact Channels

    Resistive load: 1 A @ 24 VDC

  • Buttons

    Reset button

  • Digital Input Channels

    +13 to +30 V for state 1
    -30 to +3 V for state 0
    Max. input current: 8 mA

  • 10/100/1000BaseT(X) Ports (RJ45 connector)

    8

  • 1000/2500BaseSFP Ports

    2

  • Standards

    IEEE 802.1Q for VLAN Tagging
    IEEE 802.3 for 10BaseT
    IEEE 802.3ab for 1000BaseT(X)
    Static Port Trunk
    IEEE 802.3u for 100BaseT(X)
    IEEE 802.3x for flow control
    IEEE 802.3z for 1000BaseSX/LX/LHX/ZX
    IEEE 802.1X for authentication

  • DMZ

    User-configurable DMZ ports

  • Broadcast Forwarding

    IP directed broadcast, broadcast forwarding

  • Management

    Back Pressure Flow Control
    DDNS
    DHCP Server/Client
    Web Console (HTTP/HTTPS)
    LLDP
    QoS/CoS/ToS
    SNMPv1/v2c/v3
    Telnet
    TFTP
    HTTPS
    SSH

  • Redundancy Protocols

    RSTP
    STP
    Turbo Ring v2
    Turbo Chain

  • Routing Throughput

    Max. 350K packets per second / 2 Gbps (based on RFC 2544)

  • Routing Table

    Max. 4K routing rules

  • Concurrent Connections

    Max. 400K (based on RFC 3511)

  • Connections Per Second

    Max. 20K (based on RFC 3511)

  • Routing Redundancy

    VRRP

  • Security

    Secure Boot
    IPsec
    L2TP (server)
    RADIUS
    Trust access control
    TACACS+
    SCP
    SFTP
    NTP authentication
    Syslog Authentication

  • Time Management

    NTP Server/Client
    SNTP

  • Unicast Routing

    OSPF
    RIPV1/V2
    Static Route

  • Multicast Routing

    Static Route

  • Filter

    IGMP v1/v2/v3

  • VLAN ID Range

    VID 1 to 4094

  • IGMP Groups

    1000

  • Max. No. of VLANs

    32

  • LED Indicators

    PWR1, PWR2, STATE, MSTR/H.TC, CPLR/T.TC, VRRP/HA, VPN, USB

  • Technology

    ARP-Flood
    FIN Scan
    ICMP Flood
    TCP Sessions Without SYN
    NMAP-ID Scan
    NMAP-Xmas Scan
    Null Scan
    SYN/FIN Scan
    SYN/RST Scan
    SYN-Flood
    Xmas Scan

  • Filter

    DDoS
    Ethernet protocols
    ICMP
    IP address
    MAC address
    Ports

  • Stateful Inspection

    Router firewall
    Transparent (bridge) firewall

  • Deep Packet Inspection

    DNP3
    EtherNet/IP
    IEC 60870-5-104
    IEC 61850 MMS
    MELSEC
    Modbus TCP
    Modbus UDP
    Omron FINS
    OPC UA
    Siemens S7 Comm.
    Siemens S7 Comm. Plus
    Additional protocols will be supported through future firmware updates.

  • Intrusion Prevention System

    Requires an additional license.

  • Throughput

    Firewall:
    Max. 350K packets per second / 2 Gbps (based on RFC 2544)

    IPS:
    Max. 200K packets per second / 2 Gbps (based on RFC 2544)

  • Authentication

    MD5 and SHA (SHA-512)
    RSA (key size: 1024-bit, 2048-bit)
    X.509 v3 certificate

  • Concurrent VPN Tunnels

    Max. 250 IPsec VPN tunnels

  • Encryption

    DES
    3DES
    AES-128
    AES-192
    AES-256
    AES-256-GCM

  • Protocols

    IPsec
    L2TP (server)
    PPTP (client)

  • Throughput

    Conditions: AES-256, SHA-256
    Max. 100K packets per second / 800 Mbps (based on RFC 2544)

  • Features

    1-to-1
    N-to-1
    NAT loopback
    Port forwarding

  • Event Type

    Firewall event
    VPN event

  • Media

    Local storage
    SNMP Trap
    Syslog server

  • Console Port

    RS-232 (TxD, RxD, GND), 3-pin (115200, n, 8, 1)

