Alcatel-Lucent IPSec Client

Similar documents
Alcatel-Lucent VitalQIP

Title page. Alcatel-Lucent 5620 SERVICE AWARE MANAGER

LifeSize Gatekeeper Installation Guide

StoneGate IPsec VPN Client Release Notes for Version 4.2.0

Symantec pcanywhere 12.5 SP4 Release Notes

UC for Enterprise (UCE) NEC Centralized Authentication Service (NEC CAS)

StoneGate Management Center Release Notes for Version 4.2.1

3M Molecular Detection System Software Upgrade/Installation Instructions

Installing Lotus Notes on Your Computer Lotus Notes release (Standard and Basic versions)

Parallels Transporter Agent

Connectware Manager Getting Started Guide

emix Implementation Steps

Version 4.1 Software Installation Guide (Full)

Visual Nexus Version 4.0

Parallels Transporter

Trend Micro Core Protection Module 10.6 SP1 System Requirements

StoneGate IPsec VPN Client Release Notes for Version 4.3.1

Intelligent Security & Fire Ltd

Symantec Backup Exec System Recovery Granular Restore Option User's Guide

Media Archive Server for Small Teams

FAS Asset Accounting FAS CIP Accounting FAS Asset Inventory SQL Server Installation & Administration Guide Version

FAS Asset Accounting FAS CIP Accounting FAS Asset Inventory Installation & Administration Guide Version

READ ME FIRST Windows 98/ME/2000

REVISIONS * The manual number is given on the bottom left of the back cover.

HR-Lite Installation & Online Registration Guide. Version: HR21 Limited

F-Secure PSB Getting Started Guide

Dell Flexible Computing Solutions: Deploying On-Demand Desktop Streaming

MapMarker Plus Desktop Installation Guide

Lite Depreciation Quick Start Guide

VMware Infrastructure 3 Primer Update 2 and later for ESX Server 3.5, ESX Server 3i version 3.5, VirtualCenter 2.5

Business Connect Secure Remote Access Service (SRAS) Customer Information Package

Stonesoft IPsec VPN Client. Release Notes for Version 5.4.1

KODAK Dental Imaging Software Installation Guide for the KODAK1500 Intraoral Camera

EXPRESSCLUSTER X SingleServerSafe 3.3 for Windows. Installation Guide. 01/29/2016 3rd Edition

Stonesoft VPN Client. for Windows Release Notes Revision A

Click on a link below for additional information.

Version 12.0 Component Installation and Configuration. January 31, 2007

Fiery Network Controller for Xerox WorkCentre 7800 Series. Welcome

Release Notes for Avaya Proactive Contact 5.0 Agent. Release Notes for Avaya Proactive Contact 5.0 Agent

CRA Wiz and Fair Lending Wiz. Installation Guide V6.9

Sophos Connect. help

DRAWings 8 and Wings modular 8 Embroidery Software INSTALLATION GUIDE

PMS 138 C Moto Black spine width spine width 100% 100%

Remote ialarm Center. User s Manual

LiNC-NXG for Windows 8 Professional, Windows 7 Professional, Vista Business Edition and XP Professional

OmniAccess 3500 Nonstop Laptop Guardian Release 1.2 Administrator Release Notes

Laser Beam Printer. Network Guide. IMPORTANT: Read this manual carefully before using your printer. Save this manual for future reference.

EX700i Print Server/Integrated Fiery Color Server. Welcome

Installation Instructions for Medisoft 15 Network Professional

Getting Started with VMware Fusion VMware Fusion for Mac OS X Version 1.0

Ocularis. Installation & Licensing Guide

Spectrometer Visible Light Spectrometer V4.4

Installation Guide. Copyright 2011 Bitdefender

Deltek Time & Expense with Employee Self Service Version New Installation for Microsoft SQL Sever

TIBCO iprocess Workspace (Windows) Installation

Product Release Notes for Avaya Proactive Contact Supervisor

NTP Software File Auditor for Windows Edition

Avaya Integrated Management Release 3.1 VoIP Monitoring Management Installation and Upgrade

Inmagic Content Server Standard Version 9.00 Installation Notes for New and Upgrade Installations

Mercury WinRunner. Installation Guide Version 9.2. Document Release Date: February 26, 2007

Quick Start Guide 0514US

XLmanage Version 2.4. Installation Guide. ClearCube Technology, Inc.

