Scalability and redundancy, Certificate and key management, Public key infrastructure – Nortel Networks NN46120-104 User Manual
Page 23
Software Features
23
•
Ability to create multiple clusters of VPN Gateways, each capable of
serving its own group of real servers.
•
Supports rewriting of client requests.
•
Ability to transmit additional information to the backend servers.
•
Supports end-to-end encryption.
•
Compatible with all Nortel Application Switches, Nortel Web Switches
and comparable switches from other vendors.
SSL Acceleration is covered in the Application Guide for SSL Acceleration.
Scalability and Redundancy
•
Support for 256 VPN Gateways per cluster
•
Support for 256 virtual SSL servers
•
Provides dynamic plug and play – VPN Gateways can be added to or
removed from a cluster dynamically without disrupting network traffic
•
Provides a single system image (SSI) – all VPN Gateways in a given
cluster are configured as a single system
•
High level of redundancy in the master/slave cluster design; even if
three master VPN Gateways in a cluster would fail, additional slave
NVGs will still be operational and can accept configuration changes
Certificate and Key Management
•
Server and client authentication
•
Generation and revocation of client certificates
•
Automatic retrieval of certificate revocation lists (CRLs)
•
Validation of private keys and certificates
•
Generation of certificate signing requests (CSRs)
•
Generation of self-signed certificates
Public Key Infrastructure
•
RSA pair key generation
•
Server certificate enrollment
•
Server key and certificate import/export
•
Key and certificate renewal
Nortel VPN Gateway
User Guide
NN46120-104
02.01
Standard
14 April 2008
Copyright © 2007-2008 Nortel Networks
.