Filter
Top Products
Security Target, Version 3.9
March 18, 2008
Nortel VPN Router v7.05 and Client Workstation v7.11
Page 11 of 67
© 2008 Nortel Networks
In Figure 3 above, the TOE is installed at the boundary of the private (“Enterprise”) network and the public
(“Internet”) network. In Figure 4 above, the TOE is installed at the boundary of the two private (“Enterprise”)
networks. The essential physical components of the TOE are:
Nortel VPN Router v7.05 build 100: The Nortel VPN Router is a dedicated hardware/software appliance
running a Nortel-hardened version of the VxWorks OS. All non-essential OS processes have been removed
and direct access to the OS is impossible. The Nortel VPN Router is produced at seven performance levels
(models 600, 1010, 1050, 1100, 1750, 2750, and 5000) which provide identical functionality; they differ
only in network throughput and performance.
Nortel VPN Client Workstation v7.11 build 100: The Nortel VPN Client is used to access to establish
VPN sessions with the Nortel VPN Router from a remote location.
2.3.1.1 TOE Environment
The TOE environment is composed of the following:
Nortel VPN Client Workstation
2
o Provides the underlying OS (Microsoft Windows 2000 SP4 or XP SP2) and general-purpose
computing hardware platform for the VPN user to connect to the Nortel VPN Router.
Management Workstation
o Provides the underlying OS and general-purpose computing hardware platform for the TOE user
to interact with the administrative GUI provided by the TOE.
CLI Workstation
o Provides the underlying OS and general-purpose computing hardware platform for the TOE user
to interact with the administrative CLI provided by the TOE.
Corporate Servers
o Provide data and services to VPN users through the VPN services provided by the TOE.
2.3.2 Logical Boundary
Figure 5 and Figure 6 below illustrates the logical boundary of this CC evaluation:
2
Note that the Nortel VPN Client Software is included within the TOE boundary but the underlying OS and
hardware are not.