Installing and Setting Up the Snap-on EPC. Rev.1.6 (12 Apr 2012) PN EN

Wireless LAN. SmartPass Quick Start Guide. Release 9.0. Published: Copyright 2013, Juniper Networks, Inc.

REVISIONS * The manual number is given on the bottom left of the back cover.

FAS Asset Accounting FAS Asset Inventory FAS CIP Accounting Network Installation & Administration Guide Version

Proficy* Workflow. Powered by Proficy SOA GETTING STARTED

F-Secure Client Security. Quick Installation Guide

Symantec ediscovery Platform

GIFTePay XML. Chockstone. Installation & Configuration Guide. Version Part Number: (ML) (SL)

LABEL ARCHIVE Administrator s Guide

GIFTePay XML. Valuelink. Installation & Configuration Guide. Version Part Number: (ML) (SL)

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the SonicWall Firewall.

StoneGate IPsec VPN Client. Release Notes for Version 5.2.1

EXPRESSCLUSTER X SingleServerSafe 3.3 for Windows. Installation Guide. 10/02/2017 6th Edition

9936A LogWare III. User s Guide. Revision

READ ME FIRST. Windows NT. *DSL Equipment Installation Guide: Efficient Networks 5260

DOVICO Timesheet v10 UPGRADE GUIDE

Novell Open Workgroup Suite Small Business Edition

CONNECT TROUBLESHOOTING GUIDE. dspec and Resyn. Troubleshoot connections between dspec and Resyn.

Inmagic Content Server Workgroup Version 9.00 Installation Notes for New and Upgrade Installations

Stonesoft VPN Client. for Windows Release Notes Revision A

Load Bulletin ADP, Inc. Dealer Services 5607 New King Street Troy, MI Executive Assistant. Loading the 8.0 Client Media

FAS 50 Asset Accounting Quick Start Guide

Universal Management Agent Installation Guide G10L

3M Occupational Health and Environmental Safety 3M E-A-Rfit Validation System. Version 4.4 Software Installation Guide (Full) 1 P age

Sage Residential Management Versions 9.5 through Installation Guide

SIMATIC NET. Industrial Remote Communication - Remote Networks SINEMA Remote Connect - Client. Preface. Requirements for operation 1

InventoryControl Quick Start Guide

TIBCO iprocess Objects (Java) Installation. Software Release 10.4 May 2010

Relativity Designer Installation Guide

READ ME FIRST Windows 95/98/Me/2000

SonicWall Global VPN Client Getting Started Guide

Novell BorderManager 3.7

Release Notes for Avaya Proactive Contact 5.0 Supervisor. Release Notes for Avaya Proactive Contact 5.0 Supervisor

One Identity Active Roles 7.2

MapMarker Plus Developer Installation Guide

Installation Guide. NSi AutoStore TM 6.0

x10data Application Platform v7.1 Installation Guide

SoftPro Installation Guide

Transcription:

Alcatel-Lucent IPSec Client IPSec Release 10.0 RELEASE NOTES IPSec Client Release 10.0 December 2009 ISSUE 1

Legal Notice Alcatel, Lucent, Alcatel-Lucent and the Alcatel-Lucent logo are trademarks of Alcatel-Lucent. All other trademarks are the property of their respective owners. The information presented is subject to change without notice. Alcatel-Lucent assumes no responsibility for inaccuracies contained herein. Copyright 2009 Alcatel-Lucent. All Rights Reserved. Use the ParagraphBody paragraph tag to place actual content here. Limited warranty Alcatel-Lucent provides a limited warranty to this product. Licenses The Alcatel-Lucent IPSec Client is distributed and licensed for use under the terms of the END USER PROGRAM LICENSE AND WARRANTY AGREEMENT. After the software is installed, please see the license.txt file located in the IPSec Client folder.

