home » support »
# |
A |
B |
C |
D |
E |
F |
G |
H |
I |
J |
K |
L |
M |
N |
O |
P |
Q |
R |
S |
T |
U |
V |
W |
X |
Y |
Z
A triple strength version of the DES cryptographic standard, usually using a 168-bit key. 3DES would require a huge amount of computing power to crack.
A Microsoft® reusable component technology used in many SSL VPN solutions to provide VPN client access in a road warrior's web browser.
Advanced Encryption Standard replaces DES as the US government's cryptographic standard. AES offers faster and stronger encryption than 3DES.
Authentication Header forms part of the IPSec tunnelling protocol suite. AH sits between the IP header and datagram payload to maintain information integrity, but not secrecy.
In SmoothWall terminology, an alias refers to an additional public IP that operates as an alternative identifier of the red interface.
Address Resolution Protocol is a protocol that maps IP addresses to NIC MAC addresses.
Used by ARP to maintain the correlation between IP addresses and MAC addresses.
Authentication is the process of determining whether someone or something is who or what it declares itself to be.
Bandwidth is the rate that data can be carried from one point to another. Measured in Bps (Bytes per second) or Kbps.
A binary certificate format, 8-bit compatible version of PEM.
An error caused when a program tries to store too much data in a temporary storage area. This can be exploited by hackers to execute malicious code.
A Certificate Authority is a trusted network entity, responsible for issuing and managing x509 digital certificates.
A digital certificate is a file that uniquely identifies its owner. A certificate contains owner identity information and its owner's public key. Certificates are created by CAs.
A message form that cannot be understood by unauthorised parties. Ciphertext is created from plain text by an encryption algorithm.
A malicious hacker.
A network cable with TX and RX (transmit and receive) reversed at either end to provide a direct peer-to-peer network connection.
The gateway in a network that will be used to access another network if a gateway is not specified for use.
Distinguished Encoding Rules is a certificate format typically used by Windows operating systems.
A historical 64-bit encryption algorithm still widely used today. Scheduled for official obsolescence by the US government agency NIST.
Dynamic Host Control Protocol is a protocol for automatically assigning IP addresses to hosts joining a network.
A telephone based, non-permanent network connection, established using a modem.
An additional separate subnet, isolated as much as possible from protected networks.
A firewall rule that allows DMZ host to Protected Network host communication between a specified pair of IP addresses and a port.
Domain Name Service is a name resolution service that translates a domain name to an IP address and vice versa.
A server on a Mircrosoft® Windows network that is responsible for allowing host access to a Windows domain's resources.
A non-permanent IP address automatically assigned to a host by a DHCP server.
The process of transforming plain text into ciphertext.
A sequence of characters used by an encryption algorithm to encrypt plain text into ciphertext.
Encapsulating Security Payload is a protocol within the IPSec protocol suite that provides encryption services for tunnelled data.
A Microsoft® messaging system including mail server, email client and groupware applications (such as shared calendars).
A hardware or software vulnerability that can be 'exploited' by a hacker to gain access to a system or service.
A combination of hardware and software used to prevent access to private network resources.
A network point that acts as an entrance to another network.
In SmoothWall terminology, green identifies the Protected Network.
A highly proficient computer programmer who seeks to gain unauthorised access to systems without malicious intent.
A computer connected to a network.
A name used to identify a network host.
Hypertext Transfer Protocol is the set of rules for transferring files on the World Wide Web.
A secure version of HTTP (using SSL).
A simple network device for connecting networks and network hosts.
A 32-bit number that identifies each sender and receiver of network data.
The Linux packet filtering tool that is used by SmoothWall to provide firewalling capabilities.
Internet Protocol Security is an internationally recognised VPN protocol suite developed by the IETF (Internet Engineering Task Force).
A 'helper' application on NAT devices that allows IPSec VPN traffic to pass through.
An Internet Service Provider provides Internet connectivity.
The core part of an operating system that provides services to all other parts the operating system.
