Professional Documents
Culture Documents
6wind Virtual Security Gateway
6wind Virtual Security Gateway
(vSecGW)
The vSecGW is part of the 6WIND VSR product
suite that provides comprehensive, highly
scalable and network-integrated Layer 3
Key features IPsec-based VPN connectivity.
▸ 16 Mpps per CPU core The vSecGW functionality can be applied to any
(Forwarding rate)
type of network traffic in fixed, wireless and
▸ 20 Gbps per CPU core
converged environments.
(Over 400 Gbps (IMIX) per
single instance)
The 6WIND vSecGW covers different deployment use cases including:
▸ 100,000 tunnels ▸ Mobile Security Gateway
(VPN IPsec tunnels)
▸ Remote Access IPsec VPN Concentrator
▸ 1,000 tunnel/s ▸ Secure multi-cloud access
(Establishment rate)
▸ Site-to-site and network-to-network encrypted IP security
Benefits Network operators benefit from superior deployment flexibility, a rich feature
▸ Multitenancy (VRF)
▸ Ethernet bridge
Arm based processors (Ampere
Altra, Graviton2)
▸ IPv4/IPv6 tunneling
▸ IPv4/IPv6 filtering IP Services: CPU/vCPU cores
▸ Network address translation ▸ DHCP server / client / relay ▸ 2 minimum (one for control, one for
▸ DNS client / proxy
data plane)
Routing: ▸ NTP
▸ BGP4, BGP4+, BGP RPKI
▸ TWAMP
Memory:
▸
▸ IS-IS, OSPFv2, OSPFv3
2GB minimum
▸
MOBIKE PCI passthrough
VXLAN EVPN
▸ Encryptions: ▸
▸ Segment Routing, ISIS-SR, SR-TE – 3DES, AES-CBC/GCM
(128, 192, 256) ▸
VMXNET3 (VMware ESXi)
ENA
▸
– MD-5, SHA-1, SHA-2 (256, 384,
Rate limiting per Interface 512) AES-XCBC (128)
Supported Hypervisors
▸ Rate limiting per VRF ▸ Key management:
▸
▸ Hierarchical QoS (H-QoS)
– RSA, DH MODP groups 1 (768 bits),
2 (1024 bits), 5 (1536 bits) ▸
KVM (RH, Ubuntu, CentOS)
▸
VMware ESXi (6.5+)
▸
Class-based QoS
Classification: ▸
and 14 (2048 bits), DH PFS
EAP/Radius, EAP-MSCHAPv2 ▸ Microsoft Hyper-V