Contents About this document Purpose...v Reason for reissue...v Conventions used...v Technical support...v How to order... vi How to comment... vi 1 Release components Software deliverables... 1-1 How to obtain software... 1-1 Document deliverables... 1-2 To obtain documentation... 1-2 2 New features New features... 2-1 Functionality... 2-1 Enhancements... 2-2 3 Test results Overview... 3-1 Test results... 3-1 4 Changes to fault management, ports, protocols, and parameters Interface changes... 4-1 Alarm changes... 4-1 Message changes... 4-2 Port changes... 4-2 Protocol changes... 4-2 System parameter changes... 4-2 5 Resolved issues Overview... 5-1 IPSec Client Release 10.0 iii

Contents Resolved issues... 5-1 6 Known issues Known issues and workarounds... 6-1 7 System requirements Software requirements... 7-1 Software licensing keys... 7-1 Hardware requirements... 7-2 Compatibility restrictions... 7-2 Third-party or other hardware/software requirements... 7-2 8 Installation and upgrade notes Performing first-time installation... 8-1 Performing upgrades... 8-2 Upgrade paths... 8-2 Security hardening... 8-2 Feature activation... 8-2 Obtaining and installing third-party software... 8-2 iv IPSec Client Release 10.0

About this document Purpose This document describes the feature content for Release 10.0 of the Alcatel-Lucent IPSec Client. Included in this document are brief descriptions of new features and enhancements, resolved issues, known issues, event reporting notes, and installation and upgrade notes specific to this release. Reason for reissue The following table shows the revision history of this document. Issue number Date of issue Description of changes 1 12/02/2009 First issue of this release notes document. Conventions used This document uses the following typographical conventions: Appearance Description Italicized text File and directory names Emphasized information Titles of publications A value that the user supplies graphic user interface text or key name input text output text Text that is displayed in a graphical user interface or in a hardware label The name of a key on the keyboard Command names and text that the user types or selects as input to a system Text that a system displays or prints Technical support For technical support, contact your local Alcatel-Lucent customer support team. See the Alcatel-Lucent Support web site http://alcatel-lucent.com/support/ for contact information. IPSec Client Release 10.0 v

About this document How to order How to comment To order Alcatel-Lucent documents, contact your local sales representative or use the Online Customer Support Site (OLCS) web site https://support.alcatel-lucent.com. To comment on this document, go to the Online Comment Form (http://www.infodoc.alcatel-info.com/comments/) or e-mail your comments to the Comments Hotline (comments@alcatel-lucent.com). vi IPSec Client Release 10.0

1 Release components Overview Purpose Contents This chapter describes software and documentation deliverables included in this release. This chapter covers these topics. Software deliverables 1-1 How to obtain software 1-1 Document deliverables 1-2 To obtain documentation 1-2 Software deliverables Alcatel-Lucent IPSec Client Release 10.0 software is delivered on a CD-ROM along with Release Notes. How to obtain software For software downloads, please logon to your account at https://vpn-firewall-brick.alcatel-lucent.com/. IPSec Client Release 10.0 1-1

Release components Document deliverables Document deliverables Documentation available for this release For information on installing, using, and troubleshooting IPSec Client, please see the Alcatel-Lucent IPSec Client User s Guide, Release 10.0, 260-100-026R10. Other product documentation Table 1-1 Alcatel-Lucent Security Management Server (SMS) documentation list Document ID Document title 260-100-017R9.4 Alcatel-Lucent Security Management Server (SMS) Release 9.4 Administration Guide, Issue 2 260-100-018R9.4 Alcatel-Lucent Security Management Server (SMS) Release 9.4 Installation Guide, Issue 2 260-100-016R9.4 Alcatel-Lucent Security Management Server (SMS) Release 9.4 Policy Guide, Issue 1 260-100-019R9.4 Alcatel-Lucent Security Management Server (SMS) Release 9.4 Reports, Alarms, and Logs, Issue 1 260-100-022R9.4 Alcatel-Lucent Security Management Server (SMS) Release 9.4 Technical Overview, Issue 1 260-100-020R9.4 Alcatel-Lucent Security Management Server (SMS) Release 9.4 Tools and Troubleshooting Guide, Issue 2 To obtain documentation IPSec Client Alcatel-Lucent IPSec Client product documentation is available to customers through OnLine Customer Support (OLCS). To navigate OLCS, do the following: 1. Go to https://support.alcatel-lucent.com/portal/productindexbycat.do. 2. After a successful login, select VPN Firewall Portfolio and then select Lucent IPSec Client. 3. From the Documentation and downloads section, select Manuals and Guides. Note: IPSec Help is available within the GUI by selecting the Help menu option. 1-2 IPSec Client Release 10.0

