724-746-5500 | blackbox.com/go/EncrypTight
BL A C K B OX®
Secure WAN links without tunnels!
» Strong WAN encryption without IPsec VPN tunnels.
» Multilayer encryption.
» Transparent operation without latency.
EncrypTight™ WAN Encryption
EncrypTight
BLACK BOX WAN ENCRYPTION
EncrypTight
BLACK BOX WAN ENCRYPTION
724-746-5500 | blackbox.com/go/EncrypTight
2 |
BL A C K B O X®
More and more organizations are using the Internet to send data
to branch offices. But because the Internet is a public network, security
is an issue, so sensitive data must be encrypted.
EncrypTight™ is an encryption solution that overcomes the limitations
associated with IPsec VPN tunnels. It brings you air-tight encryption
across any WAN — even the Internet — without the hassle of setting up
a VPN tunnel for each connection. Layer 4 encryption capability leaves
packet headers intact, making encrypted data far more compatible
with network operations. Plus, EncrypTight doesn’t add latency to
bog down network operations — it’s totally transparent.
The not-so-private MPLS WAN
Many organizations don’t encrypt their data because it’s traveling
on a “safe” MPLS network. Although MPLS networks provide more
reliable connections than the Internet and aren’t as public, they cannot
be counted upon to be private — they’re still vulnerable to attack.
MPLS is technically a VPN that mimics privacy by logically separating
data with labels. Although the data traffic is kept separate from other
traffic, it can still be easily intercepted at any node.
When vendors say MPLS is secure, what they mean is that the
traffic is kept separate from other traffic, that they have processes in
place to prevent unauthorized data snooping, and that their employees
probably aren’t going to snoop either. In fact, your data probably
won’t be stolen on an MPLS network, but you have no way of being
sure and no way to tell if your data has been breached.
In fact, the only way to ensure data security over an MPLS
network is by encrypting data as it travels across the WAN.
Solid security with versatility and scalability.
• EncryptsatOSILayer2,3,or4.
• Workswithallkindsofnetworktraffic,includingVoIP.
• WorksontheInternetoronprivateWANs.
• NoneedforVPNtunnels.
• Nodelays,nojitter,nolatency.
• Transparenttonetworkoperationandapplications.
• ✦✦
WARRANTY
— 1 Year
Breaking out of the tunnel
Although IPsec VPN tunnels are fairly simple to set up between
only two points, when remote sites multiply, the number of tunnels
increases exponentially. A tunnel is needed between each pair of sites,
leading to administrative hassles every time a remote site is added.
EncrypTight eliminates the need to establish point-to-point tunnels
between each pair of remote sites, freeing network administrators
for other tasks. With EncrypTight, every network on your WAN can
establish an instant encrypted connection to every other network
equipped with an EncrypTight appliance.
Layer 4 encryption
In addition to Layer 2 Ethernet frame encryptions and Layer 3 IP
packet encryption, EncrypTight offers a Layer 4 payload-only encryption
option. Layer 4 encryption offers many advantages, including:
• AbilitytopassencrypteddatathroughNATdevices.VPNtunnels,
which encapsulate the Layer 3 address, often don’t work with NAT.
• Compatibilitywithpolicy-basedroutingandloadbalancing
that require Layer 3 addresses to be intact.
• Layer4encryptionleavesLayer3headersintact,makingitpossible
to troubleshoot a network without turning off encryption.
• Becauseheadersareintact,datalooksunencrypted,makingit
possible to use within countries that restrict encrypted data.
Central management
Manage all your EncrypTight appliances with EncrypTight
Management Software. The simple drag-and-drop interface scales
seamlessly and enables you to set encryption policies based on IP
addresses, port numbers, protocol IDs, or VLAN tags. You can quickly
change policies across the entire WAN without interrupting network
traffic. EncrypTight Management Software generates, and securely
pushes, encryption keys and policies to appliances throughout the
WAN. Logging and auditing functions enable you to collect
and monitor important criteria such as enforcement point status,
as well as policy, password, and device configuration changes.
ET1000A
ET0010A
EncrypTight
BLACK BOX WAN ENCRYPTION
EncrypTight
BLACK BOX WAN ENCRYPTION
FREE,livehelpin30secondsorless! | 3
BL A C K B O X®
EncrypTight
BLACK BOX WAN ENCRYPTION
EncrypTight
BLACK BOX WAN ENCRYPTION
Network Network
Network
Network Network
Internet, MPLS,
or Ethernet
Network
Network
Network
Network Network
Network
Network Network
Internet
Network
Network
Network
Compliance
EncrypTight helps you comply with HIPAA, HITECH, PCI, or other
industry or government data-protection standards. EncrypTight offers
AES 256-bit encryption. Plus, its logging and auditing functions help
you save and organize the records required by many of these standards,
reducing the scope of audits with thorough recordkeeping.
Seamless scalability
Because there are no tunnels to set up, it’s easy to deploy
EncrypTight across large WANs. New sites can be added instantly
without having to establish a VPN tunnel to every other site.
Additionally, EncrypTight Manager—included with each EncrypTight
appliance—enables network administrators to centrally manage security
across the entire WAN using a simple drag-and-drop interface.
Traditional IPsec VPN
•Tunnelbased
•Difficulttosetupandmanage
•Requiresaddedpersonneltomaintain
•Slowsnetworkperformance
•Doesn’tsupportdualcarrierenvironments
•Slowsordisablesmulticastapplications
•NoLayer4networkservices
EncrypTight
•Notunnels!