  • Connector

    USB Type-C

  • Connection

    Removable terminal block

  • Input Voltage

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models:
    12/24/48 VDC, redundant dual inputs (DNV-certified for 24 VDC)

    EDR-G9010-VPN-2MGSFP-HV(-T) models:
    120/240 VDC/VAC, redundant dual inputs

  • Operating Voltage

    non-HV(-T) models:
    9.6 to 60 VDC

    -HV(-T) models:
    88 to 300 VDC, 90 to 264 VAC

  • Input Current

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models:
    1.51 A @ 12 VDC
    0.70 A @ 24 VDC
    0.35 A @ 48 VDC

    EDR-G9010-VPN-2MGSFP-HV(-T) models:
    0.28 A @ 120 VAC
    0.18 A @ 240 VAC
    0.15 A @ 120 VDC
    0.08 A @ 240 VDC

  • Reverse Polarity Protection

    Supported

  • Housing

    Metal

  • IP Rating

    IP40

  • Dimensions

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models:
    58 x 135 x 105 mm (2.28 x 5.31 x 4.13 in)

    EDR-G9010-VPN-2MGSFP-HV(-T) models:
    64 x 135 x 105 mm (2.52 x 5.31 x 4.13 in)

  • Weight

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models:
    1030 g (2.27 lb)
    EDR-G9010-VPN-2MGSFP-HV(-T) models:
    1150 g (2.54 lb)

  • Installation

    DIN-rail mounting (DNV-certified)
    Wall mounting (with optional kit)

  • Protection

    -CT models: PCB conformal coating

  • Operating Temperature

    Standard models: -10 to 60°C (14 to 140°F)
    Wide temp. models: -40 to 75°C (-40 to 167°F)
    EDR-G9010-VPN-2MGSFP(-T, -CT-, CT-T) models: DNV-certified for -25 to 70°C (-13 to 158°F)

  • Storage Temperature (package included)

    -40 to 85°C (-40 to 185°F)

  • Ambient Relative Humidity

    5 to 95% (non-condensing)

  • Safety

    IEC 62368-1
    UL 62368-1
    IEC 60950-1
    UL 60950-1

  • EMC

    EN 55032/35

  • EMI

    CISPR 32, FCC Part 15B Class A

  • EMS

    IEC 61000-4-2 ESD: Contact: 8 kV; Air: 15 kV
    IEC 61000-4-3 RS: 80 MHz to 1 GHz: 20 V/m
    IEC 61000-4-4 EFT: Power: 4 kV; Signal: 4 kV
    IEC 61000-4-5 Surge: Power: 2 kV; Signal: 4 kV
    IEC 61000-4-6 CS: 10 V
    IEC 61000-4-8 PFMF

  • Industrial Cybersecurity

    IEC 62443-4-1
    IEC 62443-4-2

  • Railway

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models: EN 50121-4

  • Traffic Control

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models: NEMA TS2

  • Maritime

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models:
    DNV,
    DNV IEC 61162-460 Edition 3.0 460-gateway, 460-forwarder and 460-switch,
    DNV security profile 2,
    IACS UR E27 Rev.1,
    IEC 60945

  • Power Substation

    IEEE 1613
    IEC 61850-3 Edition 2.0

  • Hazardous Locations

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models: ATEX, Class I Division 2

  • Shock

    IEC 60068-2-27

  • Freefall

    IEC 60068-2-32

  • Vibration

    IEC 60068-2-6

  • Time

    EDR-G9010-VPN-2MGSFP(-T, -CT, -CT-T) models:
    1,080,807 hrs
    EDR-G9010-VPN-2MGSFP-HV(-T) models:
    509,714 hrs

  • Standards

    Telcordia (Bellcore), GB

Software, Firmware, and Drivers

FILTER

All Firmware Software Package
Name Type Checksum Version Operating System Release Date
Network Security Package for EDR-G9010 Series
7.6 MB 		Software Package
SHA-512
v10.0.28
Mar 31, 2025 Mar 31, 2025 Release notes
Software Package for MXview One Series (Linux version)
508.2 MB 		Software Package
SHA-512
v1.5.0
  • Ubuntu 18.04
  • Ubuntu 20.04
  • Ubuntu 22.04
 Jan 22, 2025 Jan 22, 2025 Release notes
Software Package for MXview One Series (Windows version)
284.5 MB 		Software Package
SHA-512
v1.5.0
  • Windows 10
  • Windows 11
  • Windows Server 2016
  • Windows Server 2019
  • Windows Server 2022
 Jan 22, 2025 Jan 22, 2025 Release notes
Firmware for EDR-G9010 Series
77.0 MB 		Firmware
SHA-512
v3.14
Dec 31, 2024 Dec 31, 2024 Release notes
SNMP MIB file for EDR-G9010 Series
176.2 KB 		Software Package
SHA-512
v3.13
Oct 09, 2024 Oct 09, 2024 Release notes

