IPSec
IPSec
Firewall
Group
Firewall
Group
Dealer DMZ
Supplier DMZ
Supplier DMZ
Supply chain
Ordering/Invoicing
Dealer DMZ
Product information
Price lists
Ordering
Firewall
Group
Contivity VPN
Switch
Contivity
VPNSwitch
Headquarters
DSL access
IPSec tunnel
Internet traffic
IPSec tunnel
ATM/FR
access
LAN
Supplier
Dealer
DSL access
Managed IP
Network or Internet
Contivity VPN
Switch
IPSec Tunnels
Users Database
The Nortel Networks Contivity VPN Switch
integrates all of the elements needed to build a high
performance, scalable and secure VPN – routing,
firewall, bandwidth management, encryption,
authentication and data integrity – into one single
platform for secured tunnelling across the Internet.
The range of VPN solutions in the Contivity portfolio
allows the implementation of solutions tailored to
fit small, medium and large companies.
• Contivity switches are placed at each
partner’s office
• Connectivity into the managed IP network
is via any available transport technology
• Secure IPSec tunnels encrypt and encapsulate
traffic between sites
• Firewalls in each Contivity switch protect
the site LAN from outside threats
• Group policies on the firewalls control
which partners have what access
Extranet IP-VPN (Virtual Private Network) Solution 223
Secure Remote Connectivity - Extranet IP-VPN
(Virtual Private Network) Solution
Customer Needs
• Establish e-relationships with external business partners, suppliers and dealers
• Controlled access of information between interested parties
• Protection for private, sensitive data
• Leverage Internet economics in the WAN
• Provide encryption and strong authentication between sites
Nortel Networks Solution
Figure 1: Nortel Networks Extranet IP-VPN Solution
Business Connectivity via the Internet