•Doesn’tslownetworkperformance
•Easytosetup,configure,andmanage
•Canbeadministeredfromasinglelocation
•Supportsdual-carriernetworks
•VoIPandvideocompatible
•Compatiblewithmulticastapplications
•PreservesLayer4services
BL A C K B O X®
724-746-5500 | blackbox.com/go/EncrypTight
4 |
Item Code Available Speeds Connectors Power Size Weight
3–50 Mbps
EncrypTight
Appliance
ET0010A 3, 6, 10, 25, 50 Mbps
Local: (1) 10-/100-/1000-Mbps
RJ-45 Ethernet;
Remote: (1) 10-/100-/1000-Mbps
RJ-45 Ethernet;
Management: (1) 10-/100-Mbps
RJ-45 Ethernet, (1) RJ-45 RS-232;
For future use: (1) RJ-45
Autosensing
100–240-VAC,
50/60 Hz
External Power Supply
1.6"H x 8"W x 5.8"D
(4 x 20.3 x 14.7 cm)
Rackmount:
3 lb. (1.4 kg);
Desktop:
1.3 lb. (0.6 kg)
100–250 Mbps
EncrypTight
Appliance
ET0100A 100, 155, 250 Mbps
Local: (1) 10-/100-/1000-Mbps
RJ-45 Ethernet;
Remote: (1) 10-/100-/1000-Mbps
RJ-45 Ethernet;
Management: (1) 10-/100-Mbps
RJ-45 Ethernet, (1) RJ-45 RS-232
Autosensing
100–240-VAC,
50/60 Hz
Internal Power Supply
1.75"H (1U) x 17"W x 10"D
(4.4 x 43.2 x 25.4 cm) 6 lb. (2.7 kg)
500 Mbps–
1 Gbps
EncrypTight
Appliance
ET1000A 500, 650 Mbps
1 Gbps
Local: (1) SFP (1000-Mbps);
Remote: (1) SFP (1000-Mbps);
Management: (1) 10-/100-Mbps
RJ-45 Ethernet; (1) RJ-45 RS-232;
For future use: (1) RJ-45, (1) SFP
Dual, Hot-Swappable,
Autosensing
100–240-VAC,
50/60 Hz
Internal Power Supply
3.5"H (2U) x 17"W x 15"D
(8.9 x 43.2 x 38.1 cm) 9 lb. (4.1 kg)
2.5–10 Gbps
EncrypTight
Appliance
ET10000A 2.5, 5, 10 Gbps
Local: (1) SFP+ (10-Gbps);
Remote: (1) SFP+ (10-Gbps);
Management: (1) 10-/100-Mbps
RJ-45 Ethernet; (1) RJ-45 RS-232;
For future use: (4) RJ-45, (3) SFP,
(2) USB
Dual, Hot-Swappable,
Autosensing
100–240-VAC,
50/60 Hz
Internal Power Supply
3.5"H (2U) x 17"W x 15"D
(8.9 x 43.2 x 38.1 cm) 22 lb. (10 kg)
Item Code
First, select your appliance…
EncrypTight™ Appliances
3 – 50 Mbps ET0010A
100 – 250 Mbps ET0100A
500 Mbps –1 Gbps ET1000A
2.5 –10 Gbps ET10000A
…then, select a license for the desired bandwidth…
EncrypTight Bandwidth Licenses
ET0010A Licenses
3-Mbps ET-BWL-3MBPS
6-Mbps ET-BWL-6MBPS
10-Mbps ET-BWL-10MBPS
25-Mbps ET-BWL-25MBPS
50-Mbps ET-BWL-50MBPS
ET0100A Licenses
100-Mbps ET-BWL-100MBPS
155-Mbps ET-BWL-155MB PS
250-Mbps ET-BWL-250MBPS
ET1000A Licenses
500-Mbps ET-BWL-500MBPS
650-Mbps ET-BWL-650MBPS
1-Gbps ET-BWL-1GBPS
ET10000A Licenses
2.5-Gbps ET-BWL-2.5GBPS
5-Gbps ET-BWL-5GBPS
10-Gbps ET-BWL-10GBPS
Item Code
For an instant 10-Mbps Encryption Solution, order…
EncrypTight Starter Kit ET-STARTER-KIT
✦
Includes (2) EncrypTight™ Appliances (ET0010A)
and (2) 10-Mbps Bandwidth Licenses (ET-BWL-10MBPS).
To add additional users to EncrypTight Manager, order…
EncrypTight Management User License ET-MGR-SW-USER
For EncrypTight Manager pre-loaded onto an optimized server, order…
EncrypTight Manager Server ET-MGR-HW
EncrypTight
BLACK BOX WAN ENCRYPTION
EncrypTight
BLACK BOX WAN ENCRYPTION
EncrypTight Appliance Specifications
Ordering EncrypTight Management
Each EncrypTight appliance includes EncrypTight Manager,
which consists of one EncrypTight Manager software license for
use on one server; one management user license, which supports
one active user at a time and an unlimited number of named user
accounts; documentation; and a CD containing key, policy, and
device management software in VMware® format.
To add more simultaneous active users, order EncrypTight
Management User Licenses (ET-MGR-SW-USER).
EncrypTight Manager is also available pre-loaded onto an optimized
Dell PowerEdge R310 server (ET-MGR-HW). EncrypTight Manager Server
requires an EncrypTight Management User License (ET-MGR-SW-USER)
for the first user as well as for each additional user.
et0010a_(27152)_v2
