AcoustiRACK Lownoise Cabinets Allot Communications Alteon AppSense APC American Power Conversion Nortel Networks Alteon Portfolio Barracuda Networks Bluecoat Proxy/Websense Checkpoint CipherTrust Cisco Cisco PIX Firewalls Citrix Crossbeam Systems CRYPTOCard Double-Take EMC Corporation Expand Networks F5 Networks FaceTime Finjan Software Fortinet Security Appliance Foundry Networks Fujitsu Siemens GBIC (GigaBit Interface Converter) HP Proliant Servers HP Storage Networking Solutions Identrica IBM xSeries Server & Bladecenter Intelligent Wave Ironport ISS Proventia Juniper Networks McAfee Netscreen Firewall/VPN Nokia IP Security Platform Nortel Networks Observer Suite Opteq Palo Alto Networks Packeteer PC Guardian Encryption Proventia Q-Balancer RED-M Wireless Network Security Retina Network Security Scanner RightFax (Captaris) Riverbed Technology RSA Reflex Security Secure Computing Safeword - Secure Computing SonicWALL Firewall SurfControl Text Message Server TippingPoint Top Layer TRENDMicro Vasco Digipass Authentication VMware WatchGuard Firewall/VPN Webscreen Websense

Juniper IPSec Service Module
Home > Juniper > Networking Platforms > E-series > IPSec Service Module

IPSec Service Module

The IPSec Service Modules (ERX-IPSEC-MOD and ERX-IPSECURE-MOD) encrypt and/or decrypt packets encoded with the IPSec protocol.

The Internet Protocol Security (IPSec) architecture provides a security suite for the IPv4 and IPv6 network layers. The suite provides such functionality as authentication of origin, data integrity, confidentiality, replay protection, and nonrepudiation of source. In addition to IPSec, the JUNOSe software also supports the Internet Key Exchange (IKE) and Public Key Infrastructure (PKI), which defines mechanisms for key generation and exchange and manages security associations (SAs).

IPSec provides secure tunnels between two peers. To use IPSec security services, security associations are created between hosts. An SA is a simplex connection that allows two hosts to communicate with each other securely by means of IPSec. There are two types of SAs, manual and dynamic.

  • Manual SAs require no negotiation; all values, including the keys, are static and specified in the configuration.
  • With dynamic SAs, IKE creates dynamic security associations and negotiates SAs for IPSec. The IKE configuration defines the algorithms and keys used to establish the secure IKE connection with the peer security gateway. This connection is then used to dynamically agree upon keys and other data used by the dynamic IPSec SA. The IKE SA is negotiated first and is then used to protect the negotiations that determine the dynamic IPSec SAs.
  IPSec Service Module
Number of Tunnels 5000
Number of Sessions 5000
Performance Wire speed
Encapsulation Methods Authentication Header (AH), Encapsulating Security Payload (ESP
Encryption Methods Data Encryption Standard (DES), Triple Data Encryption Standard (3DES)
Authentication Methods Message Digest 5 (MD5), Secure Hash Algorithm (SHA-1)
Key Management Algorithm Internet Key Exchange (IKE)
Key Generation Algorithm Diffie-Hellman
Key Management Authentication Preshared Keys, Digital Certificates
Secure Remote Access (SRA) Support Microsoft Windows 2000, XP, NT, 98, and ME, and clients that are based on L2TP (such as SafeNet)

For a technical consultant to call you click here and they will do so at the time you specify. If you are looking for a quotation or need help designing your solution then click here. If you require access to our SECURE online catalogue then click here.

Call me now
Chat Online
Request Quote
Email Us

(+44) (0)845 226 3535

Get a Quote

Get a fast, no-obligation quote tailored to your requirements:

GSA Schedule

Speak Free
Copyright © Computrad (Europe) Limited - All Rights Reserved