Nortel VPN and Security Router

Nortel Virtual Private Networking (VPN) solutions provide secure remote access, so you can be confident your network is protected, no matter where your users log in from.Nortel VPN Router 1000 Series adapts to several roles in enterprise and carrier networks: basic IP access router, dedicated VPN switch, or firewall. A Nortel platform can evolve from one to another by licensing a software key. Supporting up to 30 tunnels, Nortel VPN 1000 Routers are ideal for bringing branch office and partner locations into a secure corporate network.

Key Features:

Cost-effectively extends IP-based remote access to locations needing up to 30 tunnels-serving as either a basic IP access router, dedicated VPN device, or firewall- in a single compact unit Offers high-end software and administration in a small, low-cost package

Supports dynamic routing and load-balancing for tunneled and non-tunneled traffic, sophisticated quality-of-service (QoS), and bandwidth management features

Requires no changes to network, workstations, applications, or operating systems

Supports centralized management via a secure, encrypted Internet tunnel-using VPN Router Multi-Element Manager, Web-browser, or command-line interface

Product Features

Cost-effectively extends secure IP networking to branch offices, home offices, and business partner locations requiring up to 30 active IPSec tunnels.
Offers complete IP access router and VPN features in a single box, including IP routing, virtual private networking, stateful firewall, encryption, authentication, policy services, quality of service (QoS), and bandwidth management services.
Supports standard IPsec, L2TP, PPTP, and L2F tunneling protocols to interoperate with a wide range of multi-vendor VPN software and hardware.
Encrypts outgoing traffic with DES, 3DES, or Advanced Encryption Standard (AES) to prevent eavesdropping of data en route.
Accepts incoming traffic through authenticated, tunneled connections, and logs all transactions for audit and trend reporting.
Authenticates users via RADIUS, LDAP, SecureID, X.509 digital certificates, token cards or smart cards; works with enterprises' existing directory-based authentication services
Supports industry-standard routing protocols that enable dynamic routing of traffic around network trouble spots and load-balance traffic across parallel paths, both for tunneled and non-tunneled traffic.
Integrates management, access, routing, and policies into a consistent security structure-which in turn supports dynamic routing over secure IPsec tunnels, service turn-up on demand, and common policies across VPN, firewall and routing services.
Provides QoS and bandwidth management features that support Differentiated Services (DiffServ), RSVP, sophisticated IP traffic prioritization and queue management.
Provides a full 128 Mb of RAM (upgradeable to 256 Mb) in a compact desktop unit, hardened to withstand environmental conditions in unregulated customer-premise locations.
Interoperates with existing firewalls, routers, and servers; requires no changes to network, user workstations, sub-netted intranets, or user applications and operating systems.
Supports stateful packet inspection firewall capability, which accepts or denies traffic based on full examination of incoming and outgoing packets for more than 100 application protocols.
Supports packet filtering, where each user, group, or branch office connection-internal or external-can have a unique filtering profile with different access rights.
Uses Web graphical interface, command-line interface, or VPN Router Multi-Element Manager utility for easy configuration of a single Contivity unit or bulk provisioning of up to 2500 Contivity units across a large network.

Product Benefits Gives enterprises a competitive edge by enabling cost-effective, secure IP connectivity across the entire supply chain, including branch offices, suppliers, distributors, and other business partners.
Enables service providers to cost-effectively offer branch-to-branch or branch-to-headquarters VPN connectivity as a managed service.
Flexible software licensing system enables enterprises to turn up services as needed, to grow a Nortel 1000-series IP access router into a dedicated VPN device, then a VPN platform with stateful firewall services.
Streamlines equipment requirements by packaging required VPN software and hardware in a single box, without requiring other localized network equipment or servers.
Enables enterprises to extend access to multiple remote locations, without compromising the internal, trusted network.
Protects transmissions from eavesdropping through DES, 3DES, AES, or RC4 encryption.
Protects user workstations and corporate network resources from unauthorized access, by supporting firewall services, packet filtering, and accepting only authenticated, tunneled traffic.
Provides easy installation with a configuration wizard that eliminates the need for on-site technical installers.
Reduces administration costs through centralized, integrated management of remote Nortel units over the Internet, and multi-box configuration through the VPN Router Multi-Element Manager.
Offers the same security and performance as high-end systems-such as dynamic routing, packet filtering, and integrated management-in a low-cost package no bigger than a shoebox.

