The complex and intensive tasks required for VPN data encryption and key generation can impose heavy
burdens for resource demands on VPN gateways, constricting WAN throughput and limiting the ability of
gateways to run security applications.
The Luna VPN Accelerator Card responds to these performance issues. Developed by Chrysalis-ITS, Luna is a hardware-based cryptographic accelerator that cooperates fully with CheckPoint's market-leading VPN-1 gateway software - providing your company with a fully integrated, accelerated VPN solution.
The integration of Check Point VPN-1 gateway software and the Luna VPN Accelerator Card with the Nokia IP Network Application Platform provides a powerful alternative to the often piecemeal approaches previously undertaken to build a VPN. This integration occurs at the kernel level, performing the processing-intensive cryptographic operations required by IPSec/IKE - the Internet security protocol standard.
The Luna accelerator is a PCI-compatible card administered directly by VPN-1 software, requiring no additional configuration or management overhead. It is available pre-installed in the new Nokia IP400 and IP600 series platforms. It can also be incorporated through an upgrade of the platforms already installed in your network. IP600 series platforms support hot-swappable Compact PCI slots, allowing the accelerator card to be added at any time - without affecting service or requiring reconfiguration. The software drivers come preloaded on the platform.
If the accelerator card fails for any reason, Check Point FireWall-1™ software encryption takes over, preventing the network from going down. This exceptional level of fault tolerance guarantees VPN up-time and delivers secure, high-speed enterprise connectivity.
Combined with Nokia's IP network appliance implementation - which frees you from installing and configuring complex server operating systems and application software - Nokia's cryptographically accelerated VPN appliances bring a true "ready to run" implementation to high performance VPNs.
Hardware-based VPN acceleration enables Nokia VPN solutions to scale to significantly higher capacities while freeing appliance resources for other security tasks. The Luna Accelerator Card can double or triple VPN throughput to support high-speed networks using multi-T1/E1s. At the same time, appliance CPU capacity is freed to run additional applications such as FireWall-1TM Security Servers, Websense and more, under both light and heavy VPN traffic loads.
The performance and scalability of the Nokia solution makes it perfect for deployments of any size from small-office installations to large-scale VPN aggregation points.
Protocols Supported
IPSec/IKE (manual key exchange not supported)
Cryptographic Functions
Symmetric Algorithms:
DES (56-bit)
Triple DES (168-bit)
Message Authentication Codes (MAC):
HMAC-MD5
HMAC-SHA-1
Physical Characteristics
Short-form PCI card
Regulatory Standards
UL 1950 safety compliant
Certification
CSA C22.2 safety compliant
FCC Part 15 - Class B
Manufacturing
ISO-9002 Certification