Layer 2 Transport Protocol is based on IPSec and combines Microsoft® PPTP and Cisco Systems® L2F tunnelling protocols.
A Local Area Network is a network between hosts in a similar, localised geography.
A bespoke high-speed, high-capacity site-to-site network that is installed, leased and managed by a TelCo.
A Media Access Control address is the unique hardware identifier of a NIC.
Mail eXchange Record is an entry in a domain name database that specifies a mail server to handle a domain name's email.
Network Address Translation is the translation of an IP address known within one network to a different IP address known within another network.
NAT Traversal is a VPN Gateway feature that circumvents IPSec NATing problems. It is a more effective solution than IPSec Passthrough.
Network Time Protocol is a protocol for synchronising a computer's system clock by querying NTP Servers.
In SmoothWall, orange is used to identify a DMZ.
Privacy Enhanced Mail is a popular certificate format.
A key-establishment protocol, used to secure previous VPN communications, should a key currently in use be compromised.
See Perfect Forward Secrecy
Phase 1 of a 2 phase VPN tunnel establishment process. Phase 1 negotiates the security parameter agreement.
Phase 2 of 2 phase VPN tunnel establishment process. Phase 2 uses the agreed parameters from Phase 1 to bring the tunnel up.
A basic program used to verify that a particular IP address can be seen from another.
See DMZ Pinhole
A portable container file format for transporting certificates and private keys.
A service connection point on a computer system numerically identified between 0 and 65536. Port 80 is the HTTP port.
A firewall rule that routes traffic from a receiving interface and port combination to another interface and port combination.
Point-to-Point Protocol is used to communicate between two computers via a serial interface.
Peer-to-Peer Tunnelling Protocol, a widely used Microsoft® tunnelling standard deemed to be relatively insecure.
See Leased Lines.
A secret encryption key known only by its owner. Only the corresponding public key can decrypt messages encrypted using the private key.
A formal specification of a means of computer communication.
An intermediary server that provides Internet access to a pool of workstations.
Pre-Shared Key is an authentication mechanism that uses a password exchange and matching process to determine authenticity.
A publicly available encryption key that can decrypt messages encrypted by its owner's private key. A public key can be used to send a private message to the public key owner.
A free Telnet / SSH client.
In relation to leased lines, Quality of Service is a contractual guarantee of uptime and bandwidth.
A RAS (Remote Access Server) can be attached to a LAN to allow dial-up connectivity from other LANs or individual users.
In SmoothWall, red is used to identify the Unprotected Network (typically the Internet).
An individual remote network user, typically a travelling worker 'on the road' requiring access to a company network via a laptop. Usually has a dynamic IP address.
A path from one network point to another.
A table used to provide directions to other networks and hosts.
In firewall terminology, rules are used to determine what traffic is allowed to move from one network endpoint to another.
A network connection between two LANs, typically between two business sites. Usually uses a static IP address.
A SmoothWall add-on module to provide support for multiple web, email and other servers via red aliasing.
A remote firewall monitoring add-on module for SmoothWall used to report and raise incident alerts.
A VPN companion module to SmoothTunnel used to add single tunnel capability to a SmoothWall system.
A standards based, highly secure, protocol independent VPN add-on module for SmoothWall.
Simple Mail Transfer Protocol is a protocol for sending and receiving email.
Junk email, usually unsolicited.
A type of exploit whereby hackers are able to execute SQL statements via an Internet browser.
A high performance proxy caching server for web clients.
Secure Shell is a command line interface used to securely access a remote computer.
A VPN accessed via HTTPS from any browser (theoretically). SSL VPNs require minimal client configuration.
An identifiably separate part of an organisation's network.
An intelligent cable junction device that links networks and network hosts together.
A server used by other hosts to remotely record logging information.
A Virtual Private Network, a network connected together via securely encrypted communication tunnels over a public network, such as the global Internet.
An endpoint used to establish, manage and control VPN connections.
Authentication method that uses the exchange of CA issued certificates to guarantee authenticity.
|
|
|
|