Persistent Tunneling; Session Persistence Time - Nortel Contivity 1100 Configuration Manual

Vpn router basic features

Hide thumbs Also See for Contivity 1100:

Connecting manual (6 pages)

Install manual (218 pages)

Installing (158 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

page of 178

/ 178
Contents
Table of Contents
Bookmarks

Table of Contents

Persistent tunneling

A persistent VPN connection provides the ability to maintain a VPN connection

without user intervention for a designated period of time. After successfully

establishing a tunnel session to the Nortel VPN Router, the Nortel VPN Client

makes every attempt to maintain a viable VPN connection.

Persistence makes use of the automatic failover capability already available with

the Nortel VPN Router and extends this to allow the new tunnel to be established

without having to re-enter user credentials. A configuration option on the Nortel

VPN Router allows you to specify that VPN clients will cache their VPN

credentials for a specified period of time. If failover is initiated during this time

(persistent time), the client automatically sends the credentials the user submitted

to set up the first tunnel session.

The Nortel VPN Client accepts a list of failover hosts configured on the Nortel

VPN Router and tries to connect to those servers if the connection with the

primary server is lost. As each failover server destination is attempted, you are

prompted, allowing you the option to cancel the operation. If the user doesn't

intervene, the connection attempt continues. With persistence enabled, after going

through the list of failover servers, the client tries the primary and then the initially

supplied failover servers again in the loop until the client connects or until the

persistency timer expires, whichever comes first.

Session persistence time

The purpose of this timer is to allow the persistent tunnel only for certain amount

of time after the initial login. This prevents security threats such as a stolen laptop

accessing the network due to persistence for longer durations. By setting this

timer to 24 hours, users can use the VPN connectivity for work without requiring

to login more than once.

Chapter 8 Configuring IPSec mobility and persistent mode 155

Note: If an authentication method with a challenge ,a one time password

(such as secure ID*), or Nortel VPN Router one time password is

enabled, it will not work for persistence. However, user name/

password-based and certificate-based authentication will work.

Nortel VPN Router Configuration — Basic Features

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

Contivity 1010 Contivity 1050

Persistent Tunneling; Session Persistence Time - Nortel Contivity 1100 Configuration Manual

Persistent tunneling

Session persistence time

Hide quick links:

Related Manuals for Nortel Contivity 1100

Related Content for Nortel Contivity 1100

This manual is also suitable for:

Table of Contents