The Ravlin 7150 is a high speed member of the RedCreek Ravlin family of security devices. It is easily configured in 100Base-TX infrastructures, and provides security bandwidth up to T3 rates to protect entire enterprise-wide networks. In conjunction with the Ravlin Soft client and the Personal Ravlin hardware device, the Ravlin 7150 allows complete, flexible control of (and access to) confidential and private resources. Access to the Ravlin 7150 device is via standard Ethernet 10BaseT and 100Base-TX connections.
The Ravlin 7150 products are targeted towards larger corporations that require Fast Ethernet connectivity and support for a multiple site-to-site and remote access connections. Network administrators use the Ravlin 7150 to establish private communications within secure Intranets (between corporate divisions, workgroups, and branch offices) or within secure Extranets (between customers, suppliers, and strategic partners.) Organizations can establish security over private or public IP networks quickly and easily.
Acting as a gateway, the Ravlin 7150 also supports Ravlin Soft clients running on Windows 95/98, Windows NT 4.0 systems, allowing remote communications over public and private networks.
RADIUS user authentication for remote client software is a standard feature of the Ravlin 7150. Ravlin Soft clients support use of token cards (such as SecurID) for challenge/response and One Time Password (OTP) authentication. The Ravlin 7150 supports the strongest suite of IPSec network security enforcement features available today, implementing all the mandatory components of the Internet Engineering Task Force (IETF) IP Security (IPSec) standard for enhanced network security. The Ravlin 7150 provides data privacy using industry - standard 56-bit Data Encryption Standard (DES) and 168-bit Triple DES encryption. Authentication and access control are provided using Digital Signature Standard (DSS), Diffie - Hellman key exchange, X.509 v.3 digital certificates, and IKE key management. The Ravlin 7150 firmware gives the network administrator or security manager a choice of several secure VPN operational modes.
All RedCreek products support the same firmware set and are completely interoperable. There is full compatibility among all Ravlin products with regard to IPSec, management and client interface.
Encapsulating Security Payload (ESP)
This is an IPSec Security protocol that secures the payload of an IP Packet using encryption. Typically
the encryption algorithm is 56-bit DES or 168 bit Triple DES.
Authentication Header (AH)
This IPSec Protocol provides data integrity by means of a message authentication code sent in the
transmitted IPSec packet. The packet authentication code is verified by the receiving end to ensure that
the packet data has not been altered during transmission.
IPSec Tunnel Encapsulation Mode
In this mode the original packet is encapsulated in the payload of a new packet with new destination and
source IP addresses. When used with ESP, the original packet is completely secure (encrypted), including
the original destination and source IP addresses.
IPSec Transport Encapsulation Mode
In this mode the original packet destination and source addresses are preserved. This mode is for
end-to-end communications only. Transport mode is used by the Ravlin only when communicating directly to
the gateway itself.
Anti-Replay Service and use of unique X.509 v.3 Certificates
Ravlin 7150 uses IPSec anti-replay services to ensure that rogue packets cannot be inserted into a Ravlin
protected data stream. With anti-replay service, each IP datagram passing within the secure association is
tagged with a sequence number. On the receiving end, the datagram is blocked if its sequence number does
not fall within a pre-specified window.
Ease of implementation and Administration
Integrates easily into existing networks through 10/100BaseT inputs and outputs
Secure download of product upgrades
Easy device management through industry-standard SNMP MIB II
Standard-Based Security and Management
Complies with the security standards developed by the Internet Engineering Task Force (IETF) IP Security (IPSec) Working Group
Ensures information privacy using full 56-bit DES (Data Encryption Standard) and 168-bit Triple DES
Provides access control through the use of International Standards Organization (ISO) X.509 v.3 digital certificates
Verifies the sender's identity with Digital Signature Standard (DSS) and Secure HMAC-MD5 and HMAC-SHA-1 Hash Algorithm (SHA) protocols
Establishes and maintains secure communications using the Internet Key Exchange (IKE) for key management
Provides enhanced confidentiality to IP datagrams through the IP Encapsulating Security Payload (IPESP) Tunneling Mode protocol
Uses industry-standard SNMP MIB II for device management
Provides support for the following protocols:
Transmission Control Protocol/Internet Protocol (TCP/IP), User Datagram Protocol (UDP), Dynamic Host Configuration Protocol (DHCP), Internet Control Message Protocol (ICMP), Address Resolution Protocol (ARP), Simple Network Management Protocol (SNMP)
RADIUS Authentication
Network Address and Port Translation (NAPT)
Interoperability
IKE for key management
Encapsulating Tunneling (IPSec IPESP) for interoperability with with firewalls
Standard 10/100 BaseT inputs and outputs to drop into any Fast Ethernet network
Operates at ISO Network layer 3, making it application independent
SNMPv1 with MIBII for device management
Low Cost of Ownership
Preserves investments in existing network hardware and software, by dropping transparently into the network without requiring modification to the existing network infrastructure
Delivers best price and performance for network security products
Allows significant network cost savings by ensuring secure communications and data privacy over public networks such as the Internet
Customer Support/Service
RedCreek Communications, Inc. believes that our customers deserve lasting value and continuous
satisfaction with RedCreek products. Because of this belief, RedCreek, in participation with its VARs,
offers innovative support programs to assist with installation and configuration of Ravlin products.
Please reference our Customer Support link.
