Mobile Ip - NetModule NB3710 User Manual

Hide thumbs Also See for NB3710:

User manual (196 pages)

User manual (211 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

Table of Contents

NB3710

User Manual for NRSW version 4.4

5.4.4. Mobile IP

Mobile IP (MIP) can be used to enable seamless switching between different kinds of WAN links (e.g.

WWAN/WLAN). The mobile node hereby remains reachable via the same IP address (home address)

at any time, independently of the WAN link being used. Effectively, any WAN link switch causes very

small outages during switchover while keeping all IP connections alive.

Moreover, NetModule routers also support NAT-Traversal for mobile nodes running behind a ﬁrewall

(performing NAT), which makes mobile nodes even there accessible from a central ofﬁce via their

home address, and thus, bypassing any complicated VPN setups.

The home agent accomplishes this by establishing a tunnel (similar to a VPN tunnel) between itself

and the mobile node. WAN link switching works by telling the home agent that the WAN IP address

(called the care-of address in MIP terms) of the mobile node has changed. The home agent will

then encapsulate packets destined to a mobile node's home address into a tunnel packet containing

the current care-of address of the mobile node as its destination address.

To prevent problems with ﬁrewalls and private IP addressing, the MIP implementation always em-

ploys reverse tunneling, which means that all trafﬁc sent by a mobile node is relayed via the tunnel

to the home agent instead of directly being conveyed to the ﬁnal destination. This fact also empowers

MIP to be used as a lightweight VPN replacement (without payload secrecy).

The MIP implementation supports RFCs 3344, 5177, 3024 and 3519. For applications requiring vast

numbers of mobile nodes, interoperability with the Cisco 2900 Series home agent implementation has

been veriﬁed. However, since NetModule routers implement a mobile node as well as a home agent,

a MIP network with up to 10 mobile nodes can be implemented without requiring expensive third party

routers.

If MIP is run as a mobile node, the following settings can be conﬁgured:

Parameter

Primary home agent ad-

dress

Secondary home agent ad-

dress

Home address

SPI

Authentication type

Mobile IP Conﬁguration

The address of the primary home agent

The address of the secondary home agent. The mobile node will try to

able.

The permanent home address of the mobile node which can be used

to reach the mobile router at any time

The Security Parameter Index (SPI) identifying the security context for

the mobile IP tunnel between the mobile node and the home agent.

This is used to distinguish mobile nodes from each other. Therefore

each mobile node needs to be assigned a unique SPI. This is a 32-bit

hexadecimal value.

The used authentication algorithm. This can be preﬁx-sufﬁx-md5 (de-

fault for MIP) or hmac-md5.

Table of Contents

Mobile Ip - NetModule NB3710 User Manual

5.4.4. Mobile IP

Need help?

Questions and answers

This manual is also suitable for:

Mobile Ip - NetModule NB3710 User Manual

5.4.4. Mobile IP

Need help?

Questions and answers

Related Manuals for NetModule NB3710

Related Content for NetModule NB3710

This manual is also suitable for:

Table of Contents