Nortel 1010 DM1401092E5 Manuel D’Utilisation
Codes de produits
DM1401092E5
3
•
RIPv1, v2, Open Shortest Path First (OSPF)
•
802.1Q VLAN routing
•
Policy-based routing (next hop traffic filters)
•
Virtual Router Redundancy Protocol (VRRP)
•
Data Link Switching (DLSw); SNA encapsulation within IP
•
Dynamic Routing over IPsec (RFC 3884)
•
IPsec, including authentication header (AH), encapsulating security protocol (ES) and Internet key exchange (IKE)
•
Point-to-point tunneling protocol (PPTP), including compression and encryption
•
Layer 2 Tunneling Protocol (L2TP), including L2TP/IPsec
•
Data Encryption Standard (DES)
•
Triple DES (3DES) using 3 independent 56-bit keys; 168-bit key length (effective strength of 128 bits)
•
Advanced Encryption Standard (AES); 128-bit and 256-bit versions
•
RC4
•
User name and password and NT Domain Login
•
Internal or external lightweight directory access protocol (LDAP)
•
Remote authentication dial-in user services (RADIUS)
•
Hard and soft token support (e.g., SecureID and AXENT)
•
X.509 Digital Certificates and Smart Cards (support for all major vendors and MS-CAPI)
•
Point-to-Point Protocol (PPP); including PPP over Ethernet (PPPoE)
•
Frame Relay (including FRF.9 compression and FRF.12 fragmentation)
•
ADSL (G.DMT, G.Lite, ANSI T1.413) with support for PPP and PPPoE over ATM
•
Dial-on-demand and dial back-up services via integral V.90 modem or ISDN
•
User and group-level configurable minimum bandwidth settings
•
Eight forwarding priority queues
•
DiffServ (Differentiated Services) with code point marking
•
802.1p/DSCP (Differentiated Services Code Point) mapping
•
Multi-level Random Early Detection (MRED)
•
Resource Reservation Protocol (RSVP)
•
IPComp (RFC 3173) for encrypted and non-encrypted traffic
•
FRF.9 Frame Relay compression
•
Secure IPsec transport of VoIP traffic
•
SIP Application Layer Gateway (ALG) for NAT and Stateful Firewall
•
Cone NAT (for Nortel Unistim protocol) with NAT ‘hairpinning’
•
FRF.12 fragmentation
•
Differentiated Services (DSCP) marking/mapping
•
DSCP marking by Nortel VPN Client
•
Event, system, security and configuration logging
•
Internal and external RADIUS accounting
•
Automatic archiving to external system
•
Nortel VPN Router Multi-Element Manager provides multi-box provisioning for up to 2,500 VPN Router devices
•
Full Web browser-based HTML configuration
•
Nortel Networks Command Line Interface
•
SNMP monitoring and alerts
•
East Install Web tool for plug-and-play installation
•
Multi-layer stateful packet inspection supporting over 100 network application protocols, including TCP, UDP, FTP,
HTTP, H.323, RealAudio, Java, and ActiveX
HTTP, H.323, RealAudio, Java, and ActiveX
•
Defense against major “hacker” attacks, including DOS, SYN flood, Smurf, Ping, Spoofing, Fraggle, and ICMP unreachable
•
Extensive and customizable logging options
•
NAT, Proxy and end-user authentication
•
Unlimited firewall users and policies for tunneled and non-tunneled traffic
•
IPsec (with DES, 3DES and AES encryption)
•
Microsoft Windows 95, 98, 2000, ME, NT and XP based clients (free/unlimited)
•
Macintosh, IBM-AIX, SUN-Solaris, HP-UX and Linux (via software license)
•
Tunnel Guard enforces corporate security policies on endpoint PCs by checking for anti-virus, personal firewall or any
application software (e.g., patches) before allowing VPN connection
application software (e.g., patches) before allowing VPN connection
•
ICSA (International Computer Security Association) certification (IPsec)
•
Virtual Private Network Consortium (VPNC) Basic Conformance Testing (IPsec)
Technical specifications — features and capabilities
Nortel VPN Routers — Models 1010, 1050, 1100
IP Routing
services
services
VPN tunneling
protocols
protocols
Encryption
User authentication
services
services
WAN protocols and
services
services
Bandwidth
management; QoS
management; QoS
Data compression
“VoIP-friendly”
features
features
Accounting
Management
Stateful firewall
Nortel VPN Client
Endpoint security
Certifications