Glossary
Multi-Tech Systems, Inc. RouteFinderVPN RF760/660/600VPN User Guide (PN S000323D)
176
Glossary
* (Asterisk character)
– The ‘wildcard’ character, used to signify “all within this group or function” (e.g., use
*
to specify all
domain names). A special symbol that stands for one or more characters. Many operating systems and applications support
wildcards for identifying files and directories. This lets you select multiple files with a single specification. For example, in
DOS and Windows, the asterisk (*) is a wild card that stands for any combination of letters.
: (colon character)
– The character used by the RouteFinder
Web Admin
software for a port range. For example, to enter
the S-Port/Client source port number as a port range, enter 1024:64000.
, (comma character)
– The character used by the RouteFinder
Web Admin
software for a list of port numbers. For
example, to enter the S-Port/Client source port number as a list of port numbers, enter 25, 80, 110.
- (dash character)
– An acceptable RouteFinder WebAdmin entry field character. For example, from
VPN > IPSec > Add
an IKE connection > Secret)
you can enter a shared
Secret
using alphanumeric characters, the dash (
-
) or the space or
underline (
_
) characters.
_ (space or underscore character)
– An acceptable RouteFinder WebAdmin entry field character. For example, from
VPN
> IPSec > Secret)
you can enter a shared
Secret
using alphanumeric characters, the dash (
-
) or the space or underline (
_
)
characters.
3DES (Triple Data Encryption Standard)
– The 3DES encryption algorithm combines three uses of single DES with two
keys, making the key size 112 bits. With the increase in size, 3DES is much more secure than DES, but 3DES runs slower
than DES. The RouteFinder supports up to 256 tunnels with 3DES encryption throughput of 15M bps (e.g., 3DES can be
configured in WebAdmin from
VPN > IPSEC
).
The RouteFinder uses 3DES as an encryption algorithm and not simple DES (Data Encryption Standard) because simple
DES is generally known to be insecure and out of date.
The RouteFinder default selection is
3 des-md5-96
.
AES (Advanced Encryption Standard)
–
The U.S. government standard for data encryption.
Rijndael was chosen as the U.S. government encryption standard to protect sensitive data and to spur the digital economy,
replacing DES. The algorithms used by the Rijndael AES have since been adopted by businesses and organizations
worldwide.
Alias
–
A name, usually short, easy to remember is translated into another name, usually long and difficult to remember.
Anonymous FTP
– Anonymous FTP allows a user to retrieve documents, files, programs, and other archived data from
anywhere in the Internet without having to establish a user ID and password. By using the special user ID of "anonymous"
the network user will bypass local security checks and will have access to publicly accessible files on the remote system.
ARP (Address Resolution Protocol)
– An IETF standard that allows an IP node to determine the hardware (datalink)
address of a neighboring node. ARP provides a method of converting Protocol Addresses (e.g., IP addresses) to Local
Network Addresses (e.g., Ethernet addresses). ARP exists as a low-level protocol within the TCP/IP suite and is used to
"map" IP addresses to Ethernet (or other) addresses (i.e., ARP provides the physical address when only the logical address
is known).
Attack
–
An
attempt at breaking part or all of a cryptosystem; can be either a successful or unsuccessful attempt. Many
types of attacks can occur (e.g., algebraic attack, birthday attack, brute force attack, chosen ciphertext attack, chosen plain
text attack, known plain text attack, linear cryptanalysis, middleperson attack).
Authentication
– The action of verifying information such as identity, ownership or authorization.
Authentication is a security process where user access is allowed only if user authentication verifies the identity of the user
requesting access to network resources. Authentication is one of the functions of IPSec. Authentication establishes the
integrity of a data stream, ensures that it is not tampered with in transit, and confirms the data stream’s origin.
Authentication establishes the legitimacy of users and defines the allowed parameters of the session they establish.
Authentication Header (AH)
– A provision of IPSec that adds a digital signature to an IP packet. The digital signature is
created through a key-controlled "hashing" of each packet, providing user authentication, and system integrity.
Broadcast
– The address that a computer refers to if it wants to address all the computers of a network. Example: for a
network with the IP address 212.6.145.0 and a net mask 225.225.225.240, a broadcast would be the address 212.6.145.15.