Table 74: Client Support for Suite-B

Client Operating System

Windows 7

Windows Vista

Windows XP

Supported Suite-B

IKE Authentication

IKEv1 Clients using ECDSA Certificates

IKEv1/IKEv2 Clients using ECDSA Certificates with L2TP/PPP/EAP-TLS certificate user-authentication

Supported Suite-B IPsec Encryption

AES-128-GCM

AES-256-GCM

The Suite-B algorithms described in Table 73 are also supported by Site-to-Site VPNs between Dell controllers, or between a controller and a server running Windows 2008 or StrongSwan 4.3.

Working with IKEv2 Clients

Not all clients support the both the IKEv1 and IKEv2 protocols. Only the clients in Table 75 support IKEv2 with the following authentication types:

Table 75: VPN Clients Supporting IKEv2

Windows 7 Client

Machine authentication with Certificates

User-name password authentication using EAP- MSCHAPv2 or PEAP- MSCHAPv2

User smart-card authentication with EAP-TLS / IKEv2

NOTE: Windows 7 clients using IKEv2 do not support pre-shared key authentication.

StrongSwan 4.3 Client

Machine authentication with Certificates

User-name password authentication using EAP- MSCHAPv2.

Suite-B cryptographic algorithms

VIA Client

Machine authentication with Certificates

User-name password authentication using EAP-MSCHAPv2

EAP-TLS using Microsoft cert repository NOTE: VIA clients using IKEv2 do not support pre-shared key authentication.

Understanding Supported VPN AAA Deployments

If you want to simultaneously deploy various combinations of a VPN client, RAP-psk, RAP-certs and CAP on the same controller, see Table 76.

Each row in this table specifies the allowed combinations of AAA servers for simultaneous deployment. Configuration rules include:

RAP-certs can only use LocalDB-AP

A RAP-psk and RAP-cert can only terminate on the same controller if the RAP VPN profile’s AAA server uses Local-db.

If a RAP-psk is using an external AAA server, then the RAP-cert cannot be terminated on the same controller.

Clients can use any type of AAA server, regardless of RAP/CAP authentication configuration server.

Table 76: Supported VPN AAA Deployments

VPN Client

RAP psk

RAP certs

CAP

External AAA server 1

LocalDB

LocalDB-AP

CPSEC-whitelist

Dell PowerConnect W-Series ArubaOS 6.2 User Guide

Virtual Private Networks 273

Page 273
Image 273
Dell 6.2 manual Working with IKEv2 Clients, Understanding Supported VPN AAA Deployments

6.2 specifications

Dell 6.2 is an advanced enterprise solution that caters to the needs of businesses seeking robust performance and efficiency. As a part of Dell's commitment to innovation, the 6.2 series combines cutting-edge technologies and features that enhance productivity and deliver reliable computing experiences.

One of the standout features of the Dell 6.2 is its impressive processing power. Equipped with the latest Intel processors, it offers exceptional speed and multitasking capabilities. This allows businesses to run demanding applications effortlessly, making it ideal for data-intensive tasks such as data analysis, software development, and virtualization. The series also supports substantial RAM configurations, enabling users to manage extensive workloads without experiencing slowdowns.

In terms of storage, the Dell 6.2 line includes advanced SSD options that significantly boost data access speeds compared to traditional hard drives. This rapid access to information is vital for businesses that require quick retrieval of large datasets. Furthermore, the devices support RAID configurations, which enhances data redundancy and security, protecting critical business information from loss.

Connectivity is another critical aspect of the Dell 6.2 series. It includes multiple USB ports, HDMI outputs, and high-speed Ethernet options, ensuring that users can easily connect to various peripherals and networks. The integration of Wi-Fi 6 technology enables faster wireless connections, resulting in improved internet speeds and bandwidth efficiency, which is crucial in today’s increasingly connected workplaces.

Dell has also prioritized security in the 6.2 series. It features enhanced biometric authentication and advanced encryption methods, safeguarding sensitive data from unauthorized access. Additionally, the system's BIOS protection and automatic updates provide an added layer of security, ensuring that the device remains safe from emerging threats.

The design of the Dell 6.2 is not only sleek and modern but also built for durability. Its robust chassis is engineered to withstand the rigors of daily use, making it suitable for various business environments. This durability ensures that the investment in Dell 6.2 will last for years while maintaining performance integrity.

In summary, the Dell 6.2 series embodies a blend of speed, storage efficiency, connectivity, and security, making it a top choice for enterprises looking to enhance their computing capabilities. With its modern features and durable design, Dell 6.2 is positioned as a reliable partner in driving business success.