VPN Router 200 Series

Nortel VPN Router 200 Series provides low-cost secure connectivity to the Internet or managed IP networks. Nortel VPN Router 200 Series is available in two models, the VPN Router 221 and VPN Router 251. They are designed for telecommuters and small offices/home offices with VPN, stateful firewall, URL/content filtering and optional integrated ADSL in a compact easy-to-manage platform. Key Features:

Advanced IPsec capabilities with up to five VPN tunnel capacity addresses site-to-site VPN needs of small offices and telecommuters.

Full stateful inspection firewall with up to 50 rules, denial of service protection, logging, and e-mail alerts prevent unwanted network intrusions.

Content/URL filtering blocks java applets, cookies and web proxies so that network administrators can tailor remote site access policies to be consistent with rest of the enterprise.

Integrated 4-port 10/100 Ethernet switch allows direct connection of user PCs and LAN devices without the need for a separate Ethernet switch or hub.

Integrated ADSL option conforming to international standards allows global deployments.

Features & Benefits

Advanced IPsec capabilities with up to five VPN tunnel capacity addresses site-to-site VPN needs of small offices and telecommuters.

Full stateful inspection firewall with up to 50 rules, denial of service protection, logging, and e-mail alerts prevent unwanted network intrusions.

Content/URL filtering blocks java applets, cookies and web proxies so that network administrators can tailor remote site access policies to be consistent with rest of the enterprise.

Integrated 4-port 10/100 Ethernet switch allows direct connection of user PCs and LAN devices without the need for a separate Ethernet switch or hub.

Integrated ADSL option conforming to international standards allows global deployments.

Nortel VPN Client emulation mode simplifies remote set-up by emulating "VPN client" to another Nortel device. IP attributes are dynamically assigned and existing remote access VPN information can be re-used.

Dial back-up through console port allows continued data transmission in cases where the primary IP connection goes away.

PPPoE, DHCP, DNS and NAT support all simplify deployment over the Internet, as well as broadband DSL connections.

Nortel VPN Client

The Nortel VPN Client provides user-side ('client') functionality for secure remote access over IP networks using Nortel VPN routers and VPN servers. Nortel VPN Client software works on virtually all user workstations access platforms, including Windows 2000, NT, ME, XP, Mobile (Pocket PC), IBM-AIX, SUN-Solaris, Linux and Macintosh operating systems Key Features:

Provides full user-side functionality for VPN Router and VPN Gateway-based secure access from Windows, Unix/Linux, Solaris, Pocket PC, and Macintosh systems

Enforces centralized security policies, including bandwidth allocation, access control, authentication, encryption, and other user parameters; triggers automatic denial or termination of out-of-parameter client connections

Enables PDA and other devices running the Windows Mobile operating system (Pocket PC) to securely connect to VPN Router (Contivity) via Nortel provided and supported software (i.e., no 3rd-party software required).

Allows end-users to roam across network boundaries (e.g., from wireless LAN to fixed LAN) without breaking the secure VPN connection and disrupting end-user applications.

Enables administrators to customize and mass-distribute configurations to users; optionally, can auto-launch when connecting, with no end-user software load required

Supports load-balancing, failover, and LZS compression for optimum user experience

Integrates with complementary security, authentication, and access control products (Verisign, Entrust, Baltimore, etc.)

Nortel VPN routing switchs

Nortel VPN 10xx routers

Nortel VPN routers at a glance

Nortel VPN Client