IPSec | Vanguard Managed Solutions 342 specs

Target Applications

	Standard-based Tunneling and Encryption for IP Traffic
IPSec
IPSec		IPSec is the predominant tunneling and security standard for IP Networks. It defines
		protocols required for site-to-site as well as remote access VPN implementations at
		layer 3 of the OSI model. Vanguard Applications Ware release 5.5 and greater
		supports these IPSec features:
				• Authentication Header (AH) and Encapsulating Security Payload (ESP) for
				user authentication and encryption.
				• Internet Key Exchange (IKE) using preshared keys for key management.
				• Message Digest (MD5) and Secure Hashing Algorithm-1 (SHA-1) for data
				integrity.
				• ISAKMP supports DES, Triple-DES and AES
				• ESP support DES, Triple-DES and AES
				Note


				ISAKMP and ESP support is available with the ECC DIMM.

Multi-protocol Tunneling and Encryption

General Router Whereas IPSec can only tunnel IP traffic over IP Networks, GRE tunneling is a Encryption (GRE) Layer 2 protocol that can tunnel multi-protocol traffic over IP Networks. This

enables the Vanguard to tunnel and encrypt IP, IPX, and other bridge data.

DES and Triple-DES (112-bit) are used as encryption algorithms and the fast and efficient SAM proprietary key exchange protocol is used for key management. Integrity Check Character (ICC) establishes data integrity when the SAM protocol is implemented.

1-8	About the Vanguard 342

Image 28

Vanguard Managed Solutions 342 installation manual Standard-based Tunneling and Encryption for IP Traffic, IPSec

Contents

Vanguard Managed Solutions Restricted Rights Notification for U.S. Government Users Restricted Rights Legend Radio Frequency Interference Regulations Proprietary MaterialTelecommunications Regulations Page Contents Contents Overview About This ManualThis Chapter Description About This Manual Related Documentation OtherDocumentation Documentation Kit Includes About This Manual Page Simplified Chinese Danish Særlige Special Notices and TranslationsOverskrifter Dutch Bijzondere VermeldingenFinnish Erityisilmoitukset French Messages German Besondere HinweiseItalian Simboli speciali Japanese Korean Norwegian Spesielle Merknader Portuguese Portugal Spanish/Spain NotificacionesEspeciales Swedish Speciella Varning Customer Information CustomerQuestions Comments AboutPage Customer Response Card Page Chapter Description Vanguard 342 DescriptionLimitations Features and Functionality Daughtercard Functionality Target Applications Virtual Private Network What is a VPN? Advantages of aRequirements of a Hardware-based VPN Solution for Site-to-Site Applications Hardware Options Standard-based Tunneling and Encryption for IP Traffic IPSec Security Features Encryption over IP, Frame Relay, and X.25 Networks IP and Serial Protocols over Frame Relay IP and Serial Protocols over Frame Relay Video and Serial Protocols over Public or Private Networks Video and Serial Protocols over Public or Private Networks Speeds Application Daughtercard Application Description Type Used DSU DIM, FXS/FXO Soho and Branch Office to Central Office over Isdn Small Home and Branch Office to Central Office Application Office Type Daughtercard Used Description DSL/Cable Modem 342 LAN Over WAN G.SHDSL Daughtercard Installed Shdsl Daughtercard LAN Segmentation LAN Segmentation Virtual LAN Vlan 10. Vlan Clocking Limitations Vanguard LimitationVanguard 342 DCE INT -- VG6560/VG320/VG64xx EXT at 1.5 Mbps Vanguard 342 DCE INT -- VG6560 SDB2 EXT Chapter Hardware Description Overview Enclosure Introduction Vanguard 342 Enclosure Front Panel Rear Panel Vanguard 342 Rear Panel Motherboard General Motherboard AccessDaughtercards Vanguard 342 Compatible Flash Simm Devices are as follows Vanguard 340 Compatible Flash Simm Devices are as follows DIM Vanguard DaughtercardsCompatibility Port FXS/FXO Voice Daughtercard Connector FXO Daughtercard 10. Dual E&M Daughtercard Connector Dual E&M 12. Isdn and Enhanced Isdn BRI-S/T Daughtercard Connector Isdn Enhanced Isdn BRI-S/T Data Isdn BRI Voice 14. DSU Daughtercard Connector 16. V.90 Daughtercard Connectors ModemPage Installation and Replacement Checking Your Shipment Contents Installing The Vanguard Selecting and Preparing the Installation Site Proper Cable and Air Clearance Installation Installing Your VanguardStep Action Inlet Temperature Power SupplyThermal Considerations Fan Interface Type Configuring the Serial InterfaceInterface Option Setting the Interface Type Configure PortParameter Step Action Result/Description Port Setting the Interface OptionsEnter Types Cabling the Vanguard Panel Port Characteristics and Cabling Characteristics Cable RequirementsPort Connector Interface Cable Required Speed Application Specific DTE DCE Configure port ConnectorsCable Information RJ45 Pin Signal Pin Connection On DB25F Adapter RJ45 Pinout Pin Signal 10/100BaseT Adapter Cable Function/Signal Port DTE Signal using Pin Name Test Mode External Transmit Clock Make BusyPort3 Adapter Cable DB25 V.35/V.36 Pinouts CLOCK-B External External Transmit CLOCK-A Port DCE Signal Function/Signal DTE Signal Pin Name Using CONTROL-B Signal ElementTIMING-A Received DATA-B TIMING-B External Transmit Clock B Clock a Connections mode Crossover Cable Connections Modifying Your Vanguard Installing Vanguard Daughtercards Vanguard Accessing the Motherboard Accessing Vanguard 342 Motherboard Removal and Replacement Procedure for Installing MotherboardRemoving Motherboard Step Sdram Dimm Adding and Removing Memory ModulesFlash Simm Adding/Removing Adding/Removing Data Compression Encryption Simm Simm and Dimm Installation/Replacement Location of Motherboard Components Simm and Dimm Slots Sdram Dimm Flash Simm Installing/Removing the Lithium Battery Installing Battery RemovingPage Powering Up and Loading Software Overview Powering On Powering Up Your VanguardResetting Powering Off The Vanguard Approved Practice for Powering Down a Vanguard Unit Powering Off The Vanguard Detailed Front Powerup DiagnosticsPanel LEDs Power Up When This indicatesSequence Green Accessing the Control Terminal Port Using Remote Using SoTCPTelnet Enter Where to Get Obtaining and Installing Operating SoftwareOperating Software File Formats Filename Description Hardware SpecificationsSoftware Specifications Appendix B Software License and Regulatory Information Overview How to Order Connections RJ48SRJ49C RJ48C Telephone Customer-ProvidedEquipment Product Declarations and Regulatory Information CE Marking Declarations Conformity Verklaring van overeenstemming Italian Dichiarazione di conformità Product Declarations and Regulatory Information Page Limited Warranty Page Return Procedures Introduction For Locations Contact Factory Repair Numerics IndexCTP Simm Index-3