The following table lists the protocols that undergo changes while the device is in FIPS mode with the default policy applied.
|
Protocols/Algorithms |
Supported in FIPS mode |
Supported in Non-FIPS mode |
For more information on individual protocol changes, refer to the following sections |
|---|---|---|---|
|
BGP |
No |
Yes |
|
|
HTTP |
No |
Yes |
|
|
HTTPS |
Yes |
Yes |
|
|
IPsec |
Yes, with limitations |
Yes |
IKEv2/ IPsec |
|
IS-IS |
No |
Yes |
IS-IS |
|
L2overIPsec |
Yes |
Yes |
L2overIPsec |
|
MACsec |
Yes |
Yes |
MACsec |
|
MPLS |
No |
Yes |
MPLS |
|
NTP |
Yes, with limitations |
Yes |
NTP |
|
OpenFlow |
Yes |
Yes |
|
|
OSPFv2 |
Yes |
Yes |
|
|
OSPFv3 |
Yes |
Yes |
OSPFv3 |
|
PKI |
Yes |
Yes |
PKI |
|
Proprietary 2-way encryption algorithms |
No |
Yes |
|
|
RADIUS |
Yes, with limitations |
Yes |
|
|
SCP |
Yes |
Yes |
|
|
SNMP |
Yes, with limitations |
Yes |
|
|
SSHv2 |
Yes, with limitations |
Yes |
|
|
Syslog |
Yes |
Yes |
Syslog |
|
Telnet |
No |
Yes |
|
|
TACACS+ |
Yes, with limitations |
Yes |
TACAS+ |
|
TFTP |
No |
Yes |
|
|
VRRP |
Yes |
Yes |
VRRP |
|
VRRPe |
Yes |
Yes |
VRRPe |
|
Web Management |
Yes |
Yes |
Note
For more information on RADIUS authentication commands, refer to the Extreme NetIron Command Reference and the Extreme NetIron Management Configuration Guide.