Support Documents

FILTER

All Datasheet Declaration Manual QIG Tech Note
Name Type Version Release Date
FOSS Statement for MX-ROS products
2.2 MB 		Declaration v3.17 Apr 28, 2025 Apr 28, 2025
Datasheet for EDR-G9010 Series
1.6 MB 		Datasheet v2.5 Apr 22, 2025 Apr 22, 2025
CLI Manual for MX-ROS V3
5.6 MB 		Manual v1.6 Apr 01, 2025 Apr 01, 2025
Manual for MX-ROS V3
31.0 MB 		Manual v1.11 Apr 01, 2025 Apr 01, 2025
FOSS Statement for MX-ROS products
3.2 MB 		Declaration v3.13 Oct 29, 2024 Oct 29, 2024
Declaration of Conformity for EDR-G9010 Series
310.0 KB 		Declaration v1.0 Oct 21, 2024 Oct 21, 2024
Tech Note: Building an Industrial DMZ to Protect Internal LAN Networks With Moxa Secure Routers
4.8 MB 		Tech Note v1.0 May 15, 2024 May 15, 2024
Declaration of Conformity for EDR-G9010-HV Series
312.4 KB 		Declaration v1.0 Jan 16, 2024 Jan 16, 2024
QIG for EDR-G9010 Series
3.1 MB 		QIG v2.0 Sep 16, 2022 Sep 16, 2022

Available Models (6)

Show Images
Compare
EDR-G9010-VPN-2MGSFP-HV
Compare
moxa-edr-g9010-vpn-2mgsfp-image.jpg | MoxaEDR-G9010-VPN-2MGSFP
Compare
moxa-edr-g9010-vpn-2mgsfp-t-image.jpg | MoxaEDR-G9010-VPN-2MGSFP-T
Compare
EDR-G9010-VPN-2MGSFP-CT
10/100/1000BaseT(X) Ports (RJ45 Connector)8888
10002500BaseSFP Slots2222
Firewall
NAT
VPN
Input Voltage120/240 VDC/VAC12/24/48 VDC12/24/48 VDC12/24/48 VDC
Conformal Coating
Operating Temp.-10 to 60°C-10 to 60°C
(DNV-certified)		-40 to 75°C
(DNV-certified for -25 to 70°C)		-10 to 60°C
Add to QuoteView BagAdd to QuoteView BagAdd to QuoteView BagAdd to QuoteView Bag
Compare
EDR-G9010-VPN-2MGSFP-HV-T
Compare
EDR-G9010-VPN-2MGSFP-CT-T
10/100/1000BaseT(X) Ports (RJ45 Connector)88
10002500BaseSFP Slots22
Firewall
NAT
VPN
Input Voltage120/240 VDC/VAC12/24/48 VDC
Conformal Coating
Operating Temp.-40 to 75°C-40 to 75°C
Add to QuoteView BagAdd to QuoteView Bag

Leading the New Era of OT Network Security

Software platform featuring real-time protection, easy management, and industry-focused design to guide your OT journey.

LEARN MORE

Details

File Name: Firmware for Nport 6000 Series

Version: xx

SHA-512 Checksum: --checksum placeholder--

Copied to clipboard

product image

Buy online from distributors

Please sign in

Forgot your password?
Sign In
Remember Me.
Not a member? Sign up now

Do Not Share My Personal Information

To opt out of sharing your personal information for cross-context behavioral advertising, you can complete and submit the form provided below.


Please note that even if you choose to complete the form, you may still see our ads on other websites. However, these ads may not be as relevant to you as they would be if you had not opted out.

 
 
Added To Bag

View Bag
You have some items waiting in your bag; click here to finish your quote!

You are currently on the Global / English site.
Would you like to go to the site for your region?

Feedback