Sierra Wireless 2120028 manual IPsec Architecture

Page 30

B: IPsec Architecture

B

Standards of the M2M IPSec Support

 

Sierra Wireless M2M IPSec supports the following standards:

 

RFC 1829 – “The ESP DES‐CBC Transform”

RFC 2401 – “Security Architecture for the Internet Protocol”

RFC 2403 – “The Use of HMAC‐MD5‐96 within ESP and AH”

RFC 2404 – “The Use of HMAC‐SHA‐1‐96 within ESP and AH”

RFC 2405 – “The ESP DES‐CBC Cipher Algorithm With Explicit IV”

RFC 2406 – “IP Encapsulating Security Payload (ESP)”

RFC 2410 – “The NULL Encryption Algorithm and Its Use With IPSec”

RFC 2451 – “The ESP CBC‐Mode Cipher Algorithms”

RFC 3602 – “The AES‐CBC Cipher Algorithm and Its Use with IPSec” (future enhancement)

Security Algorithms:

1.Internet Key Exchange (IKE)

a.Authentication for IKE Messages (Hashing Algorithms)

·MD5

·SHA1

b.Exchange Modes Supported in Phase 1 and Phase 2 of

IKE

·Main Mode

·Aggressive Mode

·Quick Mode

·Informational Mode

c.Authentication Methods (used in Phase 1) · Authentication using pre‐shared keys

· Authentication using RSA signatures

d.Oakley Groups: used during Phase 1 to calculate keys for the IKE Security Association

·First Oakley Group (MODP 768)

·Second Oakley Group (MODP 1024)

·Fifth Oakley Group (MODP 1536)

·MODP 2048 (available, but not currently supported)

·MODP 3072 (available, but not currently supported)

 

 

 

 

 

 

 

Rev 2.2 Aug.08

 

 

 

 

 

24

 

 

 

Image 30
Contents User Guide Page Important Notice Safety and Hazards Limitation Liability Patents Copyright Trademarks Contact Information Revision HistoryContents Introducing IPSec Overview ScenariosKey Features of IPSec VPN IPSec ArchitectureRemote Access Scenarios ScenariosCorporate Email Server scenario Pass through mode Installation and Configuration Set-Up Installation Configuration SettingsModem Configuration Requirements Set-UpInstallation Start AceManagerConfiguration Parameters in AceManager Click on IPSecName Default Value Description IPSec Gateway Remote Address end or mask Http Server Incoming Out of Band If you want mobile terminationApplication Server Web BrowserProvide the Server IP Address on the right‐hand side pane Network behind the modem Application Server TunnelClick on PPP ethernet. Set the modem to private mode IPsec User Guide Sample Configuration File VPN Configuration fileSet pfs group2 match address Sample Configuration File Dynamic IP Set pfs group2 match address Control-plane Line con 0 line aux 0 line vty 0 4 login End Sierra Wireless M2M IPSec supports the following standards IPsec ArchitectureReference Material
Related manuals
Manual 14 pages 46.17 Kb

2120028 specifications

Sierra Wireless has long been a key player in the realm of wireless communication technology, and one of its standout products is the 2120028 model, which offers a robust solution for various applications across industries. The Sierra Wireless 2120028 is known for its advanced features, versatility, and reliable performance in the ever-evolving landscape of IoT (Internet of Things).

One of the main features of the 2120028 is its state-of-the-art 4G LTE connectivity. This enables high-speed data transfer, ensuring that devices can communicate effectively over the network, thus enhancing operational efficiency. With support for both LTE FDD and TDD technologies, this device ensures broad compatibility with various cellular networks, making it an ideal choice for deployment in diverse geographical regions.

The 2120028 is designed with built-in security features that prioritize data integrity and protection against unauthorized access. With advanced VPN support and secure connectivity options, users can feel confident that their data remains protected when sent over public networks. This security is crucial for industries such as healthcare, finance, and transportation, where sensitive information must be handled securely.

In terms of physical characteristics, the Sierra Wireless 2120028 is compact and rugged, making it suitable for deployment in challenging environments. Its reliability in extreme conditions, including temperature variations and exposure to elements, translates to fewer maintenance needs and a longer operational life. Additionally, it supports a range of powering options, including Power over Ethernet (PoE), which simplifies installations and reduces cabling requirements.

The 2120028 also features comprehensive support for various IoT communication protocols, which makes it adaptable to different applications. Whether used for remote monitoring, asset tracking, or telematics, this device can integrate seamlessly into existing systems. Its support for both IPv4 and IPv6 ensures that it can connect to the latest internet technologies.

Overall, the Sierra Wireless 2120028 stands out as a versatile, secure, and reliable solution for IoT connectivity. Its combination of high-speed LTE capability, built-in security features, rugged design, and compatibility with modern communication protocols makes it an invaluable asset for businesses looking to leverage the power of wireless technology in their operations.