NEWS & EVENTS | CAREER | CONTACT | DEUTSCH
About us | Products | Competencies | Partner | Support
HOME Products TrustedVPN TrustedVPN Technical Data
Endpoint Security Trusted Infrastructure TrustedVPN
TrustedVPN TrustedObjects Manager Roadwarrior
Voice Encryption Systems Digital Line Interfaces
Technical Data Data Sheet [PDF]

Technical Data

TrustedVPN

System

Services

  • IKE-Server, IPsec-Server, IP-Filter, DHCP-Client/Server, NTP-Client, PPoE support
  • VLAN support, QoS priority control according to network/port profiles
  • Policy-based access and routing according to network/port profiles
  • Optionally: redundant VPN gateways and support of backup routing (e.g. UMTS)

Management

  • Appliances centrally by management server according to global trust relationshipdefinitions, access secured by mutual TPM based authentication and attestation
  • Web-based administrator access to management server via dedicated Ethernet port
  • Integrated provisioning service with firmware rollout according to freely selectable groups
  • Comprehensive monitoring and audit-proof reporting

IPsec Protocols

  • Encapsulating Security Payload (ESP), Authentication Header (AH)
  • Tunnel- or Transport mode
  • NAT-Traversal (NAT-T)
  • Dead Peer Detection (DPD)
  • Locations without static public IP address supported

VPN Modes

  • Site-to-Site VPN for direkt connection of two locations
  • VPN Software-Client support  (Windows 7, Windows Vista, Windows XP (all 32/64 bit),Linux and Mac) for road warriors e.g. at HotSpots
  • Internal IP-Adress for road warriors via Source-NAT procedure assignable
  • Interoperability mode to connect with third party VPN systems

IPsec Protokolle

  • Encapsulating Security Payload (ESP), Authentication
    Header (AH)
  • Tunnel- oder Transportmodus
  • NAT-Traversal (NAT-T)
  • Dead Peer Detection (DPD)
  • Standorte ohne statische öffentliche IP Adresse
    einbindbar

VPN Modi

  • Site-to-Site VPN zur direkten Verbindung zwischen
    zwei Standorten
  • VPN Software-Client-Support (Windows 7, Windows
    Vista, Windows XP (alle 32/64 Bit),Linux und Mac) für
    mobile Mitarbeiter z.B. am Hotspot
  • Interne IP-Adresse für Road Warrior im Source-NAT- Verfahren zuweisbar
  • Interoperabilitätsmodus zur Anbindung fremder
    VPN-Systeme

Sirrix.TrustedVPN S

Performance

  • Durchsatz in MBit/s : 95 MBit
  • Empfohlene Anzahl Clients: 100

System

  • CPU: 1,8 Ghz VIA C7, Hardware-Accelerated Hash und Encryption mit PadLock™ ACE
  • RAM: 1 GB RAM
  • Festspeicher: 2 GB Solid State Disk
  • Schnittstellen: 1 x 100 Mbit und 1 x Gbit LAN
  • 300 x 215 x 73mm

Sicherheitsverfahren

Internet Key Exchange

  • Main und Aggressive Modus
  • Diffie-Hellman (2048 – 8192 Bit)
  • Perfect Forward Secrecy (PFS)

Authentisierungsverfahren 

  • TPM-/HSM-basiert, über X.509 Zertifikate
    (RSA 2048 – 8192 Bit)
  • Externe oder integrierte Zertifizierungsstelle (CA)
  • Optional: SmartCard Tokens für mobile Mitarbeiter

Sirrix.TrustedVPN L

Performance

  • Durchsatz in MBit/s : 1 GBit
  • Empfohlene Anzahl Clients: 1000

System

  • CPU: 3,0 GHz Intel Core2Duo, Hardwaree-Accelerated CCM Modus (integrierte authentication / encryption)
  • RAM: 2 GB RAM
  • Festspeicher: 2 x 250GB Raid-1 Festplatte
  • Schnittstellen: 4 x 1 GBit LAN
  • 19” 2HE Rack Server
NEWS

Secure Browser “Browser in the Box“ now available for free

bitbox
PRODUCTS
Endpoint Security
TURAYA.TrustedInfrastructure
TURAYA.TrustedVPN
Voice Encryption Systems
Digital Line Interfaces
LOGIN |IMPRINT
© 2012 by Sirrix AG