Bay Networks Baystream 7 Configuration And Troubleshooting Manual page 44

Bay dial vpn services

Hide thumbs Also See for Baystream 7:

Notice (140 pages)

Software manual (46 pages)

Install manual (38 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

Table of Contents

Configuring and Troubleshooting Bay Dial VPN Services

Note: TMS may deny a tunnel request for a number of reasons; for example, if

the maximum number of users has been reached, if TMS does not ﬁnd a match

for the domain name in its database, or if the authentication request fails. If the

tunnel request is denied, the connection between the NAS and the remote node

is dropped.

2-12

The RADIUS client (in the gateway) sends a request to the RADIUS

server to authenticate the remote user.

During remote authentication, the RADIUS authentication server on the

corporate home network veriﬁes that the remote node is authorized to access

the home network and determines which network services the remote node is

allowed to use.

The DHCP or the remote RADIUS server assigns an IP address and

includes that address in the reply.

If the home network is conﬁgured to assign IP addresses dynamically using

DHCP, the DHCP server selects an IP address from its pool and issues the end

user a renewable "lease" on that address. Alternatively, the DHCP

administrator may assign a ﬁxed IP address to particular users. In either case,

the DHCP server returns the assigned IP address in its reply to the gateway.

If the home network is conﬁgured to assign IP addresses using RADIUS,

either statically or dynamically, the RADIUS server performs the address

allocation. If the RADIUS administrator has allocated a pool of assignable IP

addresses for dial-in users, and if the RADIUS client on the gateway is

conﬁgured for dynamic IP address assignment, the RADIUS server assigns an

address from that pool. Alternatively, the RADIUS administrator may have

assigned a speciﬁc address for that particular user. In this case, RADIUS uses

that assigned address. The RADIUS server reserves the assigned IP address

for that user until the session terminates.

When authentication and address allocation are complete, the NAS starts

sending packets from the remote node to the gateway via the newly

created tunnel.

BayStream Multiservice Software Version 7.2

115623B Rev. 00

Table of Contents

Chapters

Table of Contents

Troubleshooting

This manual is also suitable for:

Remote annex Baydvs Bay dial vpn

Bay Networks Baystream 7 Configuration And Troubleshooting Manual page 44

Chapters

Troubleshooting

Related Manuals for Bay Networks Baystream 7

Related Products for Bay Networks Baystream 7

This manual is also suitable for:

Table of Contents