Chart of latest VPN features. Features may also be viewed by AIX release.
| Hardware acceleration |
- IPSEC offload on the 10/100 Ethernet PCI Adapter II (feature code 4962)
|
| |
- Web-based system management
- XML command line
- SMIT
|
| Key exchange methods |
Internet Key Exchange for IP version 4 & 6
- Signature mode using RSA digital certificates
- Preshared key mode
- Certificate revocation lists
Manual Tunnels for IP versions 4 and 6 |
| Tunnel types |
- ESP - Encapsulating Security Payload
- AH - Authentication Header
- Transport and Tunnel mode (end host or gateway configuration)
|
| Algorithms |
- DES - Data Encryption Standard
- Triple DES
- Null encryption
- MD5 - Message Digest 5
- SHA1 - Secure Hash Algorithm 1
|
| IKE options |
- Main or aggressive mode
- Diffie Hellman groups 1, 2 and 5
- Range of acceptable key lifetimes for responding
- Quick configuration wizard
- Generic data management tunnel
|
| Packet filtering |
Accept or deny packets based on:
- IP address and subnet mask for IPV4 and IPV6
- Interface, protocol and port numbers
- Inbound or outbound packets
- Forwarded or local packets
- Fragmented packets
|
