Nortel Contivity 1100 Configuration Manual page 64

Vpn router basic features

Hide thumbs Also See for Contivity 1100:

Connecting manual (6 pages)

Install manual (218 pages)

Installing (158 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

page of 178

/ 178
Contents
Table of Contents
Bookmarks

Table of Contents

64 Chapter 3 Setting up the Nortel VPN Router 1010, 1050, and 1100

Every Nortel VPN Router 1010, 1050, and 1100 must have a distinct IP address

that is visible from the NOC subnet. A NOC can assign any address reachable

from a NOC network to a Nortel VPN Router 1010, 1050, or 1100. BOQS

configures NAT on the NOC tunnel to translate the address specified in the

"Branch office switch manage NAT IP address" and "management address from

branch office private subnet." If the field is empty, the NOC must use an actual

management address to access the Nortel VPN Router 1010, 1050, or 1100.

Because the NOC tunnel uses static routing, all Nortel VPN Router 1010, 1050,

and 1100 devices must be configured with a static route to the NOC private

network. The NOC private address and NOC private mask fields are where a

BOQS user enters this information. This information is the same for all Nortel

VPN Router 1010, 1050, and 1100 devices.

You must provision the NOC switch to accept control tunnel connections from the

branch office. Because static routing is used in control tunnels, you do not have to

enable routing protocols on the NOC switch. Use the following guidelines:

•

NN46110-500

All responder tunnels should be created in one group or in subgroups of one

group for easy management. Connection Name of the tunnel should

correspond to NOC tunnel name and created in an enabled state with local

filter set to Permit All.

Text Pre-Shared Key should be selected as the IPSEC authentication method,

Initiator ID set to the value of Control Tunnel Name, and Text Pre-Shared Key

should be equal to Control Tunnel password.

Select Static routing. Accessible local networks should be added. All

networks from which the Nortel VPN Router1010, 1050, or 1100 will be

managed must be on that list.

NAT Local option should NOT be used.

Accessible Remote Networks should contain one address subnet (mask equal

to 255.255.255.255) with Nortel VPN Router 1010, 1050, or 1100

Management IP. Nortel VPN Router 1010, 1050, or 1100 Management IP is

either explicitly provided in the field "Branch office switch manage NAT IP

address" or if this field is left empty, it is the second address from the subnet

specified in the Branch Office Private IP Address and Mask fields.

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

Contivity 1010 Contivity 1050

Nortel Contivity 1100 Configuration Manual page 64

Hide quick links:

Related Manuals for Nortel Contivity 1100

Related Products for Nortel Contivity 1100

This manual is also suitable for:

Table of Contents