beautypg.com

Scalability and redundancy, Certificate and key management, Public key infrastructure – Nortel Networks NN46120-104 User Manual

Page 23

background image

Software Features

23

Ability to create multiple clusters of VPN Gateways, each capable of
serving its own group of real servers.

Supports rewriting of client requests.

Ability to transmit additional information to the backend servers.

Supports end-to-end encryption.

Compatible with all Nortel Application Switches, Nortel Web Switches
and comparable switches from other vendors.

SSL Acceleration is covered in the Application Guide for SSL Acceleration.

Scalability and Redundancy

Support for 256 VPN Gateways per cluster

Support for 256 virtual SSL servers

Provides dynamic plug and play – VPN Gateways can be added to or
removed from a cluster dynamically without disrupting network traffic

Provides a single system image (SSI) – all VPN Gateways in a given
cluster are configured as a single system

High level of redundancy in the master/slave cluster design; even if
three master VPN Gateways in a cluster would fail, additional slave
NVGs will still be operational and can accept configuration changes

Certificate and Key Management

Server and client authentication

Generation and revocation of client certificates

Automatic retrieval of certificate revocation lists (CRLs)

Validation of private keys and certificates

Generation of certificate signing requests (CSRs)

Generation of self-signed certificates

Public Key Infrastructure

RSA pair key generation

Server certificate enrollment

Server key and certificate import/export

Key and certificate renewal

Nortel VPN Gateway

User Guide

NN46120-104

02.01

Standard

14 April 2008

Copyright © 2007-2008 Nortel Networks

.