Release components To obtain documentation Alcatel-Lucent Security Management Server (SMS) Alcatel-Lucent Security Management Server (SMS) product documentation is available to customers through OnLine Customer Support (OLCS). To access SMS documentation: 1. Go to https://services.support.alcatel-lucent.com/services/vpnfirewallbrick/. Note: If you do not already have a service contract account you will be prompted to create an account. 2. Select Register for Access on the right hand side of the page. 3. Select Customer 4. Select Yes, I accept the Terms of use 5. Select Next 6. Enter your name and contact information 7. Select Next Note: The login ID and password is separate from the login ID and password used to access the registration website. The account creation process can take 1 to 12 hours. A temporary login ID and password will be emailed once the account is approved. To navigate to OLCS: 8. Go to https://support.alcatel-lucent.com/portal/productindexbycat.do. 9. Select Product Index 10. Select the alphabetic section for the product or solution for which you require documentation. For example, for VPN Firewall, select U-Z and scroll to the V section to select VPN Firewall Brick. 11. To obtain manuals, select Manuals and Guides. To obtain release notes, select Release Information. Note: Online product manuals are accessible from the SMS GUI. IPSec Client Release 10.0 1-3

Release components To obtain documentation 1-4 IPSec Client Release 10.0

2 New features Overview Purpose Contents This chapter includes information on the status of tested features and functionality. This chapter covers these topics. New features 2-1 Functionality 2-1 Enhancements 2-2 New features The following new feature is included with this release: Support for Microsoft Vista IPSec Client now supports Microsoft Vista x86 and Vista x64 platforms. Heart Beat Protocol enhancement The heartbeat retry is now a configurable parameter in the SMS, instead of a constant value of 3. Functionality No new feature functionality is included with this release. IPSec Client Release 10.0 2-1

New features Enhancements Enhancements Event reporting notes enhancement Certain errors/notifications now include a Reason Code (RC) to denote additional granularity for troubleshooting purposes. The following RCs have been added: RC1000 - RC1999 are reported by the LucentIKE service component RC2000 - RC2999 are reported by the GUI component RC3000 - RC3999 are reported by the tray icon component RC4000 - RC4999 are reported by the driver component Windows built-in firewall compatibility IPSec Client Release 10.0 is now completely compatible with Windows built-in firewall. Local network access enhancement Support for 3G data cards A local network can now be accessed through a secure tunnel. IPSec Client Release 10.0 now supports 3G data cards. Extended support for Diffie-Hellman groups 1, 2, 5, 14, and 15 IPSec Client Release 10.0 now supports Diffie-Hellman groups 1, 2, 5, 14, and 15. 2-2 IPSec Client Release 10.0

3 Test results Overview Purpose Contents This chapter provides information on test results. This chapter covers these topics. Test results 3-1 Test results As of 12/02/2009, Release 10.0 has passed testing and has been released for production. IPSec Client Release 10.0 3-1

Test results Test results 3-2 IPSec Client Release 10.0

4 Changes to fault management, ports, protocols, and parameters Overview Purpose Contents This chapter describes fault management changes (interfaces, alarms, and messages), port and protocol, and system parameter changes in this release. This chapter covers these topics. Interface changes Changes to Northbound Interfaces No northbound interfaces exist. Changes to Southbound Interfaces No southbound interfaces exist. Alarm changes Interface changes 4-1 Alarm changes 4-1 Message changes 4-2 Port changes 4-2 Protocol changes 4-2 System parameter changes 4-2 No alarm changes are included with this release. IPSec Client Release 10.0 4-1

