Alcatel-Lucent VPN Firewall Portfolio
Protect your network with innovative security solutions.
Optimize IT staff time and effort while minimizing
total cost of ownership.
Benefits
• Deploy robust security safeguards enterprise-wide
• Implement large-scale VPN support with high-performance packet processing
• Streamline firewall deployment, configuration and management
• Leverage high-availability bandwidth management for consistent service quality
• Secure your VoIP and Next-Generation multimedia applications
• Sustain business continuity with carrier-class reliability and availability
• Keep total ownership costs low
CPE-based
Services
VLAN 100
Extranet Server
VLAN 200
SAP Server
VLAN 300
Mail Server
VLAN 400
Public Server
Existing
Router
Network-based
Services
VPN Firewall
Data Center
Services
Brick® 50/150
VPN Firewall
Brick® 1100
VPN Firewall
Brick® 1200 HS
Existing
Router
Alcatel-Lucent
Security
Management
Server
VLAN 400
Public Server
VPN Firewall
Brick® 350
IP Network
USA NOC
Active/Active
Management
Existing
Router
Alcatel-Lucent
Security
VPN Firewall
The Alcatel-Lucent VPN Firewall
portfolio offers flexible deployment
options to suit enterprise network
strategies and users’ diverse needs.
Brick® 700
Management
Server
EMEA NOC
IPSec
Client
Mobile/IPSec Client
Services
Centralized Management
with Alcatel-Lucent SMS
• Seamless integration of firewall, VPN, bandwidth
management, virtual LAN (VLAN) and virtual firewall
policy management – centralized realtime monitoring,
robust logging and customized reporting capabilities
Implement large-scale VPN support with
high-performance packet processing
VPN Firewall Brick® platforms deliver the performance
needed to provide vital security and VPN services for
thousands of enterprise users. High-capacity packet-
processing capabilities help maximize user efficiency
and productivity with up to 1.7 Gbps VPN throughput
and a full 4.75 Gbps firewall throughput.
• Integrated Denial of Service protections, Intrusion
Detection/Prevention facilities and Bell Labs-developed
Intelligent Cache Management capabilities maximizes
uptime and mitigates impacts of network attacks
Leverage high-availability bandwidth
management for consistent service quality
Portfolio-wide scalability helps protect expanding user
populations cost effectively. A single VPN Firewall
Brick® unit can support up to 4 million simultaneous
sessions and over 20,000 simultaneous VPN tunnels.
Its highly efficient operating system contributes to
these outstanding processing capabilities by freeing
memory for session and policy management.
VPN Firewall Brick® platforms can increase both network
security and quality of service through uniquely granular
bandwidth management. They incorporate – at no extra
charge – robust implementation of class-based queuing
(CBQ) technology for committed-rate bandwidth control
and traffic prioritization. Bandwidth limits to help defend
against flood attacks, and bandwidth guarantees to
enhance end-user experiences, are enforced at the server
and user levels. Traffic can be classified by physical
Streamline firewall deployment,
configuration and management
VPN Firewall Brick® platforms can be installed and
working at any network location. These flexible
bridging firewalls work as quickly as a physical
connection can be made. There’s no need to re-
segment the network, worry about downtime during
network conversion to the new topology or wait as
hosts are directed to a new gateway. Alcatel-Lucent
SMS software delivers:
interface, virtual firewall, policy rule and session, enabling
simplified yet precisely targeted security implementations.
Sustain business continuity with
carrier-class reliability and availability
A high-availability architecture is built into every
component of the Alcatel-Lucent VPN Firewall portfolio.
There is no single point of failure solution-wide. All
VPN Firewall Brick® models support native subsecond
failover to a standby unit. In an outage, services
continue uninterrupted. Out-of-band management
capabilities help ensure continued service even if
communications are lost due to a network outage. For
added reliability, Alcatel-Lucent SMS software can be
distributed across multiple geographically dispersed
operations centers for active/active network
• Sophisticated IP services management capabilities with
low operating costs to manage security, not individual
devices – easy security deployment, management and
maintenance with centrally controlled VPN Firewall
Brick® clients
• Scalability to rapidly provision and manage up to
20,000 VPN Firewall Brick® platforms and 500,000
IPSec Client users from one console – fewer devices to
maintain and fewer people to maintain them
redundancy. This enables immediate disaster recovery
in the event of a catastrophe at the primary
management location.
3
Alcatel-Lucent VPN Firewall Portfolio
• Simplified management – unique client/server design;
centralized staging, real-time monitoring and no-touch
management of all VPN, security and service-quality
assurance capabilities via scalable, proven Lucent SMS
Keep your total ownership costs low
VPN Firewall solutions efficiently address the need to
contain operations outlays, make efficient use of in-
house technical expertise and protect network
investments. All solution components are built to
interoperate smoothly with existing infrastructure
elements. Introducing them requires no costly
network retrofits.
• Full-featured bridging – enables stealthy, depth-of
defense security that conventional router-based
firewalls cannot match
• Advanced security safeguards – denial-of-service attack
protection; high-speed content security; premium
authentication services; with no occurrences of
reported advisories or vulnerabilities and no
backdoors.
VPN Firewall Brick® products help cut IT staff hours and
shorten time-to-service with its full-featured bridging
support. And because it doesn’t run on a general-
purpose operating system, it eliminates the high costs
and time-intensive efforts associated with OS upgrades
and patches.
• Uniquely granular bandwidth management – maximize
service quality via flexible class-based queuing (CBQ)
technology, server-level and user-level limits and
guarantees
The performance-proven Alcatel-Lucent SMS security
management solution offers one simple, economical
licensing structure – without costly additional modules
or recurring license fees. Its high-capacity processing
and high-device-count management capabilities help
minimize additional capital-equipment purchases.
• Carrier-grade reliability – native high-availability
architecture with no single point of failure
• Rules Based Routing – Routes all packets matching the
rule to a proxy server, router or other device utilizing
third party software to perform content filtering
functions such as command blocking, URL filtering
and virus scanning. Allows transparent interaction
with any third party equipment.
And its comprehensive security safeguards
dramatically reduce network vulnerabilities that
consume IT staff time and budget.
• High-performance packet processing – supports up to
4 million simultaneous sessions, 1100 virtual firewalls,
20,000 VPN tunnels
• Ultra-thin, highly secure operating system – virtually
impenetrable to hacker attacks; frees memory for
packet processing, policy management
• Virtual firewall and VLAN support – easily assign and
enforce security policies for diverse user groups
• Plug-and-play deployment – implement secure mission
critical applications without costly, time-intensive
network reconfiguration
• Low ownership costs – no ongoing feature-licensing
expenses; easy installation, management and upgrades
save IT staff time and effort; high-performance, high
capacity features reduce the need to purchase
additional equipment
To learn more about our comprehensive portfolio, contact
your Alcatel-Lucent sales representative, authorized reseller
or sales agent.
Copyright © 2006
Alcatel-Lucent
All rights reserved
LVF.ENT v6.0107
This document is provided for planning purposes only and does
not create, modify or supplement any warranties which may be
made by Alcatel-Lucent relating to the products and/or services
described herein. The publication of information contained in
this document does not imply freedom from patent or other
protective rights of Alcatel-Lucent or third parties.
VPN Firewall Brick is a registered trademark of Alcatel-Lucent.
CERT is a registered trademark and service mark of Carnegie
Mellon University.
|