Policy Enforcement Point Configuration

Replace x.x.x.x with the IP address or the hostname of the syslog server.

7Save and close the file.

8Shut down and restart the ETKMS:

On external ETKMSs, restart the ETKMS service by typing: service etkms restart

On local ETKMSs, close the command line window for the ETKMS software and in the EncrypTight window, select Tools > Launch ETKMS LM.

Policy Enforcement Point Configuration

EncrypTight Policy Enforcement Points (PEPs) can be configured for Layer 2 or Layer 3/4 operation. Models include:

ET0010A

ET0010A

ET1000A

In most cases, when you install and configure the PEPs, you do not need to make addressing changes or other routing changes. The PEPs implement a network mode ESP transport mechanism that preserves all header information. The entire original packet is encrypted and a copy of the original header is used as the header for the new packet. This allows the PEPs to operate transparently, without requiring changes to your existing network addressing. You should maintain your existing network gateways as configured. You should not configure the local port on a PEP as a gateway address.

To prepare the PEPs for operation with EncrypTight:

Perform basic installation tasks.

Perform initial setup as directed in the PEP’s Installation Guide. At a minimum, this consists of connecting cables to the PEP’s communication ports and setting the management port IP address.

When they are first installed, ETEP PEPs pass all traffic in the clear until they receive policies. Refer to the documentation for your PEPs for more information on initial behavior and how to make sure the PEPs are properly installed.

If you plan to use a PEP with EncrypTight distributed key policies, you should not configure any other types of policies on the PEP before you enable EncrypTight. Doing so can have undesirable effects.

Configure the appliances in the EncrypTight software.

Using the ETEMS Appliance Manager feature in EncrypTight, add and configure each PEP. Refer to the sections below for configuration settings that are required for distributed key and negotiated key polices.

For distributed key policies, see “Adding a New PEP in ETEMS” on page 148

For point-to-point negotiated policies, see “Creating Layer 2 Point-to-Point Policies” on page 335

Related topics:

“Provisioning Basics” on page 95

“Adding a New PEP in ETEMS” on page 148

“Creating Layer 2 Point-to-Point Policies” on page 335

EncrypTight User Guide

55

Page 53 Page 55
Page 54
Image 54
Black Box EncrypTight, ET1000A, ET0010A, ET0100A manual Policy Enforcement Point Configuration
Page 53 Page 55

EncrypTight, ET0100A, ET0010A, ET1000A specifications

The Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are advanced solutions designed for secure data transmission and network management, catering to modern enterprise needs. These tools integrate cutting-edge technologies to enhance connectivity, security, and efficiency within various environments.

The Black Box ET1000A is primarily a high-performance Ethernet over Twisted Pair (EoTP) solution. It enables users to extend Ethernet signals over long distances using existing twisted-pair cabling without sacrificing speed or reliability. With support for speeds up to 100 Mbps, this device is ideal for organizations looking to upgrade their existing infrastructure without extensive rewiring. Key features include plug-and-play installation, which simplifies deployment, and versatile compatibility with both legacy and modern ethernet networks.

The ET0010A model takes connectivity a step further by providing seamless integration with fiber optics. This device supports transmission distances that far exceed traditional copper solutions, making it a perfect fit for larger facilities or multi-building campuses. Its built-in Ethernet switch enhances network efficiency by providing multiple ports for device connectivity, thus facilitating greater data flow.

EncrypTight technology is a notable feature across these Black Box models, offering advanced encryption capabilities to safeguard sensitive data during transmission. With military-grade encryption protocols, EncrypTight ensures that corporate information remains secure from potential eavesdroppers. This technology is essential for businesses operating in regulated industries or that handle confidential customer information.

The ET0100A model combines intelligence with monitoring features to provide users with comprehensive network insights. It boasts built-in diagnostic tools that enable IT professionals to troubleshoot issues quickly and efficiently. Additionally, it features real-time performance monitoring, allowing users to analyze bandwidth usage and optimize network performance accordingly.

In conclusion, the Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are powerful tools that embody the latest in data transmission and network management technologies. With their unique features—including extended connectivity capabilities, robust encryption technologies, and real-time monitoring solutions—these devices cater to the growing demands of businesses seeking to enhance their network infrastructure while ensuring robust security and efficiency. Integrating these tools into any organization’s operations can fundamentally improve both performance and data protection, making them indispensable in today’s digital landscape.
Top Page Image Contents