Alcatel-Lucent VPN Firewall Portfolio User Manual

Alcatel-Lucent VPN Firewall Portfolio

Protect your network with innovative security solutions.

Optimize IT staff time and effort while minimizing
total cost of ownership.

Benefits

• Deploy robust security safeguards enterprise-wide
Implement large-scale VPN support with high-performance packet processing

•

• Streamline firewall deployment, configuration and management

• Leverage high-availability bandwidth management for consistent service quality
Secure your V

•

• Sustain business continuity with carrier-class reliability and availability

• Keep total ownership costs low

oIP and Next-Generation multimedia applications

Complete, cost-effective solutions for
network security, VPN, service-quality
assurance and more

The Alcatel-Lucent VPN Firewall portfolio offers a broad
range of enterprise and carrier-class security solutions
to protect corporate and service provider networks
delivering mission-critical IP applications to
headquarter employees, branch offices, trading
partners, road warriors and customers.

Alcatel-Lucent VPN Firewall solutions can help stretch IT
budgets with superb price/performance and low total
ownership costs. Leading-edge technology with
timesaving, work-saving features help maximize IT
staff resources. And ample flexibility, availability and
scalability can simplify deployment and management
of diverse applications including:

• Advanced security services

• VPN services for site-to-site and remote access

• Bandwidth management capabilities

• Secure data center Web and application hosting

• Storage network secure solution

• Mobile data security

• Packet Data Gateway and Packet Data Interworking
Functions for Dual-Mode Wireless/WiFi VPN and
VoIP/Data Security

The Alcatel-Lucent VPN Firewall Portfolio forms a
unique 3-tier security architecture and includes:

VPN Firewall Brick®platforms – Security appliances that

•
integrate application layer inspection, firewall
functionality with advanced VPN capabilities for small­office through data-center requirements

Alcatel-Lucent Security Management Server (SMS) – Software

•
for robust, tightly synchronized firewall, VPN, service
quality, VLAN and virtual firewall policy management.

•

lcatel-Lucent IPSec Client

A

– Software that provides
secure remote access VPN services for mobile
workforce and telecommuters.

Deploy robust security safeguards
network-wide

VPN Firewall Brick®platforms are built as security-

specific devices. In contrast to traditional router-based
systems, they operate as intrinsically secure Ethernet­layer bridges that are virtually invisible to hackers
scanning your network. Completely segregated from
the routing process, these security appliances are not
vulnerable to dynamic routing protocol attacks. In
many instances, they are undetectable by any device
not on the same network segment, protecting
enterprises with a high level of stealth security.

Reinforcing this depth of defense is the platforms’
innovative, Bell Labs-developed operating system, a
compact real-time kernel designed exclusively for
security. Far less easily compromised than general­purpose operating systems running on server platforms,
this exceptionally thin system virtually eliminates all
points of vulnerability. As a result, VPN Firewall Brick
platforms have no security-threatening back doors (no
telnet, ftp, HTTP or other insecure access method can be
used to compromise the configuration of these security
devices) and can only be accessed by a secure, encrypted
management channel from the Alcatel-Lucent SMS
software.

Alcatel-Lucent SMS software adds exposure-limiting
safeguards including strong IP-specific denial-of­service attack protection, premium firewall and VPN
authentication services, application-layer defense and
content-level security including command blocking,
URL blocking and virus scanning.

®

IPSec Client 9.0

• Easy to use IPSec w/IKE
Auto policy download

•

• Stateful Firewall

• Client “status logs”
Managed client option

•

• Interoperable with
full portfolio

®

350 and Brick®1100 are not available in Europe.All other models are

* Brick

compliant with European RoHS (Restriction of Hazardous Substances) directive

VPN Firewall

®

Brick

50

• (3) 10/100 ports
195 Mbps fir

•

• 75 Mbps 3DES

• 135,000 sessions
1000

•

• 50 virtual firewalls

ewall

VPN tunnels

VPN Firewall

®

Brick

150

• (4) 10/100 ports
330 Mbps fir

•

• 127 Mbps 3DES

• 245,000 sessions
1000

•

• 150 virtual firewalls

ewall

VPN tunnels

VPN Firewall

®

Brick

350*

• (7) 10/100 ports
(1) 10/100/1000 port

•

• 787 Mbps firewall

• 404 Mbps 3DES
1,000,000 sessions

•

• 5400 VPN tunnels

• 300 virtual firewalls

.

VPN Firewall

®

Brick

700

• (8) 10/100/1000 port

•

• 425Mbps 3DES

• 1,000,000 sessions

•

• 350 virtual firewalls

1.7 Gbps fir

VPN tunnels

7500

ewall

VPN Firewall

®

Brick

1100*

• (4) GigE Fiber or
(13) GigE Copper
(7) 10/100

ewall

3 Gbps fir

•

• up to 1 Gbps 3DES

• 4,000,000 sessions

VPN tunnels

20000

•

• 1,000 virtual firewalls

• Brick 1100A has AES
H/W Accel

VPN Firewall

®

Brick

1200/1200HS

• (2) or (6) mini-GBIC SFP
(8) or (14) 10/100/1000
port

3.0 or 4.75Gbps fir

•

• 1.1 or 1.7Gbps 3DES

• 2,000,000 or 3,000,000
sessions

10000 or 20000

•
tunnels

• 500 or 1100 virtual
firewalls

VPN

Alcatel-Lucent Security Management Server

Software for robust, tightly synchronized firewall, VPN, service quality, VLAN and virtual firewall policy management.

arrior SOHO ROBO Small Enterprise Mid Enterprise Large Enterprise

W

Road

Data Center

VPN Firewall Brick®platforms deliver bullet-proof security and comprehensive, high-performance VPN capabilities for

enterprise environments ranging from small offices to large data centers.

2

ewall