Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Nortel 4050
Summary of Contents for Nortel 4050
- Page 1 Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent Release 3.5 Part No. NN47230-501 (324108-A) Document Version: 01.01 July 16, 2007 Document status: Standard 600 Technology Park Drive Billerica, MA 01821-4130...
-
Page 2: Restricted Rights Legend
In the interest of improving internal design, operational function, and/or reliability, Nortel Networks Inc. reserves the right to make changes to the products described in this document without notice. Nortel Networks does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein. - Page 3 30 days of purchase to obtain a credit for the full purchase price. “Software” is owned or licensed by Nortel Networks, its parent or one of its subsidiaries or affiliates, and is copyrighted and licensed, not sold. Software consists of machine-readable instructions, its components, data, audio-visual content (such as images, text, recordings or pictures) and related licensed materials including all whole or partial copies.
- Page 4 12.212 (for non-DoD entities) and 48 C.F.R. 227.7202 (for DoD entities). Customer may terminate the license at any time. Nortel Networks may terminate the license if Customer fails to comply with the terms and conditions of this license. In either event, upon termination, Customer must either return the Software to Nortel Networks or certify its destruction.
-
Page 5: Table Of Contents
Getting help from the Nortel Web site ........ - Page 6 Managing user profiles ..........29 System Profiles .
-
Page 7: Preface
200 MHz Pentium • 64 MB memory • 10 MB free hard disk space • Java Virtual Machine (JVM)1.4.2_05 or later if you have the install kit without the JVM Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent... -
Page 8: Text Conventions
Text conventions This guide uses the following text conventions: angle brackets (< >) bold Courier text braces ({}) brackets ([ ]) ellipsis points (. . . ) NN47230-501 (324108-A) Indicate that you choose the text to enter based on the description inside the brackets. -
Page 9: Acronyms
Nortel Secure Network Access Solution Guide • Nortel Secure Network Access Switch 4050 Installation Guide Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent Indicates new terms, book titles, and variables in command syntax descriptions. Where a variable is two or more words, the words are connected by an underscore. -
Page 10: How To Get Help
• Nortel Secure Network Access Switch 4050 User Guide for the CLI • Nortel Secure Network Access Switch 4050 User Guide for the SREM • Installing and Using the Security and Routing Element Manager • Release Notes for Nortel Ethernet Routing Switch 5500 Series, Software Release 5.0.1... -
Page 11: Getting Help From The Nortel Web Site
Getting help over the phone from a Nortel Solutions Center If you do not find the information you require on the Nortel Technical Support Web site, and you have a Nortel support contract, you can also get help over the phone from a Nortel Solutions Center. -
Page 12: Getting Help Through A Nortel Distributor Or Reseller
Preface Getting help through a Nortel distributor or reseller If you purchased a service contract for your Nortel product from a distributor or authorized reseller, contact the technical support staff for that distributor or reseller. NN47230-501 (324108-A) -
Page 13: Chapter 1 Tunnelguard
Because it is completely provisioned from the gateway, the TunnelGuard agent is invisible to the end user. The TunnelGuard agent features are: Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent... -
Page 14: Tunnelguard Icons
The advantages of using the Nortel TunnelGuard Desktop Agent are user authentication and device compliance checking. • Nortel TunnelGuard Browser Applet - This applet is a JAVA applet in the web browser that runs on Windows and non-Windows operating systems. TunnelGuard icons There is an icon defined for each of the three TunnelGuard states. -
Page 15: Supported Platforms
The “Select JVM" dialog box allows users to select: • bundled JVM (not available for NoVM kit) • JVM installed on local machine (with version greater than or equal to 1.4.2_05) Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent... -
Page 16: Installation Kits
16 Chapter 1 TunnelGuard If you select a bundled JVM, a jre directory is installed under the installation directory and is used to launch the TunnelGuard application. If you select JVM installed on the local machine, the jre directory is not installed. The selected local JVM is used. - Page 17 Standard NoVM kit TgNoVm_3_5.exe machine. No JRE is included. Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent if there is no correct version of Windows MSI service directly if there is a correct version of Windows MSI for more information.
-
Page 18: Command Line And Silent Installation
Command line and silent installation Msiexec.exe can be used for installation from the command line. The command line switch /qn is used to indicate a silent install. For silent installation, the reboot dialog box is not necessary as a reboot is performed automatically. - Page 19 Change shortcut icon Table: Row: Modify: Table: Rows: Modify: Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent Directory Directory = NEW_DIRECTORY2 and its parent directories Directory Directory = nortel_1_nortel_networks Icon Add new row Name = MyCustomIcon.ico Data: upload your icon file: MyCustomIcon.ico...
- Page 20 Change deafult JRE Property NN_JREPATH can be used to set the JRE path. If NN_JREPATH is set, the "Select JVM" dialog box is not shown. JVM represented by NN_JREPATH is used. In silent mode, if NN_JREPATH is provided, the corresponding JRE is used. If NN_JREPATH is not provided for a VM kit, the default bundled JRE is installed and used.
- Page 21 Replace the icon files and Agent.properties file with the files you have customized. Make sure the file names are not changed. Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent with ORCA. In the Cabs table, export the cab file that cabarc L mycab.cab >...
