Skip to Content
  1. All products
  2. HMS
  3. Anybus Industrial Firewalls
  4. ABD4002-DPIFW
  5. Anybus Industrial Firewalls
Pricelist: Default EUR pricelist Pricelist
Pricelist: Default EUR pricelist Pricelist

ABD4002-DPIFW

Advanced industrial security appliance with Deep Packet Inspection for operational technology networks. The Anybus Defender 4002 with DPI/FW license goes beyond basic firewalling — it understands industrial protocols like Ethernet/IP CIP and Modbus, letting you control exactly which commands and transactions are allowed on your OT network.

Integrated Snort and Suricata Intrusion Detection and Protection Systems enable virtual patching of legacy devices that can no longer receive security updates — protecting vulnerable PLCs and HMIs without touching their configuration. Auto-learn capabilities minimize manual rule creation by monitoring your industrial traffic and suggesting policies.

Built-in OT asset discovery scans your network using industrial-specific protocols, identifying connected devices with make, type, software version and patch level — giving you full visibility into what's on your network. Configuration via intuitive web GUI with use-case wizards, one-click rule creation from firewall logs, and optional central management via the Anybus Cybersecurity Console.

Rugged fan-less metal enclosure with DIN rail mounting. 2x 1 Gbit RJ45 Ethernet (1x WAN, 1x LAN) with VLAN support for additional logical segments.

Add to cart
Add to wishlist
Price
2,320.00 € 2,320.00 € (Tax excluded)
2,320.00 € (Tax excluded)

Terms and Conditions
Contact Us
How it worksKey use casesTechnical SpecsDocumentation

How it works

1
Install
Mount on DIN rail, connect WAN and LAN between your IT/OT boundary or in front of a machine cell
2
Discover
The asset scanner identifies all connected OT devices — firmware versions, patch levels and protocols in use
3
Auto-learn
DPI auto-learns your industrial traffic patterns and suggests firewall rules — minimizing manual configuration
4
Enforce
Enable DPI rules and IPS signatures — only approved protocol transactions get through, legacy devices are virtually patched



Key use cases

Deep Packet InspectionInspect Ethernet/IP CIP and Modbus traffic at the application layer — control exactly which commands pass through
Virtual patchingProtect legacy PLCs and HMIs that can no longer receive updates — Snort and Suricata IPS with customizable signatures
OT asset discoveryAutomatically identify every device on your network — make, type, firmware version, patch level and accuracy score
OT/IT segregationDeny-by-default stateful firewall with NAT, transparent bridging and VLAN support for logical segmentation
IEC 62443 complianceImplement security zones and conduits with granular access control per industrial protocol transaction
Central managementOptional Anybus Cybersecurity Console for managing multiple Defenders across sites from one dashboard

 

Technical Specs

License typeDPI/FW — Perpetual
Stateful firewallYes — deny by default
NAT1:1, 1:many, SimpleNAT, port forwarding
Bridge / transparent modeYes
VLAN supportYes — logical segmentation
Deep Packet InspectionEthernet/IP CIP, Modbus — auto-learn capable
Intrusion Protection (IPS)Snort & Suricata — customizable signatures
Virtual patchingYes — protect unpatched legacy devices
Remote client VPNYes
RADIUS / LDAP / AD authenticationYes
DHCP server & forwardingYes
Rules/policy schedulerYes — by date, time and duration
Asset discovery & inventoryYes — OT/ICS specific, with accuracy score
NotificationsEmail, syslog, Telegram Messenger, Pushover
Central managementOptional — Anybus Cybersecurity Console


WAN1x RJ45 Gigabit Ethernet
LAN1x RJ45 Gigabit Ethernet
VLANSupported — additional logical segments


Web GUIOn-board web interface with use-case wizards
Rule creationOne-click from firewall logs + floating rules
APIIntegrated RESTful API
CLISSH / Console access
DiagnosticsTraffic diagnostics, debug tools, ARP & bandwidth monitoring


Input voltage24V DC
Current consumption (max)840 mA
Power consumption (max)20W


IP ratingIP20
Housing materialMetal — fan-less
MountingDIN rail (EN 50022)
Dimensions (W x H x D)114.6 x 118.2 x 64.5 mm
Weight680 g
Operating temperature0°C to +60°C


CEYes
RoHSYes (2011/65/EU)
WEEEYes
Country of originUSA


 

DPI/FW license includes everything in NAT/FW, plus: Deep Packet Inspection for Ethernet/IP CIP & Modbus, virtual patching via Snort/Suricata IPS, remote client VPN, RADIUS/LDAP/AD authentication, DHCP server & forwarding, and rules/policy scheduling. For advanced VPN (WireGuard, OpenSSL, IPsec), traffic shaping, advanced routing and high availability — see the PRO/FW license.


Documentation

anybus-defender-4002-datasheet-20240502.pdf

Anybus Defender Documentation

Build the perfect configuration

Everything you need to complete your setup!

Your Dynamic Snippet will be displayed here... This message is displayed because you did not provide enough options to retrieve its content.