Nortel Networks 7.11, 7.05 manual Logical Boundary, TOE Environment

In Figure 3 above, the TOE is installed at the boundary of the private (“Enterprise”) network and the public (“Internet”) network. In Figure 4 above, the TOE is installed at the boundary of the two private (“Enterprise”) networks. The essential physical components of the TOE are:

Nortel VPN Router v7.05 build 100: The Nortel VPN Router is a dedicated hardware/software appliance running a Nortel-hardened version of the VxWorks OS. All non-essential OS processes have been removed and direct access to the OS is impossible. The Nortel VPN Router is produced at seven performance levels (models 600, 1010, 1050, 1100, 1750, 2750, and 5000) which provide identical functionality; they differ only in network throughput and performance.

Nortel VPN Client Workstation v7.11 build 100: The Nortel VPN Client is used to access to establish VPN sessions with the Nortel VPN Router from a remote location.

2.3.1.1TOE Environment

The TOE environment is composed of the following:

Nortel VPN Client Workstation2

oProvides the underlying OS (Microsoft Windows 2000 SP4 or XP SP2) and general-purpose computing hardware platform for the VPN user to connect to the Nortel VPN Router.

Management Workstation

oProvides the underlying OS and general-purpose computing hardware platform for the TOE user to interact with the administrative GUI provided by the TOE.

CLI Workstation

oProvides the underlying OS and general-purpose computing hardware platform for the TOE user to interact with the administrative CLI provided by the TOE.

Corporate Servers

oProvide data and services to VPN users through the VPN services provided by the TOE.

2.3.2Logical Boundary

Figure 5 and Figure 6 below illustrates the logical boundary of this CC evaluation:

2 Note that the Nortel VPN Client Software is included within the TOE boundary but the underlying OS and hardware are not.