Target Applications

Frame Relay and X.25 Encryption

Frame Relay and Another value-added feature in Vanguard Managed Solutions VPN implementation

X.25 Networks is the ability to encrypt LAN traffic and serial legacy protocols (SNA, SDLC, SLAC, and TBOP) and transport them over Frame Relay and X.25 networks. This is particularly useful in the financial industry where SNA traffic going out into the branches and ATM machines require a high level of security. This implementation also uses DES, Triple-DES (112-bit) for encryption and VanguardMS Proprietary SAM key exchange protocol to negotiate the keys.

Protected

Subnet

Vanguard 342

Vanguard 342

with VPN

with VPN

 

Frame

 

Relay

Protected

Subnet

Internet

Figure 1-2. Encryption over IP, Frame Relay, and X.25 Networks

Security Features

The security features in Vanguard Applications Ware release 5.5 and greater also include Firewall functionality based on IP Packet Filtering. Access Control Lists can be configured based on a combination of source and destination addresses. IP Protocol, TCP/UDP source and destination port numbers/ranges, and interface numbers. A feature called Cypher Block Chaining prevents repeated patterns in Plaintext from appearing as repeated patterns in Cyphertext, thus making it harder for hackers to find traffic patterns.

About the Vanguard 342

1-9

Page 29
Image 29
Vanguard Managed Solutions 342 installation manual Encryption over IP, Frame Relay, and X.25 Networks, Security Features