1. Manuals
  2. Brands
  3. Nortel Manuals
  4. Network Router
  5. NN46110-600
  6. User manual

Nortel NN46110-600 User Manual page 58

Vpn router security — servers, authentication, and certificates
Hide thumbs
Table of Contents

Advertisement

48 Chapter 2 Configuring servers
NN46110-600
event that the primary server is unreachable, the VPN Router queries the first
and second alternate RADIUS servers.
a
Enter either the Host Name or IP Address of the servers. For example,
finance.mycompany.com or 145.22.120.111. You can also use simple
names (for example, finance) if your VPN Router has a configured DNS
server. For Primary, enter the primary RADIUS server host name
(required if RADIUS is enabled). The primary server is normally used to
process incoming authentication requests. For Alternate 1, enter the first
alternate RADIUS Server host name (this server processes incoming
authentication requests if the primary RADIUS server is unavailable). For
Alternate 2, enter the second alternate RADIUS server host name (this
server processes incoming authentication requests if the primary
RADIUS Server and the first alternate server are unavailable).
b Under Interface, specify whether you want to access the RADIUS server
from the VPN Router's private or public interface. You use the address of
the interface to configure the RADIUS client address information on the
remote RADIUS server. You must enable RADIUS authentication as an
allowed service on the Services > Available window. Select Private if the
RADIUS server is reached through the private interface. The management
address is used. Select Public if the RADIUS server is accessed through
the public interface. You must also specify the IP address for the public
interface. The public IP address list is dynamically built from the
information on the System > LAN window. Any change, such as
removing an interface card or changing an IP address, is automatically
reflected in the list.
c
In the Port field, enter the server port number that you want the RADIUS
authentication requests to use. Default is Port 1645.
d In the Secret field, enter the password to share with the VPN Router. To
enhance overall security, enter a different password for each server. The
shared secret encrypts the password between the VPN Router and the
server when the tunnel connection uses PAP or SecurID. It also verifies
the authenticity of each accounting request sent by the VPN Router to the
RADIUS server. Furthermore, it verifies the authenticity of each response
sent by the RADIUS server to the VPN Router.

Advertisement

Table of Contents
loading

Related Manuals for Nortel NN46110-600

Related Products for Nortel NN46110-600

Table of Contents