On the Applications of an AvaLAN Wireless Net Appliance

By: John Fredrickson on June 26th, 2014

Print/Save as PDF

On the Applications of an AvaLAN Wireless Net Appliance

LAN  |  ethernet  |  encryption  |  NetAppliance  |  Cellular  |  FIPS 140-2 Level 2  |  FIPS140-2  |  Ethernet Packet Encyrptor  |  Packet Encryption

AW HSNetApplianceThe AvaLAN Wireless NetAppliance is a unique device that, in a nutshell, acts as a “Layer 2 Tunneling Ethernet Packet Encryptor”. It creates a NIST certified FIPS 140-2 Level 2 encrypted Virtual Private Network (VPN) that can connect two Local Area Networks (LAN) by tunneling through an unsecured Wide Area Network (WAN) such as the internet. This NetAppliance performs the same functions of far more expensive and complex equipment and software in a simple, cost effective, and efficient manner.

One of the most useful applications of the Net Appliance concerns the use of cellular modems.  Cellular providers typically have invisible firewalls and the NetAppliance provides an easy work around by opening a temporary port in the carrier's firewall and keeping that port open via a drip of “keep alive” packet commands.

The NetAppliance takes any Ethernet packet, encapsulates it, encrypts it, and sends it through the WAN to the client device, where it is unencrypted, and forwarded to the appropriate destination. The device will transmit any Ethernet packet; UDP, TCP, FTP, and even obscure packet protocols. The NetAppliance is also portable in such a way as to be able to create a secure VPN from any location or network. This can be useful in communicating with the LAN when on travel. The device can be attached to a hotel’s LAN, or even create a VPN through a mobile hotspot.

The NetAppliance does not broadcast itself to the network, therefore a nefarious application of the device would be to physically “drop” the client device onto a victim hardwired LAN. Using DHCP, the network would assign an IP Address to the client device, making it a part of the network behind their firewalls and then the NetAppliance would start sending copies of every broadcast packet over the WAN to the remotely listening eavesdropper. The individual could then learn from the network traffic via a network protocol analyzer. This would allow the individual to choose a device, for example a printer, and begin spoofing the MAC Address and IP Address of the printer, essentially borrowing the identity of that printer and roam on the remote LAN.

For more information, refer to this White Paper written by AvaLAN's CTO, Mike Derby: Cellular Challenges For Remote Industrial Devices


Headquartered in Huntsville and Alabama, AvaLAN Wireless is a well known Developer and Manufacturer of Cryptographic Technology and Industrial Wireless Radios. The company offers a range of products including  900 MHz, 2.4GHz and 5.8GHz  Ethernet Bridges and many more. The company gives utmost importance to the quality of the products and quotes the best prices. For more information about the company, log on to

Contact AvaLAN Today