Datasheet

IPSEC for Radius

• Basic IPSEC support in MSS only (no RingMaster support)

• Static key for encryption and authentication (no IKE)

• Transport mode with encryption between the IP source and destination

addresses

• Encapsulating Security Payload (ESP) mechanism

• Encryption ciphers available: AES, 3DES

• Integrity checking using HMAC-SHA1*

• The IPSEC tunnel must be established between an MX and RADIUS

server before RADIUS communications are started

• The RADIUS server must support IPSec

• A RADIUS server is considered an IPSec ‘Peer’

• A maximum of 16 peers are supported

* Hash-based Message Authentication Code – Secure Hash Algorithm 1

Trapeze Networks, A BELDEN Brand | Proprietary and Confidential | 1/27/2010 Slide 21