-
Page 22: System Preferences
Run command: In the ORCA Cabs table, import TgExeVm.msi is now successfully updated with the new files. Customizing Login dialog box image To customize the Login dialog box Image, use the following steps: Create an 100x200 BMP graphic named LoginImage.bmp. Place the graphic in the directory named as %INSTALL_DIR%\resources\. -
Page 23: Custom Install Options
When you right-click on the TunnelGuard icon, the context menu shows these commands: • About — provides version and copyright information. • Configure — enables a user to configure logging settings. • Status — displays the TunnelGuard log. Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent... -
Page 24: Tunnelguard Logs
SNAS for the rule. In some installation scenarios, this feature is not desirable. When SRS check failures are logged, the Detail switch reveals all of the information about rule contents and exactly what is expected on the system in order to be compliant. Some VPN administrators choose to hide some or all of this information from end users. -
Page 25: Clickable Link In Tunnelguard Agent
Recovery Mode. The default failure recovery interval is 10 seconds and is configured using TunnelGuard properties. The duration of Failure Recovery Mode is the length of the first intra-interval checking. Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent... -
Page 26: Tunnelguard Banner Support
TunnelGuard banner support It is important that TunnelGuard is configured to effectively communicate information and instructions to end users who are expected to use the TunnelGuard agent. The TunnelGuard banner is a mechanism that is used to communicate information to the user, including a standard banner message informing the users that a restricted filter is in place until the SRS conditions are met. -
Page 27: Chapter 2 Configuring Tunnelguard Agent
Additionally, the user can also log on using the TunnelGuard agent GUI. Logging on to NSNA To log on to NSNA using the TunnelGuard agent, use the following procedure: Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent... -
Page 28: Managing Profiles
In the Windows taskbar notification area, right-click the TunnelGuard agent icon and select Login. The Login to NSNA dialog box appears. Select the profile with which you want to log on or enter the logon credentials. The following table describes the Login fields. Field Profile Server... -
Page 29: Managing User Profiles
“Modifying a user profile” on page 31 • “Deleting a user profile” on page 31 Creating a user profile To create a user profile, use the following procedure: Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent... - Page 30 In the Windows taskbar notification area, right-click the TunnelGuard icon and select Manage NSNAProfiles. The Manage Profiles dialog box appears. Select User Profiles. Click New Profile. Enter the user profile details. The following table describes the User Profiles fields. Field Profile Name Use Domain User Information...
-
Page 31: Modifying A User Profile
Click Done. Deleting a user profile To delete a user profile, use the following procedure: Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent Description Specifies that the TunnelGuard agent uses the logon credentials that are given for the current profile. -
Page 32: System Profiles
In the Windows taskbar notification area, right-click the TunnelGuard icon and select Manage NSNA Profiles. The Manage Profiles dialog box appears. Select User Profiles. Select the profile to be deleted. Click Delete Profile. A confirmation dialog box appears. Click OK to delete the user profile. System Profiles System profile allows you to configure the system for multiple locations with different sets of credentials. - Page 33 In the Windows taskbar notification area, right-click the TunnelGuard icon and select Manage NSNA Profiles. The Manage Profiles dialog box appears. Select System Profile. Specify the name of the server. Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent...
- Page 34 Click Add. The Add New System Id dialog box appears. Enter the system profile details. The following table describes the Add New System Id fields. Field SNAS Network Address SNAS Network Mask System ID Password Click OK. Click Save Profile. The system profile is added to the Credentials table.
-
Page 35: Managing Global User Profiles
“Modifying a global user profile” on page 37 • “Deleting a global user profile” on page 37 Creating a global user profile To create a global user profile, use the following procedure: Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent... - Page 36 In the Windows taskbar notification area, right-click the TunnelGuard icon and select Manage NSNAProfiles. The Manage Profiles dialog box appears. Select Global User Profiles. Click New Profile. Enter the global user profile details. The following table describes the Global User Profiles fields. Field Profile Name Use Domain User...
- Page 37 In the Windows taskbar notification area, right-click the TunnelGuard icon and select Manage NSNA Profiles. The Manage Profiles dialog box appears. Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent Description Specifies that the TunnelGuard agent uses the logon credentials that are given for the current profile.
-
Page 38: Configuring The Tunnelguard Agent
Select Global User Profiles. Select the profile to be deleted. Click Delete Profile. A confirmation dialog box appears. Click OK to delete the global user profile. Configuring the TunnelGuard agent You can configure the TunnelGuard agent default setting. You can also configure the single sign-on option. - Page 39 To configure the TunnelGuard agent, use the following procedure: In the Windows taskbar notification area, right-click the TunnelGuard icon and select Configure. The TunnelGuard Configuration dialog box appears. Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent...
-
Page 40: Viewing The Tunnelguard Agent Status
Enter the TunnelGuard agent configuration details. The following table describes the Configuration fields. Field Default User Profile Enable Single Sign-on Log All Check Results Log Tunnel Up and Down Events Number of recent checking logs shown in status dialog Java Runtime Click OK to save the details. - Page 41 To view the policy details, click Policy. To view the SNAS status, click SNAS Status. To clear the logs, click Clear Logs. Click OK to close the TunnelGuard Status Logs dialog box. Nortel Secure Network Access Switch 4050 Configuration – Using TunnelGuard System Agent...
- Page 42 42 Chapter 2 Configuring TunnelGuard agent NN47230-501 (324108-A)
- Page 44 Users must take full responsibility for their applications of any products specified in this document. The information in this document is proprietary to Nortel Net- works.
Need help?
Do you have a question about the 4050 and is the answer not in the manual?
Questions and answers