Dynamic Address Support (Including Dhcp) - Alcatel-Lucent Security Management Server (SMS) Release 9.4 Technical Overview
Hide thumbs
Also See for Security Management Server (SMS) Release 9.4:
- Installation manual (138 pages)
Table of Contents
Advertisement
Alcatel-Lucent VPN Firewall Brick
Dynamic Address Support (including DHCP)
...................................................................................................................................................................................................................................
Overview
The Brick device has the ability to exist in a dynamic address environment. The Brick
device can register its public address with its management server when used behind a
many-to-one-NAT device. Additionally, the Brick can support having its own addresses
assigned via DHCP or PPPoE as well as allowing DHCP requests to be forwarded to
DHCP servers. The Brick device supports two simultaneous PPPoE address
assignments for use in a redundant environment. These features, possibly used in
conjunction with the UDP encapsulation supporting VPN tunnels, provide an effective
CPE (customer premises equipment) solution for the small to medium size
premise-based market.
Mobile Brick Device
The Brick device can be installed behind a many-to-one NAT (also known as PAT or
NPAT). The Brick device management address is a private address, but this is
translated to a public address upon making an outbound connection. The Brick device
will register this public address with the SMS on first contact. The SMS will then use
this public address for contacting the Brick device when necessary, rather than the
Brick device actual (private) address. If that public address changes, the SMS will
reregister that Brick device and use the new address.
DHCP Relay
The Brick device will recognize inbound DHCP messages and forward them to known,
pre-configured DHCP servers.
DHCP Client
The Brick device will act as a DHCP client to acquire a DHCP address. The Brick
device will renew that address as appropriately specified in the DHCP lease. The Brick
device will register this address with the SMS, if appropriate, to use for management
communications. The address acquired via DHCP may be mapped to any of the
following purposes:
• Interface / VLAN IP Address
• Virtual Brick Address (VBA), in particular for Network Address Translation
• Tunnel End Point Address (TEP)
...................................................................................................................................................................................................................................
1-26
™
Security Appliance
260-100-022R9.4
Issue 1, June 2009
Advertisement
Table of Contents
Need help?
Do you have a question about the Security Management Server (SMS) Release 9.4 and is the answer not in the manual?
Questions and answers