Security Features

Foundry/configure# firewall corp Foundry/configure/firewall corp# object Foundry/configure/firewall corp/object# nat-pool addresspoolPat pat 50.1.1.5

Foundry/configure/firewall corp/object# exit Foundry/configure/firewall corp# policy 2 out address 10.1.1.1 10.1.1.3 any any

Foundry/configure/firewall corp/policy 2 out# apply-object nat- pool addresspoolPat

Foundry/configure/firewall corp/policy 2 out# exit 2 Foundry/configure#

Security Protocol Defaults

This section provides information about IPSec supported protocols and modes, encryption algorithms and block sizes, and Foundry IPSec and IKE default values.

IPSec Supported Protocols and Algorithms

The following tables provide supported protocol and algorithm information.

Table 15.1: IPSec Protocols Support

Supported Security

Mode

Protocols

 

 

 

ESP

Tunnel

 

Transport

 

 

AH

Tunnel

 

Transport

 

 

Table 15.2: Encryption Algorithms

Encryption Algorithms for ESP

Block Size

 

 

Data Encryption Standard (DES)

56 bits

 

 

Triple Data Encryption Standard

168 bits

(3DES)

 

 

 

Advanced Encryption Standard (AES-

128 bits

128)

 

 

 

Advanced Encryption Standard (AES-

192 bits

192)

 

 

 

Advanced Encryption Standard (AES-

256 bits

256)

 

 

 

Null Encryption

 

 

 

June 2004

© 2004 Foundry Networks, Inc.

15 - 61

Page 285 Page 287
Page 286
Image 286
Foundry Networks AR1208 Security Protocol Defaults, IPSec Supported Protocols and Algorithms, IPSec Protocols Support
Page 285 Page 287
Top Page Image Contents