Contract # GS00T01AHD0002 

Proposal to Add Federal Telecommunications Service   Long Distance (FTS LD) 

6.7.6.1.2 VPN 

Acceleration 

VPN Acceleration option helps manage the burdensome resource demands put on 

VPN solution. Computationally intensive tasks required for data encryption and key 

generation can quickly exhaust Central Processing Unit (CPU) and memory 

resources, causing the VPN solution to become a performance bottleneck. 

VPN Acceleration option

11

 provides the hardware and installation of a hardware 

based cryptographic VPN accelerator. Typical VPN throughput depends on hardware 

but ranges from 2.5 Mbps to 7 Mbps. With the VPN Acceleration option, a VPN 

would be able to scale to over 45 Mbps while freeing gateway resources for other 

security tasks. The hardware, a VPN 1 Accelerator Card, allows for kernel level 

integration with VPN 1 to perform processor intensive cryptographic operations 

required by IKE IPSec.  

6.7.6.1.3 Firewall 

Reporting 

Firewall Reporting service allows for creation of general firewall activity reports. 

With our reporting services, raw firewall logs will be analyzed, automatically parsed 

and configured into a predefined report suite. The service includes firewall log 

analysis, arranged in a coherent and logical manner, usage and exceptions. Once 

completed, the reports are mailed to the Government's designated Technical Contact.  

6.7.6.1.4 Network Based 

Intrusion Detection Services (IDS) 

Network Based Passive IDS will provide alerts in case of a hacker attack. Passive 

IDS is available for all clients and does not require subscription to the Managed 

Firewall option. 

11

 Available for Managed Firewall services utilizing Nokia 440 or Nokia 650 hardware. 

Use or disclosure of data contained on this sheet is subject to the restriction on the title page of this proposal. 

f:\mcghee\vol_1sec6d_r.doc 

I 6 125