Nortel Networks 4500 FIPS manual The Contivity Extranet 4500 Switch, Cryptographic Module

2 The Contivity Extranet 4500 Switch

The Nortel Networks Contivity Extranet Switch 4500 provides a scalable, secure, manageable remote access server that meets FIPS 140-1 level 2 requirements. This section will describe the general features and functionality provided by the Contivity Extranet Switch. Section 3 will provide further details on how the Contivity Switch addresses FIPS 140-1 requirements.

2.1Cryptographic Module

The Contivity Extranet Switch combines remote access protocols, security, authentication, authorization, and encryption technologies into a single solution.

Figure 1 – The Contivity Extranet 4500 Switch

The Switch can support up to 5,000 simultaneous user sessions, allowing each user to exercise a variety of secure connections and services. The Switch supports a number of secure network-layer and data-link-layer protocols including Internet Protocol Security (IPSec), Point- to-Point Tunneling Protocol (PPTP), Layer Two Tunneling Protocol (L2TP), and Layer Two Forwarding (L2F). The architecture for the Switch is user-centric, where an individual user or group of users can be associated with a set of attributes that provide custom access to the Extranet. In effect, you can create a personal Extranet based on the special needs of a user or group.

2.2Module Interfaces

The interfaces for the Switch are located on the rear panel as shown in Figure 2.