A.05.80 HP Insight Remote Support Advanced and Remote Device Access Security Overview (October 2012)
Security Overview
Chapter 3: Remote Device Access (RDA)
hpVPN
With hpVPN, HP provides a router to the customer. The router is deployed in the customer’s DMZ. HP’s
VPN router establishes an IPsec VPN connection with a so called Customer Premises Equipment (CPE)
router, at the customer’s site. HP maintains the software and router configurations on both ends.
Currently, all hpVPN connections use triple-DES or AES encryption and SHA-1 HMAC. The access lists
on the CPE routers allow only connections from authorized HP systems. HP manages and configures the
hpVPN routers.
Note: The hpVPN solution is offered in limited areas, please check with your HP representative to
determine if this option is available in your country.
Customer-Owned Router (COR) VPN
With COR VPN, HP establishes an IPsec VPN with a customer-owned router. HP’s RDA VPN routers
are successfully inter-operating with ProCurve, Cisco IOS, Cisco PIX, Check Point, Juniper, and other
VPN routers at customer sites. COR VPN connections can be configured according to the customers
unique configuration requirements. The customer manages and configures their own equipment.
HP Insight Remote Support Advanced and Remote Device Access (A.05.80)Page 46 of 97