Changes to fault management, ports, protocols, and Message changes parameters Message changes Port changes Protocol changes No message changes are included with this release. No port changes are included with this release. No protocol changes are included with this release. System parameter changes No system parameter changes are included with this release. 4-2 IPSec Client Release 10.0

5 Resolved issues Overview Purpose Contents This chapter describes the resolved issues in this release. This chapter covers these topics. Resolved issues 5-1 Resolved issues No resolved issues are included with this release. IPSec Client Release 10.0 5-1

Resolved issues Resolved issues 5-2 IPSec Client Release 10.0

6 Known issues Overview Purpose Contents This chapter describes known issues and workarounds (if available) for this release. This chapter covers these topics. Known issues identified for resolution 6-1 Other known issues 6-2 Known issues and workarounds Known issues identified for resolution Table 6-1 Known issues identified for resolution Fault ID Title Description of issue Workaround 135423 Vista x64 and Vista x86 drivers are Self-Signed. The drivers for Vista x64 must be either Self-Signed or MS Logo Signed, otherwise, they cannot be installed. During the installation process, when prompted to install the drivers for Alcatel-Lucent IPSec Network Adapters and Alcatel-Lucent IPSec Network Service both published by Alcatel-Lucent U.S.A. Inc., please select the Install button. IPSec Client Release 10.0 6-1

Known issues Known issues and workarounds Other known issues Table 6-2 Other known issues Title Description of issue Workaround IPSec Client cannot coexist with another VPN client. For Windows XP, IPSec Client 10 can not co-exist with Microsoft IPSec Services. For Microsoft Vista, IPSec Client 10 cannot co-exist with Microsoft IKE and AuthIP IPsec Keying Modules service. IPSec Client for Vista is incompatible with Wireshark. Brick failover caused IKE Rekey message is blocked by Vista Firewall Without configuring local presence a VPN tunnel cannot be created. IPSec Client for Windows XP is incompatible with the bridged mode VMware. IPSec Client does not work if a VPN client from another vendor is installed on the same PC. IPSec Client does not work if MS IPSec services is enabled. IPSec Client does not work if MS IKE and AuthIP IPsec Keying Modules services are enabled. When IPSec Client for Vista is installed, Wireshark cannot capture the outgoing package. By default, Windows Firewall blocks Brick initiated IKE Rekey messages and other administrative messages to IPSec Client. The virtual adapter in IPSec Client 10 cannot use the physical IP address. In Windows, two or more adaptors cannot use the same IP address. When IPSec Client for Windows XP is installed, while VMware is configured as bridged mode, then the VMware guest machine network stops working. This occurs because the Bridged mode VMware and the IPSec Client driver use the same hooks to catch the traffic. Prior to installing IPSec Client, uninstall any existing VPN client from other vendors. Please stop the MS IPSec services and disable it. If MS IKE and AuthIP IPSec Keying Modules services are enabled, please set the MS IKE and AuthIP IPSec Keying Modules services Startup type to either manual or disabled. However, IPSec Client installation will stop them and set them to manual. Try a newer version of Wireshark. Testing was performed on IPSec Client with Wireshark version 1.2.1. In order to solve the problem, Alcatel-Lucent IPSec Client adds an application rule named Alcatel-Lucent VPN Policy Manager to the Windows Firewall during its installation. Please enable this rule. Configure local presence prior to creating an SMS tunnel. Manually remove the Alcatel-Lucent IPSec bindings from the physical interfaces and reboot the machine. 6-2 IPSec Client Release 10.0

