Vanguard Managed Solutions Vanguard 342 Benutzerhandbuch
About the Vanguard 342
1-9
Target Applications
Frame Relay and X.25 Encryption
Frame Relay and
X.25 Networks
X.25 Networks
Another value-added feature in Vanguard Managed Solutions VPN implementation
is the ability to encrypt LAN traffic and serial legacy protocols (SNA, SDLC, SLAC,
and TBOP) and transport them over Frame Relay and X.25 networks. This is
particularly useful in the financial industry where SNA traffic going out into the
branches and ATM machines require a high level of security. This implementation
also uses DES, Triple-DES (112-bit) for encryption and VanguardMS Proprietary
SAM key exchange protocol to negotiate the keys.
is the ability to encrypt LAN traffic and serial legacy protocols (SNA, SDLC, SLAC,
and TBOP) and transport them over Frame Relay and X.25 networks. This is
particularly useful in the financial industry where SNA traffic going out into the
branches and ATM machines require a high level of security. This implementation
also uses DES, Triple-DES (112-bit) for encryption and VanguardMS Proprietary
SAM key exchange protocol to negotiate the keys.
Figure 1-2. Encryption over IP, Frame Relay, and X.25 Networks
Security Features
The security features in Vanguard Applications Ware release 5.5 and greater also
include Firewall functionality based on IP Packet Filtering. Access Control Lists can
be configured based on a combination of source and destination addresses. IP
Protocol, TCP/UDP source and destination port numbers/ranges, and interface
numbers. A feature called Cypher Block Chaining prevents repeated patterns in
Plaintext from appearing as repeated patterns in Cyphertext, thus making it harder
for hackers to find traffic patterns.
The security features in Vanguard Applications Ware release 5.5 and greater also
include Firewall functionality based on IP Packet Filtering. Access Control Lists can
be configured based on a combination of source and destination addresses. IP
Protocol, TCP/UDP source and destination port numbers/ranges, and interface
numbers. A feature called Cypher Block Chaining prevents repeated patterns in
Plaintext from appearing as repeated patterns in Cyphertext, thus making it harder
for hackers to find traffic patterns.
Protected
Subnet
Protected
Subnet
Vanguard 342
with VPN
Vanguard 342
with VPN
Frame
Internet
Relay