Brick Devices - Alcatel-Lucent Security Management Server (SMS) Release 9.4 Technical Overview
Hide thumbs
Also See for Security Management Server (SMS) Release 9.4:
- Installation manual (138 pages)
Table of Contents
Advertisement
Alcatel-Lucent VPN Firewall Brick
Brick Devices
...................................................................................................................................................................................................................................
Overview
A Brick device can be partitioned into true virtual firewalls. Each virtual firewall has
its own routing information, its own set of IP addresses, and its own policy rules,
which specify the types of traffic allowed and how that traffic is processed. Policy
rules are also referred as Brick zone rulesets or simply zones. Each zone is applied to
one or more physical ports of a Brick, qualified by a set of IP addresses, as well as a
set of VLAN tags. A given Brick zone ruleset will only apply to traffic to or from
those IP addresses on those VLANs. Wildcards may be used in such assignment.
Additionally, Brick zone rulesets may be applied to multiple Brick devices.
The use of Brick zone rulesets is not additionally licensed and are only limited by the
physical resources of the Brick device to which they are applied.
While Brick devices may be assigned to VLANs, the two features are in no ways
interdependent. VLAN tagging may be used with or without virtual firewalls, and
Brick devices may be used with or without VLAN tagging.
Each Brick zone can be assigned a single Virtual Brick Address (VBA). A Brick device
can be assigned multiple VBAs. A VBA may be used for multiple purposes, including
Network Address Translation (NAT) as well as acting as a Tunnel End Point for VPN.
Brick devices can also be used to represent different customers in a multi-tenant
environment. Sessions are unique within each given Brick device, and, when used in
conjunction with Brick partitions, can be used to ensure session independence in a
shared environment.
...................................................................................................................................................................................................................................
1-4
™
Security Appliance
260-100-022R9.4
Issue 1, June 2009
Advertisement
Table of Contents
Need help?
Do you have a question about the Security Management Server (SMS) Release 9.4 and is the answer not in the manual?
Questions and answers