ENET VPN Gateway

Overview

Virtual Private Networks (VPNs) connect private networks through secure tunnels over an untrusted network, such as the Internet. Data is first encrypted and encapsulated before it is sent to the remote VPN server, which then decrypts the packet so that is can be interpreted. A VPN gateway aggregates multiple VPN tunnel terminations into a single appliance.

Ethernity’s ENET VPN Gateway improves upon this by incorporating its FPGA-based ACE-NIC SmartNIC into the appliance, thereby fully offloading the security functions from the CPUs. Even better, the ENET VPN Gateway offers Host Bypass, which increases the security by restricting the traffic, packet editing, and crypto functions exclusively to the FPGA, entirely bypassing the CPU, which is vulnerable to breaches. The host can be authorized to receive or monitor traffic as needed, but by default, the FPGA handles the networking and security functionalities.

Ethernity has integrated trusted, open-source LibreSwan security management software into its fully programmable FPGA-based appliance and accelerates it to enable secure connectivity across both trusted and untrusted networks.

Between its COTS server, low-cost FPGA SmartNIC, and open-source LibreSwan software, the ENET VPN Gateway offers an ideal affordable solution that avoids vendor lock-in for both enterprise, carrier, and cloud networks. Moreover, the FPGA within the ENET VPN Gateway appliance offers programmability that ensures future readiness for integration of other existing open source software as well as new security protocols.

HQs/DCs: COTS server + LibreSwan + ACE-NIC
Branches: COTS server + LibreSwan

Features

  • Truly robust and efficient security with Host Bypass
  • Prevents data tampering
  • High performance, best for central locations
  • LibreSwan open source
  • IPSec inline HW acceleration
  • Programmable crypto

Download ENET VPN Gateway Product Brief