Vanguard Managed Solutions 342 Encryption over IP, Frame Relay, and X.25 Networks

Page 29

Target Applications

Frame Relay and X.25 Encryption

Frame Relay and Another value-added feature in Vanguard Managed Solutions VPN implementation

X.25 Networks is the ability to encrypt LAN traffic and serial legacy protocols (SNA, SDLC, SLAC, and TBOP) and transport them over Frame Relay and X.25 networks. This is particularly useful in the financial industry where SNA traffic going out into the branches and ATM machines require a high level of security. This implementation also uses DES, Triple-DES (112-bit) for encryption and VanguardMS Proprietary SAM key exchange protocol to negotiate the keys.

Protected

Subnet

Vanguard 342

Vanguard 342

with VPN

with VPN

 

Frame

 

Relay

Protected

Subnet

Internet

Figure 1-2. Encryption over IP, Frame Relay, and X.25 Networks

Security Features

The security features in Vanguard Applications Ware release 5.5 and greater also include Firewall functionality based on IP Packet Filtering. Access Control Lists can be configured based on a combination of source and destination addresses. IP Protocol, TCP/UDP source and destination port numbers/ranges, and interface numbers. A feature called Cypher Block Chaining prevents repeated patterns in Plaintext from appearing as repeated patterns in Cyphertext, thus making it harder for hackers to find traffic patterns.

About the Vanguard 342

1-9

Page 28 Page 30
Image 29
Page 28 Page 30
Contents Vanguard Managed Solutions Restricted Rights Legend Restricted Rights Notification for U.S. Government UsersTelecommunications Regulations Proprietary MaterialRadio Frequency Interference Regulations Page Contents Contents This Chapter Description About This ManualOverview Other About This Manual Related DocumentationDocumentation Documentation Kit IncludesAbout This Manual Page Overskrifter Special Notices and TranslationsSimplified Chinese Danish Særlige Vermeldingen Dutch BijzondereFinnish Erityisilmoitukset French MessagesHinweise German BesondereItalian Simboli specialiMerknader Japanese Korean Norwegian SpesielleSpanish/Spain Notificaciones Portuguese PortugalEspeciales Swedish SpeciellaVarning Customer Customer InformationQuestions Comments AboutPage Customer Response Card Page Chapter Limitations Vanguard 342 DescriptionDescription Features and Functionality Functionality DaughtercardTarget Applications Requirements of a What is a VPN? Advantages of aVirtual Private Network Hardware Options Hardware-based VPN Solution for Site-to-Site ApplicationsIPSec Standard-based Tunneling and Encryption for IP TrafficEncryption over IP, Frame Relay, and X.25 Networks Security FeaturesIP and Serial Protocols over Frame Relay IP and Serial Protocols over Frame RelayVideo and Serial Protocols over Public or Private Networks Video and Serial Protocols over Public or Private NetworksSpeeds DSU DIM, FXS/FXO Application Daughtercard Application Description Type UsedSmall Home and Branch Office to Central Office Application Soho and Branch Office to Central Office over IsdnOffice Type Daughtercard Used Description 342 DSL/Cable ModemShdsl Daughtercard LAN Over WAN G.SHDSL Daughtercard InstalledLAN Segmentation LAN Segmentation10. Vlan Virtual LAN VlanLimitation Clocking Limitations VanguardVanguard 342 DCE INT -- VG6560/VG320/VG64xx EXT at 1.5 Mbps Vanguard 342 DCE INT -- VG6560 SDB2 EXTHardware Description Overview ChapterIntroduction Vanguard 342 Enclosure Front Panel EnclosureVanguard 342 Rear Panel Rear PanelGeneral MotherboardDaughtercards AccessMotherboard Vanguard 340 Compatible Flash Simm Devices are as follows Vanguard 342 Compatible Flash Simm Devices are as followsCompatibility Vanguard DaughtercardsDIM Port FXS/FXO Voice Daughtercard Connector FXO Daughtercard Dual E&M 10. Dual E&M Daughtercard ConnectorIsdn Enhanced Isdn BRI-S/T Data Isdn BRI Voice 12. Isdn and Enhanced Isdn BRI-S/T Daughtercard Connector14. DSU Daughtercard Connector Modem 16. V.90 Daughtercard ConnectorsPage Installation and Replacement Checking Your Shipment Contents Installing The Vanguard Selecting and Preparing the Installation Site Proper Cable and Air Clearance Step Action Installing Your VanguardInstallation Power Supply Inlet TemperatureThermal Considerations FanInterface Option Configuring the Serial InterfaceInterface Type Configure Port Setting the Interface TypeParameter Step Action Result/DescriptionEnter Setting the Interface OptionsPort Types Panel Cabling the VanguardCharacteristics Cable Requirements Port Characteristics and CablingPort Connector Interface Cable Required Speed Application SpecificDCE DTECable Information ConnectorsConfigure port RJ45 Pinout RJ45 Pin Signal Pin Connection On DB25F Adapter10/100BaseT Adapter Cable Pin SignalTest Mode External Transmit Clock Make Busy Function/Signal Port DTE Signal using Pin NamePort3 Adapter CableCLOCK-B External External Transmit CLOCK-A DB25 V.35/V.36 PinoutsCONTROL-B Signal Element Port DCE Signal Function/Signal DTE Signal Pin Name UsingTIMING-A Received DATA-B TIMING-B External Transmit Clock B Clock aCrossover Cable Connections Connections modeModifying Your Vanguard Vanguard Installing Vanguard DaughtercardsAccessing Accessing the MotherboardVanguard 342 Motherboard Removal and Replacement Installing Motherboard Procedure forRemoving Motherboard StepFlash Simm Adding and Removing Memory ModulesSdram Dimm Adding/Removing Data Compression Encryption Simm Adding/RemovingSimm and Dimm Installation/Replacement Location of Motherboard Components Sdram Dimm Flash Simm Simm and Dimm SlotsInstalling/Removing the Lithium Battery Removing Installing BatteryPage Powering Up and Loading Software Overview Resetting Powering Up Your VanguardPowering On Approved Practice for Powering Down a Vanguard Unit Powering Off The VanguardPowering Off The Vanguard Panel LEDs Powerup DiagnosticsDetailed Front When This indicates Power UpSequence GreenAccessing the Control Terminal Port Using SoTCP Using RemoteTelnet EnterOperating Software Obtaining and Installing Operating SoftwareWhere to Get Filename Description File FormatsSoftware SpecificationsHardware Specifications Software License and Regulatory Information Overview Appendix BRJ48S How to Order ConnectionsRJ49C RJ48CEquipment Customer-ProvidedTelephone CE Marking Product Declarations and Regulatory InformationVerklaring van overeenstemming Declarations ConformityItalian Dichiarazione di conformità Product Declarations and Regulatory Information Page Limited Warranty Page For Locations Contact Return Procedures IntroductionFactory Repair CTP IndexNumerics Simm Index-3
Top Page Image Contents