Manuals / Black Box / Kitchen Appliance / Appliance Trim Kit

Black Box ET1000A Selecting a Role, Using Preshared Keys for IKE Authentication, Using Group IDs

Models: EncrypTight ET0100A ET0010A ET1000A

1 352
Download 352 pages 21.02 Kb
Page 336
Image 336

Working with Policies

deploy management port IPsec polices while in Layer 2 point-to-point mode, use manual key policies to encrypt management port traffic.

We recommend setting the time on the ETEPs before setting up the Layer 2 point-to-point policy. Changing the clocks after the policy is established may cause traffic to be dropped.

Related topics:

“Selecting a Role” on page 337

“Using Preshared Keys for IKE Authentication” on page 337

“Using Group IDs” on page 337

“Selecting the Traffic Handling Mode” on page 338

“EncrypTight Settings” on page 333

“Encryption Policy Settings” on page 334

“How the ETEP Encrypts and Authenticates Traffic” on page 338

Selecting a Role

The appliance role is used in the process of establishing a security association (SA) between ETEP peers. The ETEP can assume one of two appliance roles when it is configured for point-to-point operation. One of the appliances must be assigned the primary role and the other the secondary role. The ETEPs will not function properly if both appliances are configured with the same role.

Using Preshared Keys for IKE Authentication

In point-to-point Layer 2 networks, the ETEPs use IKE negotiations to establish security associations (SAs) between peer appliances. The ETEP uses the preshared key string to authenticate its peer’s identity before the ETEPs begin to negotiate the SAs. The same key value must be entered in both appliances.

We recommend that you change the key from its default value of 01234567 prior to deploying the ETEP. Note the following conventions when creating a preshared key:

The key is a case-sensitive alphanumeric string from 8-255 characters in length

Valid characters are upper and lower alpha characters, numbers 0-9

All special characters are allowed except the following: ? “ { } [ ] ( ) = \ < > & and #

To include a space, enclose it in double quotes.

Using Group IDs

In a point-to-point network, the two ETEPs must be configured with the same group ID in order to communicate properly with each other. If you are using only one pair of ETEPs in the same subnet you can use the default group ID.

If more than one pair of ETEPs is used within the same Layer 2 network, the group ID isolates the traffic from one pair of ETEPs from any other pair. Each appliance can belong to only one group.

EncrypTight User Guide

337

Page 335 Page 337
Page 336
Image 336
Black Box ET1000A, ET0010A, EncrypTight manual Selecting a Role, Using Preshared Keys for IKE Authentication, Using Group IDs
Page 335 Page 337

EncrypTight, ET0100A, ET0010A, ET1000A specifications

The Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are advanced solutions designed for secure data transmission and network management, catering to modern enterprise needs. These tools integrate cutting-edge technologies to enhance connectivity, security, and efficiency within various environments.

The Black Box ET1000A is primarily a high-performance Ethernet over Twisted Pair (EoTP) solution. It enables users to extend Ethernet signals over long distances using existing twisted-pair cabling without sacrificing speed or reliability. With support for speeds up to 100 Mbps, this device is ideal for organizations looking to upgrade their existing infrastructure without extensive rewiring. Key features include plug-and-play installation, which simplifies deployment, and versatile compatibility with both legacy and modern ethernet networks.

The ET0010A model takes connectivity a step further by providing seamless integration with fiber optics. This device supports transmission distances that far exceed traditional copper solutions, making it a perfect fit for larger facilities or multi-building campuses. Its built-in Ethernet switch enhances network efficiency by providing multiple ports for device connectivity, thus facilitating greater data flow.

EncrypTight technology is a notable feature across these Black Box models, offering advanced encryption capabilities to safeguard sensitive data during transmission. With military-grade encryption protocols, EncrypTight ensures that corporate information remains secure from potential eavesdroppers. This technology is essential for businesses operating in regulated industries or that handle confidential customer information.

The ET0100A model combines intelligence with monitoring features to provide users with comprehensive network insights. It boasts built-in diagnostic tools that enable IT professionals to troubleshoot issues quickly and efficiently. Additionally, it features real-time performance monitoring, allowing users to analyze bandwidth usage and optimize network performance accordingly.

In conclusion, the Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are powerful tools that embody the latest in data transmission and network management technologies. With their unique features—including extended connectivity capabilities, robust encryption technologies, and real-time monitoring solutions—these devices cater to the growing demands of businesses seeking to enhance their network infrastructure while ensuring robust security and efficiency. Integrating these tools into any organization’s operations can fundamentally improve both performance and data protection, making them indispensable in today’s digital landscape.