Frame relay and x.25 encryption – Vanguard Managed Solutions Vanguard 342 User Manual

About the Vanguard 342

1-9

Target Applications

Frame Relay and X.25 Encryption

Frame Relay and
X.25 Networks

Another value-added feature in Vanguard Managed Solutions VPN implementation
is the ability to encrypt LAN traffic and serial legacy protocols (SNA, SDLC, SLAC,
and TBOP) and transport them over Frame Relay and X.25 networks. This is
particularly useful in the financial industry where SNA traffic going out into the
branches and ATM machines require a high level of security. This implementation
also uses DES, Triple-DES (112-bit) for encryption and VanguardMS Proprietary
SAM key exchange protocol to negotiate the keys.

Figure 1-2. Encryption over IP, Frame Relay, and X.25 Networks

Security Features
The security features in Vanguard Applications Ware release 5.5 and greater also
include Firewall functionality based on IP Packet Filtering. Access Control Lists can
be configured based on a combination of source and destination addresses. IP
Protocol, TCP/UDP source and destination port numbers/ranges, and interface
numbers. A feature called Cypher Block Chaining prevents repeated patterns in
Plaintext from appearing as repeated patterns in Cyphertext, thus making it harder
for hackers to find traffic patterns.

Protected

Subnet

Protected

Subnet

Vanguard 342

with VPN

Vanguard 342

with VPN

Frame

Internet

Relay