 5
2 TheContivityExtranet4600Switch
TheNortelNetworksContivityExtranetSwitch4600(referredtoasthemodule,or
Switchinthisdocument)providesascalable,secure,manageableremoteaccessserver
thatmeetsFIPS140-1level2requirementsforamultiple-chipstandalonemodule.The
followingsectionsdescribehowtheSwitchaddressesFIPS140-1requirements.
2.1 CryptographicModule
TheContivityExtranetSwitchcombinesremoteaccessprotocols,security,
authentication,authorization,andencryptiontechnologiesinasinglesolution.
Figure1–TheContivityExtranet4600Switch
TheSwitchcansupportupto5000simultaneoususersessions,allowingeachuserto
exerciseavarietyofsecureservices.TheSwitchsupportsanumberofsecurenetwork-
layeranddata-link-layerprotocolsincludingInternetProtocolSecurity(IPSec),Point-to-
PointTunnelingProtocol(PPTP),LayerTwoTunnelingProtocol(L2TP),andLayerTwo
Forwarding(L2F).ThearchitecturefortheSwitchisuser-centric,whereanindividual
userorgroupofuserscanbeassociatedwithasetofattributesthatprovidecustomaccess
totheExtranet.Ineffect,youcancreateapersonalizedextranetbasedonthespecific
needsofauserorgroup.TheuniqueQualityofService(QoS)featuresincludecall
administrationandpacketforwardingpriorities,andsupportforResourceReSerVation
Protocol(RSVP).
2.2 ModuleInterfaces
TheinterfacesfortheSwitcharelocatedontherearpanelasshowninFigure2.