secure site-to-site networking with ip encryption r&s ... · pdf fileadministrators...
TRANSCRIPT
You act. We protect.Encryption & IT security by Rohde & Schwarz SIT.
Secure site-to-site networking with IP encryptionR&S®SITGate VPN
The R&S®SITGate VPN protects data transmissions on public and private networks by encrypting and authenticating IP packets. It supports traffic shaping, which means it can accommodate quality-of-service requirements specific to different traffic classes, such as for voice over IP or data. Administrators configure the R&S®SITGate VPN over an advanced, clearly organized web interface that simpli-fies the setting of cryptographic and network-specific parameters.
The R&S®SITGate VPN is available in different performance classes. Depending on the model, it has between 4 (S50) and 16 (L800) inter-nal network ports to allow sites and clients to efficiently connect to private networks.
Virtual private networks (VPN) enable users to access private networks over the Internet from remote sites, home offices and mobile devices. When it comes to network security, dedicated encryption devices afford greater protection than network equipment with built-in encryption capabilities. The R&S®SITGate VPN is a 19" encryption appliance for setting up secure IP VPNs.
SITGate_fly_en_3606-9210-32_v0100.indd 1 07.11.2013 08:27:40
R&S® is a registered trademark of Rohde & Schwarz GmbH & Co. KG
Trade names are trademarks of the owners
PD 3606.9210.32 | Version 01.00 | November 2013 (ch)
R&S®SITGate
Data without tolerance limits is not binding | Subject to change
© 2013 Rohde & Schwarz GmbH & Co. KG | 81671 München, Germany
Rohde & Schwarz SIT GmbH
Am Studio 3
D-12489 Berlin
Phone: +49 30 658 84 223
Fax: +49 30 658 84 183
E-mail: [email protected]
www.sit.rohde-schwarz.com
3606
.921
0.32
01.
00 P
DP
1 e
n
3606921032
Structure of VPNs using R&S®SITGate
Home office
Central office
Internet
Branch office
Mobile device
Quality of service (QoS) through traffic shapingPrior to encryption and authentication, network traffic can be prioritized according to network ports and applications.Telephony, for instance, can be given higher priority than, say, e-mail traffic. This helps optimize use of available bandwidth while ensuring consistent quality of service.
IPsec versus OpenVPN IPsec OpenVPN
Encryption 3DES, AES 128, AES 256 Blowfish 128
Key exchange and authentication IKEv1 with Diffie-Hellman, IKEv2 with Diffie-Hellman
certificate-based with Diffie-Hellman
Integrity protection SHA1 with HMAC HMAC digest
Advanced, interoperable cryptographyThe R&S®SITGate VPN can be used to secure site-to-site VPNs. Two protocols are available: IPsec and OpenVPN. IPsec can be used to set up VPN connections with thirdparty IPsec encryptors. The standard VPN clients from Android, iOS, Windows, MacOS and Linux operating systems are supported so that mobile devices and home office equipment can be connected using client-to-site VPNs.
SITGate_fly_en_3606-9210-32_v0100.indd 2 07.11.2013 08:27:41