7 System requirements Overview Purpose Contents This chapter describes software and hardware requirements and compatibility restrictions. This chapter covers these topics. Software requirements 7-1 Software licensing keys 7-1 Hardware requirements 7-2 Compatibility restrictions 7-2 Third-party or other hardware/software requirements 7-2 Software requirements Operating System Requirements The Alcatel-Lucent IPSec Client 10.0 supports the following operating systems: Windows XP Professional - SP2 Windows Vista Business/Enterprise/Ultimate - SP1 Note: To obtain Windows service packs, please contact your administrator or visit Microsoft s web site. Software licensing keys To obtain license keys for IPSec Client please contact your sales representative. IPSec Client Release 10.0 7-1

System requirements Hardware requirements Hardware requirements Table 7-1 Windows Vista Business, Enterprise, Ultimate minimum requirements Type Processor RAM Fixed Storage Removeable Storage Network Interface Video Card Minimum Requirement 1 GHz 32-bit (x86) or 64-bit (x64) processor 1 GB or greater 40 GB hard drive with at least 15 GB of available space CD-ROM or DVD Drive Ethernet Interface Card 1024 x 768 x 65,535 color display Table 7-2 Windows XP Professional minimum requirements Type Processor RAM Fixed Storage Removeable Storage Network Interface Video Card Minimum Requirement Pentium II 300 MHz or greater 64 MB minimum, 128 MB recommended 16 MB free hard drive space CD-ROM or DVD Drive Ethernet Interface Card 1024 x 768 x 65,535 color display Compatibility restrictions Alcatel-Lucent IPSec Client, Release 10.0 is compatible with the Alcatel-Lucent Security Management Server Release versions 9.2, 9.3, and 9.4. Third-party or other hardware/software requirements No third-party or other hardware/software is required for this release. 7-2 IPSec Client Release 10.0

8 Installation and upgrade notes Overview Purpose Contents This chapter includes installation instructions for the Alcatel-Lucent IPSec Client software. This chapter covers these topics. Performing first-time installation 8-1 Performing upgrades 8-2 Upgrade paths 8-2 Security hardening 8-2 Feature activation 8-2 Obtaining and installing third-party software 8-2 Performing first-time installation This section provides instructions on how to install IPSec Client Release 10.0. Note: Because the Windows Firewall blocks a VPN gateway IKE rekey and other administrative activities messages, IPSec Client adds an application rule to the Windows Firewall exceptions list to allow the VPN gateway Brick to send messages to IPSec Client. During the IPSec Client installation process the user is prompted with the message IPSec Client installation needs to add a rule to Windows Firewall. Click the OK button when this prompt is displayed. IPSec Client Release 10.0 8-1

Installation and upgrade notes Performing upgrades 1. To install IPSec Client from the CD-ROM, insert the CD-ROM into the computer s CD-ROM drive and close the door. Installation begins automatically. To install IPSec Client from a network drive, locate the file ipsec-10.0.exe and then double-click it. If you are installing IPSec Client from an intranet web interface, click the link and then respond to the prompts on the screen. The first window displayed is the Choose Destination Location window, which allows you to select the directory in which the IPSec Client files will be installed. We recommend you accept the default directory. Once the installation is complete and your computer restarted, you are ready to begin using the IPSec Client. 2. To install the Alcatel-Lucent IPSec Client from a CD-ROM, insert the disc into the CD-ROM drive of your PC to start the installation. To install the program using a selfextracting.exe file, double-click on the file to run it. If a previous version of the software is installed, the installation process will detect it and will prompt you to either uninstall the existing version or upgrade to the new version. Performing upgrades Upgrade paths IPSec Client 10 cannot be upgraded from earlier versions of IPSec Client. Earlier versions of IPSec Client must be manually uninstalled before installing IPSec Client 10. IPSec Client 10 cannot be upgraded from earlier versions of IPSec Client. Earlier versions of IPSec Client must be manually uninstalled before installing IPSec Client 10. Security hardening For guidelines on SMS security hardening see Appendix B of the Alcatel-Lucent Security Management Server (SMS) Release 9.4 Installation Guide. Feature activation No feature activation is required for this release. Obtaining and installing third-party software No third-party software is necessary for this release. 8-2 IPSec Client Release 10.0

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback