Table of Contents
Advertisement
Figure 13 Split tunneling example
Data Network
Printer
192.19.2.33
192.19.2.32
Remote User
192.19.2.31
To configure the VPN Router as a user tunnel:
1
2
3
4
5
Public
VPN Router
192.168.43.6
Select Profiles > Groups and click Add. Enter a group name of up to 64
characters (spaces are permitted); for example, Research and Development.
Click Edit next to the name of the new group, scroll down to the IPsec
section, and click Configure.
The IPsec Edit window appears.
Enable Split tunneling if you want your VPN Router to control the networks
that the third-party client can access. If you disable split tunneling and enable
Allow undefined networks for non-Nortel VPN Clients, the clients can
connect to all internal networks. If you select both Split Tunneling and Allow
undefined networks for non-Nortel VPN Clients, the VPN Router uses the
split tunneling feature and ignores the Allow undefined networks selection.
Under Client Selection, select Non-Nortel VPN Clients (LINUX) or Both
Nortel and Non-Nortel VPN Clients from the list.
Third-party clients can use either preshared key or digital certificate
authentication. Click to enable the user name and password to authenticate
user identity. If you are using Main mode, the user name is the user's IP
address and the password can be any password.
Click RSA Digital Signature to enable certificate authentication if your
client supports this. You must then select a default server certificate from the
list. You configure servers from the System > Certificates window.
Appendix D Configuring for interoperability 221
10.2.3.4
10.2.3.3
10.2.3.2
Nortel VPN Router Troubleshooting
10.10.0.1
10.10.0.5
Archive
Mail Server
Advertisement
Table of Contents
Troubleshooting
